books.ub.uni-heidelberg.de

- Ruprecht-Karls-Universitaet Heidelberg -

Issued by DFN-Verein Global Issuing CA

About this certificate

This digital certificate with serial number 23:87:c3:ac:10:69:38:81:0f:0e:f8:ee was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)

Ruprecht-Karls-Universitaet Heidelberg

Organization: Ruprecht-Karls-Universitaet Heidelberg
Organization unit: Universitaetsbibliothek
State / Province: Baden-Wuerttemberg
Locality: Heidelberg
Country: DE

Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.

Organization: Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Country: DE

This certificate has expire since

Certificate Details

Serial Number (hex): 23:87:c3:ac:10:69:38:81:0f:0e:f8:ee
Serial Number (int): 10996104364881731106928261358
Serial Number lenght: 94 bits, 12 octets

SubjectKeyId: 59:cb:73:ac:8d:0b:4f:fa:71:31:18:6e:47:97:90:48:16:29:06:7f
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74

Fingerprint (sha1): 8b:4b:8d:c5:41:2a:b3:af:33:0c:83:3e:fa:cb:35:a8:d2:93:fc:b2
Fingerprint (sha256): 04:2d:4b:11:a0:b2:b7:4a:63:3a:04:d5:11:1a:67:43:6d:f1:cc:1e:20:79:3c:25:95:8e:2d:c1:14:95:aa:4e

Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt

Revocation information

OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSP
CRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl

Check the revocation status for certificate books.ub.uni-heidelberg.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for books.ub.uni-heidelberg.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

books.ub.uni-heidelberg.de
crossasia-books.ub.uni-heidelberg.de

Other certificates including the domain name uni-heidelberg.de

(limited to 100 certificates)
hch19.cl.uni-heidelberg.de
www.mathematik.uni-heidelberg.de
klassphil.stura.uni-heidelberg.de
heimap-app.uni-heidelberg.de
heidocs1.zuv.uni-heidelberg.de
haw-pallas.adw.uni-heidelberg.de
flagship.kip.uni-heidelberg.de
cloud.kip.uni-heidelberg.de
ra.ziti.uni-heidelberg.de
neu.stura.uni-heidelberg.de
imap.iup.uni-heidelberg.de
calc.mathphys.stura.uni-heidelberg.de
vcg.iwr.uni-heidelberg.de
crispr.cos.uni-heidelberg.de
datashield.bioquant.uni-heidelberg.de
zinser-pc.physi.uni-heidelberg.de
weyauu.physi.uni-heidelberg.de
hcicloud.iwr.uni-heidelberg.de
cft2011.mathi.uni-heidelberg.de
public.urz.uni-heidelberg.de
virtualmin.urz.uni-heidelberg.de
karriere.klinikum.uni-heidelberg.de
www.soz.uni-heidelberg.de
www2.uniarchiv.uni-heidelberg.de
bud.iwr.uni-heidelberg.de
www.kip.uni-heidelberg.de
osm-vis.geog.uni-heidelberg.de
svn.ifi.uni-heidelberg.de
namse.med.uni-heidelberg.de
tc-hissva-prod1.zuv.uni-heidelberg.de
gisservices.geog.uni-heidelberg.de
mobility.zuv.uni-heidelberg.de
jupyter18.kip.uni-heidelberg.de
heiboxone.urz.uni-heidelberg.de
bq-mon-01.bioquant.uni-heidelberg.de
indico.physi.uni-heidelberg.de
neueslehramt.stura.uni-heidelberg.de
brassibase-dev.cos.uni-heidelberg.de
rewi-alumni.stura.uni-heidelberg.de
thbw-www.adw.uni-heidelberg.de
physikadmin.kip.uni-heidelberg.de
mp-force.ziti.uni-heidelberg.de
fsjapo.stura.uni-heidelberg.de
parcomp-git.iwr.uni-heidelberg.de
klimaschutzkarte.de
serv5.ub.uni-heidelberg.de
fachschaft.cl.uni-heidelberg.de
abhilekha.adw.uni-heidelberg.de
moodle.umm.uni-heidelberg.de
Sharepoint.urz.uni-heidelberg.de
kibana-dev.realm.bwinfosec.uni-heidelberg.de
brassibase-dev.cos.uni-heidelberg.de
exchange.uni-heidelberg.de
drw-www.adw.uni-heidelberg.de
cumulus.cos.uni-heidelberg.de
git.kip.uni-heidelberg.de
medusys.medma.uni-heidelberg.de
emp.kip.uni-heidelberg.de
relay2.uni-heidelberg.de
wrangler.mathi.uni-heidelberg.de
sturawahl.stura.uni-heidelberg.de
gistools.geog.uni-heidelberg.de
banane.mathi.uni-heidelberg.de
webapp-test.zuv.uni-heidelberg.de
mail.stw.uni-heidelberg.de
owncloud.itp.uni-heidelberg.de
ki.stura.uni-heidelberg.de
hisapp.uni-heidelberg.de
pille.iwr.uni-heidelberg.de
znfshop.zbt.uni-heidelberg.de
dschungelbuch.stura.uni-heidelberg.de
ui-test.heicloud.uni-heidelberg.de
aid.krz.uni-heidelberg.de
fszahnmedizin.stura.uni-heidelberg.de
dag.adw.uni-heidelberg.de
gitlab.gistools.geog.uni-heidelberg.de
survey.csi.uni-heidelberg.de
mtk-online.urz.uni-heidelberg.de
mats.stura.uni-heidelberg.de
hci-iweb.iwr.uni-heidelberg.de
ora3.zuv.uni-heidelberg.de
sso-02-dmed.urz.uni-heidelberg.de
beowulf.bioquant.uni-heidelberg.de
web.imbi.uni-heidelberg.de
aci.uni-heidelberg.de
jesajanet-pepa-test.med.uni-heidelberg.de
pix.umm.uni-heidelberg.de
wvz1.stura.uni-heidelberg.de
books.ub.uni-heidelberg.de
ext01.dmed.uni-heidelberg.de
serv5.ub.uni-heidelberg.de
cegit.ziti.uni-heidelberg.de
fsiued.stura.uni-heidelberg.de
dsf-dbmi.umm.uni-heidelberg.de
fs-sino.stura.uni-heidelberg.de
lists.cl.uni-heidelberg.de
bud.iwr.uni-heidelberg.de
dms.urz.uni-heidelberg.de
ipa.iwr.uni-heidelberg.de
rocket.uni-heidelberg.de

Certificate

The complete raw certificate details for books.ub.uni-heidelberg.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApHwHYCsA1845xMDN2gqe
2AKrCi9o9qkDHLnqS+h8p3k5bHOHSRhBk39ZXi7HaGQxbDdT9LDaoQPwYFzCF9FR
mJ14iDU/++JVn/10hm5ZhA8tBB2k1h49+ZMFZevuskqobFqxnWyWoit8fXdJtwXI
WShRyl5gVBYRz/5odNxCRjLjlNc2B63mPMrloEbLOGkcUVVXaf09Z/uGUS/TWRnr
df5LCU08wdbWgrxqzslXC7z3LcgMbPzO9MoQKu2m6NYcfUoKSb9ideqn++OV0rgJ
A2i2vcTdtsZdc0Y4kMZ7XoyOJ0MNyPwxTkr3fzRXPzK5f89zCeQlPH/NS0zbRuFq
JwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10996104364881731106928261358
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-21 06:20:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-23 06:20:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Baden-Wuerttemberg'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Heidelberg'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ruprecht-Karls-Universitaet Heidelberg'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Universitaetsbibliothek'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'books.ub.uni-heidelberg.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20764242900712552502048159852785218893050246098788755670530506351861663911638234733802904880809145986111978210167802643697130174337165825976996281035316841138490023853010943239306542302860082194426416907348620620639913283752071359486615013924061917433905448623591275262536063136904670556506734247115658230635123606371265977217667047265797147694203469709229960679848313276200903366682230222795895364044401047233116442618034335813426809996868105738048862991437677407186677608424573782604721319530586922758258438099641319796934215719182705728904643088602928023092197182817172388146591297279882634749238111230700170603047
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							59cb73ac8d0b4ffa7131186e479790481629067f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'books.ub.uni-heidelberg.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crossasia-books.ub.uni-heidelberg.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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