secure-apis.hva.nl
- Stichting Hogeschool Van Amsterdam -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 0c:5a:bc:4f:67:50:a7:a2:46:02:ea:fc:ea:49:e2:92 was issued on by TERENA.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Stichting Hogeschool Van Amsterdam
Organization:
Stichting Hogeschool Van Amsterdam
Organization unit: ICT Services
Organization unit: ICT Services
Locality:
Amsterdam
Country: NL
Country: NL
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:5a:bc:4f:67:50:a7:a2:46:02:ea:fc:ea:49:e2:92Serial Number (int): 16421862050691911808123545855126528658
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 55:45:a3:42:ee:37:ef:6a:1e:aa:c2:d7:77:29:77:a3:e2:03:32:02
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 76:73:fd:08:13:83:c5:d3:7f:ec:a6:cc:de:32:1d:5b:33:7f:5a:ad
Fingerprint (sha256): 04:67:fe:7c:cf:ab:cb:52:5f:b3:21:89:10:5a:58:1a:8c:1b:1a:e3:cc:7a:1d:88:ad:3a:46:05:91:0d:08:ed
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate secure-apis.hva.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secure-apis.hva.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secure-apis.hva.nl
oauth-prd1.ic.uva.nl
oauth-prd2.ic.uva.nl
oauth-prd1.ic.uva.nl
oauth-prd2.ic.uva.nl
Other certificates including the domain name hva.nl
(limited to 100 certificates)
*.medialab.hva.nl
edit-intra.dbsv.hva.nl
projectonline.dmci.hva.nl
acc-moodle.ict.hva.nl
mobiusportal.uva.dev.icts.education
acc-login.hva.nl
onderwijsconferentie.hva.nl
resultaten.hva.nl
rbs.iscb.hva.nl
fbe-magazines.hva.nl
mi.hva.nl
acc-mi.hva.nl
gitlab.techniek.hva.nl
campus.dmci.hva.nl
stage.centuri.hva.nl
incapsula.com
stagedbsv.hva.nl
teams-prd-sbc1.hva.nl
roosterportal.hva.nl
edulab.fbe.hva.nl
unixbeheer.forux.nl
incapsula.com
rooster.hva.nl
openid.hva.nl
hva.nl
secure-apis.hva.nl
moodle.cmd.hva.nl
asl.techniek.hva.nl
prdcltech0003.ict.hva.nl
intra.sem.hva.nl
webdav-intra.doo.hva.nl
databanken.bibliotheek.hva.nl
ontw-intra.mim.hva.nl
pure.hva.nl
gartnerportal.uva.prd.icts.education
roosterportal.hva.nl
legacy.hva.nl
declaraties.hva.nl
api.declaraties-acc.hva.nl
cl.acc.hvaweb.formist.nl
id.hva.prd.icts.education
apps.hva.nl
moodle-prd-fdmci.lb.hva.nl
edulab.fbe.hva.nl
incapsula.com
login.hva.nl
sis.hva.nl
incapsula.com
onderwijslab.techniek.hva.nl
*.acceptatie.hva.nl
prdcltech0004.ict.hva.nl
intra.alo.hva.nl
ex2016-prd-hva.lb.uva.nl
incapsula.com
edit-intra.iam.hva.nl
devarchief.roxen.hva.nl
incapsula.com
sis.hva.nl
acc-moodle.ict.hva.nl
hvacms-acc-redactie.lb.uva.nl
recovery.ict.hva.nl
rps.hva.nl
aanmelden.hva.nl
hvacms-prd-www.lb.uva.nl
campuscreators.nl
www.excellentieprogramma.hva.nl
gartnerportal3.uva.dev.icts.education
ac.hva.nl
hva.nl
gitlab.dmci.hva.nl
idm-acc-conhva1.acc-ad.hva.nl
login.hva.nl
sis.hva.nl
mapleta-oefen.hva.nl
curriculum.techniek.hva.nl
www.lustrum.hva.nl
wivlog.ict.hva.nl
incapsula.com
vpxldaps.ad.hva.nl
hvacms-prd-redactie.lb.uva.nl
sis.hva.nl
gitlab.techniek.hva.nl
incapsula.com
hvacms-prd-fe.lb.hva.nl
moodle-dev-fdmci.lb.hva.nl
edit-hva-instituten.hva.nl
salto-acc-hva1.ad.hva.nl
stage.centuri.hva.nl
bscw.hva.nl
discord.informatica.hva.nl
tijdreg.hva.nl
*.acc-blogs.dmci.hva.nl
beheervpn-prd.net.uha.nl
intra.si.hva.nl
lyndaportal.fdmci.hva.nl
dlwo.dmci.hva.nl
vpn.hva.nl
asl.techniek.hva.nl
api.payment-acc.ict.hva.nl
login.hva.nl
edit-intra.dbsv.hva.nl
projectonline.dmci.hva.nl
acc-moodle.ict.hva.nl
mobiusportal.uva.dev.icts.education
acc-login.hva.nl
onderwijsconferentie.hva.nl
resultaten.hva.nl
rbs.iscb.hva.nl
fbe-magazines.hva.nl
mi.hva.nl
acc-mi.hva.nl
gitlab.techniek.hva.nl
campus.dmci.hva.nl
stage.centuri.hva.nl
incapsula.com
stagedbsv.hva.nl
teams-prd-sbc1.hva.nl
roosterportal.hva.nl
edulab.fbe.hva.nl
unixbeheer.forux.nl
incapsula.com
rooster.hva.nl
openid.hva.nl
hva.nl
secure-apis.hva.nl
moodle.cmd.hva.nl
asl.techniek.hva.nl
prdcltech0003.ict.hva.nl
intra.sem.hva.nl
webdav-intra.doo.hva.nl
databanken.bibliotheek.hva.nl
ontw-intra.mim.hva.nl
pure.hva.nl
gartnerportal.uva.prd.icts.education
roosterportal.hva.nl
legacy.hva.nl
declaraties.hva.nl
api.declaraties-acc.hva.nl
cl.acc.hvaweb.formist.nl
id.hva.prd.icts.education
apps.hva.nl
moodle-prd-fdmci.lb.hva.nl
edulab.fbe.hva.nl
incapsula.com
login.hva.nl
sis.hva.nl
incapsula.com
onderwijslab.techniek.hva.nl
*.acceptatie.hva.nl
prdcltech0004.ict.hva.nl
intra.alo.hva.nl
ex2016-prd-hva.lb.uva.nl
incapsula.com
edit-intra.iam.hva.nl
devarchief.roxen.hva.nl
incapsula.com
sis.hva.nl
acc-moodle.ict.hva.nl
hvacms-acc-redactie.lb.uva.nl
recovery.ict.hva.nl
rps.hva.nl
aanmelden.hva.nl
hvacms-prd-www.lb.uva.nl
campuscreators.nl
www.excellentieprogramma.hva.nl
gartnerportal3.uva.dev.icts.education
ac.hva.nl
hva.nl
gitlab.dmci.hva.nl
idm-acc-conhva1.acc-ad.hva.nl
login.hva.nl
sis.hva.nl
mapleta-oefen.hva.nl
curriculum.techniek.hva.nl
www.lustrum.hva.nl
wivlog.ict.hva.nl
incapsula.com
vpxldaps.ad.hva.nl
hvacms-prd-redactie.lb.uva.nl
sis.hva.nl
gitlab.techniek.hva.nl
incapsula.com
hvacms-prd-fe.lb.hva.nl
moodle-dev-fdmci.lb.hva.nl
edit-hva-instituten.hva.nl
salto-acc-hva1.ad.hva.nl
stage.centuri.hva.nl
bscw.hva.nl
discord.informatica.hva.nl
tijdreg.hva.nl
*.acc-blogs.dmci.hva.nl
beheervpn-prd.net.uha.nl
intra.si.hva.nl
lyndaportal.fdmci.hva.nl
dlwo.dmci.hva.nl
vpn.hva.nl
asl.techniek.hva.nl
api.payment-acc.ict.hva.nl
login.hva.nl
Certificate
The complete raw certificate details for secure-apis.hva.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIQDFq8T2dQp6JGAur86knikjANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xOTExMTUwMDAwMDBaFw0yMTExMTkxMjAwMDBaMIGCMQswCQYDVQQG EwJOTDESMBAGA1UEBxMJQW1zdGVyZGFtMSswKQYDVQQKEyJTdGljaHRpbmcgSG9n ZXNjaG9vbCBWYW4gQW1zdGVyZGFtMRUwEwYDVQQLEwxJQ1QgU2VydmljZXMxGzAZ BgNVBAMTEnNlY3VyZS1hcGlzLmh2YS5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMGNTBIeBaSmntEW5QzwJkJhWcQFRO5ZVApqh6QmowgpYtDRhSZt KPhhYE7ML+LxQQGLmWgvpgdMvitqBS/j48gtm21SLSuwrjjfiqL62rrWblkPIpSr madRuslML1wCpXjnDmyoJ0lsX3UgM8s9429s0OBVV+jDa/xAC9DKnayYrZh6YT8Q ilwLlLkViukoZkSwspf7SVC6f6Ay5OzwzSpIk8RrEMT8gP+7TRh8gLLu2tQ5+OU4 13yFTTp0Q7liwy0pPTiwdVZSJ3c88c2hb8jvz8/qY2idDJSvOtIbVM+VRmnw9cKN fZ87TrahpTbhxgc5HAxSeTZ9x34mTe2W5hcCAwEAAaOCAgwwggIIMB8GA1UdIwQY MBaAFGf9iCAUJ5jHCdIlGbvpURFjdVBiMB0GA1UdDgQWBBRVRaNC7jfvah6qwtd3 KXej4gMyAjBJBgNVHREEQjBAghJzZWN1cmUtYXBpcy5odmEubmyCFG9hdXRoLXBy ZDEuaWMudXZhLm5sghRvYXV0aC1wcmQyLmljLnV2YS5ubDAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRkMGIwL6At oCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMuY3JsMC+g LaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0EzLmNybDBM BgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3 dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjBuBggrBgEFBQcBAQRiMGAwJAYI KwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTA4BggrBgEFBQcwAoYs aHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5jcnQwDAYD VR0TAQH/BAIwADATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOC AQEARy+TTwnYMvyMxYxi2PSXskcZJeAUdbxmhun9XNZVi7q6Jj2gK+C+Kv8dfkp0 sdN4DZIXSfWLfjDj3Z4eP7Ix5ZZ6z87dAG70S0ZYVGXnetwcbT1Gk4yNJaalfECJ 7QC700sbzV3XQIIzFkS4BSrHgaFQIx4xOQlTHzdgfHgHgimwVhplJpBI1tEAVhKQ ffookJE5Us0ENSR+eml3JJ0LbwQRIDXbLPxs5J6CwDiCRRDkef5UZryr3diXsQek CV5OkdLwQ6TLmfclrW3NCkbP9l4biS6zeeiS8JZpeTctWOU2YMyaVJ6j2BJJ6FAQ gAM8EkRbQ+HIOoqxowiPMfjGdA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwY1MEh4FpKae0RblDPAm QmFZxAVE7llUCmqHpCajCCli0NGFJm0o+GFgTswv4vFBAYuZaC+mB0y+K2oFL+Pj yC2bbVItK7CuON+KovrautZuWQ8ilKuZp1G6yUwvXAKleOcObKgnSWxfdSAzyz3j b2zQ4FVX6MNr/EAL0MqdrJitmHphPxCKXAuUuRWK6ShmRLCyl/tJULp/oDLk7PDN KkiTxGsQxPyA/7tNGHyAsu7a1Dn45TjXfIVNOnRDuWLDLSk9OLB1VlIndzzxzaFv yO/Pz+pjaJ0MlK860htUz5VGafD1wo19nztOtqGlNuHGBzkcDFJ5Nn3HfiZN7Zbm FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16421862050691911808123545855126528658 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-19 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stichting Hogeschool Van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'secure-apis.hva.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24433669080696519630823983304433477981709222944156227648610324390539777784963895458740553785029857907575847783978868101104673250203269844432910667331720488562765993095893671710919456102813956011828146623344851019110679102411003194262637267480649418553832945073398479296219581755436973381614981486670341586236298598679578697126073175655277440056018954176011327722134033876549953135675004804802654540790775068654480621520948353773076705327164083112122470297508796630132329898307433417697415152656856519979708711571560607641327449544976335869634456828654097123959201129214164264737840783601979684097207311326393488827927 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5545a342ee37ef6a1eaac2d7772977a3e2033202 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure-apis.hva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oauth-prd1.ic.uva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oauth-prd2.ic.uva.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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