sg-4.tbm.tudelft.nl
- Technische Universiteit Delft -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number ca:73:d1:7f:0f:08:b1:07:fa:5e:16:6e:67:1e:11:46 was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Technische Universiteit Delft
Organization:
Technische Universiteit Delft
State / Province:
Zuid-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): ca:73:d1:7f:0f:08:b1:07:fa:5e:16:6e:67:1e:11:46Serial Number (int): 269105418377521096574452163938254459206
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 75:74:ae:38:8a:bc:3c:d1:6c:92:70:34:e5:73:c2:f5:53:e5:21:44
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): c4:16:4f:1a:04:ff:67:18:31:9b:d6:9d:3c:cb:3a:59:79:31:13:c2
Fingerprint (sha256): 05:06:33:20:29:25:9b:b1:38:a6:8d:f1:b4:24:dd:58:77:08:a6:9f:66:3c:82:a9:b2:29:f8:06:8f:fa:ca:1f
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate sg-4.tbm.tudelft.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sg-4.tbm.tudelft.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sg-4.tbm.tudelft.nl
itrack.tbm.tudelft.nl
itrack.tbm.tudelft.nl
Other certificates including the domain name tudelft.nl
(limited to 100 certificates)
solidstate.quantumtinkerer.tudelft.nl
api.p-cube.gamelab-staging.tbm.tudelft.nl
bepsys.ewi.tudelft.nl
webdsl-org.ewi.tudelft.nl
talentservices.tudelft.nl
wism8.dunet.tudelft.nl
www.pp1.tudelft.nl
suslabnwe-en.io.tudelft.nl
eipdev.ewi.tudelft.nl
quantumtinkerer.tudelft.nl
www.hooke.tudelft.nl
mattermost-imphys.tudelft.nl
3d.bk.tudelft.nl
hpcwiki.tudelft.nl
suslabnwe-de.io.tudelft.nl
externenmds.tudelft.nl
webdsl-2015.ewi.tudelft.nl
telefoonboek.tudelft.nl
searchenginewis2.ewi.tudelft.nl
se.ewi.tudelft.nl
ipms-prd1.tudelft.nl
bitrix24.tbm.tudelft.nl
punch.tudelft.nl
oauth-t.tudelft.nl
inforln.tudelft.nl
3d.bk.tudelft.nl
bktoi1.bk.tudelft.nl
abdowiki.tudelft.nl
www.broach.nl
webapp.tudelft.nl
demoprojects.tudelft.nl
telewerken.tudelft.nl
pl-jenkins.ewi.tudelft.nl
bbtest.tudelft.nl
marsrv.tudelft.nl
4tudata-libbuild.tudelft.nl
inforln.tudelft.nl
mod-est.tbm.tudelft.nl
coin2013-prima.tudelft.nl
syllabus.tudelft.nl
aecoderunner.lr.tudelft.nl
erfgoed.tudelft.nl
www.civielebedrijvendagen.nl
was.tudelft.nl
sysadminwiki.tudelft.nl
esb-gateway.tudelft.nl
www.vvtp.tudelft.nl
services.sc.tudelft.nl
3d.bk.tudelft.nl
campusdevelopment.tudelft.nl
marsrv.tudelft.nl
svn.3me.tudelft.nl
lamp6.tudelft.nl
svn.tnw.tudelft.nl
www.dined.nl
dutmail.tudelft.nl
b2bcrm.tudelft.nl
www.nas.ewi.tudelft.nl
b2bcrm.tudelft.nl
qutech.tudelft.nl
personeelsdossiers.tudelft.nl
zandmotor-libtest.tudelft.nl
www.beeldportal.tudelft.nl
labservant.tudelft.nl
lampict2.tudelft.nl
coursemaptest.tudelft.nl
se.ewi.tudelft.nl
presto.tudelft.nl
3d.bk.tudelft.nl
www.punch.tudelft.nl
reservation.ekl.tudelft.nl
qit.ewi.tudelft.nl
elearning-libprod.tudelft.nl
www.praktischestudie.nl
handler.tudelft.nl
matchmakers.ewi.tudelft.nl
newmediacentre.tudelft.nl
burgerbegroting.tbm.tudelft.nl
www.broach.nl
ismir2019.ewi.tudelft.nl
sg-4.tbm.tudelft.nl
srv775-2.tudelft.net
www.dcsc.tudelft.nl
ppm1.tudelft.nl
lts1-test.tbm.tudelft.nl
inclusivedesign.io.tudelft.nl
visit.tudelft.nl
eurasipdev.ewi.tudelft.nl
ei.tudelft.nl
elearning-libaccp.tudelft.nl
www.practischestudie.nl
api.myota-test.tudelft.nl
svn.bk.tudelft.nl
gnss1.tudelft.nl
luistermutant.gamelab.tbm.tudelft.nl
filr.tudelft.nl
trendhost-cb.tudelft.nl
www.punch.tudelft.nl
research.tudelft.nl
osidoc.tudelft.nl
api.p-cube.gamelab-staging.tbm.tudelft.nl
bepsys.ewi.tudelft.nl
webdsl-org.ewi.tudelft.nl
talentservices.tudelft.nl
wism8.dunet.tudelft.nl
www.pp1.tudelft.nl
suslabnwe-en.io.tudelft.nl
eipdev.ewi.tudelft.nl
quantumtinkerer.tudelft.nl
www.hooke.tudelft.nl
mattermost-imphys.tudelft.nl
3d.bk.tudelft.nl
hpcwiki.tudelft.nl
suslabnwe-de.io.tudelft.nl
externenmds.tudelft.nl
webdsl-2015.ewi.tudelft.nl
telefoonboek.tudelft.nl
searchenginewis2.ewi.tudelft.nl
se.ewi.tudelft.nl
ipms-prd1.tudelft.nl
bitrix24.tbm.tudelft.nl
punch.tudelft.nl
oauth-t.tudelft.nl
inforln.tudelft.nl
3d.bk.tudelft.nl
bktoi1.bk.tudelft.nl
abdowiki.tudelft.nl
www.broach.nl
webapp.tudelft.nl
demoprojects.tudelft.nl
telewerken.tudelft.nl
pl-jenkins.ewi.tudelft.nl
bbtest.tudelft.nl
marsrv.tudelft.nl
4tudata-libbuild.tudelft.nl
inforln.tudelft.nl
mod-est.tbm.tudelft.nl
coin2013-prima.tudelft.nl
syllabus.tudelft.nl
aecoderunner.lr.tudelft.nl
erfgoed.tudelft.nl
www.civielebedrijvendagen.nl
was.tudelft.nl
sysadminwiki.tudelft.nl
esb-gateway.tudelft.nl
www.vvtp.tudelft.nl
services.sc.tudelft.nl
3d.bk.tudelft.nl
campusdevelopment.tudelft.nl
marsrv.tudelft.nl
svn.3me.tudelft.nl
lamp6.tudelft.nl
svn.tnw.tudelft.nl
www.dined.nl
dutmail.tudelft.nl
b2bcrm.tudelft.nl
www.nas.ewi.tudelft.nl
b2bcrm.tudelft.nl
qutech.tudelft.nl
personeelsdossiers.tudelft.nl
zandmotor-libtest.tudelft.nl
www.beeldportal.tudelft.nl
labservant.tudelft.nl
lampict2.tudelft.nl
coursemaptest.tudelft.nl
se.ewi.tudelft.nl
presto.tudelft.nl
3d.bk.tudelft.nl
www.punch.tudelft.nl
reservation.ekl.tudelft.nl
qit.ewi.tudelft.nl
elearning-libprod.tudelft.nl
www.praktischestudie.nl
handler.tudelft.nl
matchmakers.ewi.tudelft.nl
newmediacentre.tudelft.nl
burgerbegroting.tbm.tudelft.nl
www.broach.nl
ismir2019.ewi.tudelft.nl
sg-4.tbm.tudelft.nl
srv775-2.tudelft.net
www.dcsc.tudelft.nl
ppm1.tudelft.nl
lts1-test.tbm.tudelft.nl
inclusivedesign.io.tudelft.nl
visit.tudelft.nl
eurasipdev.ewi.tudelft.nl
ei.tudelft.nl
elearning-libaccp.tudelft.nl
www.practischestudie.nl
api.myota-test.tudelft.nl
svn.bk.tudelft.nl
gnss1.tudelft.nl
luistermutant.gamelab.tbm.tudelft.nl
filr.tudelft.nl
trendhost-cb.tudelft.nl
www.punch.tudelft.nl
research.tudelft.nl
osidoc.tudelft.nl
Certificate
The complete raw certificate details for sg-4.tbm.tudelft.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHeDCCBWCgAwIBAgIRAMpz0X8PCLEH+l4WbmceEUYwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIyMTIyMTAwMDAwMFoXDTIzMTIyMTIz NTk1OVowajELMAkGA1UEBhMCTkwxFTATBgNVBAgTDFp1aWQtSG9sbGFuZDEmMCQG A1UEChMdVGVjaG5pc2NoZSBVbml2ZXJzaXRlaXQgRGVsZnQxHDAaBgNVBAMTE3Nn LTQudGJtLnR1ZGVsZnQubmwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBHkLauBPL1FswmZZId0tXRVtrOPSNDxlh/BLxsWLBqey3CQzFS8y9BQuMIFPs r8xjnhwHf63RadtZOataXbaXBGc12S659a+6FojIOdPb1sZVDTp8PAWU8q3uKBG3 dhWSZCS9iKS/GdrNtpjtEke9IsMPr+qoErUYej7fLHtldo2b9yVxY/bCRzf9AcGD 6+nF6n+H3TZ3gTSuI08rcmRBBhVJ1BcvrPZGxBcKdHD0HbZx9tUITAnK1eWCB5OA bktpvkRj93O8m9PE8vNc7Q2l4OXONdyrlKTF8pCbLUWK32PjL/E7podZhQ4yCaC5 L2Gz/VSJ/2+CcRk6zQ8hvh43AgMBAAGjggM9MIIDOTAfBgNVHSMEGDAWgBRvHTVJ EGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQUdXSuOIq8PNFsknA05XPC9VPlIUQw DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAk8wJTAjBggrBgEF BQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQICMD8GA1UdHwQ4 MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGlnby5jb20vR0VBTlRPVlJT QUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUFBzAChi5odHRwOi8vR0VB TlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3J0MCkGCCsGAQUFBzAB hh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTCCAX4GCisGAQQB1nkCBAIE ggFuBIIBagFoAHcArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooAAAGF NASuAQAABAMASDBGAiEA4aDGupkOUEa6bxwognhxf/Aq4GNNLZqOXwZGXE0Kx88C IQDsZQEx6EscvWdaJ0BhpaUXarF5IX0NmQBLlLTkf5aztQB1AHoyjFTYty22IOo4 4FIe6YQWcDIThU070ivBOlejUutSAAABhTQErcoAAAQDAEYwRAIgJRwQfp3xdRae 7IW9kenE/1lPUSOgTXVNfJ8b62ytYEYCID64OQTWdwg0Kw2oh4DnKkZvWxYjhhdy VKj41RxhMPVsAHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGF NAStnAAABAMARzBFAiEAtCcpf4blEbbZeD4GoCiFihWkKQoaFJzuT3nPXJh5cqMC IFaisiI7a7iLYzM2eCLaQFJSAOaQEPXZd0wZ/svzsNc7MDUGA1UdEQQuMCyCE3Nn LTQudGJtLnR1ZGVsZnQubmyCFWl0cmFjay50Ym0udHVkZWxmdC5ubDANBgkqhkiG 9w0BAQwFAAOCAgEAIp5zb11LUgvDxuu9X7X4Zj3Qr3IWrePausJVxBExz+1xgmUA OS6MPEEQeIu3viqSExvbTFyq8wiOVlU7pDP1GS+h+QG9GWwOqi8eQ1x2YIQTPEiz k/YzKldRSQBsPHCAEv0rWs4cfqhds1BRkiu+F2RPMBYH9tOW9a5VoPgzco/WkefZ a5bn4e5qrehEeIGCXReNIQpUS+UzjJo4zSYrdYmMgHF79DjpHgyVTGjeqQYsLeou FUM5CLV7MGUZRDE0RxOOfQwTzLVG66TgkoXhjn6xXtvPsi5wEktY0IW4ZWkDzvC2 7uwsVZ147WBV82VxB+ilubTY/WWcrcIQsRbUBbCXPOFLhVzkcfi2ZEEv0GFqLXT3 t64YBdX4uHSfj4z6SWrP1KesiupK26AmbmMzSudM6k2h+0XTll1Fj50znsX+mU0u UVSHgKyYX4HmA4D7ory6etqsJBL2ZYNHxjV4R4d3bCsDfF/aa+kTnUGLmE1uQfEM cQobr0VzbGOwGFw32vjGQ43Ep8VtdkQJXWWlo1O44g/TmQQjhFaU4rA/pImKNMLM cuBkFGus5JJgpEmcODnvNTE7wMvyUJ5+LX8hLwNWDrYikd41w/fLz9Y9dtp6W0ta AqmdRzNxSsGACCAR6pyNq1WTW0Vi3I1dW4TtfWyjImzqfrr+WvzR4hJPZSs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwR5C2rgTy9RbMJmWSHdL V0Vbazj0jQ8ZYfwS8bFiwanstwkMxUvMvQULjCBT7K/MY54cB3+t0WnbWTmrWl22 lwRnNdkuufWvuhaIyDnT29bGVQ06fDwFlPKt7igRt3YVkmQkvYikvxnazbaY7RJH vSLDD6/qqBK1GHo+3yx7ZXaNm/clcWP2wkc3/QHBg+vpxep/h902d4E0riNPK3Jk QQYVSdQXL6z2RsQXCnRw9B22cfbVCEwJytXlggeTgG5Lab5EY/dzvJvTxPLzXO0N peDlzjXcq5SkxfKQmy1Fit9j4y/xO6aHWYUOMgmguS9hs/1Uif9vgnEZOs0PIb4e NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 269105418377521096574452163938254459206 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Technische Universiteit Delft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sg-4.tbm.tudelft.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24378915187621852120799439796669417116611005994172151238090947943879414387693336806206847893877606338094364049444521469387012200308333196288348685998284113128145846406713653104699149909520061688537113850497404457463330416855221512319275970682818472932412714677196015346511706950029348735574452531991898778943835475100296077743590525312324240963361343236279420784337292940939732064011061516986299460870993191096882789157038343141964269690462094550191629020929503554935506671280398623667858205352597781843600785414284675325763763945292881880684650176091534896096240018283524619711633277577512419385858015242261444304439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7574ae388abc3cd16c927034e573c2f553e52144 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sg-4.tbm.tudelft.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itrack.tbm.tudelft.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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