PAUTH.riziv.fgov.be
- RIZIV-INAMI-LIKIV-NIHDI -
Issued by Government CA
About this certificate
This digital certificate with serial number 01:00:00:00:00:01:49:76:44:f7:f1:21:d5:ef was issued on byGovernment CA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RIZIV-INAMI-LIKIV-NIHDI
Organization:
RIZIV-INAMI-LIKIV-NIHDI
Organization unit: ICT
Organization unit: ICT
State / Province:
Brussels
Locality: Brussels
Country: BE
Locality: Brussels
Country: BE
Government CA
Company registration number: 2010
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 01:00:00:00:00:01:49:76:44:f7:f1:21:d5:efSerial Number (int): 20282409603675410662264674571759
Serial Number lenght: 105 bits, 14 octets
SubjectKeyId: 58:48:2a:5c:6c:7f:f4:5f:21:41:85:57:9e:b9:19:d9:5e:18:ca:f1
AuthorityKeyId: 41:96:ce:85:a7:e5:5e:e8:16:59:3d:0a:f1:84:dd:f3:f2:bb:4e:89
Fingerprint (sha1): a6:1b:93:e6:48:37:39:2b:02:3d:fc:b8:e5:97:29:6c:58:fa:08:38
Fingerprint (sha256): 06:71:f2:9d:e5:d4:19:b9:03:23:32:4a:0f:5b:9e:50:dc:bb:79:b0:14:06:b2:db:be:b7:a7:50:9d:5b:b9:09
Issuing Certificate URL: http://certs.pki.belgium.be/belgiumrs2.crt
Revocation information
OCSP Server: http://ocsp.pki.belgium.beCRL Distribution Point: http://crl.pki.belgium.be/government2010.crl
Check the revocation status for certificate PAUTH.riziv.fgov.be
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for PAUTH.riziv.fgov.be
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Extended Key Usages
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name fgov.be
(limited to 100 certificates)
kruispuntbank.fgov.be
eservices.minfin.fgov.be
dabs-acc.ext.wss.just.fgov.be
bpp.economie.fgov.be
www.business.belgium.be
minfin.be
eolf.economie.fgov.be
cap.mobilit.fgov.be
wwwacc.capac-hvw.fgov.be
ilite.wss.just.fgov.be
air.mobilit.fgov.be
justsignal-acc.client.just.fgov.be
www.rsvz.fgov.be
webdwtc01.rrn.fgov.be
jft-acc.wss.just.fgov.be
www.capac-hvw.fgov.be
www.incc.fgov.be
sdvampf001.intra.just.fgov.be
spvwebtpi001.intra.just.fgov.be
webdwtc01.rrn.fgov.be
portal.health.fgov.be
HVB-Liege.just.fgov.be
apptst.riziv.fgov.be
moncomptedevacances.be
*.ehealth-09.paas.cloud.ehealth.fgov.be
www.ehealth.fgov.be
natgw-eessi.ksz-bcss.fgov.be
wahlen.fgov.be
c-b2b.SPFETCS-FODWASO.fgov.be
www.likiv.fgov.be
www.capac-hvw.fgov.be
appsoc.caami-hziv.fgov.be
bibforum.fgov.be
*.statbel.fgov.be
appsoc.caami-hziv.fgov.be
ccff02.minfin.fgov.be
handicap.belgium.be
news.sfpd.fgov.be
ede.onssrszlss.fgov.be
hbca.client.just.fgov.be
savdiv000.intra.just.fgov.be
eucertificates.economie.fgov.be
handicap.belgium.be
residencepalace.be
archi.ccecrb.fgov.be
auth-signing.sigedis.fgov.be
premier.be
www.mybenefits.fgov.be
auth.minfin.fgov.be
www.rsvz.be
vsp.smals.be
forfaitdebase.economie.fgov.be
login.dev.mobilit.fgov.be
mailings.ibz.fgov.be
FODJ-STS-Token-Signing-2018.just.fgov.be
bel1fedlaeaacc01.fed.oncsfm.com
meldpunt.belgie.be
ibz.be
telework.just.fgov.be
circa.health.fgov.be
PAUTH.riziv.fgov.be
e.koba.be
accreditation-new.belgium.be
b2b-tst.rsvz-inasti.fgov.be
stvjira000.intra.just.fgov.be
spvnpsradius001.intra.just.fgov.be
auth.meta.fgov.be
ede.onssrszlss.fgov.be
emm.rrn.fgov.be
*.vpn2.fanc.fgov.be
kce.fgov.be
savelasticb000.intra.just.fgov.be
appsoc.caami-hziv.fgov.be
rsvz-inasti.fgov.be
adldsacc.integration.just.fgov.be
spvxwiki000.intra.just.fgov.be
bgcturn.intra.just.fgov.be
biblio.intra.just.fgov.be
arttiepe.intra.just.fgov.be
www.sigedis.fgov.be
fgov.be
www.riziv.fgov.be
savsdstatbe000.intra.just.fgov.be
viewportal.integration.just.fgov.be
www.decroo.belgie.be
bel1fedlaeaacc01.fed.oncsfm.com
www.capac-hvw.fgov.be
HVB-Mons-test.just.fgov.be
nrmobility.mobilit.fgov.be
infradocs.just.fgov.be
ccff02.minfin.fgov.be
test.ehealthplatform.info
www.caami-hziv.fgov.be
ibz.be
acc-cjcsr.just.fgov.be
www.webapp.rrn.fgov.be
*.apps-acc.mobilit.fgov.be
casfactory-dev.intra.just.fgov.be
enigloket.acc.mobilit.fgov.be
DAC-X3.rsvz-inasti.fgov.be
eservices.minfin.fgov.be
dabs-acc.ext.wss.just.fgov.be
bpp.economie.fgov.be
www.business.belgium.be
minfin.be
eolf.economie.fgov.be
cap.mobilit.fgov.be
wwwacc.capac-hvw.fgov.be
ilite.wss.just.fgov.be
air.mobilit.fgov.be
justsignal-acc.client.just.fgov.be
www.rsvz.fgov.be
webdwtc01.rrn.fgov.be
jft-acc.wss.just.fgov.be
www.capac-hvw.fgov.be
www.incc.fgov.be
sdvampf001.intra.just.fgov.be
spvwebtpi001.intra.just.fgov.be
webdwtc01.rrn.fgov.be
portal.health.fgov.be
HVB-Liege.just.fgov.be
apptst.riziv.fgov.be
moncomptedevacances.be
*.ehealth-09.paas.cloud.ehealth.fgov.be
www.ehealth.fgov.be
natgw-eessi.ksz-bcss.fgov.be
wahlen.fgov.be
c-b2b.SPFETCS-FODWASO.fgov.be
www.likiv.fgov.be
www.capac-hvw.fgov.be
appsoc.caami-hziv.fgov.be
bibforum.fgov.be
*.statbel.fgov.be
appsoc.caami-hziv.fgov.be
ccff02.minfin.fgov.be
handicap.belgium.be
news.sfpd.fgov.be
ede.onssrszlss.fgov.be
hbca.client.just.fgov.be
savdiv000.intra.just.fgov.be
eucertificates.economie.fgov.be
handicap.belgium.be
residencepalace.be
archi.ccecrb.fgov.be
auth-signing.sigedis.fgov.be
premier.be
www.mybenefits.fgov.be
auth.minfin.fgov.be
www.rsvz.be
vsp.smals.be
forfaitdebase.economie.fgov.be
login.dev.mobilit.fgov.be
mailings.ibz.fgov.be
FODJ-STS-Token-Signing-2018.just.fgov.be
bel1fedlaeaacc01.fed.oncsfm.com
meldpunt.belgie.be
ibz.be
telework.just.fgov.be
circa.health.fgov.be
PAUTH.riziv.fgov.be
e.koba.be
accreditation-new.belgium.be
b2b-tst.rsvz-inasti.fgov.be
stvjira000.intra.just.fgov.be
spvnpsradius001.intra.just.fgov.be
auth.meta.fgov.be
ede.onssrszlss.fgov.be
emm.rrn.fgov.be
*.vpn2.fanc.fgov.be
kce.fgov.be
savelasticb000.intra.just.fgov.be
appsoc.caami-hziv.fgov.be
rsvz-inasti.fgov.be
adldsacc.integration.just.fgov.be
spvxwiki000.intra.just.fgov.be
bgcturn.intra.just.fgov.be
biblio.intra.just.fgov.be
arttiepe.intra.just.fgov.be
www.sigedis.fgov.be
fgov.be
www.riziv.fgov.be
savsdstatbe000.intra.just.fgov.be
viewportal.integration.just.fgov.be
www.decroo.belgie.be
bel1fedlaeaacc01.fed.oncsfm.com
www.capac-hvw.fgov.be
HVB-Mons-test.just.fgov.be
nrmobility.mobilit.fgov.be
infradocs.just.fgov.be
ccff02.minfin.fgov.be
test.ehealthplatform.info
www.caami-hziv.fgov.be
ibz.be
acc-cjcsr.just.fgov.be
www.webapp.rrn.fgov.be
*.apps-acc.mobilit.fgov.be
casfactory-dev.intra.just.fgov.be
enigloket.acc.mobilit.fgov.be
DAC-X3.rsvz-inasti.fgov.be
Certificate
The complete raw certificate details for PAUTH.riziv.fgov.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgIOAQAAAAABSXZE9/Eh1e8wDQYJKoZIhvcNAQEFBQAwNDEL MAkGA1UEBhMCQkUxFjAUBgNVBAMTDUdvdmVybm1lbnQgQ0ExDTALBgNVBAUTBDIw MTAwHhcNMTQxMTAzMTUyNzUxWhcNMTYwMjAzMTUyNzUxWjCBszEcMBoGA1UEAxMT UEFVVEgucml6aXYuZmdvdi5iZTELMAkGA1UEBhMCQkUxMDAuBgkqhkiG9w0BCQEW IVNlcnZlcnMmU3RvcmFnZS5JQ1RAcml6aXYuZmdvdi5iZTERMA8GA1UEBxMIQnJ1 c3NlbHMxETAPBgNVBAgTCEJydXNzZWxzMQwwCgYDVQQLEwNJQ1QxIDAeBgNVBAoT F1JJWklWLUlOQU1JLUxJS0lWLU5JSERJMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAxYY8clHOBSBcmY7MTE6birDRVn7e2dGjE4gcna0RHpCeobt+2gug tsNN/ZDT5ToB3BeN0avDmrdyYvxHNChKW6jZpPe1R9uF2p00fMQiv9MIWd5z33Lx UTTxy8grsOXY3eF64KxI2oP6Nc8c+vdERaLmRnx3b3dLBXu0yq3Abm2UA4tXvFq4 3uW2QhReSkgz1Q4TYzKCHa/tdj0ROC1mVitjjRRfA+n4bFwDMGCeA+l0beEmB6Xk kkRlSdlTyZpeZZEGErTslGsIIrELojxgrwFTyA6u7nrDib4i2uzi9tDfHmPtjJkw rLsTeW0mO16Zm6zUK6Bx57pr1v9xeqoGdwIDAQABo4IBZzCCAWMwHwYDVR0jBBgw FoAUQZbOhaflXugWWT0K8YTd8/K7TokwbgYIKwYBBQUHAQEEYjBgMDYGCCsGAQUF BzAChipodHRwOi8vY2VydHMucGtpLmJlbGdpdW0uYmUvYmVsZ2l1bXJzMi5jcnQw JgYIKwYBBQUHMAGGGmh0dHA6Ly9vY3NwLnBraS5iZWxnaXVtLmJlMAkGA1UdEwQC MAAwRAYDVR0gBD0wOzA5BgdgOAkBAQMCMC4wLAYIKwYBBQUHAgEWIGh0dHA6Ly9y ZXBvc2l0b3J5LnBraS5iZWxnaXVtLmJlMD0GA1UdHwQ2MDQwMqAwoC6GLGh0dHA6 Ly9jcmwucGtpLmJlbGdpdW0uYmUvZ292ZXJubWVudDIwMTAuY3JsMA4GA1UdDwEB /wQEAwIE8DARBglghkgBhvhCAQEEBAMCBWAwHQYDVR0OBBYEFFhIKlxsf/RfIUGF V565GdleGMrxMA0GCSqGSIb3DQEBBQUAA4IBAQB5J4qfXvOSy+RsTqUckjmOw93b QS2h7D9diooxry+bWWczIydvhSGx6qxmj3w8/tSxsibX+jIA+qtJQl5tc8Hljf7k LFrYvgQrgZYsNratvviXMMfxOIADiafJI9G5UAU+0HCIsafZoTmbKK3Gfxj9Rc0O Nje8QD0z7GZQuACMGpVmMU4NAxouFXjaqt/hAx19l68ib25+D1wtStb+fk+5oPgL XZIEcbcAlSLbpvtC58f/e6ONQOkZgXmyC6QuA8IQv1sjLhoDeACen94LOGvlPQjH +9iE188SSrYhfu7obsL0BzuHovA2SJKL9iEQFbMKZvvOxLkIhDUreZuS96/4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYY8clHOBSBcmY7MTE6b irDRVn7e2dGjE4gcna0RHpCeobt+2gugtsNN/ZDT5ToB3BeN0avDmrdyYvxHNChK W6jZpPe1R9uF2p00fMQiv9MIWd5z33LxUTTxy8grsOXY3eF64KxI2oP6Nc8c+vdE RaLmRnx3b3dLBXu0yq3Abm2UA4tXvFq43uW2QhReSkgz1Q4TYzKCHa/tdj0ROC1m VitjjRRfA+n4bFwDMGCeA+l0beEmB6XkkkRlSdlTyZpeZZEGErTslGsIIrELojxg rwFTyA6u7nrDib4i2uzi9tDfHmPtjJkwrLsTeW0mO16Zm6zUK6Bx57pr1v9xeqoG dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20282409603675410662264674571759 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2010' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-03 15:27:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-03 15:27:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PAUTH.riziv.fgov.be' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'Servers&[email protected]' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brussels' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brussels' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RIZIV-INAMI-LIKIV-NIHDI' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24935140375874045574863503349893064967358181070431156754675830338900869340941570974347646219908845111071154108793307131318301783130147809318317126282092710693934788915985693337509449661216442953341006670009104591462708186481405675423715784044567649648487859196634777161438521853370345769257918263116553493102428942285934901188217642545729915393187540661452573655499530290247985206545966530874978341235895117370231098840995736220308063314455873478335356001375677539862003441837494542223608863317583930746890818018533939785575217915561074784907153524168163594754216005158098236130293798971978764951572058585423669757559 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4196ce85a7e55ee816593d0af184ddf3f2bb4e89 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.pki.belgium.be/belgiumrs2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.belgium.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.56.9.1.1.3.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.pki.belgium.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.belgium.be/government2010.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.1.1 (netscape-cert-type) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 0560 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 58482a5c6c7ff45f214185579eb919d95e18caf1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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