nza-portaal1.nza.nl
- De Nederlandse Zorgautoriteit (NZa) -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 74:fd:4f:ed:dd:ae:82:74:6e:7c:89:ee was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
De Nederlandse Zorgautoriteit (NZa)
Company registration number:
00000003525031430000
Organization: De Nederlandse Zorgautoriteit (NZa)
Organization: De Nederlandse Zorgautoriteit (NZa)
State / Province:
Utrecht
Locality: Utrecht
Country: NL
Locality: Utrecht
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 74:fd:4f:ed:dd:ae:82:74:6e:7c:89:eeSerial Number (int): 36206496826442869689322080750
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: 49:da:1e:1b:5f:e3:fe:cd:c0:d5:ff:1c:27:f9:55:dd:b1:88:f1:3c
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 63:68:49:a1:ac:d5:d0:65:c1:1e:7a:72:d0:9d:c2:d3:25:c2:44:cf
Fingerprint (sha256): 06:8e:f2:86:4e:dc:27:c4:44:13:54:45:c2:99:79:77:5c:9f:ac:77:46:59:55:ee:69:67:00:73:d0:87:e0:36
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate nza-portaal1.nza.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nza-portaal1.nza.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nza-portaal1.nza.nl
Other certificates including the domain name nza.nl
(limited to 100 certificates)
www.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
www.werkenmetdbcs.nza.nl
systems.squaredup.com
dbcregels.nza.nl
adfs.nza.nl
praatmee.nza.nl
zorgproducten-test.nza.nl
*.nza.nl
hub.theriderfirm.cc
dbcregels.nza.nl
nza-portaal1.nza.nl
servicedesk.esmsglobal.com
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
service.littlegarth.org
nza-form6.nza.nl
www.nza.nl
leren.nza.nl
dkdlmodel.nza.nl
zorgvraagtypering.nza.nl
nza-form5.nza.nl
uitwisselportaal.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
hybrid.nza.nl
tarievenzoekerzorgprestatiemodel.nza.nl
dkdlmodel.nza.nl
support.homeinstead.ie
zorgvraagtypering-test.nza.nl
dbcregels.nza.nl
meldingsformulier.nza.nl
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
zorgclustertool-test.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
zorgproducten.nza.nl
www.nza.nl
zorgproducten-test.nza.nl
support.homeinstead.ie
service.littlegarth.org
soporte.martinezabolafio.com
zorgproducten-test.nza.nl
zorgproducten-test.nza.nl
nza.nl
servicedesk.coram.eu
uitwisselportaal.nza.nl
zorgcijfers.nza.nl
sd.srk-zuerich.ch
zorgproducten.nza.nl
login.nza.nl
nza-form2.nza.nl
mijn-accp.nza.nl
helpdesk.sunlight.gr
support.brill.com
portal.nza.nl
www.werkenmetdbcs.nza.nl
dbcregels.nza.nl
support.homeinstead.ie
nzarpsamd001.nza.nl
leren.nza.nl
helpdesk.itwfasteners.com
dbcregels.nza.nl
nzarpsamd002.nza.nl
mijn-accp.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
wireless.nza.nl
nza-portaal1.nza.nl
zorgproducten-test.nza.nl
zorgcijfers.nza.nl
uitwisselportaal.nza.nl
nza-form1.nza.nl
zorgproducten.nza.nl
nzarpsamd002.nza.nl
dbcregels.nza.nl
www.werkenmetdbcs.nza.nl
zorgproductenviewer.nza.nl
adfs.nza.nl
mta-sts.nza.nl
acceptatie.crm.nza.nl
owa.nza.nl
zorgclustertool.nza.nl
adfs.nza.nl
l1.platformrijksoverheid.nl
werkenbijde.nza.nl
ithelpdesk.koinly.io
nzarpsamd002.nza.nl
nieuwmodelggzfz.nza.nl
aanvragen.nza.nl
customerportal.uk.rlb.com
nzarpsamd001.nza.nl
nza-form3.nza.nl
l1.platformrijksoverheid.nl
helpdesk.sunlight.gr
wachttijden.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
www.werkenmetdbcs.nza.nl
systems.squaredup.com
dbcregels.nza.nl
adfs.nza.nl
praatmee.nza.nl
zorgproducten-test.nza.nl
*.nza.nl
hub.theriderfirm.cc
dbcregels.nza.nl
nza-portaal1.nza.nl
servicedesk.esmsglobal.com
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
service.littlegarth.org
nza-form6.nza.nl
www.nza.nl
leren.nza.nl
dkdlmodel.nza.nl
zorgvraagtypering.nza.nl
nza-form5.nza.nl
uitwisselportaal.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
hybrid.nza.nl
tarievenzoekerzorgprestatiemodel.nza.nl
dkdlmodel.nza.nl
support.homeinstead.ie
zorgvraagtypering-test.nza.nl
dbcregels.nza.nl
meldingsformulier.nza.nl
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
zorgclustertool-test.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
zorgproducten.nza.nl
www.nza.nl
zorgproducten-test.nza.nl
support.homeinstead.ie
service.littlegarth.org
soporte.martinezabolafio.com
zorgproducten-test.nza.nl
zorgproducten-test.nza.nl
nza.nl
servicedesk.coram.eu
uitwisselportaal.nza.nl
zorgcijfers.nza.nl
sd.srk-zuerich.ch
zorgproducten.nza.nl
login.nza.nl
nza-form2.nza.nl
mijn-accp.nza.nl
helpdesk.sunlight.gr
support.brill.com
portal.nza.nl
www.werkenmetdbcs.nza.nl
dbcregels.nza.nl
support.homeinstead.ie
nzarpsamd001.nza.nl
leren.nza.nl
helpdesk.itwfasteners.com
dbcregels.nza.nl
nzarpsamd002.nza.nl
mijn-accp.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
wireless.nza.nl
nza-portaal1.nza.nl
zorgproducten-test.nza.nl
zorgcijfers.nza.nl
uitwisselportaal.nza.nl
nza-form1.nza.nl
zorgproducten.nza.nl
nzarpsamd002.nza.nl
dbcregels.nza.nl
www.werkenmetdbcs.nza.nl
zorgproductenviewer.nza.nl
adfs.nza.nl
mta-sts.nza.nl
acceptatie.crm.nza.nl
owa.nza.nl
zorgclustertool.nza.nl
adfs.nza.nl
l1.platformrijksoverheid.nl
werkenbijde.nza.nl
ithelpdesk.koinly.io
nzarpsamd002.nza.nl
nieuwmodelggzfz.nza.nl
aanvragen.nza.nl
customerportal.uk.rlb.com
nzarpsamd001.nza.nl
nza-form3.nza.nl
l1.platformrijksoverheid.nl
helpdesk.sunlight.gr
wachttijden.nza.nl
Certificate
The complete raw certificate details for nza-portaal1.nza.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG9zCCBN+gAwIBAgIMdP1P7d2ugnRufInuMA0GCSqGSIb3DQEBCwUAMHExCzAJ BgNVBAYTAk5MMREwDwYDVQQKDAhLUE4gQi5WLjEXMBUGA1UEYQwOTlRSTkwtMjcx MjQ3MDExNjA0BgNVBAMMLUtQTiBCViBQS0lvdmVyaGVpZCBPcmdhbmlzYXRpZSBT ZXJ2ZXIgQ0EgLSBHMzAeFw0xOTA0MDIxNDAwMTZaFw0yMTA0MDExNDAwMTZaMIGc MQswCQYDVQQGEwJOTDEQMA4GA1UECAwHVXRyZWNodDEQMA4GA1UEBwwHVXRyZWNo dDEsMCoGA1UECgwjRGUgTmVkZXJsYW5kc2UgWm9yZ2F1dG9yaXRlaXQgKE5aYSkx HTAbBgNVBAUTFDAwMDAwMDAzNTI1MDMxNDMwMDAwMRwwGgYDVQQDDBNuemEtcG9y dGFhbDEubnphLm5sMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5NG jqzbPRhqhSOQ+M58+iCZlP6QtXpi5if+KJr/zbXzEolU+Qo03KzeyTeEeXOAwr7D M/XDQPyBgnhPNetG6O+Cwj6oIWzRWrJfAlr43XLJmU4GBzLwhv6KGWYUvwoj6phz TDh07nGVwWNILFkLykfKdWVYzOkq9NzyvYLDSmBSY5zP6XhqnyfNCc70otI0hK3p 6ie3i0R/FNNi+u7qGIDQD70lr+5edBPkQS6rOkHGBhXOhK0E2OjMDWuZkZUFndZ9 wB1tBiJFjRCRtMHs/8tYUD2pk1ZiwWOf3x0Gm5pzFSldKvTO69y1X4Nq6mZLDJr9 JPK/PWiAtch3K1La/QIDAQABo4ICYTCCAl0wgZQGCCsGAQUFBwEBBIGHMIGEMFgG CCsGAQUFBzAChkxodHRwOi8vY2VydC5tYW5hZ2VkcGtpLmNvbS9DQWNlcnRzL0tQ TkJWUEtJb3ZlcmhlaWRPcmdhbmlzYXRpZVNlcnZlckNBRzMuY2VyMCgGCCsGAQUF BzABhhxodHRwOi8vZzNvY3NwLm1hbmFnZWRwa2kuY29tMB0GA1UdDgQWBBRJ2h4b X+P+zcDV/xwn+VXdsYjxPDAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFMOapnte dCuCtsZy/XROhdKXzf0YMIGxBgNVHSAEgakwgaYwgZkGCmCEEAGHawECBQYwgYow NwYIKwYBBQUHAgEWK2h0dHBzOi8vY2VydGlmaWNhYXQua3BuLmNvbS9wa2lvdmVy aGVpZC9jcHMwTwYIKwYBBQUHAgIwQwxBT3AgZGl0IGNlcnRpZmljYWF0IGlzIGhl dCBDUFMgUEtJb3ZlcmhlaWQgdmFuIEtQTiB2YW4gdG9lcGFzc2luZy4wCAYGZ4EM AQICMF4GA1UdHwRXMFUwU6BRoE+GTWh0dHA6Ly9jcmwubWFuYWdlZHBraS5jb20v S1BOQlZQS0lvdmVyaGVpZE9yZ2FuaXNhdGllU2VydmVyQ0FHMy9MYXRlc3RDUkwu Y3JsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUH AwEwHgYDVR0RBBcwFYITbnphLXBvcnRhYWwxLm56YS5ubDATBgorBgEEAdZ5AgQD AQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAgEAr9RpTnGG6bLhs4X6BGd/Tr6X1Ush qvDapwqqzavXWZF4kiS6z4QGovmjizadM1uifze3W5gCQALKzd+/vBl2AUxn0vUi XoWFlrRg7mcxdMZUP3Gf4CPAmUH0m/UHR6Q4yh3XVR5wsepvdayucaPDvWWX7nC0 66peO2lfuhzg+nzpd9sWPDKKA8E9PPSkbMMhSLqfUr+HSUx5By1C62nfXp4Wa/m2 Euz7VmCMd1kWdL+V7M7fOq+FeQpc0eMb86+UfFBgD1ZUoj+oh9+n4CGicPrsj6qj 3D0QQneq85a2jKoX/4z3cerEXCbHeMT2kLWMBSPHE7uwRzKeo1BGIq43gnZQncfN RptgbOFJW+oCery7zMil69jB3Sgwjp9lAc1Tt67GHZAi0bGEF8c6Rx82eVufp6Rp su81J3wjXNHj65VOa3de/v2zl2sfGj73ANalYHgZCPzGSKwjRHrtukHhAkbxo1ZJ 07fnwIndcdBh5wZuDgX6ztnoDavJvHW4UsREG5lsAqImwDfP2ah5/m/EfR5UbfbD phKNtxqoIYvK9QZcbJGet6Stg64P8DyCp9pYQgDaZ4lD7vIzq7WTlncaEprcK5jn wRyuUKXYNW/WB3/Bsmjj68udcJrkSSxh0A/7gKLU7+JGKstSPbjFVYs8MwRd+Dno GeCD+jPM1stHBls= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5NGjqzbPRhqhSOQ+M58 +iCZlP6QtXpi5if+KJr/zbXzEolU+Qo03KzeyTeEeXOAwr7DM/XDQPyBgnhPNetG 6O+Cwj6oIWzRWrJfAlr43XLJmU4GBzLwhv6KGWYUvwoj6phzTDh07nGVwWNILFkL ykfKdWVYzOkq9NzyvYLDSmBSY5zP6XhqnyfNCc70otI0hK3p6ie3i0R/FNNi+u7q GIDQD70lr+5edBPkQS6rOkHGBhXOhK0E2OjMDWuZkZUFndZ9wB1tBiJFjRCRtMHs /8tYUD2pk1ZiwWOf3x0Gm5pzFSldKvTO69y1X4Nq6mZLDJr9JPK/PWiAtch3K1La /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 36206496826442869689322080750 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-02 14:00:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-01 14:00:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'De Nederlandse Zorgautoriteit (NZa)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000003525031430000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'nza-portaal1.nza.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18124701922426712509564057128056921071334700670825778145006961642108677560064601190981057118511287020570172792184525901428699775703760528274219947207357862955974066080337080752102020564893780856482337273379137814715528653003417284930881835970023128112017967982634923660077323891627545201082118581495246907699174239493840643687289081224470755090645800655307204160222561395795547403738674041987824897781056227080712243475718806152343088362443036673869861520517960853250614737437937958614834594465314064981259793910839423738896448086419711725704089214149229337400655019806735809809184719571046734356460144763508005985021 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 49da1e1b5fe3fecdc0d5ff1c27f955ddb188f13c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nza-portaal1.nza.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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