smtpub.iai.uni-bonn.de

- Rheinische Friedrich-Wilhelms-Universitaet Bonn -

Issued by DFN-Verein Global Issuing CA

About this certificate

This digital certificate with serial number 27:47:8c:64:c4:5c:0e:9b:51:b7:a4:c7 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..

With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Rheinische Friedrich-Wilhelms-Universitaet Bonn

Organization: Rheinische Friedrich-Wilhelms-Universitaet Bonn
State / Province: Nordrhein-Westfalen
Locality: Bonn
Country: DE

Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.

Organization: Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Country: DE

This certificate has expire since

Certificate Details

Serial Number (hex): 27:47:8c:64:c4:5c:0e:9b:51:b7:a4:c7
Serial Number (int): 12156412106356305662500644039
Serial Number lenght: 94 bits, 12 octets

SubjectKeyId: bd:0f:7e:29:dd:35:30:22:02:92:d8:fd:06:47:92:13:81:1b:3d:be
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74

Fingerprint (sha1): 1d:b0:33:fa:a9:49:5a:e4:92:51:41:15:4b:b7:cc:17:4d:9b:c0:60
Fingerprint (sha256): 06:ab:ce:46:00:01:cb:78:66:b3:0b:e1:6b:5a:7e:69:82:1c:4b:50:72:f6:01:72:f3:5f:99:41:2c:26:5e:42

Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt

Revocation information

OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSP
CRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl

Check the revocation status for certificate smtpub.iai.uni-bonn.de

7

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for smtpub.iai.uni-bonn.de

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

smtpub.iai.uni-bonn.de
postfix-gksp.iai.uni-bonn.de
smtpub0.iai.uni-bonn.de
smtpub1.iai.uni-bonn.de
smtpub2.iai.uni-bonn.de
smtpub3.iai.uni-bonn.de
smtpub8.iai.uni-bonn.de

Other certificates including the domain name uni-bonn.de

(limited to 100 certificates)
bbbfallback.informatik.uni-bonn.de
weblogin.physik.uni-bonn.de
iweb.meb.uni-bonn.de
www.tumorzentrum-bonn.de
gitlab.geo.uni-bonn.de
agp-vpn.rhrz.uni-bonn.de
www.vorklinikstage.uni-bonn.de
ems.math.uni-bonn.de
vpn-test.rhrz.uni-bonn.de
fdi-s3.uni-bonn.de
container-registry.hrz.uni-bonn.de
merry.ulb.uni-bonn.de
wiki.zem.uni-bonn.de
zveshop.verwaltung.uni-bonn.de
ins.uni-bonn.de
www.bonngutstage.uni-bonn.de
ortsnc.verwaltung.uni-bonn.de
cytometry.uni-bonn.de
trave.math.uni-bonn.de
bonfor.uni-bonn.de
xerox-og.meteo.uni-bonn.de
www1.hiskp.uni-bonn.de
ova-vpn.ova.uni-bonn.de
intranet.ais.uni-bonn.de
sp.uni-bonn.de
iweb.meb.uni-bonn.de
cens.uni-bonn.de
slk.informatik.uni-bonn.de
peene.math.uni-bonn.de
www.arithmeum.uni-bonn.de
mail.uni-bonn.de
gosa-dev.gosa.uni-bonn.de
www.bonngutstage.uni-bonn.de
webconf.meteo.uni-bonn.de
www.lms.uni-bonn.de
cytometry-ldap.uni-bonn.de
ad1.iai.uni-bonn.de
userserver.informatik.uni-bonn.de
hio-web-test.uni-bonn.de
proxmox-info4.cs.uni-bonn.de
chat.zem.uni-bonn.de
bbbfallback.informatik.uni-bonn.de
www.uni-bonn.de
sympa.vi.cs.uni-bonn.de
ea-author.rhrz.uni-bonn.de
cores.ukb.uni-bonn.de
web3.physik.uni-bonn.de
jester.uni-bonn.de
www.zhf.uni-bonn.de
confluence.bzh.uni-bonn.de
ad0.iai.uni-bonn.de
docs.physik.uni-bonn.de
www.lateinamerikazentrumstage.uni-bonn.de
k8stest-sealed-secrets.uni-bonn.de
agthoma.hiskp.uni-bonn.de
www.mnfstage.uni-bonn.de
styx.asta.uni-bonn.de
lwf-vpn.rhrz.uni-bonn.de
wiki.physik.uni-bonn.de
jhub.physik.uni-bonn.de
sms.wiwi.uni-bonn.de
csengine-test.rhrz.uni-bonn.de
mailer.ukb.uni-bonn.de
portal.grade-rc.de
imbie.meb.uni-bonn.de
admin-wiki.home.ins.uni-bonn.de
www.arithmeum.uni-bonn.de
prb.verwaltung.uni-bonn.de
butterbur05.iai.uni-bonn.de
www.or.uni-bonn.de
prb.verwaltung.uni-bonn.de
merry.ulb.uni-bonn.de
cores.ukb.uni-bonn.de
tools.net.cs.uni-bonn.de
warnow.math.uni-bonn.de
v-for1.ilb.uni-bonn.de
mail.ins.uni-bonn.de
www.uni-bonn.de
www.versoehnungstage.uni-bonn.de
www1.hiskp.uni-bonn.de
mx.hiskp.uni-bonn.de
sentry.hive.cs.uni-bonn.de
drze-vpn.rhrz.uni-bonn.de
www.philfak.uni-bonn.de
wahlen.uni-bonn.de
hicap.uni-bonn.de
pi01.hrz.uni-bonn.de
portal.grade-rc.de
intern.hrz.uni-bonn.de
warnow.math.uni-bonn.de
kata.doelger.uni-bonn.de
butterbur01.iai.uni-bonn.de
smtpclient-sol.iai.uni-bonn.de
ems.math.uni-bonn.de
smtpub.iai.uni-bonn.de
gast-bonnet4.uni-bonn.de
hcm.uni-bonn.de
tm.verwaltung.uni-bonn.de
rds-sap.verwaltung.uni-bonn.de
www.cb.uni-bonn.de

Certificate

The complete raw certificate details for smtpub.iai.uni-bonn.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 12156412106356305662500644039
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-19 06:40:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-20 06:40:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bonn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rheinische Friedrich-Wilhelms-Universitaet Bonn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'smtpub.iai.uni-bonn.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 933189751287104285910973955381900577495627427806414507637045524502804686451339401933319705035429869026515745356363431656744924487281869465579865501257260090033753799111623709487580115724253756323476528376134570613391726304254575410290552235526876490790851336824287323390093251693116122965283744928777719877809128933961509021605579442983579681858037438493472060783518519222228275195203845113337631023391937760216612287763527551201076181443071116682658656963560127753285146954444001457196947262751929585838075493461433726281130764638798037308544849254142236425800191346142664705424825080937611535779410502745432673464857996017059117157899541763694077300090390261143090575145283491411836877859986976582665852072301319019979263511254099764493583461925514267008976711658499895045127654517982240870130643042492801083649261547072727338511539805391043591417113289894338039625770401172171465633122107168826273014852324999419699510911003619705507982615024046654097121060413708798003575975332045966817772510781712627808361296449534231440956487171937767509679768474143970613226883973709984423099720990633095127891307401958759249214330495548940760255854731607084255322233712453148926702964082319286820223380963906273184502140694975203651466082927
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.10
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.10
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bd0f7e29dd3530220292d8fd06479213811b3dbe
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (182 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtpub.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'postfix-gksp.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtpub0.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtpub1.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtpub2.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtpub3.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtpub8.iai.uni-bonn.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0086ad727a1b689dfd43e90ce7f54bf55488f126aed27bec7a11c0b4658e0ff45483b203fa1a68eca1fb7c7f12fdc0e082692edc7609eda2437e278f7b387f29f84571d50459c04ce756cbf0820f5c77292d1c8af6199cd7b009c23ad2ecaa1d4f952cfe3939bf78cab8b1d4d3d5a5531ab2eb36663e6d5599e8f7e8a69d738a43a6be168b0d187ecea9d5c5700356d1447292288c6bb2810fc8db80a1335b62017686ebfb5b6934faab35a7ba789c9277a33f927679befb515269e136ee801f2650f366ed635aeb9decb064921dc8c229ff6c1aabc513d1108b90e67142c1745765d79bc438dd40b582c7ee9ee90f7170218ac8e248d1a504d1c4aefb384e1435