balu-api.ukaachen.de
- RWTH Aachen -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 20:68:0d:eb:e7:1d:f7:60:c4:3c:e5:f4 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RWTH Aachen
Organization:
RWTH Aachen
State / Province:
Nordrhein-Westfalen
Locality: Aachen
Country: DE
Locality: Aachen
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 20:68:0d:eb:e7:1d:f7:60:c4:3c:e5:f4Serial Number (int): 10029314341925837252562052596
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: cf:06:2e:67:17:e6:5d:d0:4a:a8:d2:35:1c:d0:c5:28:09:f5:a3:81
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 75:40:b6:1e:19:a6:3d:53:48:aa:82:f3:e3:37:97:30:4d:bb:0a:b9
Fingerprint (sha256): 07:17:ee:9d:65:17:d1:18:3e:a0:41:94:60:29:04:87:f6:69:17:1f:22:0f:6f:de:36:04:6a:0d:5a:44:9c:a9
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate balu-api.ukaachen.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for balu-api.ukaachen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
balu-api.ukaachen.de
Other certificates including the domain name ukaachen.de
(limited to 100 certificates)
jobs.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
Certificate
The complete raw certificate details for balu-api.ukaachen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKSDCCCTCgAwIBAgIMIGgN6+cd92DEPOX0MA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE5 MDEyMzE2MDM0NFoXDTIxMDQyNjE2MDM0NFowcTELMAkGA1UEBhMCREUxHDAaBgNV BAgME05vcmRyaGVpbi1XZXN0ZmFsZW4xDzANBgNVBAcMBkFhY2hlbjEUMBIGA1UE CgwLUldUSCBBYWNoZW4xHTAbBgNVBAMMFGJhbHUtYXBpLnVrYWFjaGVuLmRlMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwiYPezzdCyj+FqzWwLdUEdqe vmJTcPgjJ/Z5qIz8lvm3nPTdmiYPXhFZV70rdCa1quSjR45WzqqbbtX1RCnYDc0t JILdLd2WRzDWcQHLNpFr0S56F90f26CXh+MUm/Y5o6eMAoSxwcLXjZBapqvKwS4/ UafnPM5hFNovsrEcSRRSYbaekuoD3ja7FB3VcwS/7TeXkAG5NnYcl4nOWnYvwyMg GkqI8/T5l67UjN7cN0jqF/bjs10b/wCDNMmr/l81kKtjn/x8ud2F3kKEurLqtQp4 csUH18hLN4d/QhEJuecADEWwQGT7643qNO0pLkk0gtP2QyxlMTziaTORNiVxsovN ySe71csApU4+BqquZl31LEaILERWml+5MCu/gjmZPeoidVju6f07pHN3v7KNIv5l monlwMIBHm3vSeVp57mdPFL/JPmAC9XjeXNJ1CV+ioQCxm1mX+ui+gzM7hYmeprD TbBrNM2fUnnhrKFF8ajFZnKcemAaI/5oZ+l4JhSX9GsXYRDqcTYgs7l2/f9pmQHt n2naQtPurphBmydfRWjBtQ2oox2YLl1T53HvZCV6ENnDwPX83An19UT5wSEDn9M+ hJPanCxFPrkEcAvL6TMzoRZqz6NEy0gYvX5yIXD71iTj8KXG7ATw0lxFhhOtGLlw VVhnhycRw+V1Ftxrt7UCAwEAAaOCBcEwggW9MFkGA1UdIARSMFAwCAYGZ4EMAQIC MA0GCysGAQQBga0hgiweMA8GDSsGAQQBga0hgiwBAQQwEQYPKwYBBAGBrSGCLAEB BAMIMBEGDysGAQQBga0hgiwCAQQDCDAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIF oDATBgNVHSUEDDAKBggrBgEFBQcDATAdBgNVHQ4EFgQUzwYuZxfmXdBKqNI1HNDF KAn1o4EwHwYDVR0jBBgwFoAUazqYi/nyU4na4K2yMh4JH+iqO3QwHwYDVR0RBBgw FoIUYmFsdS1hcGkudWthYWNoZW4uZGUwgY0GA1UdHwSBhTCBgjA/oD2gO4Y5aHR0 cDovL2NkcDEucGNhLmRmbi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9jcmwvY2Fj cmwuY3JsMD+gPaA7hjlodHRwOi8vY2RwMi5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9i YWwtZzIvcHViL2NybC9jYWNybC5jcmwwgdsGCCsGAQUFBwEBBIHOMIHLMDMGCCsG AQUFBzABhidodHRwOi8vb2NzcC5wY2EuZGZuLmRlL09DU1AtU2VydmVyL09DU1Aw SQYIKwYBBQUHMAKGPWh0dHA6Ly9jZHAxLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2Jh bC1nMi9wdWIvY2FjZXJ0L2NhY2VydC5jcnQwSQYIKwYBBQUHMAKGPWh0dHA6Ly9j ZHAyLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIvY2FjZXJ0L2NhY2Vy dC5jcnQwggNfBgorBgEEAdZ5AgQCBIIDTwSCA0sDSQB2AG9Tdqwx8DEZ2JkApFEV /3cVHBHZAsEAKQaNsgiaN9kTAAABaHt0BrQAAAQDAEcwRQIgGRq+Zh/5Izvyg3Vl j4oj3K2YeRTetOz7JujOzsuNH2YCIQCQeBTqmVw1G+mzPyli9OHVcIlH8ZVha+8X NZPv2AClcgB1AKrnC388uNVmyGwvFpecn0RfaasOtFNVibL3egMBBPPNAAABaHt0 BmMAAAQDAEYwRAIgLq/Qw+Gt8kYMSXp7q0i7NNIkRdcBlhCo33rfyGueoBYCIGoW 9lG04+4eR7dS/0unskOI1mQSJrA2BWMz09S40acWAHYAVYHUwhaQNgFK6gubVzxT 8MDkOHhwJQgXL6OqHQcT0wwAAAFoe3QHmQAABAMARzBFAiEA/doPlxvXC+OYNUUJ a0lSkMjoF87qfHTItT0EhGn01gkCIHXuQ4LlmO4h53tg7eGBFPyYDjc+pOmuoFJj mwQemElOAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csAAAFoe3QG fQAABAMARzBFAiEA4NwRKsCbc9XxcoeYBWOWkFIVIO7VjLkLYLVXKEyPwQsCIEvZ zx8zdVIaCHf8+d6oOPVZel6Floo6p+caLbGTGo37AHcApLkJkLQYWBSHuxOizGdw Cjw1mAT5G9+443fNDsgN3BAAAAFoe3QGiQAABAMASDBGAiEAmXYkqr29bmKP/T1C TaQWIwcNi3Se/OZgRXrFAr506EUCIQCGZ0IH4L1toxhPS5hTYUvxjKluZhUnY9Cq ldkWA1CRswB2ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABaHt0 Bm0AAAQDAEcwRQIhAMiBlCATBo83oN32STmZwajXjXG9UfazmkLMWdWQ+v+mAiBR nKgLKGmWhWXV1Zy+DlKYh896jSJwdp2tabfz/yvk4wB3AESUZS6w7s6vxEAH2Kj+ KMDa5oK+2MsxtT/TM5a1toGoAAABaHt0DDcAAAQDAEgwRgIhAI4cAxqvOTM3FIr7 Vb7A48rgq4HunnFf4YFuc3mxp7RlAiEAok6iDuoBCi1qmhRIXOhFthvpaEpmsKn1 SzI1IQAmZdEwDQYJKoZIhvcNAQELBQADggEBAIVS3BsN7QHVgi6NML4s6ehDv1yK KRSAjmuA6ZKcGOXUVowBOlxkn1Wifxb64X3ENI1bmJQG6oRUd3kXSJxTQrloVb7t kxeNZYUJA2X5u1tbKdipICP5CKHhaW65iH2sXA7wz4J8NV3pAeNf9L02+J4wyH3T QCWIwGJ5zlyMdl6LS+dcTEKLbJyfGUZKcjh9rGypP28/FWj3Fl/D/3+iK9XrwzVI CS5DbElNCCYQdOiUgeTciiM4idT8CvN8TZhTvn9wS1HHQsoHZHiBLO37HyLdXWjT CM91o6lWVAsKRVdggExYP7yphIqFFZX2B10CnXecy6a71m7A31mPqT7WSfQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwiYPezzdCyj+FqzWwLdU EdqevmJTcPgjJ/Z5qIz8lvm3nPTdmiYPXhFZV70rdCa1quSjR45WzqqbbtX1RCnY Dc0tJILdLd2WRzDWcQHLNpFr0S56F90f26CXh+MUm/Y5o6eMAoSxwcLXjZBapqvK wS4/UafnPM5hFNovsrEcSRRSYbaekuoD3ja7FB3VcwS/7TeXkAG5NnYcl4nOWnYv wyMgGkqI8/T5l67UjN7cN0jqF/bjs10b/wCDNMmr/l81kKtjn/x8ud2F3kKEurLq tQp4csUH18hLN4d/QhEJuecADEWwQGT7643qNO0pLkk0gtP2QyxlMTziaTORNiVx sovNySe71csApU4+BqquZl31LEaILERWml+5MCu/gjmZPeoidVju6f07pHN3v7KN Iv5lmonlwMIBHm3vSeVp57mdPFL/JPmAC9XjeXNJ1CV+ioQCxm1mX+ui+gzM7hYm eprDTbBrNM2fUnnhrKFF8ajFZnKcemAaI/5oZ+l4JhSX9GsXYRDqcTYgs7l2/f9p mQHtn2naQtPurphBmydfRWjBtQ2oox2YLl1T53HvZCV6ENnDwPX83An19UT5wSED n9M+hJPanCxFPrkEcAvL6TMzoRZqz6NEy0gYvX5yIXD71iTj8KXG7ATw0lxFhhOt GLlwVVhnhycRw+V1Ftxrt7UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10029314341925837252562052596 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-23 16:03:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-26 16:03:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'RWTH Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'balu-api.ukaachen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 792057485085873228778877526372384492736801385203699124971686607305168493675209121684689929380255892168837912785612931935427238636596282045083728064095033050401251801495365871082350963251826692486424714645388903488182949665075510009530506581443000209689245188032032058967368946975483635294596878847512152760728332587556390916256247767036504366885546315400792107221658600810493649366868004095051610507158193011927170791218640963214089555141400932167008402919530649304117775794916209326367931129071125911636496000387625846063204269226290949185619693519982297916660930807052937243884284505705902685997817004098201443201507680772994163811309006113293213115564477557025615504911997989728912446563130141110991324912615887100077481367451949272308469928348031956617608009373028212921826320873327976317325851801755591893609814306072659763104504634512354240253996095163569790861843337467821213148882344216476425265112158686346111160838321809068058149430872577896435285305665658211368708116475196245357200355899819177866386471115188941352357508189198939543055659690406870390568541076483047415244855721588659752090219657121976247899625486781356952314696879356315534548552551332782456649873366252817419625437764872159966622128448340384354069624757 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cf062e6717e65dd04aa8d2351cd0c52809f5a381 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'balu-api.ukaachen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (847 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (843 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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