balu-api.ukaachen.de
- RWTH Aachen University -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 26:87:3d:cc:52:b9:87:67:d8:30:57:84:91:e6:e9:5e was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RWTH Aachen University
Organization:
RWTH Aachen University
State / Province:
Nordrhein-Westfalen
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 26:87:3d:cc:52:b9:87:67:d8:30:57:84:91:e6:e9:5eSerial Number (int): 51212877330862042079063891525302151518
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 31:7d:cc:fb:fb:ea:df:fe:5c:80:da:de:b0:f0:5f:04:6d:4c:17:58
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 24:80:28:25:06:a3:46:af:6c:12:64:70:b5:e6:cd:92:ad:5f:31:f0
Fingerprint (sha256): 07:65:1d:73:97:8b:33:f2:62:00:e7:6d:a2:52:e5:ec:1c:eb:c4:cb:ad:a2:84:51:94:fc:47:7f:08:5b:31:5b
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate balu-api.ukaachen.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for balu-api.ukaachen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
balu-api.ukaachen.de
balu-app.ukaachen.de
balu-app.ukaachen.de
Other certificates including the domain name ukaachen.de
(limited to 100 certificates)
jobs.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
Certificate
The complete raw certificate details for balu-api.ukaachen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIdjCCBl6gAwIBAgIQJoc9zFK5h2fYMFeEkebpXjANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMwNjA3MDAwMDAwWhcNMjQwNjA2MjM1 OTU5WjBrMQswCQYDVQQGEwJERTEcMBoGA1UECBMTTm9yZHJoZWluLVdlc3RmYWxl bjEfMB0GA1UEChMWUldUSCBBYWNoZW4gVW5pdmVyc2l0eTEdMBsGA1UEAxMUYmFs dS1hcGkudWthYWNoZW4uZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDQJc+glPudpFyJ2p3dAIL1+ETiSWIg7QrwPQCkcT2J51EGWQYJl2nw2HyaMxA5 ceuNXxKpWqp01tfTlr6vkGqTWAAgCV3/RaycOxKvub8buyOfIvS31LyHHKb6zuUo OvEMpDyRFuB4aKE9Otg19FPa18qDKUTL2Uskasd9CQ9k6FxAnXQ06Woy431z8R32 sStO3Irqw39frI8YZuntesbjNmGAu9svpGSBkelHYlzOrxnICoOOa3/tWLQGWDLe 4QsTcARUVW4GweU+jFRvBYZGTpbKFgpuAh9xm1hm4IN6nHhx79bFeroHgHM5FU/i o4s4o2PbDd1BvevqtTb0oAG+wbPYOPY+NULhmTfpUICCxf9wfseTR2fpiGL+pZwC D35dtuMH7evS/qG0T0SO5HGW6BmOSeHcMtiT+bqNNHxUePidNFNL04mxt8TBjW8e R7kmTDFAqxgPGNK7zHegErGpxqZenNZ7t2Xf6wEH/YMYCyZmcIUEJdJqUnxgqThO 9v003h2+H5VQ6GVz97RO+cQdMLmzfHYcDGRFmDpCUwOQOu79MkeEozDnfOuhWVws E7O5L4XJ0TEsZOw0urDqQAQ3y26NIWr5/DUV4vgIbwjBXyDR4BqRETXhdJFAAAa3 HP1R6qz9nJGwE3MLOCxXCFlD94Frsh8BMKZULYTlYpgFXwIDAQABo4IDOzCCAzcw HwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFDF9zPv7 6t/+XIDa3rDwXwRtTBdYMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQB sjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgG BmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3Rp Z28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEF BQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0 LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20w ggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB2AHb/iD8KtvuVUcJhzPWHujS0pM27 KdxoQgqf5mdMWjp0AAABiJYKYfUAAAQDAEcwRQIgD9gN4ISOyYhNspQtr20MJNYN m6tOv87nCOloTSgPg7UCIQCWKp29LqM9ayFN55AwPxqt4KKaVYMvU9ax1Dsc/P6J NgB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiJYKYkwAAAQD AEYwRAIgV0pmSyuvghK3KRTD+iT3Q1CJoVQs3upqGoN6PcgjOEACIDnfkF0jQpK9 zPsPd9oVi0KsGojCThLS10hM4u6wWsCNAHUA7s3QZNXbGs7FXLedtM0TojKHRny8 7N7DUUhZRnEftZsAAAGIlgpiIwAABAMARjBEAiAubBDSEWypqVXv5ICHO6QCVFcM rdc7jMwPDJRsVVaybwIgeicymjOW6WKvHe8/HEnd/0aqfSUN+L6YOnNOJ6COHnAw NQYDVR0RBC4wLIIUYmFsdS1hcGkudWthYWNoZW4uZGWCFGJhbHUtYXBwLnVrYWFj aGVuLmRlMA0GCSqGSIb3DQEBDAUAA4ICAQBiANr1fA0LXIj0XO0ne4/jOMiQv3Jg klqvIwklWpmvCbNe5Ijsc5x5UyYuVxRM53G9DZT17z1r4jo9WwbhMxiIRAYqD0AL uqFRm0cUeeCtAZ4oZ8nfynF177RtdsSMV6cP0c7K++gIgDCRfzgvr0WQZ7Y9jdaV mJqlS0ovv1b3MdbjK3suZQdjFunpgm4UfbuNZXUe2VYDtd0oyVj/9Tf7Mscx/hh4 ncTQzhdqdcD+sPhI/YzMljtQjCbqEVF2zAvDP67DOYxDSrEf/9O+tIMmqVM3dxcf y6nsBQRnZuDPoNTTfV+64WSGyEhH13cLu3ePWl8xdsf3DpjSjVYXTZpzdte9Ox3s qubPDk0T18r30ehZuDSw12ulQbnWJdkqLtC4vcRGofV8+uJWZyJ93GplL3+n8tSk WNgWzS3qhFiHDuZ/aQj0g+3YAjJONQg40h0NJRP8q5j/miLGX1Sn7DkPqmt7oarz jkkjuND9pJvt4E/rh6B3q4WOows934BD6ruMt8ip8SilznbFjDZOtNcTlIQImPLy vZBP1V7CIwrL4OwQVEf8qWNy5Xx6E5BbQq9EbhiAx3xvwfcLKhlGo3Mbs76mhxJ2 pHy1wTLgekkFGn1wEMMMlX0sK9c9kDVIuMhkWPd3CSpkZrf8IB6WoCLhR+QxRi+Q UP1nlndALYNzuQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0CXPoJT7naRcidqd3QCC 9fhE4kliIO0K8D0ApHE9iedRBlkGCZdp8Nh8mjMQOXHrjV8SqVqqdNbX05a+r5Bq k1gAIAld/0WsnDsSr7m/G7sjnyL0t9S8hxym+s7lKDrxDKQ8kRbgeGihPTrYNfRT 2tfKgylEy9lLJGrHfQkPZOhcQJ10NOlqMuN9c/Ed9rErTtyK6sN/X6yPGGbp7XrG 4zZhgLvbL6RkgZHpR2Jczq8ZyAqDjmt/7Vi0Blgy3uELE3AEVFVuBsHlPoxUbwWG Rk6WyhYKbgIfcZtYZuCDepx4ce/WxXq6B4BzORVP4qOLOKNj2w3dQb3r6rU29KAB vsGz2Dj2PjVC4Zk36VCAgsX/cH7Hk0dn6Yhi/qWcAg9+XbbjB+3r0v6htE9EjuRx lugZjknh3DLYk/m6jTR8VHj4nTRTS9OJsbfEwY1vHke5JkwxQKsYDxjSu8x3oBKx qcamXpzWe7dl3+sBB/2DGAsmZnCFBCXSalJ8YKk4Tvb9NN4dvh+VUOhlc/e0TvnE HTC5s3x2HAxkRZg6QlMDkDru/TJHhKMw53zroVlcLBOzuS+FydExLGTsNLqw6kAE N8tujSFq+fw1FeL4CG8IwV8g0eAakRE14XSRQAAGtxz9Ueqs/ZyRsBNzCzgsVwhZ Q/eBa7IfATCmVC2E5WKYBV8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 51212877330862042079063891525302151518 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RWTH Aachen University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'balu-api.ukaachen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 849168527091578700598265468415557959622273483960481326984935096707090692054356725201683802788698878980868244338766905327451817212422486995844615097943644195953348418049144287964709161546577350745645952976234809125644683466639858760638463667335219992428835800887142241388868312118040076428322676192100784532901190200137220762416331301275572594185800259092776741522222137682118901097485671757875790728699127315692294101599969825925858695315913011747053684661299942047512362931304328787766293590001206980061784474931940879599282616426341215152100489679660639767443348810063265153106997577248003349023407378873374154637211527526208663614543586997169367880121604174319121400111151238501079800095210937566979074605212954038974155453295578954178782065491581892097293744272751296521758629637842235595891399469506008737969756505223666212282498283049268226832948788359317475548259162611113307197417430417361803070279591283002898803710879812722857064858151831627148513266015508613868210430137269711105965407228818627662257374740123791718007391481331148335391125813057256858012070532097516713907952245669531702176688321169737980042082377509875406225368000781255277032873927658254861088668068994430376702080349099249157155776688160531479415752031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 317dccfbfbeadffe5c80dadeb0f05f046d4c1758 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'balu-api.ukaachen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'balu-app.ukaachen.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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