momentum.tue.nl
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:d2:c8:4d:f3:35:1c:84:a6:81:fe:86:71:18:e6:3c:1b:c8 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=momentum.tue.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d2:c8:4d:f3:35:1c:84:a6:81:fe:86:71:18:e6:3c:1b:c8Serial Number (int): 420174691119286606515518340148444545162184
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0a:f6:2f:de:5e:ca:4a:e9:6b:6d:94:16:aa:6e:e9:23:34:3f:ce:09
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3d:3e:cd:7e:78:70:94:54:d9:07:7a:11:c6:6b:f7:2b:a6:8d:f9:e9
Fingerprint (sha256): 07:ba:d5:d7:f1:23:bd:64:a2:31:36:62:28:d3:c8:88:24:a7:35:7b:d0:c0:91:6f:9d:e7:6c:0f:56:b9:a7:9c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate momentum.tue.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for momentum.tue.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
momentum.tue.nl
Other certificates including the domain name tue.nl
(limited to 100 certificates)
peach.win.tue.nl
cirrus.tue.nl
venus.tue.nl
ernsi2019.tue.nl
anankep.tue.nl
forms.carolinehummels.tue.nl
webmath.tue.nl
sites.win.tue.nl
plasimo.phys.tue.nl
cswennenhuis.win.tue.nl
sitb2020.win.tue.nl
jobs.tue.nl
alumni.simonstevin.tue.nl
compprog.win.tue.nl
groep-een.tue.nl
peach.win.tue.nl
vargas.icts.tue.nl
owas.test.tue.nl
owinfo.tue.nl
bep.win.tue.nl
articles.il.tue.nl
studyweb2.tue.nl
oocsi.id.tue.nl
trainingenonlinemedia.tue.nl
dialoog.tue.nl
kvaesen.ieis.tue.nl
nadine.icts.tue.nl
skills-assessment.tue.nl
peach.win.tue.nl
alumnionlineforms.tue.nl
delta-dev.win.tue.nl
webhost.gewis.nl
sites.im.tue.nl
peach.win.tue.nl
opennebula.tue.nl
calculuslecture.tue.nl
vandeburgt.tue.nl
pas.tue.nl
evo02.win.tue.nl
svn.win.tue.nl
rdmwiki.tue.nl
hrlink.tue.nl
seclab1.win.tue.nl
powertech2015-eindhoven.tue.nl
bep.win.tue.nl
forms.dies2015.tue.nl
alumnionlineforms.tue.nl
sites2010.iec.tue.nl
oslo.tue.nl
connecttest.tue.nl
carlos.win.tue.nl
groep-een.tue.nl
formulieren.cursor.tue.nl
platoolab.id.tue.nl
*.dianus.libr.tue.nl
dashboard.tue.nl
vpn2.tue.nl
peach.win.tue.nl
p-e.ieis.tue.nl
bnp9.win.tue.nl
sites.im.tue.nl
openepda.org
is.ieis.tue.nl
step-t.icts.tue.nl
autonomic-networks.ele.tue.nl
lyncmedpool01.campus.test.tue.nl
crowdfund.tue.nl
security1.win.tue.nl
forms.tuexperience.tue.nl
assignments.win.tue.nl
opac.ieis.tue.nl
accept-horafinita.tue.nl
sites.bwk.tue.nl
groep-een.com
technificent.nl
acapulco.tue.nl
industria.tue.nl
vandewouw.dc.tue.nl
incapsula.com
kerstwintercircus.tue.nl
innovationspace.tue.nl
landingont.step.tue.nl
tuwep.tue.nl
industria.tue.nl
peach.win.tue.nl
alumnionline.tue.nl
gale.win.tue.nl
pathways.tue.nl
ocmstest.tue.nl
faraday.ele.tue.nl
momentum.tue.nl
incapsula.com
w3.tue.nl
peach.win.tue.nl
vandewouw.dc.tue.nl
security.tue.nl
ooti-projects.win.tue.nl
autonomic-networks.ele.tue.nl
security.tue.nl
peach.win.tue.nl
cirrus.tue.nl
venus.tue.nl
ernsi2019.tue.nl
anankep.tue.nl
forms.carolinehummels.tue.nl
webmath.tue.nl
sites.win.tue.nl
plasimo.phys.tue.nl
cswennenhuis.win.tue.nl
sitb2020.win.tue.nl
jobs.tue.nl
alumni.simonstevin.tue.nl
compprog.win.tue.nl
groep-een.tue.nl
peach.win.tue.nl
vargas.icts.tue.nl
owas.test.tue.nl
owinfo.tue.nl
bep.win.tue.nl
articles.il.tue.nl
studyweb2.tue.nl
oocsi.id.tue.nl
trainingenonlinemedia.tue.nl
dialoog.tue.nl
kvaesen.ieis.tue.nl
nadine.icts.tue.nl
skills-assessment.tue.nl
peach.win.tue.nl
alumnionlineforms.tue.nl
delta-dev.win.tue.nl
webhost.gewis.nl
sites.im.tue.nl
peach.win.tue.nl
opennebula.tue.nl
calculuslecture.tue.nl
vandeburgt.tue.nl
pas.tue.nl
evo02.win.tue.nl
svn.win.tue.nl
rdmwiki.tue.nl
hrlink.tue.nl
seclab1.win.tue.nl
powertech2015-eindhoven.tue.nl
bep.win.tue.nl
forms.dies2015.tue.nl
alumnionlineforms.tue.nl
sites2010.iec.tue.nl
oslo.tue.nl
connecttest.tue.nl
carlos.win.tue.nl
groep-een.tue.nl
formulieren.cursor.tue.nl
platoolab.id.tue.nl
*.dianus.libr.tue.nl
dashboard.tue.nl
vpn2.tue.nl
peach.win.tue.nl
p-e.ieis.tue.nl
bnp9.win.tue.nl
sites.im.tue.nl
openepda.org
is.ieis.tue.nl
step-t.icts.tue.nl
autonomic-networks.ele.tue.nl
lyncmedpool01.campus.test.tue.nl
crowdfund.tue.nl
security1.win.tue.nl
forms.tuexperience.tue.nl
assignments.win.tue.nl
opac.ieis.tue.nl
accept-horafinita.tue.nl
sites.bwk.tue.nl
groep-een.com
technificent.nl
acapulco.tue.nl
industria.tue.nl
vandewouw.dc.tue.nl
incapsula.com
kerstwintercircus.tue.nl
innovationspace.tue.nl
landingont.step.tue.nl
tuwep.tue.nl
industria.tue.nl
peach.win.tue.nl
alumnionline.tue.nl
gale.win.tue.nl
pathways.tue.nl
ocmstest.tue.nl
faraday.ele.tue.nl
momentum.tue.nl
incapsula.com
w3.tue.nl
peach.win.tue.nl
vandewouw.dc.tue.nl
security.tue.nl
ooti-projects.win.tue.nl
autonomic-networks.ele.tue.nl
security.tue.nl
peach.win.tue.nl
Certificate
The complete raw certificate details for momentum.tue.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHCjCCBfKgAwIBAgISBNLITfM1HISmgf6GcRjmPBvIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MjEyMzE4MDdaFw0x ODExMTkyMzE4MDdaMBoxGDAWBgNVBAMTD21vbWVudHVtLnR1ZS5ubDCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBALJTMY2VEgR8iGhtBN3JlW4ZzmQGERb3 MthUGInuIy4AHUR1Sc3E+zRW5nXn5Wrc8lw+xbAnPkKwWNH4osRaHojgNhQfmc0Q 5e8bM1lHVGxlnIXRbqm5Lhv0DzFw70NErtTfW++E4EbRNoZ7fwuEWSWNir3q5iFs g50kSpjH4m58S6kOLU9YSVPUezHlXgib8sbpdlAQlotytpXN1rQy1CYr29Dx9h65 JHZFLAAjYgoMreKAz2nB9ht9ClOxClETvBMqQXYN3vbN7In/BNceqopry+Uznepi H+HyTzUgXLcoVK9WWIVojmJ2anB+XN1CrM7k4iQ0sRG23/tmfTI6DjbWWUbZU/IK 5euZ5tu3Pu5EcQBJxblv7ljJb2Qjl5k0VbcQcToE+Hi3HKYA6wu4pNBcKGBt3ZoV HwnoqrioG7DOyG7vKAjWjnHBgL7lo/xTS/BPWzfoqmlyj7ZsKTLpLflXYpR3ZZwq bTDcGXTIM0uuPg3hVFhESlDlnbsDNHrakHLZfZ4+rp/eL1XwNYZQIXcjTAidaehM EvVMaM9ic0IeRaTcTWLqjLiTMXC2jSEg4oX4F0fUfPX8ZHZru8MHYf2wUkGy8Aym 9h41kOPQGFdSCeKnRmeWEJluv7jQoQ9ESU16vMlLTI5TuHCHfyfCmx+3bc1Q6qXJ jlfkFy57kHaxAgMBAAGjggMYMIIDFDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAr2 L95eykrpa22UFqpu6SM0P84JMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPbW9tZW50dW0udHVlLm5s MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggr BgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwIC MIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBi eSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRo ZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlw dC5vcmcvcmVwb3NpdG9yeS8wggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDBFkrg p3LS1DktyArBB3DU8MSb3pkaSEDB+gdRZPYzYAAAAWVe/uTrAAAEAwBIMEYCIQCz UoPVa0tLhxnbPWdLG17Ehxw5pIm7d5AT0cxtr1RgkQIhAIURoJJt++O5BWlM3gJY RhFMrgL1A4DksgBCRvSr+WSRAHYAKTxRllTIOWW6qlD8WAfUt2+/WHopctykwwz0 5UVH9HgAAAFlXv7m1QAABAMARzBFAiEAr9xYfUqGciKd+88Ek1juiiFfbMyQN+Zx fliTHL/v+mUCIAi3a8SAK+DN0117RXq3i8CpQkKd81NbJfm+DyZwIoO8MA0GCSqG SIb3DQEBCwUAA4IBAQBwZAWwXCSI2Z8GBjmynKNPJW1PYkA91NuA7l/0N6WUKgns JHKGbs/7F3SIfICiIFt2wYjGGGTAUzFzhvTOY8TwiON9UPFXElwGvsjaN63TiCjz t80glvH2yMMDYd8syCg3sLsIp/1NyD9zHZs561r0EC5D6J+M5pz9x8fFsHhA44AQ tgJ4agKfxHt/fonBlRPOKfhuaami5HbVwPl2IO2p1KZcmY3g/+jZ8SmwVL8TNhx6 7Tvd27r0Ax+ZrgfDzbBZIPWlTdbLRoqReHW8wYa36UCTf7YDIJLWm22oLv6q+I8q tsq4ihOiNC3WNxFgyGN+o3/kek3TxyZDK6P5MM+O -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAslMxjZUSBHyIaG0E3cmV bhnOZAYRFvcy2FQYie4jLgAdRHVJzcT7NFbmdeflatzyXD7FsCc+QrBY0fiixFoe iOA2FB+ZzRDl7xszWUdUbGWchdFuqbkuG/QPMXDvQ0Su1N9b74TgRtE2hnt/C4RZ JY2KvermIWyDnSRKmMfibnxLqQ4tT1hJU9R7MeVeCJvyxul2UBCWi3K2lc3WtDLU Jivb0PH2HrkkdkUsACNiCgyt4oDPacH2G30KU7EKURO8EypBdg3e9s3sif8E1x6q imvL5TOd6mIf4fJPNSBctyhUr1ZYhWiOYnZqcH5c3UKszuTiJDSxEbbf+2Z9MjoO NtZZRtlT8grl65nm27c+7kRxAEnFuW/uWMlvZCOXmTRVtxBxOgT4eLccpgDrC7ik 0FwoYG3dmhUfCeiquKgbsM7Ibu8oCNaOccGAvuWj/FNL8E9bN+iqaXKPtmwpMukt +VdilHdlnCptMNwZdMgzS64+DeFUWERKUOWduwM0etqQctl9nj6un94vVfA1hlAh dyNMCJ1p6EwS9Uxoz2JzQh5FpNxNYuqMuJMxcLaNISDihfgXR9R89fxkdmu7wwdh /bBSQbLwDKb2HjWQ49AYV1IJ4qdGZ5YQmW6/uNChD0RJTXq8yUtMjlO4cId/J8Kb H7dtzVDqpcmOV+QXLnuQdrECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 420174691119286606515518340148444545162184 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-21 23:18:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-19 23:18:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'momentum.tue.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 727502425906712531547628070655244313996621644592318223111889167687109754148090054421765711271767116383588517280834901798533076811010031874863438481835124424667574888502655934135510019493081743714869912399020314536899811204002385458926198340107114561506140380293820193601487468647282697209725737534449930845589281217189818907634484321079545978935732802911633470039477705639531770033430033436384836678300175810075512435596351839347546522128302360529589521144923070224781058489923677591302911881045024775902122851538453884564058004169350221416213402872878272598618221968893748523104048270356921678202303419803284712363642825797641498426846052214007494294712898944713767540042850070421772985210216201859979504439326678172342207767581281733809229506458722257553501307172655870937697784525551294987601535741594150100428070958619151545332645029253413572808028398139474200598724547004940663976558746178049505122679668410735917022628102880731968929391171495390288270342093319393814881532921868685515623595687983718179964609335750991629091765757394099281960321737529521827767032457587961380853244432201650902519160167273938767955885214820012387479639543531548566988779521383411315122309366762240344387089786940971436395148869900166558760597169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0af62fde5eca4ae96b6d9416aa6ee923343fce09 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'momentum.tue.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700c1164ae0a772d2d4392dc80ac10770d4f0c49bde991a4840c1fa075164f63360000001655efee4eb0000040300483046022100b35283d56b4b4b8719db3d674b1b5ec4871c39a489bb779013d1cc6daf5460910221008511a0926dfbe3b905694cde025846114cae02f50380e4b2004246f4abf96491007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001655efee6d50000040300473045022100afdc587d4a8672229dfbcf049358ee8a215f6ccc9037e6717e58931cbfeffa65022008b76bc4802be0cdd35d7b457ab78bc0a942429df3535b25f9be0f26702283bc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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