pontus.lorentz.leidenuniv.nl
- Universiteit Leiden -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 8b:f6:d5:87:b1:4f:bb:a8:1c:da:bd:95:74:87:d4:a1 was issued on by GEANT Vereniging.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit Leiden
Organization:
Universiteit Leiden
State / Province:
Zuid-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 8b:f6:d5:87:b1:4f:bb:a8:1c:da:bd:95:74:87:d4:a1Serial Number (int): 186044327345225629223525675872448664737
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 6c:17:7a:80:de:d9:b1:01:cb:57:23:27:54:0b:5b:1b:e2:12:09:c7
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 0c:e7:d9:f6:88:77:ad:92:39:eb:f5:87:79:45:22:e5:4a:a1:e7:21
Fingerprint (sha256): 07:ea:25:3f:92:10:90:cf:c0:41:73:a0:f8:73:6b:24:0e:6a:07:81:51:fd:b0:27:d0:17:bb:66:1e:4c:71:ae
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate pontus.lorentz.leidenuniv.nl
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pontus.lorentz.leidenuniv.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pontus.lorentz.leidenuniv.nl
imap.lorentz.leidenuniv.nl
mail.lorentz.leidenuniv.nl
mailman.lorentz.leidenuniv.nl
pontusnew.lorentz.leidenuniv.nl
smtp.lorentz.leidenuniv.nl
www.imap.lorentz.leidenuniv.nl
www.mail.lorentz.leidenuniv.nl
www.mailman.lorentz.leidenuniv.nl
www.pontus.lorentz.leidenuniv.nl
www.pontusnew.lorentz.leidenuniv.nl
www.smtp.lorentz.leidenuniv.nl
imap.lorentz.leidenuniv.nl
mail.lorentz.leidenuniv.nl
mailman.lorentz.leidenuniv.nl
pontusnew.lorentz.leidenuniv.nl
smtp.lorentz.leidenuniv.nl
www.imap.lorentz.leidenuniv.nl
www.mail.lorentz.leidenuniv.nl
www.mailman.lorentz.leidenuniv.nl
www.pontus.lorentz.leidenuniv.nl
www.pontusnew.lorentz.leidenuniv.nl
www.smtp.lorentz.leidenuniv.nl
Other certificates including the domain name leidenuniv.nl
(limited to 100 certificates)
web2print.leidenuniv.nl
nmr.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
leidenlawblog.nl
scharrelaar-p1.leidenuniv.nl
cas.physics.leidenuniv.nl
ppsn2020.liacs.leidenuniv.nl
datamining.liacs.leidenuniv.nl
issc.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
lucris.leidenuniv.nl
celspin-p.issc.leidenuniv.nl
foreman-develop.infra.leidenuniv.nl
leidenuniv.nl
SALMS01.leidenuniv.nl
director1-dev.srvtest.leidenuniv.nl
uaccess.leidenuniv.nl
jira.issc.leidenuniv.nl
prosobab.leidenuniv.nl
scriptiebeoordeling-hum.leidenuniv.nl
www.math.leidenuniv.nl
Planon-BenO-t.leidenuniv.nl
login.uaccess.leidenuniv.nl
vrops-cluster.luci.leidenuniv.nl
issc.leidenuniv.nl
noah.backup.leidenuniv.nl
u-ldap-dev.srvtest.leidenuniv.nl
p-luci-001131.infra.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
socrates.leidenuniv.nl
uaccess.leidenuniv.nl
tornado-a-https.web.leidenuniv.nl
leidenuniv.nl
lacdrvirtuallab-qa.leidenuniv.nl
sapgax.issc.leidenuniv.nl
vg5.strw.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
avior.math.leidenuniv.nl
blackboardstaging.leidenuniv.nl
weblectures-a.leidenuniv.nl
usis.leidenuniv.nl
strwmail.strw.leidenuniv.nl
sapeca.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
u-tools.srvtest.leidenuniv.nl
aristotle.leidenuniv.nl
sapsra.leidenuniv.nl
www.strw.leidenuniv.nl
jss.leidenuniv.nl
mail.physics.leidenuniv.nl
mysite.leidenuniv.nl
kwartel-a.leidenuniv.nl
splbs02.vuw.leidenuniv.nl
huisstijl.leidenuniv.nl
form.services.universiteitleiden.nl
wagner-p.leidenuniv.nl
pontus.lorentz.leidenuniv.nl
leidenarthistoryblog.nl
smtp.leidenuniv.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
spapp30.vuw.leidenuniv.nl
saufb01.vuw.leidenuniv.nl
schildspin-dev.issc.leidenuniv.nl
lms-wyn-disp03.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
lists.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
webdav.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
libcblog.nl
phdtrack-a.leidenuniv.nl
teams.leidenuniv.nl
evasys.leidenuniv.nl
x-ldap.leidenuniv.nl
cups.issc.leidenuniv.nl
uaccess.leidenuniv.nl
europeanbordercommunities.eu
science.leidenuniv.nl
vg5.strw.leidenuniv.nl
*.weblog.leidenuniv.nl
cms-a.universiteitleiden.nl
splic09.ilo.leidenuniv.nl
*.weblog.leidenuniv.nl
pinkashaw-o4.iam-ota.leidenuniv.nl
bankiva.leidenuniv.nl
rds-a.campus.leidenuniv.nl
phdtrack.leidenuniv.nl
planon-a.universiteitleiden.nl
jack-qa.web.leidenuniv.nl
web2print-t.leidenuniv.nl
grasparkiet.leidenuniv.nl
filosofie.leidenuniv.nl
jenkins.issc.leidenuniv.nl
www.readeronline.leidenuniv.nl
illinois.meta.leidenuniv.nl
roepieroepie-p.web.leidenuniv.nl
splms01.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
nmr.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
leidenlawblog.nl
scharrelaar-p1.leidenuniv.nl
cas.physics.leidenuniv.nl
ppsn2020.liacs.leidenuniv.nl
datamining.liacs.leidenuniv.nl
issc.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
lucris.leidenuniv.nl
celspin-p.issc.leidenuniv.nl
foreman-develop.infra.leidenuniv.nl
leidenuniv.nl
SALMS01.leidenuniv.nl
director1-dev.srvtest.leidenuniv.nl
uaccess.leidenuniv.nl
jira.issc.leidenuniv.nl
prosobab.leidenuniv.nl
scriptiebeoordeling-hum.leidenuniv.nl
www.math.leidenuniv.nl
Planon-BenO-t.leidenuniv.nl
login.uaccess.leidenuniv.nl
vrops-cluster.luci.leidenuniv.nl
issc.leidenuniv.nl
noah.backup.leidenuniv.nl
u-ldap-dev.srvtest.leidenuniv.nl
p-luci-001131.infra.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
socrates.leidenuniv.nl
uaccess.leidenuniv.nl
tornado-a-https.web.leidenuniv.nl
leidenuniv.nl
lacdrvirtuallab-qa.leidenuniv.nl
sapgax.issc.leidenuniv.nl
vg5.strw.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
avior.math.leidenuniv.nl
blackboardstaging.leidenuniv.nl
weblectures-a.leidenuniv.nl
usis.leidenuniv.nl
strwmail.strw.leidenuniv.nl
sapeca.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
u-tools.srvtest.leidenuniv.nl
aristotle.leidenuniv.nl
sapsra.leidenuniv.nl
www.strw.leidenuniv.nl
jss.leidenuniv.nl
mail.physics.leidenuniv.nl
mysite.leidenuniv.nl
kwartel-a.leidenuniv.nl
splbs02.vuw.leidenuniv.nl
huisstijl.leidenuniv.nl
form.services.universiteitleiden.nl
wagner-p.leidenuniv.nl
pontus.lorentz.leidenuniv.nl
leidenarthistoryblog.nl
smtp.leidenuniv.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
spapp30.vuw.leidenuniv.nl
saufb01.vuw.leidenuniv.nl
schildspin-dev.issc.leidenuniv.nl
lms-wyn-disp03.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
lists.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
webdav.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
libcblog.nl
phdtrack-a.leidenuniv.nl
teams.leidenuniv.nl
evasys.leidenuniv.nl
x-ldap.leidenuniv.nl
cups.issc.leidenuniv.nl
uaccess.leidenuniv.nl
europeanbordercommunities.eu
science.leidenuniv.nl
vg5.strw.leidenuniv.nl
*.weblog.leidenuniv.nl
cms-a.universiteitleiden.nl
splic09.ilo.leidenuniv.nl
*.weblog.leidenuniv.nl
pinkashaw-o4.iam-ota.leidenuniv.nl
bankiva.leidenuniv.nl
rds-a.campus.leidenuniv.nl
phdtrack.leidenuniv.nl
planon-a.universiteitleiden.nl
jack-qa.web.leidenuniv.nl
web2print-t.leidenuniv.nl
grasparkiet.leidenuniv.nl
filosofie.leidenuniv.nl
jenkins.issc.leidenuniv.nl
www.readeronline.leidenuniv.nl
illinois.meta.leidenuniv.nl
roepieroepie-p.web.leidenuniv.nl
splms01.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
Certificate
The complete raw certificate details for pontus.lorentz.leidenuniv.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJzTCCB7WgAwIBAgIRAIv21YexT7uoHNq9lXSH1KEwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIzMDIyNzAwMDAwMFoXDTI0MDIyNzIz NTk1OVowaTELMAkGA1UEBhMCTkwxFTATBgNVBAgTDFp1aWQtSG9sbGFuZDEcMBoG A1UEChMTVW5pdmVyc2l0ZWl0IExlaWRlbjElMCMGA1UEAxMccG9udHVzLmxvcmVu dHoubGVpZGVudW5pdi5ubDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AKGeqkQKoffuN57tj0oY/mLoRP9tugVwXN+2WfF7i7mrNe6+227OVUodg88rqoOb FA/oVgMddxXfdTCbz3oUJThpJIs1Ix06454YsV7ebzc67N3Tz2CORKackTiwQiyo JhU+Igh+VuPqN+XC78rdEKZuH8Ec3w610Z279Zby5yaAYH/lo7uiPDZxGCfbwA/m 61E1E1/xXMyFQ7exIt7NodOxmvH4HpiH/98UoJEFgjA/BInJriwb19yS+hXnAuED i5nrznShPtKqYrVEdcigXbsgmMwJ+oDDxr1FYKmg0B0Dn/74YCcBImD4thbLXQPf 4QVpj1NOn7rVEYE+voX14njEAtjQrUwy0NN0PAHi03yZft+b7zbuDUthiPMmXbUg qYNKIZ9j5Gy7LGbWAUEpQdZFDzIT81s0K0KgBo9xkbcTtyrWkZvJ3+U+T24hwcV8 ptLnLFzvMG6Kcqi9pSVml2Iswr2LUjjKStdhpGdtRUPUX8jHBtBQ1Sm+diXW8K7E 5WSeFbtE/xRJhX2ldapfsqV9KktRHLKtBu4ndrVJCLkK2RuUKxQwKQW/PVcwM5AB BzopboEi6t9hYsfKfhoN8qnos02b/AnIzhATtEV0dYfeIszygwqAvPAvULU288Xe pUZMsQq+wW6W/C5u1jpH5xmzRL6EO96946su79vIXGRZAgMBAAGjggSTMIIEjzAf BgNVHSMEGDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQUbBd6gN7Z sQHLVyMnVAtbG+ISCccwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGy MQECAk8wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYG Z4EMAQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGln by5jb20vR0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUF BzAChi5odHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQu Y3J0MCkGCCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp 3GhCCp/mZ0xaOnQAAAGGki65kwAABAMASDBGAiEAr9yA8TCazhfCiKqJ8ARYw56J cJLLoMGhVewZ1UVmS4kCIQDa3szDW+U/NUNloasDwB+Yrmi7BzL/b3V1RCl99rdw XAB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABhpIuufUAAAQD AEcwRQIgcCa2liJrP5jDIuXMes1Gqf96KBJa0BrSdzrWpq8EH3UCIQCgQbBpKokb Nmav5YHoT7eJgyd/a9xkLm7qruQy6RQNnQB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8 vOzew1FIWUZxH7WbAAABhpIuufUAAAQDAEYwRAIgFkTWgUXBDqjS1eV0tUv+HWgm 5eN7VHD6IJdVw6x9qCQCIHC+D3+QSrTNyChndTMqbq0c6ApvFXuDsj1Ub11PMIQy MIIBiQYDVR0RBIIBgDCCAXyCHHBvbnR1cy5sb3JlbnR6LmxlaWRlbnVuaXYubmyC GmltYXAubG9yZW50ei5sZWlkZW51bml2Lm5sghptYWlsLmxvcmVudHoubGVpZGVu dW5pdi5ubIIdbWFpbG1hbi5sb3JlbnR6LmxlaWRlbnVuaXYubmyCH3BvbnR1c25l dy5sb3JlbnR6LmxlaWRlbnVuaXYubmyCGnNtdHAubG9yZW50ei5sZWlkZW51bml2 Lm5sgh53d3cuaW1hcC5sb3JlbnR6LmxlaWRlbnVuaXYubmyCHnd3dy5tYWlsLmxv cmVudHoubGVpZGVudW5pdi5ubIIhd3d3Lm1haWxtYW4ubG9yZW50ei5sZWlkZW51 bml2Lm5sgiB3d3cucG9udHVzLmxvcmVudHoubGVpZGVudW5pdi5ubIIjd3d3LnBv bnR1c25ldy5sb3JlbnR6LmxlaWRlbnVuaXYubmyCHnd3dy5zbXRwLmxvcmVudHou bGVpZGVudW5pdi5ubDANBgkqhkiG9w0BAQwFAAOCAgEAouQkYsmMip0THe/Wjtb+ ohUG3cV0DqViBr7iFk3luPj33ktY47VtfuOmrA1JtBmTbo/ErAqQo6hcwgI61S4i m+FCfLwJeGfTtatAQpzk6TnSOW0URdJ1lDL7norWchzojT8eGpbu232mH4nmGl5A twdNK6mo0dA8EkPl+TYyqVAsBJhGgXUJL7QKkbBi2dT3+qjY8S4111PzhYzMn3O4 5Ne+I0DuMkaigduD5y5fnqPYPKwgLJ9jQgObfw5s2F8yJAq9btwlIV/cwccF5JaG PcUyqb9pyXK9AJmrI/l0tKRbzmfm9ziJUm4qB8+yj0+vVbh6NhODV0OSNIUPpJbv ezv3EyHrqR1GrO7O8HpQA+h2h9JDv3SXSMfSoHbBe414QNZquDSi7HfAFZp8RqTs BW8GomW1wJ8mZi3LNnhmM1fidYzQmnB5wHoQz5S+6ROTEdEq1Of0AWLsIdGwsyM3 SWEQ2FmCv6UbRXcvdhmDzb4IdqNiCA4EQPuOyqHZyaNUAVmmxiPqgKnewKELSAWj oHLhyosZ2EFbXasdd70w344DEX1b9vyqaR+ZRyd5D/lpMJSyF8mO+bHs+UZfvO2M f60jNV5/E1K3bBWKmxSAa0tuyqyBlejzvor2TqNBoIR8gZKlgQrtG3Q6EYSFzJiE V8znuEhVIUm+qhCw00YUi4k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoZ6qRAqh9+43nu2PShj+ YuhE/226BXBc37ZZ8XuLuas17r7bbs5VSh2Dzyuqg5sUD+hWAx13Fd91MJvPehQl OGkkizUjHTrjnhixXt5vNzrs3dPPYI5EppyROLBCLKgmFT4iCH5W4+o35cLvyt0Q pm4fwRzfDrXRnbv1lvLnJoBgf+Wju6I8NnEYJ9vAD+brUTUTX/FczIVDt7Ei3s2h 07Ga8fgemIf/3xSgkQWCMD8EicmuLBvX3JL6FecC4QOLmevOdKE+0qpitUR1yKBd uyCYzAn6gMPGvUVgqaDQHQOf/vhgJwEiYPi2FstdA9/hBWmPU06futURgT6+hfXi eMQC2NCtTDLQ03Q8AeLTfJl+35vvNu4NS2GI8yZdtSCpg0ohn2PkbLssZtYBQSlB 1kUPMhPzWzQrQqAGj3GRtxO3KtaRm8nf5T5PbiHBxXym0ucsXO8wbopyqL2lJWaX YizCvYtSOMpK12GkZ21FQ9RfyMcG0FDVKb52JdbwrsTlZJ4Vu0T/FEmFfaV1ql+y pX0qS1Ecsq0G7id2tUkIuQrZG5QrFDApBb89VzAzkAEHOilugSLq32Fix8p+Gg3y qeizTZv8CcjOEBO0RXR1h94izPKDCoC88C9QtTbzxd6lRkyxCr7Bbpb8Lm7WOkfn GbNEvoQ73r3jqy7v28hcZFkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 186044327345225629223525675872448664737 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit Leiden' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pontus.lorentz.leidenuniv.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 659351199392649540227892959605762920757635356043099656301095043557708109827328076493740416793637320918558461709701268881790997442653357889557259475851918575080462371581353294870729161215763015736224484537335282459588180489192859534597411000051056835413421291457622203546291316605419111827985123886417810068930055418032983339625905933956131131301226480999208569542870529663390265523001024755928992886476543906079654513828698104494627109377565398736946286917745716224110294117280277625062488494138671386131671960778464673964197035422883712189010633384850593575856031651347944148906469953915075517825278692250054322655469635015762328116893677211555451088386517963534464755954185997332335010652951898989061320484702770751463029195173449817655948710681947862377347242368700670863362449802160121969764707567638305988063091931005133087690256578175234106349951626774487167273812485469621324560612274397789965820396268723849519997514092337421577354150941236526915628802648403326594604949390089024871681563252725949143413983865718445168187179021001432718573532119615015544622035666716840360885543209520825142118795955166419298917475180723691263873526428251565823350030566964900244263508056760598686342096949459314278620158990039152254823195737 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c177a80ded9b101cb572327540b5b1be21209c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (384 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pontus.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imap.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mailman.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pontusnew.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smtp.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.imap.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mail.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mailman.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pontus.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pontusnew.lorentz.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.smtp.lorentz.leidenuniv.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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