ooievaar.web.leidenuniv.nl
- Universiteit Leiden -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number ea:14:94:4d:c9:ee:06:c2:cf:db:40:55:14:37:51:4b was issued on by GEANT Vereniging.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit Leiden
Organization:
Universiteit Leiden
State / Province:
Zuid-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): ea:14:94:4d:c9:ee:06:c2:cf:db:40:55:14:37:51:4bSerial Number (int): 311146204910525108104641724722951180619
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 7c:31:cb:6b:48:d3:cd:d7:f1:c1:f7:5a:f8:62:7e:c3:5c:53:86:05
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 19:a6:ae:18:69:4a:fe:d4:12:5d:6e:f4:93:59:f5:ca:43:92:85:ab
Fingerprint (sha256): 08:66:d6:4d:f8:f1:0f:a7:a6:f5:39:e7:bd:7b:25:e2:31:b6:85:de:fb:6b:08:0e:ad:e4:d7:60:1c:38:7d:b3
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate ooievaar.web.leidenuniv.nl
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ooievaar.web.leidenuniv.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ooievaar.web.leidenuniv.nl
digitalscholarship.nl
digmanclass.universiteitleiden.nl
lab.library.universiteitleiden.nl
transcription.digitalscholarship.nl
digitalscholarship.nl
digmanclass.universiteitleiden.nl
lab.library.universiteitleiden.nl
transcription.digitalscholarship.nl
Other certificates including the domain name leidenuniv.nl
(limited to 100 certificates)
web2print.leidenuniv.nl
nmr.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
leidenlawblog.nl
scharrelaar-p1.leidenuniv.nl
cas.physics.leidenuniv.nl
ppsn2020.liacs.leidenuniv.nl
datamining.liacs.leidenuniv.nl
issc.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
lucris.leidenuniv.nl
celspin-p.issc.leidenuniv.nl
foreman-develop.infra.leidenuniv.nl
leidenuniv.nl
SALMS01.leidenuniv.nl
director1-dev.srvtest.leidenuniv.nl
uaccess.leidenuniv.nl
jira.issc.leidenuniv.nl
prosobab.leidenuniv.nl
scriptiebeoordeling-hum.leidenuniv.nl
www.math.leidenuniv.nl
Planon-BenO-t.leidenuniv.nl
login.uaccess.leidenuniv.nl
vrops-cluster.luci.leidenuniv.nl
issc.leidenuniv.nl
noah.backup.leidenuniv.nl
u-ldap-dev.srvtest.leidenuniv.nl
p-luci-001131.infra.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
socrates.leidenuniv.nl
uaccess.leidenuniv.nl
tornado-a-https.web.leidenuniv.nl
leidenuniv.nl
lacdrvirtuallab-qa.leidenuniv.nl
sapgax.issc.leidenuniv.nl
vg5.strw.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
avior.math.leidenuniv.nl
blackboardstaging.leidenuniv.nl
usis.leidenuniv.nl
strwmail.strw.leidenuniv.nl
sapeca.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
u-tools.srvtest.leidenuniv.nl
aristotle.leidenuniv.nl
sapsra.leidenuniv.nl
www.strw.leidenuniv.nl
jss.leidenuniv.nl
mail.physics.leidenuniv.nl
mysite.leidenuniv.nl
kwartel-a.leidenuniv.nl
splbs02.vuw.leidenuniv.nl
huisstijl.leidenuniv.nl
form.services.universiteitleiden.nl
wagner-p.leidenuniv.nl
pontus.lorentz.leidenuniv.nl
leidenarthistoryblog.nl
smtp.leidenuniv.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
spapp30.vuw.leidenuniv.nl
saufb01.vuw.leidenuniv.nl
schildspin-dev.issc.leidenuniv.nl
lms-wyn-disp03.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
lists.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
webdav.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
libcblog.nl
phdtrack-a.leidenuniv.nl
teams.leidenuniv.nl
evasys.leidenuniv.nl
x-ldap.leidenuniv.nl
cups.issc.leidenuniv.nl
uaccess.leidenuniv.nl
europeanbordercommunities.eu
science.leidenuniv.nl
vg5.strw.leidenuniv.nl
*.weblog.leidenuniv.nl
cms-a.universiteitleiden.nl
splic09.ilo.leidenuniv.nl
*.weblog.leidenuniv.nl
pinkashaw-o4.iam-ota.leidenuniv.nl
bankiva.leidenuniv.nl
rds-a.campus.leidenuniv.nl
phdtrack.leidenuniv.nl
planon-a.universiteitleiden.nl
jack-qa.web.leidenuniv.nl
web2print-t.leidenuniv.nl
grasparkiet.leidenuniv.nl
filosofie.leidenuniv.nl
jenkins.issc.leidenuniv.nl
www.readeronline.leidenuniv.nl
illinois.meta.leidenuniv.nl
roepieroepie-p.web.leidenuniv.nl
splms01.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
vg21.physics.leidenuniv.nl
nmr.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
leidenlawblog.nl
scharrelaar-p1.leidenuniv.nl
cas.physics.leidenuniv.nl
ppsn2020.liacs.leidenuniv.nl
datamining.liacs.leidenuniv.nl
issc.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
lucris.leidenuniv.nl
celspin-p.issc.leidenuniv.nl
foreman-develop.infra.leidenuniv.nl
leidenuniv.nl
SALMS01.leidenuniv.nl
director1-dev.srvtest.leidenuniv.nl
uaccess.leidenuniv.nl
jira.issc.leidenuniv.nl
prosobab.leidenuniv.nl
scriptiebeoordeling-hum.leidenuniv.nl
www.math.leidenuniv.nl
Planon-BenO-t.leidenuniv.nl
login.uaccess.leidenuniv.nl
vrops-cluster.luci.leidenuniv.nl
issc.leidenuniv.nl
noah.backup.leidenuniv.nl
u-ldap-dev.srvtest.leidenuniv.nl
p-luci-001131.infra.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
socrates.leidenuniv.nl
uaccess.leidenuniv.nl
tornado-a-https.web.leidenuniv.nl
leidenuniv.nl
lacdrvirtuallab-qa.leidenuniv.nl
sapgax.issc.leidenuniv.nl
vg5.strw.leidenuniv.nl
marishead.lorentz.leidenuniv.nl
avior.math.leidenuniv.nl
blackboardstaging.leidenuniv.nl
usis.leidenuniv.nl
strwmail.strw.leidenuniv.nl
sapeca.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
u-tools.srvtest.leidenuniv.nl
aristotle.leidenuniv.nl
sapsra.leidenuniv.nl
www.strw.leidenuniv.nl
jss.leidenuniv.nl
mail.physics.leidenuniv.nl
mysite.leidenuniv.nl
kwartel-a.leidenuniv.nl
splbs02.vuw.leidenuniv.nl
huisstijl.leidenuniv.nl
form.services.universiteitleiden.nl
wagner-p.leidenuniv.nl
pontus.lorentz.leidenuniv.nl
leidenarthistoryblog.nl
smtp.leidenuniv.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
spapp30.vuw.leidenuniv.nl
saufb01.vuw.leidenuniv.nl
schildspin-dev.issc.leidenuniv.nl
lms-wyn-disp03.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
lists.leidenuniv.nl
zweepspin-p.issc.leidenuniv.nl
webdav.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
libcblog.nl
phdtrack-a.leidenuniv.nl
teams.leidenuniv.nl
evasys.leidenuniv.nl
x-ldap.leidenuniv.nl
cups.issc.leidenuniv.nl
uaccess.leidenuniv.nl
europeanbordercommunities.eu
science.leidenuniv.nl
vg5.strw.leidenuniv.nl
*.weblog.leidenuniv.nl
cms-a.universiteitleiden.nl
splic09.ilo.leidenuniv.nl
*.weblog.leidenuniv.nl
pinkashaw-o4.iam-ota.leidenuniv.nl
bankiva.leidenuniv.nl
rds-a.campus.leidenuniv.nl
phdtrack.leidenuniv.nl
planon-a.universiteitleiden.nl
jack-qa.web.leidenuniv.nl
web2print-t.leidenuniv.nl
grasparkiet.leidenuniv.nl
filosofie.leidenuniv.nl
jenkins.issc.leidenuniv.nl
www.readeronline.leidenuniv.nl
illinois.meta.leidenuniv.nl
roepieroepie-p.web.leidenuniv.nl
splms01.issc.leidenuniv.nl
raf-qa.law.leidenuniv.nl
vg21.physics.leidenuniv.nl
Certificate
The complete raw certificate details for ooievaar.web.leidenuniv.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIII6zCCBtOgAwIBAgIRAOoUlE3J7gbCz9tAVRQ3UUswDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIzMDMyMDAwMDAwMFoXDTI0MDMxOTIz NTk1OVowZzELMAkGA1UEBhMCTkwxFTATBgNVBAgTDFp1aWQtSG9sbGFuZDEcMBoG A1UEChMTVW5pdmVyc2l0ZWl0IExlaWRlbjEjMCEGA1UEAxMab29pZXZhYXIud2Vi LmxlaWRlbnVuaXYubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC1 GoLDXaTnaWVaBwlrkoOgp+0kjjLvjsABW6ZrJpj9RPRFkHBpJ52SzYN5I/DPygnY FBMZ44jvkag5AAn8PPsY9Sh6b9Ez0GUO3fK2bTGl6LAGom1bK2bEEw47Hf72vT06 eQ0zNMZGJc8lUy8KM0z1TYHkGa2dVK4oHg/7rfbsvf6mVMO9SCna4PK9Zvsv/ljc M+GN7qpJ3pf880K+cGetApoRb2yFIV5jiFleCIOcZNtmi+GlkvM57vS+NC6tQ+rm +M2o6IFe3dvKvTRr3ccn2kdIxTT2C+t/SFCqFDBORkTfflPXeL5YGSTJHFMlxbO+ k359lf4wLfCF7/BVf+d5CvImZEmW5SoyfdYmIbfoXuLsGnf0BNBr/INNFAYQkD45 KAfiL7SJA4+dspCUhmGYMvBIE2tz2D9Nw9qIo7PR7LnobGDQJGfm0H0TgAJrQwcV A41tfuDr++1maCuY5oS1Was99A7i+HrS19EFM8AIyHjLCyUHrzpqJ3Yr1bTjMQls pZHRHoNSAqDUXsPlLr37+9gflXu10MBz2m94h70p4foj/tPETCoRFaVN6YzmfNnb aaEVlZIM2L213TJwFvSjgLIFZxoZ1x9L/VrJYxiVfxwS1t7WnNG6UvtnvH3y4wNY tG54kI2Ae/8ZLT4pSNhh6nDjoJxL13TuQ01sRFAJxwIDAQABo4IDszCCA68wHwYD VR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFHwxy2tI083X 8cH3WvhifsNcU4YFMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEB AgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeB DAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28u Y29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcw AoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNy dDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wggF/ BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AHb/iD8KtvuVUcJhzPWHujS0pM27Kdxo Qgqf5mdMWjp0AAABhv+MrJUAAAQDAEcwRQIgKPEYpKzZFDkcJZhKaf3LWWK4uZ+C 0c1lNortY0cFniYCIQD58WZeeKc95DDU5NQILwzvbLUYMspe1llJtSvtPj4wAgB2 ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABhv+MrO8AAAQDAEcw RQIgOfZRoMg+EzuLJM8rlvd5/piCz0lVDZUUXVkOSx9SnrkCIQD8Ynr3VvZ9NoEi O1zm35VVlnebevF38Q6F3h41mOACYAB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOze w1FIWUZxH7WbAAABhv+MrPoAAAQDAEgwRgIhAKtBnyUYRFTguyEVguwr904Ked1q 5xnoj87mgQTTK8eJAiEA7JzjWL2vl/cDF1qG2nIDc6pkyHDRG0a75e1dcpppPbYw gakGA1UdEQSBoTCBnoIab29pZXZhYXIud2ViLmxlaWRlbnVuaXYubmyCFWRpZ2l0 YWxzY2hvbGFyc2hpcC5ubIIhZGlnbWFuY2xhc3MudW5pdmVyc2l0ZWl0bGVpZGVu Lm5sgiFsYWIubGlicmFyeS51bml2ZXJzaXRlaXRsZWlkZW4ubmyCI3RyYW5zY3Jp cHRpb24uZGlnaXRhbHNjaG9sYXJzaGlwLm5sMA0GCSqGSIb3DQEBDAUAA4ICAQAd X8vHO8n58O4CzhIUsfUMjyTHwPp/lGHefwJD1QuRyRIcE2GxR12akkkLAgUBh2Ek K3AwIwSqbKizr+1UiHzcK8RcdXZJFPjdgTNUXj0dcGtZmme2PfbceuZ5l3FfhTg+ 3KQEV2GJJto0GUeXT9upgFcJj+m/NSQnRxT+S4Ow48l28mtqC7Q2zXOWSOzMpXuK M4WVxoJEyL8Ep3Pj0PnOnqOmm2kWhMwgUhFUp1wBLRGno9XjuG5uaqhHSWTrC8vq dx4Cg4Xq3Ci9lyTGsKvEjN8f8UfedcraLc6EyuMlEF3VM3OAkAPbNxZjJD3oMXyt BAJG5vTmyUlSaNa1Yf9JnhO19jug9TIQLl88cw8Kewhk+t67vOEXT10jSZYcrFqF thxCVsGnuLlpWDqElRoDzK5xAlFmxI1isSP5r5cGl+ofJ+vRGe4qqnzna8sCeG5P LPWV7+7Ki/v14TmJ2xIX7PpJ/9XHAe7GRGpmam3reHo7K80kKD0Zam4ARZ2JXbuu uDCewKrGDfpCoySPFuWuAciJ/6XNChS/nT99a9OE6yGOeII7e0HCPYX8+G24Jat0 hHKhG9lR45wE9Vj0dwtO810ApuWWsKWOd15iMcow4H/CMJt8wsCIx6b3lb/v7qjD oQbIk1oU2atzPyZt8HD9oH90VhfQ/mXty7gO6cLlXg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtRqCw12k52llWgcJa5KD oKftJI4y747AAVumayaY/UT0RZBwaSedks2DeSPwz8oJ2BQTGeOI75GoOQAJ/Dz7 GPUoem/RM9BlDt3ytm0xpeiwBqJtWytmxBMOOx3+9r09OnkNMzTGRiXPJVMvCjNM 9U2B5BmtnVSuKB4P+6327L3+plTDvUgp2uDyvWb7L/5Y3DPhje6qSd6X/PNCvnBn rQKaEW9shSFeY4hZXgiDnGTbZovhpZLzOe70vjQurUPq5vjNqOiBXt3byr00a93H J9pHSMU09gvrf0hQqhQwTkZE335T13i+WBkkyRxTJcWzvpN+fZX+MC3whe/wVX/n eQryJmRJluUqMn3WJiG36F7i7Bp39ATQa/yDTRQGEJA+OSgH4i+0iQOPnbKQlIZh mDLwSBNrc9g/TcPaiKOz0ey56Gxg0CRn5tB9E4ACa0MHFQONbX7g6/vtZmgrmOaE tVmrPfQO4vh60tfRBTPACMh4ywslB686aid2K9W04zEJbKWR0R6DUgKg1F7D5S69 +/vYH5V7tdDAc9pveIe9KeH6I/7TxEwqERWlTemM5nzZ22mhFZWSDNi9td0ycBb0 o4CyBWcaGdcfS/1ayWMYlX8cEtbe1pzRulL7Z7x98uMDWLRueJCNgHv/GS0+KUjY Yepw46CcS9d07kNNbERQCccCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311146204910525108104641724722951180619 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit Leiden' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ooievaar.web.leidenuniv.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 738838055224246031038389279289964205111706163438026220993839599921861475865234640910847398769301335701163076111547952146257206512503348284818854662346253794177695766746506990648954196749892865104650746397145267435099033232472782345288740824903756411122985901908713518787352111176419709626165385183941080835495087789552005730698786761017062651304453231429935958006211172114877095852506929974217115284981933199157381137719264070525169027351724990118137176992753344078221670592132362902333498030921388208191280825369882198264753508989416096141818080274545624864308834718154693661739528838897720247979629325122881781124156565253536811576556454386052193728036095510905447288521516825335673824889365014089559548942941700517712696291451873112386356466179169388929196987942310094318567971078559166232666803979215652756760118134682663438649647662028474326631337644988391223127416998675930416703579368991186503631243985312945667115224511639620846692594054516208179634812078874818518805137425907615484938385563761803546771664294041463953150372695506277855488994138823232594323606779954456159459498488352357353039684652344808463280491297782655224330577028375220244806467346269867069786168651431344712074505655181483105595990192716805417305377223 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7c31cb6b48d3cdd7f1c1f75af8627ec35c538605 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (161 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ooievaar.web.leidenuniv.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalscholarship.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digmanclass.universiteitleiden.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lab.library.universiteitleiden.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'transcription.digitalscholarship.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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