ldap.basisit.de
- Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 1f:e5:2c:c9:c8:fe:49:c7:b2:74:b0:b5 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH
Organization:
Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH
Organization unit: IT-DS
Organization unit: IT-DS
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 1f:e5:2c:c9:c8:fe:49:c7:b2:74:b0:b5Serial Number (int): 9871090823557346865196609717
Serial Number lenght: 93 bits, 12 octets
SubjectKeyId: 30:de:51:73:b4:35:77:03:7c:ed:49:51:2b:1d:f4:6c:01:c2:d3:ab
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 76:bb:7d:8a:b6:9d:fa:7e:66:88:3d:12:e4:5e:97:a9:cb:15:87:75
Fingerprint (sha256): 08:6f:2d:a9:48:f3:c7:6d:ed:4b:b9:c8:ae:93:69:f6:b2:d4:25:d1:38:29:f0:b4:4d:8a:d9:bb:5c:68:d8:b1
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate ldap.basisit.de
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ldap.basisit.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
divldap1.basisit.de
divldap2.basisit.de
divldap3.basisit.de
ldap-kemp.basisit.de
ldap.basisit.de
ldap.hmi.de
ldap1.basisit.de
ldap2.basisit.de
ldap3.basisit.de
ldapdirect.basisit.de
divldap2.basisit.de
divldap3.basisit.de
ldap-kemp.basisit.de
ldap.basisit.de
ldap.hmi.de
ldap1.basisit.de
ldap2.basisit.de
ldap3.basisit.de
ldapdirect.basisit.de
Other certificates including the domain name basisit.de
(limited to 100 certificates)
webapp.basisit.de
it-ed-forum.basisit.de
sledge.basisit.de
divuwiki.basisit.de
cliqweb-test.basisit.de
nc.helmholtz-berlin.de
ldap.basisit.de
utax-w-kh218.basisit.de
collab.helmholtz-berlin.de
utax-w-ge166.basisit.de
divversion.basisit.de
rica.helmholtz-berlin.de
rica.helmholtz-berlin.de
utax-w-dv323.basisit.de
nc.basisit.de
it-ed-git.basisit.de
kanboard.helmholtz-berlin.de
nc-dev.basisit.de
icinga-fmd.basisit.de
utax-a-13-10-0113.basisit.de
utax-a-14-51-3210.basisit.de
divic.basisit.de
mail.helmholtz-berlin.de
lyncpool.basisit.de
utax-w-pt211.basisit.de
idp.helmholtz-berlin.de
cliqweb.basisit.de
utax-a-13-7-0204b.basisit.de
basisit.de
utax-w-c229.basisit.de
utax-w-p182.basisit.de
www.helmholtz-berlin.de
sas.helmholtz-berlin.de
utax-a-15-8-0100b.basisit.de
icinga-it-ed-web.basisit.de
radius.helmholtz-berlin.de
www.helmholtz-berlin.de
utax-a-13-7-0316.basisit.de
hc-awx.basisit.de
nc.basisit.de
onlyoffice.helmholtz-berlin.de
utax-w-r123.basisit.de
ed-dockhb1-test.basisit.de
divic.basisit.de
webapp.basisit.de
portal.helmholtz-berlin.de
utax-w-dv204.basisit.de
radius.helmholtz-berlin.de
office.helmholtz-berlin.de
dirac-meister.basisit.de
divic.basisit.de
utax-a-13-7-0308.basisit.de
utax-w-p051.basisit.de
ldap.basisit.de
utax-w-ge166-1.basisit.de
utax-a-13-10-0204.basisit.de
divic.basisit.de
rica.helmholtz-berlin.de
telportal1-prod.basisit.de
idp.helmholtz-berlin.de
utax-a-13-10-0413.basisit.de
www.helmholtz-berlin.de
keycloak1-test.basisit.de
divbibserv.basisit.de
rica.helmholtz-berlin.de
portal-hzb.helmholtz-berlin.de
utax-w-p121.basisit.de
utax-w-lr124.basisit.de
pyweb1.basisit.de
ncoffice.basisit.de
utax-a-14-51-3250.basisit.de
kemp-cluster-2-mgt.basisit.de
cliqapp.basisit.de
divwiki.basisit.de
nc.basisit.de
openproj2-test.basisit.de
jitsi1.basisit.de
utax-w-lr140.basisit.de
dicliqweb.basisit.de
divic.basisit.de
divwiki.basisit.de
nubes.helmholtz-berlin.de
utax-a-13-10-0313.basisit.de
lyncpool.basisit.de
utax-w-e237.basisit.de
cliqapp-test.basisit.de
utax-a-15-8-0200.basisit.de
utax-w-ge211.basisit.de
nubes-test.helmholtz-berlin.de
utax-w-r141.basisit.de
utax-w-lr226.basisit.de
bluespice1-test.basisit.de
nc-office.helmholtz-berlin.de
jitsi1-dev.basisit.de
interflex-test.basisit.de
www.helmholtz-berlin.de
gitlab.helmholtz-berlin.de
utax-w-lr327.basisit.de
divic.basisit.de
utax-a-14-51-3411.basisit.de
it-ed-forum.basisit.de
sledge.basisit.de
divuwiki.basisit.de
cliqweb-test.basisit.de
nc.helmholtz-berlin.de
ldap.basisit.de
utax-w-kh218.basisit.de
collab.helmholtz-berlin.de
utax-w-ge166.basisit.de
divversion.basisit.de
rica.helmholtz-berlin.de
rica.helmholtz-berlin.de
utax-w-dv323.basisit.de
nc.basisit.de
it-ed-git.basisit.de
kanboard.helmholtz-berlin.de
nc-dev.basisit.de
icinga-fmd.basisit.de
utax-a-13-10-0113.basisit.de
utax-a-14-51-3210.basisit.de
divic.basisit.de
mail.helmholtz-berlin.de
lyncpool.basisit.de
utax-w-pt211.basisit.de
idp.helmholtz-berlin.de
cliqweb.basisit.de
utax-a-13-7-0204b.basisit.de
basisit.de
utax-w-c229.basisit.de
utax-w-p182.basisit.de
www.helmholtz-berlin.de
sas.helmholtz-berlin.de
utax-a-15-8-0100b.basisit.de
icinga-it-ed-web.basisit.de
radius.helmholtz-berlin.de
www.helmholtz-berlin.de
utax-a-13-7-0316.basisit.de
hc-awx.basisit.de
nc.basisit.de
onlyoffice.helmholtz-berlin.de
utax-w-r123.basisit.de
ed-dockhb1-test.basisit.de
divic.basisit.de
webapp.basisit.de
portal.helmholtz-berlin.de
utax-w-dv204.basisit.de
radius.helmholtz-berlin.de
office.helmholtz-berlin.de
dirac-meister.basisit.de
divic.basisit.de
utax-a-13-7-0308.basisit.de
utax-w-p051.basisit.de
ldap.basisit.de
utax-w-ge166-1.basisit.de
utax-a-13-10-0204.basisit.de
divic.basisit.de
rica.helmholtz-berlin.de
telportal1-prod.basisit.de
idp.helmholtz-berlin.de
utax-a-13-10-0413.basisit.de
www.helmholtz-berlin.de
keycloak1-test.basisit.de
divbibserv.basisit.de
rica.helmholtz-berlin.de
portal-hzb.helmholtz-berlin.de
utax-w-p121.basisit.de
utax-w-lr124.basisit.de
pyweb1.basisit.de
ncoffice.basisit.de
utax-a-14-51-3250.basisit.de
kemp-cluster-2-mgt.basisit.de
cliqapp.basisit.de
divwiki.basisit.de
nc.basisit.de
openproj2-test.basisit.de
jitsi1.basisit.de
utax-w-lr140.basisit.de
dicliqweb.basisit.de
divic.basisit.de
divwiki.basisit.de
nubes.helmholtz-berlin.de
utax-a-13-10-0313.basisit.de
lyncpool.basisit.de
utax-w-e237.basisit.de
cliqapp-test.basisit.de
utax-a-15-8-0200.basisit.de
utax-w-ge211.basisit.de
nubes-test.helmholtz-berlin.de
utax-w-r141.basisit.de
utax-w-lr226.basisit.de
bluespice1-test.basisit.de
nc-office.helmholtz-berlin.de
jitsi1-dev.basisit.de
interflex-test.basisit.de
www.helmholtz-berlin.de
gitlab.helmholtz-berlin.de
utax-w-lr327.basisit.de
divic.basisit.de
utax-a-14-51-3411.basisit.de
Certificate
The complete raw certificate details for ldap.basisit.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG3zCCBcegAwIBAgIMH+Usycj+SceydLC1MA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE4 MTAxNjA5MjgzMFoXDTIxMDExNzA5MjgzMFowgZ4xCzAJBgNVBAYTAkRFMQ8wDQYD VQQIDAZCZXJsaW4xDzANBgNVBAcMBkJlcmxpbjFDMEEGA1UECgw6SGVsbWhvbHR6 LVplbnRydW0gQmVybGluIGZ1ZXIgTWF0ZXJpYWxpZW4gdW5kIEVuZXJnaWUgR21i SDEOMAwGA1UECwwFSVQtRFMxGDAWBgNVBAMMD2xkYXAuYmFzaXNpdC5kZTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKxbpNloeOfUSatZ3SLHifrlJLSr TiXXjQ6al8/WDS+YqZ/e1xmxJgFUJhZn2L7/cSD1BKHkIDIYtVOMtlnWIbI9rCER DI6ic+jd3PJdIdH9GKLn5eMVEkkFmnTgE+a2VOJZ2wmrrtP4KeIo/6qm1qlYhH2n wpgIQUI0Nv93X+lCRRjt78iHDk6DYO2aD9qsK3J1QJRjuefdv8eCs1WcsjRi0H8R XX35lK7xaSOlzOItWppBINh+BWfc1wEBuYuxJU8NEiZ/j0z7MQ8T8xMaBWZhPh7U JIb3nPgFA+dZ8U6V/kD0GvmlIjMZaLLtdav84fVC9UU0Bo/o0LT/ICHqDmUCAwEA AaOCAyowggMmMFkGA1UdIARSMFAwCAYGZ4EMAQICMA0GCysGAQQBga0hgiweMA8G DSsGAQQBga0hgiwBAQQwEQYPKwYBBAGBrSGCLAEBBAMIMBEGDysGAQQBga0hgiwC AQQDCDAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAgYIKwYBBQUHAwEwHQYDVR0OBBYEFDDeUXO0NXcDfO1JUSsd9GwBwtOrMB8G A1UdIwQYMBaAFGs6mIv58lOJ2uCtsjIeCR/oqjt0MIHLBgNVHREEgcMwgcCCE2Rp dmxkYXAxLmJhc2lzaXQuZGWCE2RpdmxkYXAyLmJhc2lzaXQuZGWCE2RpdmxkYXAz LmJhc2lzaXQuZGWCFGxkYXAta2VtcC5iYXNpc2l0LmRlgg9sZGFwLmJhc2lzaXQu ZGWCC2xkYXAuaG1pLmRlghBsZGFwMS5iYXNpc2l0LmRlghBsZGFwMi5iYXNpc2l0 LmRlghBsZGFwMy5iYXNpc2l0LmRlghVsZGFwZGlyZWN0LmJhc2lzaXQuZGUwgY0G A1UdHwSBhTCBgjA/oD2gO4Y5aHR0cDovL2NkcDEucGNhLmRmbi5kZS9kZm4tY2Et Z2xvYmFsLWcyL3B1Yi9jcmwvY2FjcmwuY3JsMD+gPaA7hjlodHRwOi8vY2RwMi5w Y2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NybC9jYWNybC5jcmwwgdsG CCsGAQUFBwEBBIHOMIHLMDMGCCsGAQUFBzABhidodHRwOi8vb2NzcC5wY2EuZGZu LmRlL09DU1AtU2VydmVyL09DU1AwSQYIKwYBBQUHMAKGPWh0dHA6Ly9jZHAxLnBj YS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIvY2FjZXJ0L2NhY2VydC5jcnQw SQYIKwYBBQUHMAKGPWh0dHA6Ly9jZHAyLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2Jh bC1nMi9wdWIvY2FjZXJ0L2NhY2VydC5jcnQwEwYKKwYBBAHWeQIEAwEB/wQCBQAw DQYJKoZIhvcNAQELBQADggEBAFLwlH8uZReTVh1H06mmj5gnJg7TvrIdb3gNjDtN M3l9JtDl+nuBNoByIdey3MVFf3iFmHVQAU56Ov0Jc+5+cpwWyooiLJJmTNXplFk3 6AdPW8x1r7KNUi5YuxKS5EMHEXiMozcxMCUzFQe2GNoxZtGkBRBVF5DEPtvJSoSC tyo2oMP6Y31a+VLv1uLtSRdsgdxmMy2wqyDPKJrsZ8I+ptz/Hw4W1losxdU2C+LX k0Lc01Ipy4F/F2wEm+U542ZgM4escrZ/1TsW6AISY9yBy9ypVGjtL8XHLWyyuQSp 8x/r34QP/nBV2t5ipTNOrDyKzEtWREBmvw2cqfP75CRmnZw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFuk2Wh459RJq1ndIseJ +uUktKtOJdeNDpqXz9YNL5ipn97XGbEmAVQmFmfYvv9xIPUEoeQgMhi1U4y2WdYh sj2sIREMjqJz6N3c8l0h0f0Youfl4xUSSQWadOAT5rZU4lnbCauu0/gp4ij/qqbW qViEfafCmAhBQjQ2/3df6UJFGO3vyIcOToNg7ZoP2qwrcnVAlGO5592/x4KzVZyy NGLQfxFdffmUrvFpI6XM4i1amkEg2H4FZ9zXAQG5i7ElTw0SJn+PTPsxDxPzExoF ZmE+HtQkhvec+AUD51nxTpX+QPQa+aUiMxlosu11q/zh9UL1RTQGj+jQtP8gIeoO ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9871090823557346865196609717 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-16 09:28:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-17 09:28:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT-DS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ldap.basisit.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21758179766455036692565332970290762911442841095440812378465036051331676958043672309344722581956409796790365436280770820858927850258148511669925534884231777578899683556823886441791283086948766548565043399067922586257709388704019238101491053133309128582377005244188199178685130218125837008133946725493317040072173695406533274005786495109825661224455973042486962188893652262396409450248260493191142810574405692004997309649865136809246364384777929913301099728102154086079785919948801359675742039919036557512210647084361270402023149653144248324260958537938214420971466598095407840084635113119797934149899827293969025994341 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 30de5173b43577037ced49512b1df46c01c2d3ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (195 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'divldap1.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'divldap2.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'divldap3.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap-kemp.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap.hmi.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap1.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap2.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldap3.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldapdirect.basisit.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0052f0947f2e651793561d47d3a9a68f9827260ed3beb21d6f780d8c3b4d33797d26d0e5fa7b8136807221d7b2dcc5457f7885987550014e7a3afd0973ee7e729c16ca8a222c92664cd5e9945937e8074f5bcc75afb28d522e58bb1292e4430711788ca337313025331507b618da3166d1a40510551790c43edbc94a8482b72a36a0c3fa637d5af952efd6e2ed49176c81dc66332db0ab20cf289aec67c23ea6dcff1f0e16d65a2cc5d5360be2d79342dcd35229cb817f176c049be539e366603387ac72b67fd53b16e8021263dc81cbdca95468ed2fc5c72d6cb2b904a9f31febdf840ffe7055dade62a5334eac3c8acc4b56444066bf0d9ca9f3fbe424669d9c