ies02.ise.fraunhofer.de
- Fraunhofer -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 2f:d5:55:01:99:c3:a1:e3:c0:8f:49:52:27:57:ac:e8 was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Fraunhofer
Organization:
Fraunhofer
State / Province:
Bayern
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 2f:d5:55:01:99:c3:a1:e3:c0:8f:49:52:27:57:ac:e8Serial Number (int): 63581399164391148757386985204258155752
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 02:24:18:0e:93:3d:a1:b6:59:bd:85:de:8e:87:6a:87:43:7a:32:07
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): d5:d9:be:17:ee:99:66:61:dc:a3:57:dd:54:80:2d:1f:f1:de:fe:2c
Fingerprint (sha256): 09:39:88:f1:75:01:bd:6c:8d:12:c2:e6:61:b3:15:bf:83:53:a0:3e:3f:5f:55:b9:39:b8:ec:21:f4:d8:31:b6
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate ies02.ise.fraunhofer.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ies02.ise.fraunhofer.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ies02.ise.fraunhofer.de
ies02.ise.fhg.de
ies02.ise.fhg.de
Other certificates including the domain name fraunhofer.de
(limited to 100 certificates)
vhfraqototcs03.hec.fraunhofer.de
guest.mevis.fraunhofer.de
hmi-umfrage.iao.fraunhofer.de
www.iitb.fraunhofer.de
igb-bitwarden.igb.fraunhofer.de
wnlab.hhi.fraunhofer.de
webmail.fit.fraunhofer.de
nm-service.iais.fraunhofer.de
exilligare.iao.fraunhofer.de
bscw.izb.fraunhofer.de
applik-idz08.iee.fraunhofer.de
immufw-m.imm.fraunhofer.de
social.izm.fraunhofer.de
vceg.hhi.fraunhofer.de
vpn-gaeste-hh.ime.fraunhofer.de
netman.ipk.fraunhofer.de
www.umsicht-suro.fraunhofer.de
llcs-vi2.sit.fraunhofer.de
netsight.ise.fraunhofer.de
guest-lan2.zv.fraunhofer.de
vergabe-mks180.iese.fraunhofer.de
maverick.iao.fraunhofer.de
www.vision.fraunhofer.de
spitzentreffen.edu.cell.vfk.fraunhofer.de
kaa.iais.fraunhofer.de
vpn.fep.fraunhofer.de
iwu.crm.fraunhofer.de
tls1.ws.fraunhofer.de
filedirector.imw.fraunhofer.de
blockchain-europe.iml.fraunhofer.de
sharepoint.sit.fraunhofer.de
muc-gv-dna.aisec.fraunhofer.de
issues.mevis.fraunhofer.de
ksi.scai.fraunhofer.de
iwes-spoke-pri.intra.fraunhofer.de
pwsafe01.iis.fhg.de
applik-idz21.iee.fraunhofer.de
vpn.idmt.fraunhofer.de
vdi.izfp.fraunhofer.de
vindex.fit.fraunhofer.de
ivv-dd.list.fraunhofer.de
nettools.igd.fraunhofer.de
cq-publish2.ws.fraunhofer.de
projekte-lfs.iff.fraunhofer.de
ipa-uipath140.ipa.fraunhofer.de
humit.fit.fraunhofer.de
iap.list.fraunhofer.de
listsrv03.fraunhofer.de
status.arb.fhr.fraunhofer.de
vhfraqototaw01.hec.fraunhofer.de
keepass.iosb.fraunhofer.de
xcom.isst.fraunhofer.de
mellon.hhi.fraunhofer.de
maestral.fit.fraunhofer.de
cryptshare.fraunhofer.de
zerobin.sit.fraunhofer.de
aem-www.iese.fraunhofer.de
wqtool.igd.fraunhofer.de
vhfraqototwslb.hec.fraunhofer.de
mailn2.iis.fhg.de
vgw.iis.fraunhofer.de
subdepot.mevis.fraunhofer.de
wpa.emi.fraunhofer.de
www.isc.fraunhofer.de
blockchainlab-git.ipk.fraunhofer.de
www.aachen.fraunhofer.de
test.servicedesk.fraunhofer.de
gordian.ipa.fraunhofer.de
ildmz55.idmt.fhg.de
talentix.iml.fraunhofer.de
exim2.iao.fraunhofer.de
pathme.scai.fraunhofer.de
www.subi2ma.fraunhofer.de
vpn-gaeste.iosb-ast.fraunhofer.de
fener-webport.ise.fraunhofer.de
upload.c.fraunhofer.de
h2t.intern.ise.fraunhofer.de
ldap.ibmt.fraunhofer.de
piwik.ipk.fraunhofer.de
gitlab-i.eas.iis.fraunhofer.de
reaalmarketplace.universaal.info
kub001.iao.fraunhofer.de
download.scai.fraunhofer.de
openproject.sit.fraunhofer.de
helpdesk.imw.fraunhofer.de
data-h2t-el.ise.fraunhofer.de
ipib.ci.moez.fraunhofer.de
vpn.s.c.fraunhofer.de
vpn.ivi.fraunhofer.de
sand2.fokus.fraunhofer.de
diasim.igd-r.fraunhofer.de
miraculix-dmz.ivi.fraunhofer.de
portal.moez.fraunhofer.de
vpn.iem.fraunhofer.de
remote3.fraunhofer.de
zf-prognose.iao.fraunhofer.de
dynamo.sit.fraunhofer.de
dci2.easw2k.eas.iis.fraunhofer.de
support.igd-r.fraunhofer.de
tfs-extern.ibp.fraunhofer.de
guest.mevis.fraunhofer.de
hmi-umfrage.iao.fraunhofer.de
www.iitb.fraunhofer.de
igb-bitwarden.igb.fraunhofer.de
wnlab.hhi.fraunhofer.de
webmail.fit.fraunhofer.de
nm-service.iais.fraunhofer.de
exilligare.iao.fraunhofer.de
bscw.izb.fraunhofer.de
applik-idz08.iee.fraunhofer.de
immufw-m.imm.fraunhofer.de
social.izm.fraunhofer.de
vceg.hhi.fraunhofer.de
vpn-gaeste-hh.ime.fraunhofer.de
netman.ipk.fraunhofer.de
www.umsicht-suro.fraunhofer.de
llcs-vi2.sit.fraunhofer.de
netsight.ise.fraunhofer.de
guest-lan2.zv.fraunhofer.de
vergabe-mks180.iese.fraunhofer.de
maverick.iao.fraunhofer.de
www.vision.fraunhofer.de
spitzentreffen.edu.cell.vfk.fraunhofer.de
kaa.iais.fraunhofer.de
vpn.fep.fraunhofer.de
iwu.crm.fraunhofer.de
tls1.ws.fraunhofer.de
filedirector.imw.fraunhofer.de
blockchain-europe.iml.fraunhofer.de
sharepoint.sit.fraunhofer.de
muc-gv-dna.aisec.fraunhofer.de
issues.mevis.fraunhofer.de
ksi.scai.fraunhofer.de
iwes-spoke-pri.intra.fraunhofer.de
pwsafe01.iis.fhg.de
applik-idz21.iee.fraunhofer.de
vpn.idmt.fraunhofer.de
vdi.izfp.fraunhofer.de
vindex.fit.fraunhofer.de
ivv-dd.list.fraunhofer.de
nettools.igd.fraunhofer.de
cq-publish2.ws.fraunhofer.de
projekte-lfs.iff.fraunhofer.de
ipa-uipath140.ipa.fraunhofer.de
humit.fit.fraunhofer.de
iap.list.fraunhofer.de
listsrv03.fraunhofer.de
status.arb.fhr.fraunhofer.de
vhfraqototaw01.hec.fraunhofer.de
keepass.iosb.fraunhofer.de
xcom.isst.fraunhofer.de
mellon.hhi.fraunhofer.de
maestral.fit.fraunhofer.de
cryptshare.fraunhofer.de
zerobin.sit.fraunhofer.de
aem-www.iese.fraunhofer.de
wqtool.igd.fraunhofer.de
vhfraqototwslb.hec.fraunhofer.de
mailn2.iis.fhg.de
vgw.iis.fraunhofer.de
subdepot.mevis.fraunhofer.de
wpa.emi.fraunhofer.de
www.isc.fraunhofer.de
blockchainlab-git.ipk.fraunhofer.de
www.aachen.fraunhofer.de
test.servicedesk.fraunhofer.de
gordian.ipa.fraunhofer.de
ildmz55.idmt.fhg.de
talentix.iml.fraunhofer.de
exim2.iao.fraunhofer.de
pathme.scai.fraunhofer.de
www.subi2ma.fraunhofer.de
vpn-gaeste.iosb-ast.fraunhofer.de
fener-webport.ise.fraunhofer.de
upload.c.fraunhofer.de
h2t.intern.ise.fraunhofer.de
ldap.ibmt.fraunhofer.de
piwik.ipk.fraunhofer.de
gitlab-i.eas.iis.fraunhofer.de
reaalmarketplace.universaal.info
kub001.iao.fraunhofer.de
download.scai.fraunhofer.de
openproject.sit.fraunhofer.de
helpdesk.imw.fraunhofer.de
data-h2t-el.ise.fraunhofer.de
ipib.ci.moez.fraunhofer.de
vpn.s.c.fraunhofer.de
vpn.ivi.fraunhofer.de
sand2.fokus.fraunhofer.de
diasim.igd-r.fraunhofer.de
miraculix-dmz.ivi.fraunhofer.de
portal.moez.fraunhofer.de
vpn.iem.fraunhofer.de
remote3.fraunhofer.de
zf-prognose.iao.fraunhofer.de
dynamo.sit.fraunhofer.de
dci2.easw2k.eas.iis.fraunhofer.de
support.igd-r.fraunhofer.de
tfs-extern.ibp.fraunhofer.de
Certificate
The complete raw certificate details for ies02.ise.fraunhofer.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHYjCCBUqgAwIBAgIQL9VVAZnDoePAj0lSJ1es6DANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMxMTIzMDAwMDAwWhcNMjQxMTIyMjM1 OTU5WjBVMQswCQYDVQQGEwJERTEPMA0GA1UECBMGQmF5ZXJuMRMwEQYDVQQKEwpG cmF1bmhvZmVyMSAwHgYDVQQDExdpZXMwMi5pc2UuZnJhdW5ob2Zlci5kZTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPDTCqj9WzlXxltPKxSxwCuaSHwa DSQv/gKep8sbL65tcajP2QvvITHiODtN/7Kbc1UWO2wqfzECuwwzwJQY7qau6YQj OQoqdQPI6WEQEtPOpSfQOI5W4DHEiuilv8P33d6c9kHPuQ6MosYOqMDadjXl9AX9 NHjXhnxhy2jXT6im6SjRmRBlBYa5TE2BSTceaA9jaAN0NlAEUczD2XuzKaTvr/ze YHzcnLxeKaSJQuhw32dQHjTm5/1OcPvMWE+1HenPDd6eCtGEFEPK18na1SEsgbey PPcKkpAMa4xpuPXAqIdgnTTPMlbFUTBBqq4EZ1MOa2vHM+KrYuZLf0DL/OUCAwEA AaOCAz0wggM5MB8GA1UdIwQYMBaAFG8dNUkQbDL6WaCevIroH5W+cXoMMB0GA1Ud DgQWBBQCJBgOkz2htlm9hd6Oh2qHQ3oyBzAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0T AQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIw QDA0BgsrBgEEAbIxAQICTzAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28u Y29tL0NQUzAIBgZngQwBAgIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL0dFQU5U LmNybC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNybDB1BggrBgEFBQcBAQRp MGcwOgYIKwYBBQUHMAKGLmh0dHA6Ly9HRUFOVC5jcnQuc2VjdGlnby5jb20vR0VB TlRPVlJTQUNBNC5jcnQwKQYIKwYBBQUHMAGGHWh0dHA6Ly9HRUFOVC5vY3NwLnNl Y3RpZ28uY29tMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgB2/4g/Crb7lVHC Ycz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYv7stT4AAAEAwBHMEUCIFfZxLALcOcN IGm5UutmjUqfQ7MTk9FGovdOe9mw3L9PAiEAzguyUjubNPvNzxjihba+wZX/Ixmj EqXPKy4GxW/6JKoAdgA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAA AYv7stWsAAAEAwBHMEUCID0OEMKfvVzSrohHFOyvuUFtJXu9TtoPX3rfNhyyY3OB AiEAgILW+IMsNzoiaNLChhKNHGf5mJF29iUxllxiEhaDyTMAdwDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAYv7stUoAAAEAwBIMEYCIQC65D7MbOcW AXRd9PEG/G+4xBcmMsPT7t7oakjp2U92AgIhALx/RE4w5yDKHPSJGI+j+3G9GrVR b083EWLCQ5sSF1mxMDQGA1UdEQQtMCuCF2llczAyLmlzZS5mcmF1bmhvZmVyLmRl ghBpZXMwMi5pc2UuZmhnLmRlMA0GCSqGSIb3DQEBDAUAA4ICAQBjZxltzUX12Upa bND650IylEglxjkMfx7/038Rt3hM/IIhOgJq+XVa3t3+mq715bcRMw6O2hvez1k3 T6sB5esrTXUVj7EW3NnSggC9lDDXw+EjhXyy6TxzlVLljm7GK/g/5W65Ede2LX/u eGwR20/owcFFCEaw+5vlVmjFZvkzwnfYAjxt5DazdM8gj+Hs9gRrzeOFv4v1MHF0 HNjTz4lLRSuJr5XZi1GO/rCcwPlYQdRbBIOSr7D1lp5+MwaLw5alTG0PEkEMnRw3 T4ouo0Nwspd89aBa5RHKOySkU+9YJNd7tEjIi3t/MG+Mgpm35AS2fLOwZFXwRvae qmJnPd9vwur2i3zoxLGPknSlS9aLXk0cftHTCf7ifjLm3FMSHTcZhk71dpRqOHkJ M/yesHotSMvIl5N3aPiKJggCP+P6l31wnoaa6O7DdEPQBoZwxUb75x9oQK9LCv/O 8bJOREFwGUTECbgUa/pjD/leWnHstGQPsnMWrr9BNJEKR/1SKFB158UJRhNCXwyA GNdF0plOzgFuBZyAvtimmc+EhYN4IaT9LmsBQu7kyHqm0ua30ux1GtGZc1dm31EU 1jXOZby7MMR5k7QZkOSCM/LoUkJDnnTgC4TX83LnBLFpFWTrNDMhTsrudo+3BwQ7 /4uAEOfkHTmEYu51rfdZKSUrokifoQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8NMKqP1bOVfGW08rFLHA K5pIfBoNJC/+Ap6nyxsvrm1xqM/ZC+8hMeI4O03/sptzVRY7bCp/MQK7DDPAlBju pq7phCM5Cip1A8jpYRAS086lJ9A4jlbgMcSK6KW/w/fd3pz2Qc+5Doyixg6owNp2 NeX0Bf00eNeGfGHLaNdPqKbpKNGZEGUFhrlMTYFJNx5oD2NoA3Q2UARRzMPZe7Mp pO+v/N5gfNycvF4ppIlC6HDfZ1AeNObn/U5w+8xYT7Ud6c8N3p4K0YQUQ8rXydrV ISyBt7I89wqSkAxrjGm49cCoh2CdNM8yVsVRMEGqrgRnUw5ra8cz4qti5kt/QMv8 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 63581399164391148757386985204258155752 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Fraunhofer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ies02.ise.fraunhofer.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30401261703756076939232197308595429831022207539792139502452383809498613623085763732113519146150048490850648157963190216505204340556587411029648802286587893688272749770319007829322951263526140891741006765078325523760340124901259110928495590037537878942490737218260972402042802166165274889101990563835747873129735265307396497789452516459206615342983941139196974895588118828858829134983551121080941701036482114941689529176280975670952728880342667861554046260256121544666398528018514730429202181032837152711961046012716804303687829222420310456082334361685253727966957058952401867070190727395647161220577002265476296604901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0224180e933da1b659bd85de8e876a87437a3207 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ies02.ise.fraunhofer.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ies02.ise.fhg.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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