assessment.datasealofapproval.org

Issued by TERENA SSL CA

About this certificate


This digital certificate with serial number 5a:72:5d:fa:7d:e6:3d:94:15:2f:81:a8:fa:e5:b9:72 was issued on by TERENA .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

assessment.datasealofapproval.org

Organization unit: Domain Control Validated

TERENA

Organization: TERENA

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 5a:72:5d:fa:7d:e6:3d:94:15:2f:81:a8:fa:e5:b9:72
Serial Number (int): 120224347572613137044608595106736748914
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 93:cd:e4:d9:7c:a7:44:04:4e:70:67:45:06:07:90:02:73:9a:0b:76
AuthorityKeyId: 0c:bd:93:68:0c:f3:de:ab:a3:49:6b:2b:37:57:47:ea:90:e3:b9:ed

Fingerprint (sha1): 01:96:04:e8:67:46:6f:20:4f:d2:bb:e6:93:18:6e:e1:bc:09:0e:b5
Fingerprint (sha256): 0d:63:63:39:e8:8e:9a:79:7a:0f:92:5d:30:56:35:53:dd:ae:86:0e:30:f0:ed:a3:0b:2f:0d:f9:37:65:da:5f

Issuing Certificate URL: http://crt.tcs.terena.org/TERENASSLCA.crt

Revocation information

OCSP Server: http://ocsp.tcs.terena.org
CRL Distribution Point: http://crl.tcs.terena.org/TERENASSLCA.crl

Check the revocation status for the current certificate on assessment.datasealofapproval.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: assessment.datasealofapproval.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIQWnJd+n3mPZQVL4Go+uW5cjANBgkqhkiG9w0BAQUFADA2 MQswCQYDVQQGEwJOTDEPMA0GA1UEChMGVEVSRU5BMRYwFAYDVQQDEw1URVJFTkEg U1NMIENBMB4XDTE0MDQxNTAwMDAwMFoXDTE3MDQxNDIzNTk1OVowTzEhMB8GA1UE CxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMSowKAYDVQQDEyFhc3Nlc3NtZW50 LmRhdGFzZWFsb2ZhcHByb3ZhbC5vcmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAw ggIKAoICAQDj6gjemD3HUxEw1BQtOfZE1Q4pN7BfNlg+XDoMnwf5c5+cV/2lUKJb gml70Il2x88TrNNi6R8+AaBBHeJ9ymMGZXj+tA7AK7JcYqWdwr6rvd4kI6UZyRKW dG0RQpZxSMGWXkb8Q4hCjOauRjWUQeebVI53Clg9rj9l9JfeK+FTykiLvkDRCD+D 2DONJ03EQSfWtYLR0J4Q9iD2JiYKjobIrGXhXovMN1k5RTIDsMfWnpqBl0d+VY0u 0BmdqTk/GqqMiuTJWKYY6rMDb4bKuXofak0SWLPIR0yZXuFrRrtBKO7Q2ZyWorJH zLaqMG9rTO/j2AAo8Cd2sHUzKbLUqdrWFvvuW3ZMqXCKoCjGabAL52iMzME2uUvJ 8EvSXktI/ZT87MvL7Fkl4m4n4rIC3RBe8ZQGukp471jAKbpaSaPfKMIohdl9k0sb 6RJOEGnDxp8WLbDwjReCV3zEd9XewW6N+t3c3T9RiqP39o5QJpjLNgumth3Atuka 5AIjd9fhFXfe7oQdkK7B4fN/1LebGElMq40I4tqDadq7WUxt8JlvMAVKRmFeMETh hBTLukDW+8y5mJhDXOhwnlWacbm8oPCJ1ZCAtO2F0Cjo2FNZEO0p6uWDVE0BMuAn xxpEd1Er9h5kywXP8YxJRUqJdy5dq6qHobBASbIojFgbmZrpIGKntwIDAQABo4IB fjCCAXowHwYDVR0jBBgwFoAUDL2TaAzz3qujSWsrN1dH6pDjue0wHQYDVR0OBBYE FJPN5Nl8p0QETnBnRQYHkAJzmgt2MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8E AjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAiBgNVHSAEGzAZMA0G CysGAQQBsjEBAgIdMAgGBmeBDAECATA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8v Y3JsLnRjcy50ZXJlbmEub3JnL1RFUkVOQVNTTENBLmNybDBtBggrBgEFBQcBAQRh MF8wNQYIKwYBBQUHMAKGKWh0dHA6Ly9jcnQudGNzLnRlcmVuYS5vcmcvVEVSRU5B U1NMQ0EuY3J0MCYGCCsGAQUFBzABhhpodHRwOi8vb2NzcC50Y3MudGVyZW5hLm9y ZzAsBgNVHREEJTAjgiFhc3Nlc3NtZW50LmRhdGFzZWFsb2ZhcHByb3ZhbC5vcmcw DQYJKoZIhvcNAQEFBQADggEBACFFWbqktwazZafLuk9Skz4JVK74KL8C3oU4Jpmx oVdrSBrfKlO3Z1n2WxX/Lhw2TrSbx8ft1is2Ks+Ets2jpSwLNijcZv0dR5Mot9CI kfD4TPx3lmxKRTe5/ElEj/b9ZwauRBbrZdqz2yiwC/7tJXVUP7HdDwhsQEf3mBqN gGHuZqjzcy1a2kkicD9fjypSfBxZktXP4Nx+CLKGb1//WBvx9xtJwx9jdF+9b2nN b4iMS9ixJAISF4gr3EtyjyEaWm7hRNIwbpOUGbJeaIUrg5zGDk3yhvy/DDyb04mU digtzhx2eE0q5MdtFGhIL4tAPrKHqHrGH6Ac9EwV+AUc9Us= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4+oI3pg9x1MRMNQULTn2 RNUOKTewXzZYPlw6DJ8H+XOfnFf9pVCiW4Jpe9CJdsfPE6zTYukfPgGgQR3ifcpj BmV4/rQOwCuyXGKlncK+q73eJCOlGckSlnRtEUKWcUjBll5G/EOIQozmrkY1lEHn m1SOdwpYPa4/ZfSX3ivhU8pIi75A0Qg/g9gzjSdNxEEn1rWC0dCeEPYg9iYmCo6G yKxl4V6LzDdZOUUyA7DH1p6agZdHflWNLtAZnak5PxqqjIrkyVimGOqzA2+Gyrl6 H2pNElizyEdMmV7ha0a7QSju0NmclqKyR8y2qjBva0zv49gAKPAndrB1Mymy1Kna 1hb77lt2TKlwiqAoxmmwC+dojMzBNrlLyfBL0l5LSP2U/OzLy+xZJeJuJ+KyAt0Q XvGUBrpKeO9YwCm6Wkmj3yjCKIXZfZNLG+kSThBpw8afFi2w8I0Xgld8xHfV3sFu jfrd3N0/UYqj9/aOUCaYyzYLprYdwLbpGuQCI3fX4RV33u6EHZCuweHzf9S3mxhJ TKuNCOLag2nau1lMbfCZbzAFSkZhXjBE4YQUy7pA1vvMuZiYQ1zocJ5VmnG5vKDw idWQgLTthdAo6NhTWRDtKerlg1RNATLgJ8caRHdRK/YeZMsFz/GMSUVKiXcuXauq h6GwQEmyKIxYG5ma6SBip7cCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 120224347572613137044608595106736748914 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'assessment.datasealofapproval.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 929808805227321900837208457081409256807008269009356344962455115932930470698051615932087437795347484230170423766012612290501374296604842619424814878850514658573060100937426524603949701353471361175502220125533044408804137367873349052009154371344759669632101003873274787541911721672980503613626297072640725190324655462465275920002205755080069498070217089550909232239365919510062013232747438846463582938778505552861916825038560779258402642522660619478062396800405411979835000610247053811582158035837730970621845731656650600550650429403366207003209107458768194461951998378101726554436820354553679644038161233573338540252038801298549971088987137804107123861081926917032571500806621526069500418324503677735372217600363173181477342639222721824128820452854597680430545561467417702888963707752046668065409712974830625479411631707464661468819068724873192440333893868661499461912035001959265953013433929812902393639396118924767200875485686910528506969206566672459969781841275816450467974706893355934287728590799743648507004334031722488516865770527074447442705696271445557677159381237423302675219422835827103081899923063851734922056277712802534105758278919007399141068169560959177983412889522709921750225214487325323913544994440349096010112477111 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0cbd93680cf3deaba3496b2b375747ea90e3b9ed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 93cde4d97ca744044e70674506079002739a0b76 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.tcs.terena.org/TERENASSLCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.tcs.terena.org/TERENASSLCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.tcs.terena.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (37 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assessment.datasealofapproval.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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