cuba.klm.com
- Koninklijke Luchtvaart Maatschappij N.V. -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number dc:e5:3e:c8:d4:53:fe:78:d3:be:43:30:71:f4:a4:52 was issued on by Sectigo Limited.
With 56 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Koninklijke Luchtvaart Maatschappij N.V.
Organization:
Koninklijke Luchtvaart Maatschappij N.V.
State / Province:
Noord-Holland
Country: NL
Country: NL
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): dc:e5:3e:c8:d4:53:fe:78:d3:be:43:30:71:f4:a4:52Serial Number (int): 293620468474026261457311653348548846674
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 33:5f:d4:fa:eb:36:cc:66:80:12:9e:c6:64:b8:7f:ab:e6:c5:de:ef
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 2c:68:aa:05:be:34:54:cd:40:a6:73:99:16:56:27:36:d6:2c:6f:06
Fingerprint (sha256): 0c:e9:96:a6:75:fe:26:cc:18:ba:5f:b9:fe:56:a2:ee:3e:36:51:83:a0:a8:25:cf:90:e1:8f:26:0f:d9:02:29
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate cuba.klm.com
56
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cuba.klm.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cuba.klm.com
algeria.airfrance.com
api-mobile.airfranceklm.com
armenia.airfrance.com
bonaire.klm.com
congo.airfrance.com
congo.klm.com
cuba.airfrance.com
dominicanrepublic.airfrance.com
estonia.klm.com
ethiopia.klm.com
flight.airfrance.com
flight.klm.com
gabon.airfrance.com
guiana.airfrance.com
guinea.airfrance.com
iran.airfrance.com
iran.klm.com
kuwait.klm.com
lebanon.airfrance.com
liberia.klm.com
login.airfranceklm.com
martinique.airfrance.com
mauritius.klm.com
oman.klm.com
rwanda.klm.com
saintmartin.airfrance.com
saudi.klm.com
senegal.airfrance.com
serbia.klm.com
slovenia.airfrance.com
sudan.klm.com
togo.airfrance.com
uruguay.airfrance.com
vietnam.airfrance.com
www.airfrance.ec
www.airfrance.ke
www.airfrance.tz
wwws.airfrance.am
wwws.airfrance.cd
wwws.airfrance.co.zm
wwws.airfrance.com.gh
wwws.airfrance.com.lb
wwws.airfrance.com.tw
wwws.airfrance.com.uy
wwws.airfrance.com.vn
wwws.airfrance.do
wwws.airfrance.ga
wwws.airfrance.gf
wwws.airfrance.mq
wwws.airfrance.si
wwws.airfrance.sn
wwws.airfrance.tg
zambia.airfrance.com
zimbabwe.airfrance.com
zimbabwe.klm.com
algeria.airfrance.com
api-mobile.airfranceklm.com
armenia.airfrance.com
bonaire.klm.com
congo.airfrance.com
congo.klm.com
cuba.airfrance.com
dominicanrepublic.airfrance.com
estonia.klm.com
ethiopia.klm.com
flight.airfrance.com
flight.klm.com
gabon.airfrance.com
guiana.airfrance.com
guinea.airfrance.com
iran.airfrance.com
iran.klm.com
kuwait.klm.com
lebanon.airfrance.com
liberia.klm.com
login.airfranceklm.com
martinique.airfrance.com
mauritius.klm.com
oman.klm.com
rwanda.klm.com
saintmartin.airfrance.com
saudi.klm.com
senegal.airfrance.com
serbia.klm.com
slovenia.airfrance.com
sudan.klm.com
togo.airfrance.com
uruguay.airfrance.com
vietnam.airfrance.com
www.airfrance.ec
www.airfrance.ke
www.airfrance.tz
wwws.airfrance.am
wwws.airfrance.cd
wwws.airfrance.co.zm
wwws.airfrance.com.gh
wwws.airfrance.com.lb
wwws.airfrance.com.tw
wwws.airfrance.com.uy
wwws.airfrance.com.vn
wwws.airfrance.do
wwws.airfrance.ga
wwws.airfrance.gf
wwws.airfrance.mq
wwws.airfrance.si
wwws.airfrance.sn
wwws.airfrance.tg
zambia.airfrance.com
zimbabwe.airfrance.com
zimbabwe.klm.com
Other certificates including the domain name klm.com
(limited to 100 certificates)
vanity-ae.klm.com
gofuel-acc-ute.klm.com
origin.api.ee1.klm.com
nieuws.klm.com
imperva.com
airlines.api.amadeus.com
kiosk.ute2.klm.com
origin.api.klm.com
*.cf.devnet.klm.com
travel-with-kids.klm.com
campaigndesigner.klm.com
www.iseatz.com
campagnes.klm.com
werelddeal.klm.com
ba.ite2.klm.com
flightguide.klm.com
sustainability.klm.com
materials.klm.com
api.ee1.klm.com
origin.api.ae3.klm.com
flightoffers.klm.com
werelddeal.klm.com
china.klm.com
werelddeal.klm.com
flightoffers.klm.com
getaways.klm.com
flexfares.klm.com
evenweg.klm.com
san1.klmonline.com
flexfares.klm.com
payments.klm.com
flyforward.klm.com
www.klm.com
services2.klm.com
aefederation.klm.com
services.ae1.klm.com
fes-dev.klm.com
flightbundle.klm.com
fes.klm.com
houses.klm.com
evenweg.klm.com
china.klm.com
packyourdestination.klm.com
co2.ehn.klm.com
ehn.klm.com
kiosk.klm.com
san1.klmonline.com
san1.klmonline.com
services.ite2.klm.com
md11farewellflight.klm.com
upgradeyourself.klm.com
bb.klm.com
services.ave1.klm.com
ba.ee.klm.com
caretag.klm.com
developer-test.klm.com
www.se2.klm.com
partsofaperfectjourney.klm.com
www.iseatz.com
habile-challenges.klm.com
imperva.com
transactions.klm.com
destinationmatch.klm.com
services.ute2.klm.com
klm.com
evenweg.klm.com
connect.klm.com
cuba.klm.com
campaigndesigner2.klm.com
san1.klmonline.com
san1.klmonline.com
fes-acc.klm.com
werelddeal.klm.com
services.ae2.klm.com
federation.klm.com
escapades.klm.com
klpl03.klm.com
*.ams.cloud.klm.com
campagnes.klm.com
csr.klm.com
www3.ute1.klm.com
blog-origin.klm.com
flightbundle.klm.com
san1.klmonline.com
*.klm.com
daytripper.klm.com
mysteryticket.klm.com
flightbundle.klm.com
ers.klm.com
secure.klm.com
imperva.com
webmail.klm.com
flyforward.klm.com
payments.test.klm.com
digital.publications.klm.com
aend.klm.com
destinationmatch.klm.com
china.klm.com
evenweg.klm.com
mysteryticket.klm.com
gofuel-acc-ute.klm.com
origin.api.ee1.klm.com
nieuws.klm.com
imperva.com
airlines.api.amadeus.com
kiosk.ute2.klm.com
origin.api.klm.com
*.cf.devnet.klm.com
travel-with-kids.klm.com
campaigndesigner.klm.com
www.iseatz.com
campagnes.klm.com
werelddeal.klm.com
ba.ite2.klm.com
flightguide.klm.com
sustainability.klm.com
materials.klm.com
api.ee1.klm.com
origin.api.ae3.klm.com
flightoffers.klm.com
werelddeal.klm.com
china.klm.com
werelddeal.klm.com
flightoffers.klm.com
getaways.klm.com
flexfares.klm.com
evenweg.klm.com
san1.klmonline.com
flexfares.klm.com
payments.klm.com
flyforward.klm.com
www.klm.com
services2.klm.com
aefederation.klm.com
services.ae1.klm.com
fes-dev.klm.com
flightbundle.klm.com
fes.klm.com
houses.klm.com
evenweg.klm.com
china.klm.com
packyourdestination.klm.com
co2.ehn.klm.com
ehn.klm.com
kiosk.klm.com
san1.klmonline.com
san1.klmonline.com
services.ite2.klm.com
md11farewellflight.klm.com
upgradeyourself.klm.com
bb.klm.com
services.ave1.klm.com
ba.ee.klm.com
caretag.klm.com
developer-test.klm.com
www.se2.klm.com
partsofaperfectjourney.klm.com
www.iseatz.com
habile-challenges.klm.com
imperva.com
transactions.klm.com
destinationmatch.klm.com
services.ute2.klm.com
klm.com
evenweg.klm.com
connect.klm.com
cuba.klm.com
campaigndesigner2.klm.com
san1.klmonline.com
san1.klmonline.com
fes-acc.klm.com
werelddeal.klm.com
services.ae2.klm.com
federation.klm.com
escapades.klm.com
klpl03.klm.com
*.ams.cloud.klm.com
campagnes.klm.com
csr.klm.com
www3.ute1.klm.com
blog-origin.klm.com
flightbundle.klm.com
san1.klmonline.com
*.klm.com
daytripper.klm.com
mysteryticket.klm.com
flightbundle.klm.com
ers.klm.com
secure.klm.com
imperva.com
webmail.klm.com
flyforward.klm.com
payments.test.klm.com
digital.publications.klm.com
aend.klm.com
destinationmatch.klm.com
china.klm.com
evenweg.klm.com
mysteryticket.klm.com
Certificate
The complete raw certificate details for cuba.klm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILSDCCCjCgAwIBAgIRANzlPsjUU/54075DMHH0pFIwDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yNDAxMTUwMDAwMDBaFw0yNTAxMTQyMzU5NTlaMG8xCzAJBgNV BAYTAk5MMRYwFAYDVQQIEw1Ob29yZC1Ib2xsYW5kMTEwLwYDVQQKEyhLb25pbmts aWprZSBMdWNodHZhYXJ0IE1hYXRzY2hhcHBpaiBOLlYuMRUwEwYDVQQDEwxjdWJh LmtsbS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFWcnY1/HF uPVb5p7iqBsAg+F59x/rEKpOBaEZUZsWXQBooFMsC0Gll3GieKMLakmaTjzDmwfh PaXHhbKTOKIn282tQSx6cifQlshnnGdMWskBmZ0eSU3R35/JQmIwU9E65k73gfF8 Qf1w1FB2EKYTlMYZhQzIvvVJimgzW/wxtXa5j1YuifKW2UbmN6B9ZLPMFZ7usF/l BA7G23yedD5Bdk8ao6w6+Qt6QqMhX9j8pIQD729P6Cy1gg9TD5ShjaWKXkEKbU6M ubIG0Oyslhgewr4saA0mH9Qg6h42gcdjyrTmBiwB48F52EbV/lCZ1OTth26Zwu4L 2Zvv8sZygyKzAgMBAAGjgge2MIIHsjAfBgNVHSMEGDAWgBQX2dYlJ2f5McJJQ9kw NkSMbKlP6zAdBgNVHQ4EFgQUM1/U+us2zGaAEp7GZLh/q+bF3u8wDgYDVR0PAQH/ BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMEoGA1UdIARDMEEwNQYMKwYBBAGyMQECAQMEMCUwIwYIKwYBBQUHAgEWF2h0 dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+gTaBL hklodHRwOi8vY3JsLnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRpb25W YWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGKBggrBgEFBQcBAQR+MHwwVQYI KwYBBQUHMAKGSWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2VjdGlnb1JTQU9yZ2Fu aXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYBBQUHMAGG F2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFp AWcAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAY0McPnoAAAE AwBHMEUCIFko8OXGbCK7bIyPDYPz4wgxnaiHYBlqCLCVP/DdziWwAiEAnUhiWHGz b+dZ+xCJ2s4+NdEiVfvYc1GPmg8u7knJv/kAdgCi4wrkRe+9rZt+OO1HZ3dT14Jb hJTXK14bLMS5UKRH5wAAAY0McPnPAAAEAwBHMEUCIQCk735PcYibCkubWtxX8TmM DHULvak5iu7zdDNqFbZpoAIgKYGV8eErcKTkyYgceFyq2QdGtnVAG5UFXw+Vbu79 umQAdQBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY0McPnEAAAE AwBGMEQCIA4kDyVJEWIbpqHt95MmQMS9DrgXVWO/M7u3cnhowRsSAiAiYf8TZZ7G 8nZvz8jlmXmiFNB7kw+eY/f7SvqlgXsm1DCCBHsGA1UdEQSCBHIwggRuggxjdWJh LmtsbS5jb22CFWFsZ2VyaWEuYWlyZnJhbmNlLmNvbYIbYXBpLW1vYmlsZS5haXJm cmFuY2VrbG0uY29tghVhcm1lbmlhLmFpcmZyYW5jZS5jb22CD2JvbmFpcmUua2xt LmNvbYITY29uZ28uYWlyZnJhbmNlLmNvbYINY29uZ28ua2xtLmNvbYISY3ViYS5h aXJmcmFuY2UuY29tgh9kb21pbmljYW5yZXB1YmxpYy5haXJmcmFuY2UuY29tgg9l c3RvbmlhLmtsbS5jb22CEGV0aGlvcGlhLmtsbS5jb22CFGZsaWdodC5haXJmcmFu Y2UuY29tgg5mbGlnaHQua2xtLmNvbYITZ2Fib24uYWlyZnJhbmNlLmNvbYIUZ3Vp YW5hLmFpcmZyYW5jZS5jb22CFGd1aW5lYS5haXJmcmFuY2UuY29tghJpcmFuLmFp cmZyYW5jZS5jb22CDGlyYW4ua2xtLmNvbYIOa3V3YWl0LmtsbS5jb22CFWxlYmFu b24uYWlyZnJhbmNlLmNvbYIPbGliZXJpYS5rbG0uY29tghZsb2dpbi5haXJmcmFu Y2VrbG0uY29tghhtYXJ0aW5pcXVlLmFpcmZyYW5jZS5jb22CEW1hdXJpdGl1cy5r bG0uY29tggxvbWFuLmtsbS5jb22CDnJ3YW5kYS5rbG0uY29tghlzYWludG1hcnRp bi5haXJmcmFuY2UuY29tgg1zYXVkaS5rbG0uY29tghVzZW5lZ2FsLmFpcmZyYW5j ZS5jb22CDnNlcmJpYS5rbG0uY29tghZzbG92ZW5pYS5haXJmcmFuY2UuY29tgg1z dWRhbi5rbG0uY29tghJ0b2dvLmFpcmZyYW5jZS5jb22CFXVydWd1YXkuYWlyZnJh bmNlLmNvbYIVdmlldG5hbS5haXJmcmFuY2UuY29tghB3d3cuYWlyZnJhbmNlLmVj ghB3d3cuYWlyZnJhbmNlLmtlghB3d3cuYWlyZnJhbmNlLnR6ghF3d3dzLmFpcmZy YW5jZS5hbYIRd3d3cy5haXJmcmFuY2UuY2SCFHd3d3MuYWlyZnJhbmNlLmNvLnpt ghV3d3dzLmFpcmZyYW5jZS5jb20uZ2iCFXd3d3MuYWlyZnJhbmNlLmNvbS5sYoIV d3d3cy5haXJmcmFuY2UuY29tLnR3ghV3d3dzLmFpcmZyYW5jZS5jb20udXmCFXd3 d3MuYWlyZnJhbmNlLmNvbS52boIRd3d3cy5haXJmcmFuY2UuZG+CEXd3d3MuYWly ZnJhbmNlLmdhghF3d3dzLmFpcmZyYW5jZS5nZoIRd3d3cy5haXJmcmFuY2UubXGC EXd3d3MuYWlyZnJhbmNlLnNpghF3d3dzLmFpcmZyYW5jZS5zboIRd3d3cy5haXJm cmFuY2UudGeCFHphbWJpYS5haXJmcmFuY2UuY29tghZ6aW1iYWJ3ZS5haXJmcmFu Y2UuY29tghB6aW1iYWJ3ZS5rbG0uY29tMA0GCSqGSIb3DQEBCwUAA4IBAQCZOj3M 3bC+cHhcHG9dvaSCkgdbcKdBRXQCDRpKUqmAbsQNa/IbybBbhS12W6A+ahkfVwKg 3k0StJh19XMbIEcgYlUnH8YR0GhaEM6TjGHlFWYWkxG5HDJKrRr4XJMp3JZ0EolX 2XEPFg7/rcjUZtK5ITRjWHkOpGSS4hPLjWgjxzOWtPEXReCcSJasqz9WpdrGzr51 bbduleHeIk4Stkm/taQ1ckzuhNH8liWc/CiMYIiS3rnqe3rU7UNBc5nT/u/pbrhK cNWHa/kpUMnZjhddll5nX2AwpexgCbjZMfeT/vEkIlTcEawhqDrhZKsyLx9eoF1/ HtFH9KvZrpa8WqZa -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVnJ2Nfxxbj1W+ae4qgb AIPhefcf6xCqTgWhGVGbFl0AaKBTLAtBpZdxonijC2pJmk48w5sH4T2lx4Wykzii J9vNrUEsenIn0JbIZ5xnTFrJAZmdHklN0d+fyUJiMFPROuZO94HxfEH9cNRQdhCm E5TGGYUMyL71SYpoM1v8MbV2uY9WLonyltlG5jegfWSzzBWe7rBf5QQOxtt8nnQ+ QXZPGqOsOvkLekKjIV/Y/KSEA+9vT+gstYIPUw+UoY2lil5BCm1OjLmyBtDsrJYY HsK+LGgNJh/UIOoeNoHHY8q05gYsAePBedhG1f5QmdTk7YdumcLuC9mb7/LGcoMi swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293620468474026261457311653348548846674 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Koninklijke Luchtvaart Maatschappij N.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cuba.klm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24913222420616652991840141860004448425525210628055161591523593698135258812204279793105425504070873224932622005423083598405945894053709378725597119456830213896759511957397633103216137635293652122310046487564079937449765100114571842262069130530214147323917860327381891424991232027359158082151207667475296443721684141147438133969376244060456668810995410239350152724014868566554448534028719132333462363530746276546083693724493334844262796116078017336427782092979986448283042106297860390361145554301853936216058253473391451183776571970787526122662109130175525712343193819704400541010844839344200671078107991252250065576627 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 335fd4faeb36cc6680129ec664b87fabe6c5deef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007600cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018d0c70f9e8000004030047304502205928f0e5c66c22bb6c8c8f0d83f3e308319da88760196a08b0953ff0ddce25b00221009d48625871b36fe759fb1089dace3e35d12255fbd873518f9a0f2eee49c9bff9007600a2e30ae445efbdad9b7e38ed47677753d7825b8494d72b5e1b2cc4b950a447e70000018d0c70f9cf0000040300473045022100a4ef7e4f71889b0a4b9b5adc57f1398c0c750bbda9398aeef374336a15b669a00220298195f1e12b70a4e4c9881c785caad90746b675401b95055f0f956eeefdba640075004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018d0c70f9c4000004030046304402200e240f254911621ba6a1edf7932640c4bd0eb8175563bf33bbb7727868c11b1202202261ff13659ec6f2766fcfc8e59979a214d07b930f9e63f7fb4afaa5817b26d4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1138 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cuba.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'algeria.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-mobile.airfranceklm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'armenia.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bonaire.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'congo.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'congo.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cuba.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dominicanrepublic.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'estonia.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ethiopia.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flight.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flight.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gabon.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guiana.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'guinea.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iran.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iran.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kuwait.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lebanon.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'liberia.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.airfranceklm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'martinique.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mauritius.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oman.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rwanda.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintmartin.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saudi.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'senegal.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'serbia.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'slovenia.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sudan.klm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'togo.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uruguay.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vietnam.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.airfrance.ec' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.airfrance.ke' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.airfrance.tz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.am' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.cd' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.co.zm' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.com.gh' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.com.lb' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.com.tw' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.com.uy' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.com.vn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.do' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.ga' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.gf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.mq' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.si' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.sn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwws.airfrance.tg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zambia.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zimbabwe.airfrance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zimbabwe.klm.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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