hybrid.nza.nl
- De Nederlandse Zorgautoriteit (NZa) -
Issued by KPN PKIoverheid Server CA 2020
About this certificate
This digital certificate with serial number 46:35:a3:d3:37:02:52:c1:a3:e5:21:1b:64:80:f0:9e:93:3e:f2:c6 was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
De Nederlandse Zorgautoriteit (NZa)
Company registration number:
00000003525031430000
Organization: De Nederlandse Zorgautoriteit (NZa)
Organization: De Nederlandse Zorgautoriteit (NZa)
Locality:
Utrecht
Country: NL
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 46:35:a3:d3:37:02:52:c1:a3:e5:21:1b:64:80:f0:9e:93:3e:f2:c6Serial Number (int): 400825564628496789822274019293897524546946134726
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: e0:3e:10:4f:af:07:cb:37:08:30:e5:37:81:9e:fe:c3:31:db:52:2e
AuthorityKeyId: 08:4a:aa:bb:99:24:6f:be:5b:07:f1:a5:8a:99:5b:2d:47:ef:b9:3c
Fingerprint (sha1): 8a:e6:87:59:bc:80:dc:24:d4:c2:b7:8d:74:51:35:d4:18:42:6b:39
Fingerprint (sha256): 0c:f4:37:f9:f6:77:de:84:55:2d:1f:28:ed:21:e1:3c:3b:6d:29:eb:74:7d:7b:6f:c4:9a:65:5f:b9:0c:03:0f
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNPKIoverheidServerCA2020.cer
Revocation information
OCSP Server: http://ocsp2020.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNPKIoverheidServerCA2020/LatestCRL.crl
Check the revocation status for certificate hybrid.nza.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hybrid.nza.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hybrid.nza.nl
Other certificates including the domain name nza.nl
(limited to 100 certificates)
www.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
www.werkenmetdbcs.nza.nl
systems.squaredup.com
dbcregels.nza.nl
adfs.nza.nl
praatmee.nza.nl
zorgproducten-test.nza.nl
*.nza.nl
hub.theriderfirm.cc
dbcregels.nza.nl
nza-portaal1.nza.nl
servicedesk.esmsglobal.com
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
service.littlegarth.org
nza-form6.nza.nl
www.nza.nl
leren.nza.nl
dkdlmodel.nza.nl
zorgvraagtypering.nza.nl
nza-form5.nza.nl
uitwisselportaal.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
hybrid.nza.nl
tarievenzoekerzorgprestatiemodel.nza.nl
dkdlmodel.nza.nl
support.homeinstead.ie
zorgvraagtypering-test.nza.nl
dbcregels.nza.nl
meldingsformulier.nza.nl
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
zorgclustertool-test.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
zorgproducten.nza.nl
www.nza.nl
zorgproducten-test.nza.nl
support.homeinstead.ie
service.littlegarth.org
soporte.martinezabolafio.com
zorgproducten-test.nza.nl
zorgproducten-test.nza.nl
nza.nl
servicedesk.coram.eu
uitwisselportaal.nza.nl
zorgcijfers.nza.nl
sd.srk-zuerich.ch
zorgproducten.nza.nl
login.nza.nl
nza-form2.nza.nl
mijn-accp.nza.nl
helpdesk.sunlight.gr
support.brill.com
portal.nza.nl
www.werkenmetdbcs.nza.nl
dbcregels.nza.nl
support.homeinstead.ie
nzarpsamd001.nza.nl
leren.nza.nl
helpdesk.itwfasteners.com
dbcregels.nza.nl
nzarpsamd002.nza.nl
mijn-accp.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
wireless.nza.nl
nza-portaal1.nza.nl
zorgproducten-test.nza.nl
zorgcijfers.nza.nl
uitwisselportaal.nza.nl
nza-form1.nza.nl
zorgproducten.nza.nl
nzarpsamd002.nza.nl
dbcregels.nza.nl
www.werkenmetdbcs.nza.nl
zorgproductenviewer.nza.nl
adfs.nza.nl
mta-sts.nza.nl
acceptatie.crm.nza.nl
owa.nza.nl
zorgclustertool.nza.nl
adfs.nza.nl
l1.platformrijksoverheid.nl
werkenbijde.nza.nl
ithelpdesk.koinly.io
nzarpsamd002.nza.nl
nieuwmodelggzfz.nza.nl
aanvragen.nza.nl
customerportal.uk.rlb.com
nzarpsamd001.nza.nl
nza-form3.nza.nl
l1.platformrijksoverheid.nl
helpdesk.sunlight.gr
wachttijden.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
www.werkenmetdbcs.nza.nl
systems.squaredup.com
dbcregels.nza.nl
adfs.nza.nl
praatmee.nza.nl
zorgproducten-test.nza.nl
*.nza.nl
hub.theriderfirm.cc
dbcregels.nza.nl
nza-portaal1.nza.nl
servicedesk.esmsglobal.com
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
service.littlegarth.org
nza-form6.nza.nl
www.nza.nl
leren.nza.nl
dkdlmodel.nza.nl
zorgvraagtypering.nza.nl
nza-form5.nza.nl
uitwisselportaal.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
hybrid.nza.nl
tarievenzoekerzorgprestatiemodel.nza.nl
dkdlmodel.nza.nl
support.homeinstead.ie
zorgvraagtypering-test.nza.nl
dbcregels.nza.nl
meldingsformulier.nza.nl
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
zorgclustertool-test.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
zorgproducten.nza.nl
www.nza.nl
zorgproducten-test.nza.nl
support.homeinstead.ie
service.littlegarth.org
soporte.martinezabolafio.com
zorgproducten-test.nza.nl
zorgproducten-test.nza.nl
nza.nl
servicedesk.coram.eu
uitwisselportaal.nza.nl
zorgcijfers.nza.nl
sd.srk-zuerich.ch
zorgproducten.nza.nl
login.nza.nl
nza-form2.nza.nl
mijn-accp.nza.nl
helpdesk.sunlight.gr
support.brill.com
portal.nza.nl
www.werkenmetdbcs.nza.nl
dbcregels.nza.nl
support.homeinstead.ie
nzarpsamd001.nza.nl
leren.nza.nl
helpdesk.itwfasteners.com
dbcregels.nza.nl
nzarpsamd002.nza.nl
mijn-accp.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
wireless.nza.nl
nza-portaal1.nza.nl
zorgproducten-test.nza.nl
zorgcijfers.nza.nl
uitwisselportaal.nza.nl
nza-form1.nza.nl
zorgproducten.nza.nl
nzarpsamd002.nza.nl
dbcregels.nza.nl
www.werkenmetdbcs.nza.nl
zorgproductenviewer.nza.nl
adfs.nza.nl
mta-sts.nza.nl
acceptatie.crm.nza.nl
owa.nza.nl
zorgclustertool.nza.nl
adfs.nza.nl
l1.platformrijksoverheid.nl
werkenbijde.nza.nl
ithelpdesk.koinly.io
nzarpsamd002.nza.nl
nieuwmodelggzfz.nza.nl
aanvragen.nza.nl
customerportal.uk.rlb.com
nzarpsamd001.nza.nl
nza-form3.nza.nl
l1.platformrijksoverheid.nl
helpdesk.sunlight.gr
wachttijden.nza.nl
Certificate
The complete raw certificate details for hybrid.nza.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGozCCBIugAwIBAgIURjWj0zcCUsGj5SEbZIDwnpM+8sYwDQYJKoZIhvcNAQEL BQAwSTELMAkGA1UEBhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMScwJQYDVQQDDB5L UE4gUEtJb3ZlcmhlaWQgU2VydmVyIENBIDIwMjAwHhcNMjEwMTA0MTQyMDQ2WhcN MjIwMTA0MTQyMDQ2WjCBhDELMAkGA1UEBhMCTkwxEDAOBgNVBAcMB1V0cmVjaHQx LDAqBgNVBAoMI0RlIE5lZGVybGFuZHNlIFpvcmdhdXRvcml0ZWl0IChOWmEpMR0w GwYDVQQFExQwMDAwMDAwMzUyNTAzMTQzMDAwMDEWMBQGA1UEAwwNaHlicmlkLm56 YS5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANQBjFgtvpT0ftKS SV2iChHS1+WPGjjRMJOuyy6G0cdEjOyfN6V1Xvw9EvVq/wBwl0kpMBvKvMryA2BM 6JNAdCMBdkLtYr8JSHc5WJ84qDz2W70SxDnuCkqsB/A1jtfrAGLSbV70OdnGvL2K lZOJrZ8+K1xyH7pY5YYCxPeDjJ08RORmIkp1QIB/KIZHQyBsxcoyuT7NisQjiRib PO0F6rfxKmfd54R6p/bhCgiJhQ0KvVdeWjpkGI/Y5oRqgZYFOjDRt2KoUXHqyvj9 n+QwU3FHoa3FSjWlBDP15jhRhX2L4/QSOXtJqEeYDtw2qwGONNcWBMF0yTRMLPIt 9Dt1EV0CAwEAAaOCAkUwggJBMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUCEqq u5kkb75bB/GliplbLUfvuTwwgYkGCCsGAQUFBwEBBH0wezBNBggrBgEFBQcwAoZB aHR0cDovL2NlcnQubWFuYWdlZHBraS5jb20vQ0FjZXJ0cy9LUE5QS0lvdmVyaGVp ZFNlcnZlckNBMjAyMC5jZXIwKgYIKwYBBQUHMAGGHmh0dHA6Ly9vY3NwMjAyMC5t YW5hZ2VkcGtpLmNvbTAYBgNVHREEETAPgg1oeWJyaWQubnphLm5sMIGxBgNVHSAE gakwgaYwCAYGZ4EMAQICMIGZBgpghBABh2sBAgUJMIGKMDcGCCsGAQUFBwIBFito dHRwczovL2NlcnRpZmljYWF0Lmtwbi5jb20vcGtpb3ZlcmhlaWQvY3BzME8GCCsG AQUFBwICMEMMQU9wIGRpdCBjZXJ0aWZpY2FhdCBpcyBoZXQgQ1BTIFBLSW92ZXJo ZWlkIHZhbiBLUE4gdmFuIHRvZXBhc3NpbmcuMB0GA1UdJQQWMBQGCCsGAQUFBwMC BggrBgEFBQcDATBTBgNVHR8ETDBKMEigRqBEhkJodHRwOi8vY3JsLm1hbmFnZWRw a2kuY29tL0tQTlBLSW92ZXJoZWlkU2VydmVyQ0EyMDIwL0xhdGVzdENSTC5jcmww HQYDVR0OBBYEFOA+EE+vB8s3CDDlN4Ge/sMx21IuMA4GA1UdDwEB/wQEAwIFoDAT BgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAgEALn4eS0NzIWu/ IKuLliM0jvZX3sjL9sR8eh2jEupFGhrDFVgp8TC0d/BJJP9yuM8qawXNhS0KAgQi xjllutEfvFB02jlx5uMSze7s0Cs06IqiG8nok93vAe5Zjteap4H7oiVQU05OxZMw +VlwyJmH/pGPf+2pKw4Q2XrLB5jGlEFF72Nxy1GYcazoHiHx0L5OWyXSA/nNHZio b4WWPzTqA8cFyWuwaDJrOcWGnEPTPgAMczDPibm9wfPfcuAGfgsemnNBk5tTEgGU g2in953hJ4FHrNDUh/Npft+U8PAk3T9r2TVpqeqbPvVmHw0HVTnjJi2WytIGrO0I vEOFdyuOIKXr6yF1idMFSu4j2ynImDiueRUCRtJzDfTkt2Ol9/BejePCOWFUm1yo VUORQYFqbuQhuIwlyDkHPmL/COzIq/0/uHIGms0JHJuLjTedJFwXgOBIGSMCpvYA 1poEMnf4u01Si+3VkwsSgu2Y5WHDfFe7FCvNFY6sGvaXGbBz8Tbi9EKGYukLjPFa IpuHoj/5/PRKCgkX50Q/vx6/FptN8iwUO/Ddzo0G5n/iMiI0NAxxRRj5B/wbjTVO 8XSjoWS9mOC+nYCu95T+pvPIs0JpBwTasahsoxrazzLRXp2OauFp1wh9NYCKOdal 1sriZlKb/ixD6I5y22fn058HL8xv7uQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AGMWC2+lPR+0pJJXaIK EdLX5Y8aONEwk67LLobRx0SM7J83pXVe/D0S9Wr/AHCXSSkwG8q8yvIDYEzok0B0 IwF2Qu1ivwlIdzlYnzioPPZbvRLEOe4KSqwH8DWO1+sAYtJtXvQ52ca8vYqVk4mt nz4rXHIfuljlhgLE94OMnTxE5GYiSnVAgH8ohkdDIGzFyjK5Ps2KxCOJGJs87QXq t/EqZ93nhHqn9uEKCImFDQq9V15aOmQYj9jmhGqBlgU6MNG3YqhRcerK+P2f5DBT cUehrcVKNaUEM/XmOFGFfYvj9BI5e0moR5gO3DarAY401xYEwXTJNEws8i30O3UR XQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400825564628496789822274019293897524546946134726 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN PKIoverheid Server CA 2020' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-04 14:20:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-04 14:20:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'De Nederlandse Zorgautoriteit (NZa)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000003525031430000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'hybrid.nza.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26763284108787381845409944239172227563434491571320582466178851789270433383141698688569958286728883407928226636853065883309230454416867047514070584067485206154863127205871682289137100672883720990153267855099511092873658768642327617990706328096953502588873424557379642924192637500192334193703249744352197873492344182251055723813605174388855479237038635123201492684492601819073973153231906655862162816606813991974823600979581068197051945901860517300489516025126380178044269122755286026629744786642398414437424385794746507605370456613837061020391630950907966191347030844644069880579515041745606138813452134051463151554909 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 084aaabb99246fbe5b07f1a58a995b2d47efb93c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNPKIoverheidServerCA2020.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2020.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hybrid.nza.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.9 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNPKIoverheidServerCA2020/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e03e104faf07cb370830e537819efec331db522e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 002e7e1e4b4373216bbf20ab8b9623348ef657dec8cbf6c47c7a1da312ea451a1ac3155829f130b477f04924ff72b8cf2a6b05cd852d0a020422c63965bad11fbc5074da3971e6e312cdeeecd02b34e88aa21bc9e893ddef01ee598ed79aa781fba22550534e4ec59330f95970c89987fe918f7feda92b0e10d97acb0798c6944145ef6371cb519871ace81e21f1d0be4e5b25d203f9cd1d98a86f85963f34ea03c705c96bb068326b39c5869c43d33e000c7330cf89b9bdc1f3df72e0067e0b1e9a7341939b531201948368a7f79de1278147acd0d487f3697edf94f0f024dd3f6bd93569a9ea9b3ef5661f0d075539e3262d96cad206aced08bc4385772b8e20a5ebeb217589d3054aee23db29c89838ae79150246d2730df4e4b763a5f7f05e8de3c23961549b5ca855439141816a6ee421b88c25c839073e62ff08ecc8abfd3fb872069acd091c9b8b8d379d245c1780e048192302a6f600d69a043277f8bb4d528bedd5930b1282ed98e561c37c57bb142bcd158eac1af69719b073f136e2f4428662e90b8cf15a229b87a23ff9fcf44a0a0917e7443fbf1ebf169b4df22c143bf0ddce8d06e67fe2322234340c714518f907fc1b8d354ef174a3a164bd98e0be9d80aef794fea6f3c8b342690704dab1a86ca31adacf32d15e9d8e6ae169d7087d35808a39d6a5d6cae266529bfe2c43e88e72db67e7d39f072fcc6feee4