api.payment-acc.ict.hva.nl
- Stichting Hogeschool van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number ab:e4:a4:da:b4:78:e1:25:87:b1:b8:b7:d2:4a:bb:dd was issued on by GEANT Vereniging.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Stichting Hogeschool van Amsterdam
Organization:
Stichting Hogeschool van Amsterdam
State / Province:
Noord-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): ab:e4:a4:da:b4:78:e1:25:87:b1:b8:b7:d2:4a:bb:ddSerial Number (int): 228485174605734418040392926847289703389
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 61:4c:c8:5c:fa:bf:27:79:13:fc:df:2c:d6:e5:22:f9:dc:41:39:dc
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 98:dd:2e:9a:e3:3d:14:6d:a7:3c:59:c1:ea:2b:ad:28:d3:80:43:7a
Fingerprint (sha256): 0d:63:44:44:aa:ad:d3:09:36:eb:11:b0:70:41:01:4b:ec:3c:eb:60:53:14:06:37:5a:79:15:e6:bf:c1:9f:e1
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate api.payment-acc.ict.hva.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.payment-acc.ict.hva.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.payment-acc.ict.hva.nl
Other certificates including the domain name hva.nl
(limited to 100 certificates)
*.medialab.hva.nl
edit-intra.dbsv.hva.nl
projectonline.dmci.hva.nl
acc-moodle.ict.hva.nl
mobiusportal.uva.dev.icts.education
acc-login.hva.nl
onderwijsconferentie.hva.nl
resultaten.hva.nl
rbs.iscb.hva.nl
fbe-magazines.hva.nl
mi.hva.nl
acc-mi.hva.nl
gitlab.techniek.hva.nl
campus.dmci.hva.nl
stage.centuri.hva.nl
incapsula.com
stagedbsv.hva.nl
teams-prd-sbc1.hva.nl
roosterportal.hva.nl
edulab.fbe.hva.nl
unixbeheer.forux.nl
incapsula.com
rooster.hva.nl
openid.hva.nl
hva.nl
secure-apis.hva.nl
moodle.cmd.hva.nl
asl.techniek.hva.nl
prdcltech0003.ict.hva.nl
intra.sem.hva.nl
webdav-intra.doo.hva.nl
databanken.bibliotheek.hva.nl
ontw-intra.mim.hva.nl
pure.hva.nl
gartnerportal.uva.prd.icts.education
roosterportal.hva.nl
legacy.hva.nl
declaraties.hva.nl
api.declaraties-acc.hva.nl
cl.acc.hvaweb.formist.nl
id.hva.prd.icts.education
apps.hva.nl
moodle-prd-fdmci.lb.hva.nl
edulab.fbe.hva.nl
incapsula.com
login.hva.nl
sis.hva.nl
incapsula.com
onderwijslab.techniek.hva.nl
*.acceptatie.hva.nl
prdcltech0004.ict.hva.nl
intra.alo.hva.nl
ex2016-prd-hva.lb.uva.nl
incapsula.com
edit-intra.iam.hva.nl
devarchief.roxen.hva.nl
incapsula.com
sis.hva.nl
acc-moodle.ict.hva.nl
hvacms-acc-redactie.lb.uva.nl
recovery.ict.hva.nl
rps.hva.nl
aanmelden.hva.nl
hvacms-prd-www.lb.uva.nl
campuscreators.nl
www.excellentieprogramma.hva.nl
gartnerportal3.uva.dev.icts.education
ac.hva.nl
hva.nl
gitlab.dmci.hva.nl
idm-acc-conhva1.acc-ad.hva.nl
login.hva.nl
sis.hva.nl
mapleta-oefen.hva.nl
curriculum.techniek.hva.nl
www.lustrum.hva.nl
wivlog.ict.hva.nl
incapsula.com
vpxldaps.ad.hva.nl
hvacms-prd-redactie.lb.uva.nl
sis.hva.nl
gitlab.techniek.hva.nl
incapsula.com
hvacms-prd-fe.lb.hva.nl
moodle-dev-fdmci.lb.hva.nl
edit-hva-instituten.hva.nl
salto-acc-hva1.ad.hva.nl
stage.centuri.hva.nl
bscw.hva.nl
discord.informatica.hva.nl
tijdreg.hva.nl
*.acc-blogs.dmci.hva.nl
beheervpn-prd.net.uha.nl
intra.si.hva.nl
lyndaportal.fdmci.hva.nl
dlwo.dmci.hva.nl
vpn.hva.nl
asl.techniek.hva.nl
api.payment-acc.ict.hva.nl
login.hva.nl
edit-intra.dbsv.hva.nl
projectonline.dmci.hva.nl
acc-moodle.ict.hva.nl
mobiusportal.uva.dev.icts.education
acc-login.hva.nl
onderwijsconferentie.hva.nl
resultaten.hva.nl
rbs.iscb.hva.nl
fbe-magazines.hva.nl
mi.hva.nl
acc-mi.hva.nl
gitlab.techniek.hva.nl
campus.dmci.hva.nl
stage.centuri.hva.nl
incapsula.com
stagedbsv.hva.nl
teams-prd-sbc1.hva.nl
roosterportal.hva.nl
edulab.fbe.hva.nl
unixbeheer.forux.nl
incapsula.com
rooster.hva.nl
openid.hva.nl
hva.nl
secure-apis.hva.nl
moodle.cmd.hva.nl
asl.techniek.hva.nl
prdcltech0003.ict.hva.nl
intra.sem.hva.nl
webdav-intra.doo.hva.nl
databanken.bibliotheek.hva.nl
ontw-intra.mim.hva.nl
pure.hva.nl
gartnerportal.uva.prd.icts.education
roosterportal.hva.nl
legacy.hva.nl
declaraties.hva.nl
api.declaraties-acc.hva.nl
cl.acc.hvaweb.formist.nl
id.hva.prd.icts.education
apps.hva.nl
moodle-prd-fdmci.lb.hva.nl
edulab.fbe.hva.nl
incapsula.com
login.hva.nl
sis.hva.nl
incapsula.com
onderwijslab.techniek.hva.nl
*.acceptatie.hva.nl
prdcltech0004.ict.hva.nl
intra.alo.hva.nl
ex2016-prd-hva.lb.uva.nl
incapsula.com
edit-intra.iam.hva.nl
devarchief.roxen.hva.nl
incapsula.com
sis.hva.nl
acc-moodle.ict.hva.nl
hvacms-acc-redactie.lb.uva.nl
recovery.ict.hva.nl
rps.hva.nl
aanmelden.hva.nl
hvacms-prd-www.lb.uva.nl
campuscreators.nl
www.excellentieprogramma.hva.nl
gartnerportal3.uva.dev.icts.education
ac.hva.nl
hva.nl
gitlab.dmci.hva.nl
idm-acc-conhva1.acc-ad.hva.nl
login.hva.nl
sis.hva.nl
mapleta-oefen.hva.nl
curriculum.techniek.hva.nl
www.lustrum.hva.nl
wivlog.ict.hva.nl
incapsula.com
vpxldaps.ad.hva.nl
hvacms-prd-redactie.lb.uva.nl
sis.hva.nl
gitlab.techniek.hva.nl
incapsula.com
hvacms-prd-fe.lb.hva.nl
moodle-dev-fdmci.lb.hva.nl
edit-hva-instituten.hva.nl
salto-acc-hva1.ad.hva.nl
stage.centuri.hva.nl
bscw.hva.nl
discord.informatica.hva.nl
tijdreg.hva.nl
*.acc-blogs.dmci.hva.nl
beheervpn-prd.net.uha.nl
intra.si.hva.nl
lyndaportal.fdmci.hva.nl
dlwo.dmci.hva.nl
vpn.hva.nl
asl.techniek.hva.nl
api.payment-acc.ict.hva.nl
login.hva.nl
Certificate
The complete raw certificate details for api.payment-acc.ict.hva.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCDCCA/CgAwIBAgIRAKvkpNq0eOElh7G4t9JKu90wDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIyMDgxNTAwMDAwMFoXDTIzMDgxNTIz NTk1OVowdzELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvbGxhbmQxKzAp BgNVBAoTIlN0aWNodGluZyBIb2dlc2Nob29sIHZhbiBBbXN0ZXJkYW0xIzAhBgNV BAMTGmFwaS5wYXltZW50LWFjYy5pY3QuaHZhLm5sMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAv/hculh4kM77KTJqNOmZ7/mUNs9LdCXLYCSGUUns4KeC VUywR5NOUccDGjthNx32ifW6HD4Ail3nk8r7hcbVIfB4UrQIsXbLHnnybGrXYPdt l6v+0I/m4LnuPR/GqCMfwEXxnK11o9PLcfXJiNWBwBEfLo3H3y3rdtaEiGdyEqX2 nMzkknsq167yMHrVNDDTpUqdlTfVPXzHmdaENqQ4DindD/hIt6JlJGISWOAdwUAo tozKN7n05bToNiEuWeVwcg1EWPQGtVy0+s9rH1STPyF5rzP3VNDTnap//ROlbbjT chBOYUZ3b3ppz4Puk710Dxske1yBn1Dv9eQd+MEM4QIDAQABo4IBwDCCAbwwHwYD VR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFGFMyFz6vyd5 E/zfLNblIvncQTncMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEB AgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeB DAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3RpZ28u Y29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEFBQcw AoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNy dDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20wEwYK KwYBBAHWeQIEAwEB/wQCBQAwJQYDVR0RBB4wHIIaYXBpLnBheW1lbnQtYWNjLmlj dC5odmEubmwwDQYJKoZIhvcNAQEMBQADggIBAG8O2jNvI2g7fCdhclHD3wzt6S9m nQrI7hJB5AsSsuGFBdgNYF7oiQE9VScVz8dbGVhUvyNkJjndvteVlMxbwMDreAYn 2AaJoIlMUDrVhDcht22o1iTiy3q8cj+WN5LRcNNYBCMDyQmB/57MZAuqvHsZVl6K ISh0MC79FmHybNobsAqMOcRnJL3ImjCGQiiB4jGyCQDtMJN6DJ07CQ3JClrj/My+ EVmw5zcLXpPZpgdE+2ZSz/1JvnCXHTWuzkGA/ff059LkqQOXWcKyRqYdNPaAzX/R 5fXrlwE/2uIwxgS/6oQ4QwlEWK5KwRsvTuc+V1Z8j7j07TPtMihQ+Zyp7x4bom/N kE1LE4iKXhcoCeupGm29kG/3PbvqrM1v/7wzlmHltmacIp10kBSoW8TXY+Wcwd28 I1r99xkfkVLx9zzRfcMI6+vqwgLrkK8P2D3wWz2XC0ZlkuLJ0Z4a6Onmky5P2NmU emIz/w7agel0Yb8oZzoDs4QgoLcSLeOSBZ05TD4Pd3yAiKo5V6aeIU+UNk9sQKUk F7hhAljx/QzNtWQlGX6Pxr3F0Bj44LAWo2990LR2r3ciGueeHo53xDrgy7kCM12L +mYEbePKod8iCBbcJW2bzwUSzu6gIaRtDM4f/7FbJoZR361K3XoZ/CUULUbyQ7z7 4dpYV+6cxXlZraNq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/hculh4kM77KTJqNOmZ 7/mUNs9LdCXLYCSGUUns4KeCVUywR5NOUccDGjthNx32ifW6HD4Ail3nk8r7hcbV IfB4UrQIsXbLHnnybGrXYPdtl6v+0I/m4LnuPR/GqCMfwEXxnK11o9PLcfXJiNWB wBEfLo3H3y3rdtaEiGdyEqX2nMzkknsq167yMHrVNDDTpUqdlTfVPXzHmdaENqQ4 DindD/hIt6JlJGISWOAdwUAotozKN7n05bToNiEuWeVwcg1EWPQGtVy0+s9rH1ST PyF5rzP3VNDTnap//ROlbbjTchBOYUZ3b3ppz4Puk710Dxske1yBn1Dv9eQd+MEM 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 228485174605734418040392926847289703389 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stichting Hogeschool van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.payment-acc.ict.hva.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24233988223007203639786869774719602347617380321800870357496752593615621096207910273507509303191967437169520390251439139191060925734211613846123687916846658266336242073532142641420927192966394646647480308304597643673666876685488283694108978973005327531498119678147063549284947917508086774208978691207962103271033722245396158531908537731317824065455086431068635929436329343726563681542639771681002157543303023506711258822867309584686701172066128018181110724290929056565422013396677594777355475500499554823522789486274406714366464207210312390750290844451301133460438094762855058282455701348415374183437249045812329123041 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 614cc85cfabf277913fcdf2cd6e522f9dc4139dc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.payment-acc.ict.hva.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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