www.surfdomeinen.nl
- SURFnet B.V. -
Issued by TERENA SSL CA
About this certificate
This digital certificate with serial number f0:13:aa:5c:00:e9:2c:cc:e5:12:f6:de:bc:35:18:9c was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
SURFnet B.V.
Organization:
SURFnet B.V.
Organization unit: SURFdomeinen
Organization unit: SURFdomeinen
Country:
NL
TERENA
Organization:
TERENA
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): f0:13:aa:5c:00:e9:2c:cc:e5:12:f6:de:bc:35:18:9cSerial Number (int): 319116827927597434597884676455911463068
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 55:7c:e5:b0:80:c2:59:9e:8a:42:03:0a:ae:58:46:dc:3d:14:c5:0e
AuthorityKeyId: 0c:bd:93:68:0c:f3:de:ab:a3:49:6b:2b:37:57:47:ea:90:e3:b9:ed
Fingerprint (sha1): 29:bf:56:b6:70:a0:ba:12:9b:5c:ad:77:f1:56:d3:fa:ce:84:47:ae
Fingerprint (sha256): 0e:4a:90:13:b9:62:38:f2:53:c6:b8:de:9a:8d:b0:96:e0:5f:57:1e:7b:8d:94:e8:d9:5a:76:df:b8:38:71:7c
Issuing Certificate URL: http://crt.tcs.terena.org/TERENASSLCA.crt
Revocation information
OCSP Server: http://ocsp.tcs.terena.orgCRL Distribution Point: http://crl.tcs.terena.org/TERENASSLCA.crl
Check the revocation status for certificate www.surfdomeinen.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.surfdomeinen.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.surfdomeinen.nl
Other certificates including the domain name surfdomeinen.nl
(limited to 100 certificates)
www.surfdomeinen.nl
sirene.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
portal-api-test.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
stargate.surfdomeinen.nl
sirene.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
portal-api-test.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
www.surfdomeinen.nl
stargate.surfdomeinen.nl
Certificate
The complete raw certificate details for www.surfdomeinen.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEgjCCA2qgAwIBAgIRAPATqlwA6SzM5RL23rw1GJwwDQYJKoZIhvcNAQEFBQAw NjELMAkGA1UEBhMCTkwxDzANBgNVBAoTBlRFUkVOQTEWMBQGA1UEAxMNVEVSRU5B IFNTTCBDQTAeFw0xMDA5MDkwMDAwMDBaFw0xMzA5MDgyMzU5NTlaMFkxCzAJBgNV BAYTAk5MMRUwEwYDVQQKEwxTVVJGbmV0IEIuVi4xFTATBgNVBAsTDFNVUkZkb21l aW5lbjEcMBoGA1UEAxMTd3d3LnN1cmZkb21laW5lbi5ubDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBALZEu7bDBMVfhaHxqHzDCd01pF+JsDH1KR1ojO+5 FvCXVUg2Sd1BPyJ2yh11Qq5+9KgWB+YqIQwEKwJhP9sPhidVN3OzG1YL0XU6eO7e zLTOfaZS3TuJ2EQhoLIabXpdJNtdK0wiXFe0jCtpJr+ys3ZqJ5YaJcbSBGPMBslb C9o2gh2tR2sPiCL0FR2Q/fCuluG6yXkB3GxL4tINMuYQ1BeexX53AiUmrYjbc8EW mGIIhk7nvOEv+UkcFGxFzE6XaK0ZezMuaJ22Uozh7yA3f66N3CLEovjLf+n/p7nR GBzZunG7+98q9WqBze4HcaLOQ2WBQOhnpkMG0CcPb+qq9oMCAwEAAaOCAWYwggFi MB8GA1UdIwQYMBaAFAy9k2gM896ro0lrKzdXR+qQ47ntMB0GA1UdDgQWBBRVfOWw gMJZnopCAwquWEbcPRTFDjAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwGAYDVR0gBBEwDzANBgsrBgEE AbIxAQICHTA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vY3JsLnRjcy50ZXJlbmEu b3JnL1RFUkVOQVNTTENBLmNybDBtBggrBgEFBQcBAQRhMF8wNQYIKwYBBQUHMAKG KWh0dHA6Ly9jcnQudGNzLnRlcmVuYS5vcmcvVEVSRU5BU1NMQ0EuY3J0MCYGCCsG AQUFBzABhhpodHRwOi8vb2NzcC50Y3MudGVyZW5hLm9yZzAeBgNVHREEFzAVghN3 d3cuc3VyZmRvbWVpbmVuLm5sMA0GCSqGSIb3DQEBBQUAA4IBAQAT6TJiv7WfqLc7 0J5fcH/YUtvyD0WTsk4BUp2CvtVATcgH5h96R43BO9u2yiErlbHfB1mhdKYqLaRx kGkOXvc2zU8ZKgKqU8ODF+kDLyyQx3mDBcInzXFTEZFBZ2Zp223VCPhnLwbyrukX e1ZRfbFN9dPgdw5v00eyzpTgWTojB2BgMEotcHScSH3YzaSlEZHNsP2MTA8qMxEI I+MXP+K+U6Os1gw1acBNnM8MZ99BCzY7pwT+38N5ts2QQKSyxW6TQAQvgaU/zMBk Mt/u4ZXhJM6Pe6Yvx2L5CevJRFoHPIMRHl8495vLq7pT9u4j6Ih3J1OTrYcNNZ3X 9f8XDvk4 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkS7tsMExV+FofGofMMJ 3TWkX4mwMfUpHWiM77kW8JdVSDZJ3UE/InbKHXVCrn70qBYH5iohDAQrAmE/2w+G J1U3c7MbVgvRdTp47t7MtM59plLdO4nYRCGgshptel0k210rTCJcV7SMK2kmv7Kz dmonlholxtIEY8wGyVsL2jaCHa1Haw+IIvQVHZD98K6W4brJeQHcbEvi0g0y5hDU F57FfncCJSatiNtzwRaYYgiGTue84S/5SRwUbEXMTpdorRl7My5onbZSjOHvIDd/ ro3cIsSi+Mt/6f+nudEYHNm6cbv73yr1aoHN7gdxos5DZYFA6GemQwbQJw9v6qr2 gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 319116827927597434597884676455911463068 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-09-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-09-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SURFnet B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SURFdomeinen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.surfdomeinen.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23009265136315896671748669153566172800437347118974504181576195235394650619791473613041039902538114270186182711078624142314076456445629857290897962842296329053624469123109555570232456217985570216350271923200211294338353730138342164164296780066145360042688459261302975920489524062959252753340078675396393201803434460219209406750188591482833297186131433358282298399251126677978838933167064202242056217132448553429435325056519489596004306546331533212983755155211298959197467443217770427869176851045259451769882401707775804841760711449753318519670259846299119353043887455939091493618147386773982411400693490688078994142851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0cbd93680cf3deaba3496b2b375747ea90e3b9ed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 557ce5b080c2599e8a42030aae5846dc3d14c50e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.tcs.terena.org/TERENASSLCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.tcs.terena.org/TERENASSLCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.tcs.terena.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.surfdomeinen.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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