ds4.zmaw.de
- Max-Planck-Gesellschaft -
Issued by MPG CA - G02
About this certificate
This digital certificate with serial number 20:83:67:12:81:bb:f1:53:ff:22:26:56 was issued on by Max-Planck-Gesellschaft.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Max-Planck-Gesellschaft
Organization:
Max-Planck-Gesellschaft
Organization unit: Max-Planck-Institut fuer Meteorologie
Organization unit: Max-Planck-Institut fuer Meteorologie
State / Province:
Hamburg
Locality: Hamburg
Country: DE
Locality: Hamburg
Country: DE
Max-Planck-Gesellschaft
Organization:
Max-Planck-Gesellschaft
State / Province:
Bayern
Locality: Muenchen
Country: DE
Locality: Muenchen
Country: DE
This certificate has expire since
Certificate Details
Serial Number (hex): 20:83:67:12:81:bb:f1:53:ff:22:26:56Serial Number (int): 10062376341790018315911046742
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 1e:0c:eb:eb:2d:f5:3e:25:83:14:cb:d1:16:b0:1d:85:2a:d9:3b:28
AuthorityKeyId: c4:88:a5:07:ee:b8:7b:aa:0c:13:bf:da:29:74:63:52:1b:49:70:16
Fingerprint (sha1): dd:34:d2:ee:3e:76:69:2e:3d:b1:3d:5a:49:f9:12:c8:f9:75:6c:73
Fingerprint (sha256): 0f:64:56:c4:69:1a:ca:bc:66:dd:a8:72:e5:f7:59:20:a6:17:cd:bf:bd:09:b5:bd:01:f4:59:43:c0:95:f8:2d
Issuing Certificate URL: http://cdp1.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl
Check the revocation status for certificate ds4.zmaw.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ds4.zmaw.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ds4.zmaw.de
ds4.mpimet.mpg.de
ds4.mpimet.mpg.de
Other certificates including the domain name zmaw.de
(limited to 100 certificates)
ds11g-dps2.zmaw.de
www.ifm.zmaw.de
nagios.mpimet.mpg.de
wts.mpimet.mpg.de
webgis.zmaw.de
dc-dev.adtest.zmaw.de
wera.ifm.zmaw.de
www.zmaw.de
ds4.zmaw.de
code.mpimet.mpg.de
t3projects.mpimet.mpg.de
dc4.zmaw.zmaw.de
lists.zmaw.de
vpngate.zmaw.de
cis.zmaw.de
ldapadmin.mpimet.mpg.de
www.mi.zmaw.de
ds6.zmaw.de
t3projects.zmaw.de
code.mpimet.mpg.de
mailer.zmaw.de
code.zmaw.de
calendar.zmaw.de
www.mi.zmaw.de
ds5.zmaw.de
svn-zmk.zmaw.de
mad-rt.zmaw.de
dps5.zmaw.de
wiki.zmaw.de
t3projects.mpimet.mpg.de
svn.zmaw.de
www.ifm.zmaw.de
lists.zmaw.de
ds11g-ds1.zmaw.de
mail2.zmaw.de
ftp-projects.mpimet.mpg.de
dc-dev2.adtest.zmaw.de
caldav.zmaw.de
webgis.zmaw.de
ftp.mpimet.mpg.de
dps5.zmaw.de
ftp-projects.mpimet.mpg.de
wiki.zmaw.de
www.geophysics.zmaw.de
t3projects.mpimet.mpg.de
t3projects.mpimet.mpg.de
mailer.zmaw.de
wera.ifm.zmaw.de
ds5.zmaw.de
cis.zmaw.de
buildbot.zmaw.de
wettermast-hamburg.zmaw.de
hwdb.mpimet.mpg.de
isw.zmaw.de
ds5-dmz.zmaw.de
ds11g-ds2.zmaw.de
wiki.zmaw.de
ds11g-ds2.zmaw.de
www.geophysics.zmaw.de
mailer.zmaw.de
calendar.zmaw.de
ds11g-ds3.zmaw.de
www.geophysics.zmaw.de
ds4.zmaw.de
t3projects.zmaw.de
lidargate.mpimet.mpg.de
hwdb.mpimet.mpg.de
ds11g-dps2.zmaw.de
barbados.mpimet.mpg.de
solaris-isw.zmaw.de
www.zmaw.de
isw.zmaw.de
ds7.zmaw.de
code.mpimet.mpg.de
www.geophysics.zmaw.de
ftp.mpimet.mpg.de
webstat.zmaw.de
icdc.zmaw.de
t3projects.mpimet.mpg.de
buildbot.mpimet.mpg.de
svn.mpimet.mpg.de
svn.mpimet.mpg.de
svn-zmk.zmaw.de
ds4-dmz.zmaw.de
svn.zmaw.de
code.zmaw.de
dc3.zmaw.zmaw.de
mail1.zmaw.de
dps4.zmaw.de
svn-mad.zmaw.de
code.mpimet.mpg.de
ds6.zmaw.de
www.zmaw.de
cumulus.zmaw.de
cis.zmaw.de
dc4.zmaw.zmaw.de
ds11g-ds1.zmaw.de
t3projects.mpimet.mpg.de
lists.zmaw.de
t3projects.mpimet.mpg.de
www.ifm.zmaw.de
nagios.mpimet.mpg.de
wts.mpimet.mpg.de
webgis.zmaw.de
dc-dev.adtest.zmaw.de
wera.ifm.zmaw.de
www.zmaw.de
ds4.zmaw.de
code.mpimet.mpg.de
t3projects.mpimet.mpg.de
dc4.zmaw.zmaw.de
lists.zmaw.de
vpngate.zmaw.de
cis.zmaw.de
ldapadmin.mpimet.mpg.de
www.mi.zmaw.de
ds6.zmaw.de
t3projects.zmaw.de
code.mpimet.mpg.de
mailer.zmaw.de
code.zmaw.de
calendar.zmaw.de
www.mi.zmaw.de
ds5.zmaw.de
svn-zmk.zmaw.de
mad-rt.zmaw.de
dps5.zmaw.de
wiki.zmaw.de
t3projects.mpimet.mpg.de
svn.zmaw.de
www.ifm.zmaw.de
lists.zmaw.de
ds11g-ds1.zmaw.de
mail2.zmaw.de
ftp-projects.mpimet.mpg.de
dc-dev2.adtest.zmaw.de
caldav.zmaw.de
webgis.zmaw.de
ftp.mpimet.mpg.de
dps5.zmaw.de
ftp-projects.mpimet.mpg.de
wiki.zmaw.de
www.geophysics.zmaw.de
t3projects.mpimet.mpg.de
t3projects.mpimet.mpg.de
mailer.zmaw.de
wera.ifm.zmaw.de
ds5.zmaw.de
cis.zmaw.de
buildbot.zmaw.de
wettermast-hamburg.zmaw.de
hwdb.mpimet.mpg.de
isw.zmaw.de
ds5-dmz.zmaw.de
ds11g-ds2.zmaw.de
wiki.zmaw.de
ds11g-ds2.zmaw.de
www.geophysics.zmaw.de
mailer.zmaw.de
calendar.zmaw.de
ds11g-ds3.zmaw.de
www.geophysics.zmaw.de
ds4.zmaw.de
t3projects.zmaw.de
lidargate.mpimet.mpg.de
hwdb.mpimet.mpg.de
ds11g-dps2.zmaw.de
barbados.mpimet.mpg.de
solaris-isw.zmaw.de
www.zmaw.de
isw.zmaw.de
ds7.zmaw.de
code.mpimet.mpg.de
www.geophysics.zmaw.de
ftp.mpimet.mpg.de
webstat.zmaw.de
icdc.zmaw.de
t3projects.mpimet.mpg.de
buildbot.mpimet.mpg.de
svn.mpimet.mpg.de
svn.mpimet.mpg.de
svn-zmk.zmaw.de
ds4-dmz.zmaw.de
svn.zmaw.de
code.zmaw.de
dc3.zmaw.zmaw.de
mail1.zmaw.de
dps4.zmaw.de
svn-mad.zmaw.de
code.mpimet.mpg.de
ds6.zmaw.de
www.zmaw.de
cumulus.zmaw.de
cis.zmaw.de
dc4.zmaw.zmaw.de
ds11g-ds1.zmaw.de
t3projects.mpimet.mpg.de
lists.zmaw.de
t3projects.mpimet.mpg.de
Certificate
The complete raw certificate details for ds4.zmaw.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9DCCBNygAwIBAgIMIINnEoG78VP/IiZWMA0GCSqGSIb3DQEBCwUAMGoxCzAJ BgNVBAYTAkRFMQ8wDQYDVQQIDAZCYXllcm4xETAPBgNVBAcMCE11ZW5jaGVuMSAw HgYDVQQKDBdNYXgtUGxhbmNrLUdlc2VsbHNjaGFmdDEVMBMGA1UEAwwMTVBHIENB IC0gRzAyMB4XDTE5MDIxMzA5NTUxNloXDTIxMDUxNzA5NTUxNlowgZkxCzAJBgNV BAYTAkRFMRAwDgYDVQQIDAdIYW1idXJnMRAwDgYDVQQHDAdIYW1idXJnMSAwHgYD VQQKDBdNYXgtUGxhbmNrLUdlc2VsbHNjaGFmdDEuMCwGA1UECwwlTWF4LVBsYW5j ay1JbnN0aXR1dCBmdWVyIE1ldGVvcm9sb2dpZTEUMBIGA1UEAwwLZHM0LnptYXcu ZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC34N2eFEmvRd7nN2Un 6EIN9tyysv93Oc+k7HPCcivVlzzL9bImjA83OMhRfNHC2v+SOyYrHS7Aj3F4b6OJ FqfEhbi3nOrGPq6YgiBZhTJNqmT0j0MauY75tQgmdNgzlWdhtA8K8ZkYMNecMiIk ++quuDdaBYOiCXt7O/Lf8ufZr83o8D28pGzNaT55iebyyFUQkt3KCUUaJ4sihdap XWElXWUXlqsV/+4XM+8PyJ3rzdp3sPkzTmJjgIbCYUKd4LIIVZDfF0OfIPQIos37 Icf7AupUcEUbbCARKIlukRUCOFm27arT6YrYI7Ti5MkBGBwImPgy11ZLhH4DixFn 0wNDAgMBAAGjggJoMIICZDAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwHQYDVR0OBBYEFB4M6+st9T4lgxTL 0RawHYUq2TsoMB8GA1UdIwQYMBaAFMSIpQfuuHuqDBO/2il0Y1IbSXAWMCkGA1Ud EQQiMCCCC2RzNC56bWF3LmRlghFkczQubXBpbWV0Lm1wZy5kZTB9BgNVHR8EdjB0 MDigNqA0hjJodHRwOi8vY2RwMS5wY2EuZGZuLmRlL21wZy1nMi1jYS9wdWIvY3Js L2NhY3JsLmNybDA4oDagNIYyaHR0cDovL2NkcDIucGNhLmRmbi5kZS9tcGctZzIt Y2EvcHViL2NybC9jYWNybC5jcmwwgc0GCCsGAQUFBwEBBIHAMIG9MDMGCCsGAQUF BzABhidodHRwOi8vb2NzcC5wY2EuZGZuLmRlL09DU1AtU2VydmVyL09DU1AwQgYI KwYBBQUHMAKGNmh0dHA6Ly9jZHAxLnBjYS5kZm4uZGUvbXBnLWcyLWNhL3B1Yi9j YWNlcnQvY2FjZXJ0LmNydDBCBggrBgEFBQcwAoY2aHR0cDovL2NkcDIucGNhLmRm bi5kZS9tcGctZzItY2EvcHViL2NhY2VydC9jYWNlcnQuY3J0MBMGCisGAQQB1nkC BAMBAf8EAgUAMFkGA1UdIARSMFAwCAYGZ4EMAQICMA0GCysGAQQBga0hgiweMA8G DSsGAQQBga0hgiwBAQQwEQYPKwYBBAGBrSGCLAEBBAMIMBEGDysGAQQBga0hgiwC AQQDCDANBgkqhkiG9w0BAQsFAAOCAQEAjX/gVNGytkurXOstN9Bq24GNdntBG+j2 v74jMXeTnc1kXYnGTaLFHwkYf7b9tlj+RzWoN33wEpEnn9aXGzjmNNuS8vXO2ECC m807huSkpkZmCm1fuTNiBtSiwgSHY0ZOUgwTnw4SmZQpiZjf9ntF++Na3foYjSYm 2MgZh61BtM8y5WXKf+iuiCu3fx40AeFZXRYQPBF+Hko7PiFGjv/lafbwZl7SH1ek 2W+6R216dhgX+haj7S5nKkDcJN1pZj9VVqjFEVirCDQddOAbGtQz9hhjKet3o/eF 9eqF3ZiDGqx9WJNGtbJGO3JxoijRGWjXcfz2wNSbzCB8apX3UgyXjw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+DdnhRJr0Xe5zdlJ+hC DfbcsrL/dznPpOxzwnIr1Zc8y/WyJowPNzjIUXzRwtr/kjsmKx0uwI9xeG+jiRan xIW4t5zqxj6umIIgWYUyTapk9I9DGrmO+bUIJnTYM5VnYbQPCvGZGDDXnDIiJPvq rrg3WgWDogl7ezvy3/Ln2a/N6PA9vKRszWk+eYnm8shVEJLdyglFGieLIoXWqV1h JV1lF5arFf/uFzPvD8id683ad7D5M05iY4CGwmFCneCyCFWQ3xdDnyD0CKLN+yHH +wLqVHBFG2wgESiJbpEVAjhZtu2q0+mK2CO04uTJARgcCJj4MtdWS4R+A4sRZ9MD QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10062376341790018315911046742 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Muenchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'MPG CA - G02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-13 09:55:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-17 09:55:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Institut fuer Meteorologie' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ds4.zmaw.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23212495214934271030640394278232708391548014756088152821191023761511817205408814449459054400316595660437834051039293685683380290908577163112147504450736137131756790017490522308960508261928645944986855491386556158802366866457321107051396981498292494507718745846026798076569792915242529094781323802603566429106373927418432397199105468139216636327468213216264324335997178919537053360005445063914161247353034037810421645110380531685325831229339605030751146182303318217821817507486752822205597135424246479797438246124480732256944767225366311740973936030311707070483029443603997067265227770374255426882689468255323517289283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1e0cebeb2df53e258314cbd116b01d852ad93b28 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c488a507eeb87baa0c13bfda297463521b497016 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ds4.zmaw.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ds4.mpimet.mpg.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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