sts.rbb-online.de
- Rundfunk Berlin-Brandenburg -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 27:10:64:31:25:8f:2e:44:c7:1d:57:df was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Rundfunk Berlin-Brandenburg
Organization:
Rundfunk Berlin-Brandenburg
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 27:10:64:31:25:8f:2e:44:c7:1d:57:dfSerial Number (int): 12089731339391471097357359071
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 79:5f:00:98:81:fe:86:c3:e8:7c:14:6e:86:7f:1b:b6:ba:3b:30:5f
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 59:42:6b:26:a4:b8:e7:49:c7:25:be:52:27:e8:9c:85:19:a3:74:b1
Fingerprint (sha256): 11:b2:ed:2e:18:0d:20:09:7c:38:4a:8d:f4:31:11:a2:c2:87:c6:91:91:9c:44:97:19:30:25:a7:5c:f3:8e:f5
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate sts.rbb-online.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sts.rbb-online.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
certauth.sts.rbb-online.de
enterpriseregistration.rbb-online.de
sts.rbb-online.de
enterpriseregistration.rbb-online.de
sts.rbb-online.de
Other certificates including the domain name rbb-online.de
(limited to 100 certificates)
evo-s0.rbb-online.de
mi-vsp02.rbb-online.de
distribution-status.rbb-online.de
sf-ad1.ad.rbb-online.de
ref.rbb-online.de
sp-flimgr03.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sp-ttximport02.rbb-online.de
mi-s4-1.rbb-online.de
sp-vcrpad02.rbb-online.de
sp-view01.ad.rbb-online.de
presseservice.rbb-online.de
rbbot1ev1.rbb-online.de
ttool-extern.rbb-online.de
ref-s0.w3.rbb-online.de
sp-wsa01-p1.rbb-online.de
mediathek-origin.rbb-online.de
sp-jobsmgr01.rbb-online.de
intranet-s0.rbb-online.de
distribution-status.rbb-online.de
mimo.rbb-online.de
munki.rbb-online.de
ndr-news.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sf-ad1.ad.rbb-online.de
sp-fmc01.rbb-online.de
rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
i-doit-i.rbb-online.de
rbblog.rbb-online.de
distribution-status.rbb-online.de
sts.rbb-online.de
evo-p-awx.rbb-online.de
lodoas03.rbb-online.de
sp-im02.rbb-online.de
data.rbb-online.de
sp-ise01.rbb-online.de
sp-dsp-prod01.ad.rbb-online.de
webdoku.rbb-online.de
mi-5.rbb-online.de
webapplog.rbb-online.de
data-vis.rbb-online.de
sp-webdav01.ad.rbb-online.de
smr.rbb-online.de
m-relayb02i.rbb-online.de
rbb-online.de
rbb-online.de
m-relayp02i.rbb-online.de
sp-ttximport02.rbb-online.de
distribution-status.rbb-online.de
m-relayb02.rbb-online.de
distribution-status.rbb-online.de
ip-mgmt.rbb-online.de
ucmobile.rbb-online.de
sb-ad3.ad.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
sb-osuca01.rbb-online.de
entree-b.rbb-online.de
medienbroker.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
docs.rbb-online.de
evo-static.rbb-online.de
rbb-online.de
sc-ad1.ad.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
ptp-gm-b.rbb-online.de
rmsext.rbb-online.de
rbb-online.de
mi-s3-1.rbb-online.de
sp-ad4.ad.rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
mond-mk.rbb-online.de
orbitdvb41.rbb-online.de
birddoghrstatus.paradox.ai
evo-s-awx.rbb-online.de
evo-t1.rbb-online.de
rbb-online.de
sb-aks-dpe00.ad.rbb-online.de
evo-p-fusion.rbb-online.de
evo-data.rbb-online.de
rbb-mon.rbb-online.de
webdoku.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
sb-ise01.rbb-online.de
sp-cpi02.rbb-online.de
entree-b.rbb-online.de
entree-p.rbb-online.de
sb-tipath01.rbb-online.de
sp-ise01.rbb-online.de
sp-mon-mk1.rbb-online.de
mi-vsp02.rbb-online.de
distribution-status.rbb-online.de
sf-ad1.ad.rbb-online.de
ref.rbb-online.de
sp-flimgr03.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sp-ttximport02.rbb-online.de
mi-s4-1.rbb-online.de
sp-vcrpad02.rbb-online.de
sp-view01.ad.rbb-online.de
presseservice.rbb-online.de
rbbot1ev1.rbb-online.de
ttool-extern.rbb-online.de
ref-s0.w3.rbb-online.de
sp-wsa01-p1.rbb-online.de
mediathek-origin.rbb-online.de
sp-jobsmgr01.rbb-online.de
intranet-s0.rbb-online.de
distribution-status.rbb-online.de
mimo.rbb-online.de
munki.rbb-online.de
ndr-news.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sf-ad1.ad.rbb-online.de
sp-fmc01.rbb-online.de
rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
i-doit-i.rbb-online.de
rbblog.rbb-online.de
distribution-status.rbb-online.de
sts.rbb-online.de
evo-p-awx.rbb-online.de
lodoas03.rbb-online.de
sp-im02.rbb-online.de
data.rbb-online.de
sp-ise01.rbb-online.de
sp-dsp-prod01.ad.rbb-online.de
webdoku.rbb-online.de
mi-5.rbb-online.de
webapplog.rbb-online.de
data-vis.rbb-online.de
sp-webdav01.ad.rbb-online.de
smr.rbb-online.de
m-relayb02i.rbb-online.de
rbb-online.de
rbb-online.de
m-relayp02i.rbb-online.de
sp-ttximport02.rbb-online.de
distribution-status.rbb-online.de
m-relayb02.rbb-online.de
distribution-status.rbb-online.de
ip-mgmt.rbb-online.de
ucmobile.rbb-online.de
sb-ad3.ad.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
sb-osuca01.rbb-online.de
entree-b.rbb-online.de
medienbroker.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
docs.rbb-online.de
evo-static.rbb-online.de
rbb-online.de
sc-ad1.ad.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
ptp-gm-b.rbb-online.de
rmsext.rbb-online.de
rbb-online.de
mi-s3-1.rbb-online.de
sp-ad4.ad.rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
mond-mk.rbb-online.de
orbitdvb41.rbb-online.de
birddoghrstatus.paradox.ai
evo-s-awx.rbb-online.de
evo-t1.rbb-online.de
rbb-online.de
sb-aks-dpe00.ad.rbb-online.de
evo-p-fusion.rbb-online.de
evo-data.rbb-online.de
rbb-mon.rbb-online.de
webdoku.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
sb-ise01.rbb-online.de
sp-cpi02.rbb-online.de
entree-b.rbb-online.de
entree-p.rbb-online.de
sb-tipath01.rbb-online.de
sp-ise01.rbb-online.de
sp-mon-mk1.rbb-online.de
Certificate
The complete raw certificate details for sts.rbb-online.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIHTCCBwWgAwIBAgIMJxBkMSWPLkTHHVffMA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTIy MDgwODEwMzQxMloXDTIzMDkwODEwMzQxMlowcTELMAkGA1UEBhMCREUxDzANBgNV BAgMBkJlcmxpbjEPMA0GA1UEBwwGQmVybGluMSQwIgYDVQQKDBtSdW5kZnVuayBC ZXJsaW4tQnJhbmRlbmJ1cmcxGjAYBgNVBAMMEXN0cy5yYmItb25saW5lLmRlMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2oAPY9Z1riZ4123I+LoiTknA 5lAG5jsSDX/3nT770GlhF28a/F2wjFxagrjCc3kOYcLJlhwaTMPfKZ8y3KBhBBwT V/hL2VTuauWA+s+Vjyl5lBnKkMMQy1fJfiMNedXfIm0Ifn+opFUnQGlWgAXWIUh1 9+WHRJoRC8m+5YZ4XVBTqYlj79USUG+uPZzLZ9pWJWjQPaM55GWn0PYEJuQVP57v gVlb0KJ3RY0V/y9v9qiBXE5DEPXTLLpXejsOODY8ct1LxqzZNmjksRA1ZtgrS2bf BBGVFz848AvxD3AEL79cfH9lSTEgK+zfdZn5/od90UMAvgA1Yon6/0UOj5tsQwID AQABo4IEljCCBJIwVwYDVR0gBFAwTjAIBgZngQwBAgIwDQYLKwYBBAGBrSGCLB4w DwYNKwYBBAGBrSGCLAEBBDAQBg4rBgEEAYGtIYIsAQEECjAQBg4rBgEEAYGtIYIs AgEECjAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEF BQcDATAdBgNVHQ4EFgQUeV8AmIH+hsPofBRuhn8btro7MF8wHwYDVR0jBBgwFoAU azqYi/nyU4na4K2yMh4JH+iqO3QwXgYDVR0RBFcwVYIaY2VydGF1dGguc3RzLnJi Yi1vbmxpbmUuZGWCJGVudGVycHJpc2VyZWdpc3RyYXRpb24ucmJiLW9ubGluZS5k ZYIRc3RzLnJiYi1vbmxpbmUuZGUwgY0GA1UdHwSBhTCBgjA/oD2gO4Y5aHR0cDov L2NkcDEucGNhLmRmbi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9jcmwvY2Fjcmwu Y3JsMD+gPaA7hjlodHRwOi8vY2RwMi5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwt ZzIvcHViL2NybC9jYWNybC5jcmwwgdsGCCsGAQUFBwEBBIHOMIHLMDMGCCsGAQUF BzABhidodHRwOi8vb2NzcC5wY2EuZGZuLmRlL09DU1AtU2VydmVyL09DU1AwSQYI KwYBBQUHMAKGPWh0dHA6Ly9jZHAxLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1n Mi9wdWIvY2FjZXJ0L2NhY2VydC5jcnQwSQYIKwYBBQUHMAKGPWh0dHA6Ly9jZHAy LnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIvY2FjZXJ0L2NhY2VydC5j cnQwggH3BgorBgEEAdZ5AgQCBIIB5wSCAeMB4QB2AK33vvp8/xDIi509nB4+GGq0 Zyldz7EMJMqFhjTr3IKKAAABgn0E/vQAAAQDAEcwRQIgNpBpirDLLIs1svqBAL2S QxLKoJsjOYyhhXcxadAGLjYCIQD5S4wzTiJ7WDz3shdwCk4RX9qTZiUsxPxdbbEM lDgJcwB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABgn0FAKQA AAQDAEgwRgIhAIg13etAc381zy1Exigpg2Pu8pSVRO5yt7vSx+aO4K+zAiEAgKH4 7/2U+VBAenJ3QyPz58DNwbeF+ksAub3EyIgvifkAdwBVgdTCFpA2AUrqC5tXPFPw wOQ4eHAlCBcvo6odBxPTDAAAAYJ9BP0DAAAEAwBIMEYCIQD3X19uVaeuqZRgxsNU G/4V2eUBSr9hs/z6B7MhMrX3sAIhANCQRBniZ9J1EFQ36nWxDcwOg0Q5tyGq3u8a IZQZ3SfrAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAGCfQT9 HwAABAMARjBEAiAOQnFQUeKgaBmy6E7hxnnbRDxpZIzTDxKxbvZqIVdeiAIgErRj lc5jmCoaF1pOQUT0gB/evNg37wo0w7v31qne06gwDQYJKoZIhvcNAQELBQADggEB AGjSWuuVYjTDcdv+UhBcVqHX/AAxKkHpSyL8PrNDqTdBseVAX50g3dBg3aDUxNh5 22CT/X9RAhnW8Ft+4S20anDEDHcNZxOYyICvcDkYumFvQ/2WbKBRK9NY0uDiRI5t ffKBE70XJKB7VsuOAZJZ4+GRLP/jvz1U9NO9RX1hmWW9FzILI73LJKiEJRggxIV3 b163HzmmMj+yIgP20Q/1CebX6NTyfYl0B/+3a0lEZg6MD6rX33+uOLjty8thkSlX JDLXQWbHzGwvlwqUcK4soqHqDpfBU70tKql8xFyWfjzoejD/R2N+IU3uM+oVAAO1 2FAqkU5wsWFpMp3TKZAUMB8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2oAPY9Z1riZ4123I+Loi TknA5lAG5jsSDX/3nT770GlhF28a/F2wjFxagrjCc3kOYcLJlhwaTMPfKZ8y3KBh BBwTV/hL2VTuauWA+s+Vjyl5lBnKkMMQy1fJfiMNedXfIm0Ifn+opFUnQGlWgAXW IUh19+WHRJoRC8m+5YZ4XVBTqYlj79USUG+uPZzLZ9pWJWjQPaM55GWn0PYEJuQV P57vgVlb0KJ3RY0V/y9v9qiBXE5DEPXTLLpXejsOODY8ct1LxqzZNmjksRA1Ztgr S2bfBBGVFz848AvxD3AEL79cfH9lSTEgK+zfdZn5/od90UMAvgA1Yon6/0UOj5ts QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12089731339391471097357359071 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-08 10:34:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-08 10:34:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rundfunk Berlin-Brandenburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'sts.rbb-online.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27583099279956788800089264181169507633659292570050405111896492392080031064725111268358366480099654369281593312404436782279436089312827566018627106782628327728621204210898442973465383101992828678496393967294685232037322677503914666897607127888493092688151137878754533580582435950905159298717116208624250212870560188372724599879810088316736331762520590879000706913729026171137618127998572846859396442527227592942180976825049098743514900563978264023295119937340566922160165948369605204331187254090433993490552019346715934951101520119715347759071704345487854258767503520974019505074988858047537290581471710518958968499267 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.10 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.10 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 795f009881fe86c3e87c146e867f1bb6ba3b305f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certauth.sts.rbb-online.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.rbb-online.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sts.rbb-online.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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