zandvoort3.zipb.kpn.net
- Koninklijke KPN N.V. -
Issued by KPN Corporate Market CSP Organisatie CA - G2
About this certificate
This digital certificate with serial number 5e:cd:5f:29:7f:e7:f8:04:68:b1:26:63:e2:b1:2f:13 was issued on by KPN Corporate Market BV.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The Subject Alternate Name extension MUST contain only 'dnsName' and 'ipaddress' name types. (BRs: 7.1.4.2.1)
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
Koninklijke KPN N.V.
Company registration number:
00000003020452000000
Organization: Koninklijke KPN N.V.
Organization: Koninklijke KPN N.V.
State / Province:
Zuid-Holland
Locality: 's-Gravenhage
Country: NL
Locality: 's-Gravenhage
Country: NL
KPN Corporate Market BV
Organization:
KPN Corporate Market BV
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 5e:cd:5f:29:7f:e7:f8:04:68:b1:26:63:e2:b1:2f:13Serial Number (int): 126013782576633771050195115833541340947
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 47:47:50:0b:5b:50:63:3c:f7:82:21:ef:ec:b8:75:91:5e:18:e6:4e
AuthorityKeyId: 26:d0:65:13:f1:ee:7a:6f:61:08:28:de:4d:98:07:12:48:78:b4:ef
Fingerprint (sha1): 94:d1:15:e2:4a:d7:22:51:9e:7a:c2:ea:c6:0a:7c:96:5e:3b:74:6b
Fingerprint (sha256): 12:c2:e6:5e:c2:64:66:93:fd:41:45:31:1c:3c:f9:f1:f3:48:29:c1:32:a5:01:d0:42:56:22:e1:76:bd:6c:f5
Revocation information
OCSP Server: http://ocsp3.managedpki.comCRL Distribution Point: http://cert.managedpki.com/crl/KPNCorporateMarketCSPOrganisatieCAG2/LatestCRL.crl
Check the revocation status for certificate zandvoort3.zipb.kpn.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zandvoort3.zipb.kpn.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
zandvoort3.zipb.kpn.net
Other certificates including the domain name kpn.net
(limited to 100 certificates)
rt2-vlg-1.pmr.kpn.net
zandvoort3.ZIPB.kpn.net
texel1.zipb.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
vlissingen1.ZIPB.kpn.net
zandvoort3.zipb.kpn.net
prmnp1.pmr.kpn.net
diensten.monitoring.kpn.net
zierikzee1.zipb.kpn.net
pem.kpn.net
zandvoort3.kpn.net
tenrvlissingen1.kpn.net
webmail.kpn.net
vpnaccess.oam.kpn.net
www.kpn.net
wdaht.pmr.kpn.net
pmht.pmr.kpn.net
prmnp2.pmr.kpn.net
gemnr2.pmr.kpn.net
wopa.kpn.net
tenrzandvoort3.kpn.net
webmail.kpn.net
diensten.monitoring.kpn.net
zandvoort1.kpn.net
dot.kpn.com
asd2-vlg-1.pmr.kpn.net
vlissingen1.kpn.net
citrixportal.ttrc.oam.kpn.net
gouda0-rt.cust.kpn.net
test.diensten.monitoring.kpn.net
zandvoort3.kpn.net
www.kpn.net
zandvoort3.kpn.net
gemnp1.pmr.kpn.net
test.diensten.monitoring.kpn.net
vlissingen1.ZIPB.kpn.net
www.kpn.net
wopa.kpn.net
wopatest.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
tenrzandvoort3.zipb.kpn.net
77-169-194-218.fixed.kpn.net
gemnp2.pmr.kpn.net
89-163-151-197.mobile.kpn.net
77-163-140-51.fixed.kpn.net
gemnr1.pmr.kpn.net
213-10-121-183.fixed.kpn.net
prmnr1.pmr.kpn.net
www.kpn.net
www.kpn.net
www.kpn.net
86-84-188-139.fixed.kpn.net
aht.pmr.kpn.net
rt2-vlg-1.pmr.kpn.net
vlissingen1.zipb.kpn.net
zierikzee1.zipb.kpn.net
texel1.zipb.kpn.net
wopa.kpn.net
wopatest.kpn.net
zandvoort3.zipb.kpn.net
prmnr2.pmr.kpn.net
tenrzandvoort1.zipb.kpn.net
gst.pmr.kpn.net
gouda0-asd.cust.kpn.net
diensten.monitoring.kpn.net
clht.pmr.kpn.net
www.kpn.net
plht.pmr.kpn.net
*.pmr.kpn.net
www.kpn.net
pst.pmr.kpn.net
vpnaccess.oam.kpn.net
wopa.kpn.net
citrixportal.oam.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
groningen1-rt.cust.kpn.net
vlissingen1.kpn.net
vpnaccess.oam.kpn.net
diensten.monitoring.kpn.net
tenrtexel1.zipb.kpn.net
texel1.zipb.kpn.net
test.diensten.monitoring.kpn.net
tenrzandvoort1.kpn.net
vlissingen1.kpn.net
avds.monitoring.kpn.net
zierikzee1.zipb.kpn.net
groningen1-asd.cust.kpn.net
cri.pmr.kpn.net
sntpf.pmr.kpn.net
wopa.kpn.net
texel1.zipb.kpn.net
*.pem.kpn.net
citrixportal.mobidata.kpn.net
zandvoort3.ZIPB.kpn.net
texel1.zipb.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
vlissingen1.ZIPB.kpn.net
zandvoort3.zipb.kpn.net
prmnp1.pmr.kpn.net
diensten.monitoring.kpn.net
zierikzee1.zipb.kpn.net
pem.kpn.net
zandvoort3.kpn.net
tenrvlissingen1.kpn.net
webmail.kpn.net
vpnaccess.oam.kpn.net
www.kpn.net
wdaht.pmr.kpn.net
pmht.pmr.kpn.net
prmnp2.pmr.kpn.net
gemnr2.pmr.kpn.net
wopa.kpn.net
tenrzandvoort3.kpn.net
webmail.kpn.net
diensten.monitoring.kpn.net
zandvoort1.kpn.net
dot.kpn.com
asd2-vlg-1.pmr.kpn.net
vlissingen1.kpn.net
citrixportal.ttrc.oam.kpn.net
gouda0-rt.cust.kpn.net
test.diensten.monitoring.kpn.net
zandvoort3.kpn.net
www.kpn.net
zandvoort3.kpn.net
gemnp1.pmr.kpn.net
test.diensten.monitoring.kpn.net
vlissingen1.ZIPB.kpn.net
www.kpn.net
wopa.kpn.net
wopatest.kpn.net
texel1.zipb.kpn.net
wopatest.kpn.net
tenrzandvoort3.zipb.kpn.net
77-169-194-218.fixed.kpn.net
gemnp2.pmr.kpn.net
89-163-151-197.mobile.kpn.net
77-163-140-51.fixed.kpn.net
gemnr1.pmr.kpn.net
213-10-121-183.fixed.kpn.net
prmnr1.pmr.kpn.net
www.kpn.net
www.kpn.net
www.kpn.net
86-84-188-139.fixed.kpn.net
aht.pmr.kpn.net
rt2-vlg-1.pmr.kpn.net
vlissingen1.zipb.kpn.net
zierikzee1.zipb.kpn.net
texel1.zipb.kpn.net
wopa.kpn.net
wopatest.kpn.net
zandvoort3.zipb.kpn.net
prmnr2.pmr.kpn.net
tenrzandvoort1.zipb.kpn.net
gst.pmr.kpn.net
gouda0-asd.cust.kpn.net
diensten.monitoring.kpn.net
clht.pmr.kpn.net
www.kpn.net
plht.pmr.kpn.net
*.pmr.kpn.net
www.kpn.net
pst.pmr.kpn.net
vpnaccess.oam.kpn.net
wopa.kpn.net
citrixportal.oam.kpn.net
www.kpn.net
test.diensten.monitoring.kpn.net
www.kpn.net
groningen1-rt.cust.kpn.net
vlissingen1.kpn.net
vpnaccess.oam.kpn.net
diensten.monitoring.kpn.net
tenrtexel1.zipb.kpn.net
texel1.zipb.kpn.net
test.diensten.monitoring.kpn.net
tenrzandvoort1.kpn.net
vlissingen1.kpn.net
avds.monitoring.kpn.net
zierikzee1.zipb.kpn.net
groningen1-asd.cust.kpn.net
cri.pmr.kpn.net
sntpf.pmr.kpn.net
wopa.kpn.net
texel1.zipb.kpn.net
*.pem.kpn.net
citrixportal.mobidata.kpn.net
Certificate
The complete raw certificate details for zandvoort3.zipb.kpn.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGxzCCBK+gAwIBAgIQXs1fKX/n+ARosSZj4rEvEzANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJOTDEgMB4GA1UECgwXS1BOIENvcnBvcmF0ZSBNYXJrZXQgQlYx NTAzBgNVBAMMLEtQTiBDb3Jwb3JhdGUgTWFya2V0IENTUCBPcmdhbmlzYXRpZSBD QSAtIEcyMB4XDTE1MDEwNjAwMDAwMFoXDTE4MDEwNTIzNTk1OVowgZwxCzAJBgNV BAYTAk5MMRUwEwYDVQQIDAxadWlkLUhvbGxhbmQxFjAUBgNVBAcMDSdzLUdyYXZl bmhhZ2UxHTAbBgNVBAoMFEtvbmlua2xpamtlIEtQTiBOLlYuMR0wGwYDVQQFExQw MDAwMDAwMzAyMDQ1MjAwMDAwMDEgMB4GA1UEAwwXemFuZHZvb3J0My56aXBiLmtw bi5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgj0Qz+S9KG/hv +2dBsIzaZyNb4QG9TvP/qzNW4ehF1BGQL7F2P05oDLIpXZcwv7HAIDyWE1RaCyxA 3TOlxS6RfeJBv5RiNHxRZ6sUsjiOAoeeclZl3bfdyzuzAR7SD+8sih9qDgHgSPKN SZS+8zQbPTTSMz9KK4muExgcQMldG53gsXXD0fR2a7zNNuQ4gyBtanETLRwHQ/ud 43EiozzoogWWTQk8gVNgR6SBO2inkbpzQmlD78rDs1uDACL/Y8GL0eXtP6uFYLwA rlHHZXDjpYGWsNdolv+VTlk9+2+Vw690e+M53ONAh18CGVctFLqD0wv1JXf4iO+6 KA+vUndrAgMBAAGjggI4MIICNDAMBgNVHRMBAf8EAjAAMGIGA1UdHwRbMFkwV6BV oFOGUWh0dHA6Ly9jZXJ0Lm1hbmFnZWRwa2kuY29tL2NybC9LUE5Db3Jwb3JhdGVN YXJrZXRDU1BPcmdhbmlzYXRpZUNBRzIvTGF0ZXN0Q1JMLmNybDAOBgNVHQ8BAf8E BAMCA6gwgacGA1UdIASBnzCBnDCBmQYKYIQQAYdrAQIFBjCBijA3BggrBgEFBQcC ARYraHR0cHM6Ly9jZXJ0aWZpY2FhdC5rcG4uY29tL3BraW92ZXJoZWlkL2NwczBP BggrBgEFBQcCAjBDGkFPcCBkaXQgY2VydGlmaWNhYXQgaXMgaGV0IENQUyBQS0lv dmVyaGVpZCB2YW4gS1BOIHZhbiB0b2VwYXNzaW5nLjAfBgNVHSMEGDAWgBQm0GUT 8e56b2EIKN5NmAcSSHi07zAdBgNVHQ4EFgQUR0dQC1tQYzz3giHv7Lh1kV4Y5k4w HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMG4GA1UdEQRnMGWCF3phbmR2 b29ydDMuemlwYi5rcG4ubmV0oEoGCisGAQQBgjcUAgOgPAw6Mi4xNi41MjguMS4x MDAzLjEuMy41LjkuMS4xMjEyNDhhNTgzNDg5ZjhkYWM0ODkzZjUyNmVlOGFiODA3 BggrBgEFBQcBAQQrMCkwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vY3NwMy5tYW5hZ2Vk cGtpLmNvbTANBgkqhkiG9w0BAQsFAAOCAgEAROgXf+Edshg0QjPEb78fuhWCof80 L8YQ47D6wrJqvAc1q9K8ortxCv0Yac9N8cTR+dTlguX6Vz04IBGpJY0RuuFQuumk uIihIBeXZeVjwijeSAJJkFDIcnQXhUoY3PUDNJfPGKUE1P5Lk2Bs0MUkqHBr+oyE zevZSDnWGWLVBa9bOQoIZdFtX4ileI3NVrbtQfJWszfsBRA/qLffjDnTtMm2pU+c BrlVBYSRPnPwTbEjJ8KXE4Y/48vT3TTehAbtkeYE7MebAWhVQ2Edm755cQx9ZEqE CW15g2vXGaWogxC2PyrZ7eUH3VjRlY9PCnnGxtoadS155BiWLzhp3dygCXj1XCfc WJ9QwWHqdapySp7bRxSYgZxU3w0twYdKVfpy8ORu2zPvWCKzepj+TweqF+g8u9XP n+e9FJiU0ysIdn/r/kknoZ+z2ms3KaXTSOBPWeeoDrVANy/SI9wY2pcac9zJKQHu t6xke462fUcHrD4AXxeqA/fv0vzCWwBBoQUGiS7qIiJRk/UDRUu7URzBbTGeAYxN k3pg2vzHRUZehIVKN3uNUTm3h8IcuaxANJnId60y+ujZQ+E+V1RW+vEhQAthCvMH DhpHPp0A+I+e1Ao7FHlgrOJ3HFwCKC5CK+OA+dfwqah//rNcyXpdtFzJ6Im29sjP EoVVkHpz28bn2wM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4I9EM/kvShv4b/tnQbCM 2mcjW+EBvU7z/6szVuHoRdQRkC+xdj9OaAyyKV2XML+xwCA8lhNUWgssQN0zpcUu kX3iQb+UYjR8UWerFLI4jgKHnnJWZd233cs7swEe0g/vLIofag4B4EjyjUmUvvM0 Gz000jM/SiuJrhMYHEDJXRud4LF1w9H0dmu8zTbkOIMgbWpxEy0cB0P7neNxIqM8 6KIFlk0JPIFTYEekgTtop5G6c0JpQ+/Kw7NbgwAi/2PBi9Hl7T+rhWC8AK5Rx2Vw 46WBlrDXaJb/lU5ZPftvlcOvdHvjOdzjQIdfAhlXLRS6g9ML9SV3+IjvuigPr1J3 awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 126013782576633771050195115833541340947 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN Corporate Market BV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN Corporate Market CSP Organisatie CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String ''s-Gravenhage' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Koninklijke KPN N.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000003020452000000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'zandvoort3.zipb.kpn.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28348027616199056759216197838223792290771586646034011837370073088836171224557416567013141484947404833105175836755246626988265134796993624583734410566133337543217633359332137196662786334226171618101786267812028458021889167671054901326600501756707173015894356125957879731240869725844324137020665421112020424359722939973855398225347587888516355749507065877158089284876026058463702432545866549052201085706978291965059903661569342349452458085384768639464905642976679190002226842558985536802707869869344969199874486381178153787663759418332972118641278076757313176532026588536298758864103657048050098875133953428893060986731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/crl/KPNCorporateMarketCSPOrganisatieCAG2/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (159 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [79 112 32 100 105 116 32 99 101 114 116 105 102 105 99 97 97 116 32 105 115 32 104 101 116 32 67 80 83 32 80 75 73 111 118 101 114 104 101 105 100 32 118 97 110 32 75 80 78 32 118 97 110 32 116 111 101 112 97 115 115 105 110 103 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 26d06513f1ee7a6f610828de4d9807124878b4ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4747500b5b50633cf78221efecb875915e18e64e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zandvoort3.zipb.kpn.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.3 (universalPrincipalName) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '2.16.528.1.1003.1.3.5.9.1.121248a583489f8dac4893f526ee8ab8' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp3.managedpki.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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