api.rsm.nl
- Erasmus Universiteit Rotterdam -
Issued by Sectigo RSA Organization Validation Secure Server CA
About this certificate
This digital certificate with serial number ae:60:fb:d7:2f:a0:79:db:84:96:08:b3:33:11:d6:8d was issued on by Sectigo Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Erasmus Universiteit Rotterdam
Organization:
Erasmus Universiteit Rotterdam
State / Province:
Zuid-Holland
Country: NL
Country: NL
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): ae:60:fb:d7:2f:a0:79:db:84:96:08:b3:33:11:d6:8dSerial Number (int): 231789239698599961522187121001149617805
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 94:42:ae:97:1f:34:1c:51:3f:ff:9e:55:62:e6:80:70:9d:84:24:a4
AuthorityKeyId: 17:d9:d6:25:27:67:f9:31:c2:49:43:d9:30:36:44:8c:6c:a9:4f:eb
Fingerprint (sha1): 64:42:73:08:e4:d6:0d:55:65:00:fb:73:5a:50:67:d1:a0:33:52:b8
Fingerprint (sha256): 13:09:a9:bf:38:99:a4:35:80:5d:c6:0c:cd:6b:b1:94:fe:25:52:20:f2:8e:67:41:a9:d2:5b:d1:87:1c:ff:df
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl
Check the revocation status for certificate api.rsm.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.rsm.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.rsm.nl
Other certificates including the domain name rsm.nl
(limited to 100 certificates)
decosjoin.rsm.nl
alumni.eur.nl
fin.rsm.nl
alumni.myrsm.nl
blog.rsm.nl
api-accept.rsm.nl
talktoastudent.rsm.nl
jobboard.rsm.nl
expertise-search-test.rsm.nl
landing.rsm.nl
jobboard.rsm.nl
www.store.rsm.nl
crm-prod.rsm.nl
store.rsm.nl
blackboard.rsm.nl
expertise-search.rsm.nl
iba-services.rsm.nl
jobboard-test.rsm.nl
iba-apply.rsm.nl
apply.rsm.nl
decostest.rsm.nl
webcast.rsm.nl
webcast.rsm.nl
www.store.rsm.nl
talktoastudent.rsm.nl
jobboard-test.rsm.nl
dilemma-game-test.rsm.nl
ww3.rsm.nl
api.rsm.nl
printmydoc.nl
landing.rsm.nl
eur-api-bundle-accept.service.eur.nl
ecdacommunity.rsm.nl
mailhog-test.rsm.nl
select.rsm.nl
iwill.rsm.nl
iwill.rsm.nl
ecdacommunity.rsm.nl
apply.rsm.nl
graduationplanner.rsm.nl
store.rsm.nl
media.rsm.nl
alumni.eur.nl
lateregistration-accept.rsm.nl
documents.rsm.nl
apply-exchange.rsm.nl
accept.intranet.rsm.nl
stash.rsm.nl
store.rsm.nl
dashboard-accept.imc.rsm.nl
dilemmagame-accept.rsm.nl
apply-test.rsm.nl
apply-accept.rsm.nl
crm-prod.rsm.nl
eur-api-bundle-test.service.eur.nl
decosjoin.rsm.nl
graduationplanner.rsm.nl
exchange.eur.nl
mailings.rsm.nl
store.rsm.nl
apply-exchange-test.rsm.nl
signature.rsm.nl
rsm.nl
mailings.rsm.nl
request-eb.rsm.nl
www.store.rsm.nl
store.rsm.nl
www.store.rsm.nl
adfs.rsm.nl
select.rsm.nl
api.rsm.nl
signature-test.rsm.nl
request-eb.rsm.nl
Dyn365lcm.rsm.nl
www.store.rsm.nl
landing.rsm.nl
dashboard-accept.rsm.nl
thinkdo.rsm.nl
rsmbv-web01.rsm.nl
publications.rsm.nl
expertise-search.rsm.nl
rsm.nl
webcast.rsm.nl
eur-api-bundle.service.eur.nl
top-test.rsm.nl
eur-api-bundle.service.eur.nl
printmydoc.nl
top.rsm.nl
jobboard.rsm.nl
lateregistration.rsm.nl
mailings.rsm.nl
expertise-search.rsm.nl
landing.rsm.nl
landing.rsm.nl
apply-exchange.rsm.nl
printmydoc.nl
expertise-search.rsm.nl
eur-api-bundle-accept.service.eur.nl
jobboard.rsm.nl
store.rsm.nl
alumni.eur.nl
fin.rsm.nl
alumni.myrsm.nl
blog.rsm.nl
api-accept.rsm.nl
talktoastudent.rsm.nl
jobboard.rsm.nl
expertise-search-test.rsm.nl
landing.rsm.nl
jobboard.rsm.nl
www.store.rsm.nl
crm-prod.rsm.nl
store.rsm.nl
blackboard.rsm.nl
expertise-search.rsm.nl
iba-services.rsm.nl
jobboard-test.rsm.nl
iba-apply.rsm.nl
apply.rsm.nl
decostest.rsm.nl
webcast.rsm.nl
webcast.rsm.nl
www.store.rsm.nl
talktoastudent.rsm.nl
jobboard-test.rsm.nl
dilemma-game-test.rsm.nl
ww3.rsm.nl
api.rsm.nl
printmydoc.nl
landing.rsm.nl
eur-api-bundle-accept.service.eur.nl
ecdacommunity.rsm.nl
mailhog-test.rsm.nl
select.rsm.nl
iwill.rsm.nl
iwill.rsm.nl
ecdacommunity.rsm.nl
apply.rsm.nl
graduationplanner.rsm.nl
store.rsm.nl
media.rsm.nl
alumni.eur.nl
lateregistration-accept.rsm.nl
documents.rsm.nl
apply-exchange.rsm.nl
accept.intranet.rsm.nl
stash.rsm.nl
store.rsm.nl
dashboard-accept.imc.rsm.nl
dilemmagame-accept.rsm.nl
apply-test.rsm.nl
apply-accept.rsm.nl
crm-prod.rsm.nl
eur-api-bundle-test.service.eur.nl
decosjoin.rsm.nl
graduationplanner.rsm.nl
exchange.eur.nl
mailings.rsm.nl
store.rsm.nl
apply-exchange-test.rsm.nl
signature.rsm.nl
rsm.nl
mailings.rsm.nl
request-eb.rsm.nl
www.store.rsm.nl
store.rsm.nl
www.store.rsm.nl
adfs.rsm.nl
select.rsm.nl
api.rsm.nl
signature-test.rsm.nl
request-eb.rsm.nl
Dyn365lcm.rsm.nl
www.store.rsm.nl
landing.rsm.nl
dashboard-accept.rsm.nl
thinkdo.rsm.nl
rsmbv-web01.rsm.nl
publications.rsm.nl
expertise-search.rsm.nl
rsm.nl
webcast.rsm.nl
eur-api-bundle.service.eur.nl
top-test.rsm.nl
eur-api-bundle.service.eur.nl
printmydoc.nl
top.rsm.nl
jobboard.rsm.nl
lateregistration.rsm.nl
mailings.rsm.nl
expertise-search.rsm.nl
landing.rsm.nl
landing.rsm.nl
apply-exchange.rsm.nl
printmydoc.nl
expertise-search.rsm.nl
eur-api-bundle-accept.service.eur.nl
jobboard.rsm.nl
store.rsm.nl
Certificate
The complete raw certificate details for api.rsm.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH1DCCBrygAwIBAgIRAK5g+9cvoHnbhJYIszMR1o0wDQYJKoZIhvcNAQELBQAw gZUxCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE9MDsGA1UE AxM0U2VjdGlnbyBSU0EgT3JnYW5pemF0aW9uIFZhbGlkYXRpb24gU2VjdXJlIFNl cnZlciBDQTAeFw0yMzA0MTIwMDAwMDBaFw0yNDA0MTEyMzU5NTlaMGIxCzAJBgNV BAYTAk5MMRUwEwYDVQQIEwxadWlkLUhvbGxhbmQxJzAlBgNVBAoTHkVyYXNtdXMg VW5pdmVyc2l0ZWl0IFJvdHRlcmRhbTETMBEGA1UEAxMKYXBpLnJzbS5ubDCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMggnLMAmzFhXlk+zVR0MnG8f4Hq //eSycwnKxxY2rz9PqmFIJYu8cBd/SQwwhWU4TZaFL2Jq74n0vgNp974P+v+lwBi ZjQlilwIH8qWm1QqhTK+oJAMYtgEUNWnc+l/5w5yAEDvRVs8ZE19uBpBjtgM5Z6T V/Oj3kAFfKDznLylbYbTAHbg4VemU+JZgpBBYZqpwb0aVXc3/006uWAqm3bqCvOg SqYv1YIY9lSrQ5HpNztbP8x24OJ6rnDoJBpEBSPkenmuPKAehabhQIqZ0a6hbj51 l94c8DK041Crkh01UgM21RBLrCTTOKxqL2XSYgO5jGJtb+57Y4HrSyoGRzSW2yvE LS2Q+MUdNQUzS7BOWmx1z1d7gp8RxHbp4wa4jlwsizgu/A0egm6kchIBmfw9gPfN qGEmbB1Xaez4vl6lSRv5OL5gDlKSVgPPReSVh1DG8iGiure/d7kRl/JmQLlezJCr OPhHSRUPa/VMxVuwcVFaiEktrUIBaSiQbIr5cspACy3nrjp6re20hsjJ8aMyAp8F eW+epYYXaHHKIVr64lp4gGMqi8xMzvUkEDPWeaMhWMi8JBJA2AUpFHZeTC/Ptutw Gvx8jShUQ8F49Qn8ZqqG9Rpu/vxvRYq3xFJViHkcS9cTJ3yi5O13afoZ5u7Z14zx O0K1NAIcR1ww88yVAgMBAAGjggNPMIIDSzAfBgNVHSMEGDAWgBQX2dYlJ2f5McJJ Q9kwNkSMbKlP6zAdBgNVHQ4EFgQUlEKulx80HFE//55VYuaAcJ2EJKQwDgYDVR0P AQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMEoGA1UdIARDMEEwNQYMKwYBBAGyMQECAQMEMCUwIwYIKwYBBQUHAgEW F2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECAjBaBgNVHR8EUzBRME+g TaBLhklodHRwOi8vY3JsLnNlY3RpZ28uY29tL1NlY3RpZ29SU0FPcmdhbml6YXRp b25WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3JsMIGKBggrBgEFBQcBAQR+MHww VQYIKwYBBQUHMAKGSWh0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2VjdGlnb1JTQU9y Z2FuaXphdGlvblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYBBQUH MAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMBUGA1UdEQQOMAyCCmFwaS5yc20u bmwwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB2AHb/iD8KtvuVUcJhzPWHujS0 pM27KdxoQgqf5mdMWjp0AAABh3LILMQAAAQDAEcwRQIhAIyFSSi+nHKlkHK6oOAR XjykKWu9mS/XhMhaIm65AfMyAiALOby+OmrkJnmHAi9pq2NopvAY1MsFWf9O9Y29 paLjVAB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABh3LILRcA AAQDAEcwRQIhAPmvR30FkpPSsxe6PnJWTsETXigKf5jVdBO4a6oZhALnAiBaUh/i S9L1IuTzjfQ/v3nuNnGu51I1gaAr+M1ZVmvrKgB2AO7N0GTV2xrOxVy3nbTNE6Iy h0Z8vOzew1FIWUZxH7WbAAABh3LILTwAAAQDAEcwRQIgEZLxTst1Z7jxTY3bq0Gi XbvcQS5XDp9taUtxnVmQ0mgCIQCLvhi+SPnrk5+YCvEgLqZFeu9aht++SOPEBR0T StPm3zANBgkqhkiG9w0BAQsFAAOCAQEAMMsuMSIiDJ/isNx1X2x68ynWe5uePOjF Prh8H+y2xtVbQ9SMYfHSM1luz1pIbuiDEPyhIReI6apaP3gqxykFwP8PuHGAulDq fz31S4zGD03v5AphQvliiJKtTqrP2XGfFfrRCJjgr69SJAsN5I3lAOu5L4rmGQVa 0rmQM9icD8IsA94RBGEUFpaxqie01bHfhlafH3jg9NwX7K2luKkhENUJvw4v45II sAc07RbR8+rfHi4LFVvH3+xvxE75aabJ0/oCijBRZYUz5e58Zo1yl4ZCTo2fiaB0 ZE9xzTQrRzViv0/MAOHuvTGarCWC6+hiWLZUGNtEmblYnPpIR4Mzgw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyCCcswCbMWFeWT7NVHQy cbx/ger/95LJzCcrHFjavP0+qYUgli7xwF39JDDCFZThNloUvYmrvifS+A2n3vg/ 6/6XAGJmNCWKXAgfypabVCqFMr6gkAxi2ARQ1adz6X/nDnIAQO9FWzxkTX24GkGO 2AzlnpNX86PeQAV8oPOcvKVthtMAduDhV6ZT4lmCkEFhmqnBvRpVdzf/TTq5YCqb duoK86BKpi/Vghj2VKtDkek3O1s/zHbg4nqucOgkGkQFI+R6ea48oB6FpuFAipnR rqFuPnWX3hzwMrTjUKuSHTVSAzbVEEusJNM4rGovZdJiA7mMYm1v7ntjgetLKgZH NJbbK8QtLZD4xR01BTNLsE5abHXPV3uCnxHEdunjBriOXCyLOC78DR6CbqRyEgGZ /D2A982oYSZsHVdp7Pi+XqVJG/k4vmAOUpJWA89F5JWHUMbyIaK6t793uRGX8mZA uV7MkKs4+EdJFQ9r9UzFW7BxUVqISS2tQgFpKJBsivlyykALLeeuOnqt7bSGyMnx ozICnwV5b56lhhdoccohWvriWniAYyqLzEzO9SQQM9Z5oyFYyLwkEkDYBSkUdl5M L8+263Aa/HyNKFRDwXj1Cfxmqob1Gm7+/G9FirfEUlWIeRxL1xMnfKLk7Xdp+hnm 7tnXjPE7QrU0AhxHXDDzzJUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 231789239698599961522187121001149617805 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Organization Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Erasmus Universiteit Rotterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.rsm.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 816448523706582697178773946666423834136571921628166362576573185702610797537495288763908349093535683972205555228820366477993741480428945595107832913340088228872407089655523941994273502880623864560331805453904193394098706432996804557441080227377466515228650862523785322359745978068364645156602809625449074119608631459161153792688482744392535081618874925175152010321994284545446821391557075175234227097632306564002524996234455967509351859014858104829923834117974400727890381275918175617147532529575755915454926763253015270770053122845653576413535812103401714531851518491370934975029325385974561082431633881828218509425338849850514331021487923301826187841448571720392865582532403132558844802022751038349239475280572319927458420893623372068761695597864745268076205750179063557353553668425949192863591231325580338056563468358190320322776758932099557312094573406293040453744522939932182942567916193799531634801903004581474924071266759951005432548576607193932600523126330143498432344774235296507333196969714000060632664723721028928914612053230301972729124954886250475637499283180374262760952043483048729729586407866784655461989938780016064887322123284884562059614793741351314456556787428988003652811467514523457610371582768353221213573860501 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 17d9d6252767f931c24943d93036448c6ca94feb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9442ae971f341c513fff9e5562e680709d8424a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (126 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAOrganizationValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.rsm.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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