cmg.bbaw.de
- Berlin-Brandenburgische Akademie der Wissenschaften -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 1d:07:b7:29:dc:0e:a2:78:13:d0:44:81:40:81:e7:c6 was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Berlin-Brandenburgische Akademie der Wissenschaften
Organization:
Berlin-Brandenburgische Akademie der Wissenschaften
State / Province:
Berlin
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 1d:07:b7:29:dc:0e:a2:78:13:d0:44:81:40:81:e7:c6Serial Number (int): 38587672953188829808713291964090542022
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 38:6b:c3:59:9a:66:2b:0f:5f:bc:35:c7:0b:1a:42:ef:cd:6e:d0:ac
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 6b:ab:b6:35:42:ea:d4:13:01:17:5d:21:42:d8:a5:cd:b9:d7:18:a3
Fingerprint (sha256): 15:c3:1e:75:23:06:64:5c:93:8c:27:45:69:9c:65:a9:c0:64:c9:43:66:b5:c7:6f:27:bb:49:4f:33:95:21:0d
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate cmg.bbaw.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cmg.bbaw.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cmg.bbaw.de
galen.bbaw.de
galen.bbaw.de
Other certificates including the domain name bbaw.de
(limited to 100 certificates)
cil.bbaw.de
telotawebpublic.bbaw.de
nubes.bbaw.de
telotawebdev.bbaw.de
gorkon.bbaw.de
achard.bbaw.de
abfallenergieverwertung.bbaw.de
bibelexegese.bbaw.de
wirt1.bbaw.de
login.bbaw.de
veranstaltungszentrum.bbaw.de
virtuelles-schuelerlabor.bbaw.de
bareos-director.bbaw.de
mgh.bbaw.de
bureau.bbaw.de
brainudl.bbaw.de
aaew.bbaw.de
praesidenten.bbaw.de
gitlab.bbaw.de
mx1.bbaw.de
zeugs.bbaw.de
devbib.bbaw.de
cil.bbaw.de
shibboleth.bbaw.de
mailman.bbaw.de
census.bbaw.de
wsus64.bbaw.de
cmg.bbaw.de
www.gentechnologiebericht.de
clarin.bbaw.de
ldap.bbaw.de
edoc.bbaw.de
syslog.bbaw.de
vimes.bbaw.de
proxy.bbaw.de
cmg.bbaw.de
xmlpublic.bbaw.de
forschungsdatenmanagement.bbaw.de
telotadev.bbaw.de
www.bbaw.de
bureau.bbaw.de
akademieregistres.bbaw.de
pdrprod.bbaw.de
xmledit.bbaw.de
praesidenten.bbaw.de
login.bbaw.de
achard.bbaw.de
mailman.bbaw.de
www2.bbaw.de
actaborussica.bbaw.de
telotadev.bbaw.de
pdrprod.bbaw.de
eduroam2.bbaw.de
www.correspsearch.net
proxy2.bbaw.de
mailix.bbaw.de
digiclass.bbaw.de
mailix2.bbaw.de
aaew-dev.bbaw.de
lebenswelten-digital.bbaw.de
shibboleth.bbaw.de
brainudl.bbaw.de
mailix.bbaw.de
wwwdev.bbaw.de
gaerten.bbaw.de
vimes.bbaw.de
gerechtigkeit.bbaw.de
census-lod.bbaw.de
login2.bbaw.de
brainjae.bbaw.de
hws.bbaw.de
ldap.bbaw.de
kollokationen.bbaw.de
telotadev.bbaw.de
edoc.bbaw.de
shibboleth.bbaw.de
frauenvertretung.bbaw.de
bibliothek.bbaw.de
kant.bbaw.de
vimes.bbaw.de
agora.bbaw.de
bibelexegese.bbaw.de
edition-humboldt.de
t3extern.bbaw.de
mittelalterzentrum.bbaw.de
tla.bbaw.de
actaborussica.bbaw.de
tableau.bbaw.de
dschutz.bbaw.de
ostwald.bbaw.de
encoding-correspondence.bbaw.de
forschungsdatenmanagement.bbaw.de
avh-r.bbaw.de
cil.bbaw.de
aaew.bbaw.de
hippo.bbaw.de
agora.bbaw.de
hippo.bbaw.de
idqw.bbaw.de
inetbbaw.bbaw.de
telotawebpublic.bbaw.de
nubes.bbaw.de
telotawebdev.bbaw.de
gorkon.bbaw.de
achard.bbaw.de
abfallenergieverwertung.bbaw.de
bibelexegese.bbaw.de
wirt1.bbaw.de
login.bbaw.de
veranstaltungszentrum.bbaw.de
virtuelles-schuelerlabor.bbaw.de
bareos-director.bbaw.de
mgh.bbaw.de
bureau.bbaw.de
brainudl.bbaw.de
aaew.bbaw.de
praesidenten.bbaw.de
gitlab.bbaw.de
mx1.bbaw.de
zeugs.bbaw.de
devbib.bbaw.de
cil.bbaw.de
shibboleth.bbaw.de
mailman.bbaw.de
census.bbaw.de
wsus64.bbaw.de
cmg.bbaw.de
www.gentechnologiebericht.de
clarin.bbaw.de
ldap.bbaw.de
edoc.bbaw.de
syslog.bbaw.de
vimes.bbaw.de
proxy.bbaw.de
cmg.bbaw.de
xmlpublic.bbaw.de
forschungsdatenmanagement.bbaw.de
telotadev.bbaw.de
www.bbaw.de
bureau.bbaw.de
akademieregistres.bbaw.de
pdrprod.bbaw.de
xmledit.bbaw.de
praesidenten.bbaw.de
login.bbaw.de
achard.bbaw.de
mailman.bbaw.de
www2.bbaw.de
actaborussica.bbaw.de
telotadev.bbaw.de
pdrprod.bbaw.de
eduroam2.bbaw.de
www.correspsearch.net
proxy2.bbaw.de
mailix.bbaw.de
digiclass.bbaw.de
mailix2.bbaw.de
aaew-dev.bbaw.de
lebenswelten-digital.bbaw.de
shibboleth.bbaw.de
brainudl.bbaw.de
mailix.bbaw.de
wwwdev.bbaw.de
gaerten.bbaw.de
vimes.bbaw.de
gerechtigkeit.bbaw.de
census-lod.bbaw.de
login2.bbaw.de
brainjae.bbaw.de
hws.bbaw.de
ldap.bbaw.de
kollokationen.bbaw.de
telotadev.bbaw.de
edoc.bbaw.de
shibboleth.bbaw.de
frauenvertretung.bbaw.de
bibliothek.bbaw.de
kant.bbaw.de
vimes.bbaw.de
agora.bbaw.de
bibelexegese.bbaw.de
edition-humboldt.de
t3extern.bbaw.de
mittelalterzentrum.bbaw.de
tla.bbaw.de
actaborussica.bbaw.de
tableau.bbaw.de
dschutz.bbaw.de
ostwald.bbaw.de
encoding-correspondence.bbaw.de
forschungsdatenmanagement.bbaw.de
avh-r.bbaw.de
cil.bbaw.de
aaew.bbaw.de
hippo.bbaw.de
agora.bbaw.de
hippo.bbaw.de
idqw.bbaw.de
inetbbaw.bbaw.de
Certificate
The complete raw certificate details for cmg.bbaw.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIbzCCBlegAwIBAgIQHQe3KdwOongT0ESBQIHnxjANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMxMjIwMDAwMDAwWhcNMjQxMjE5MjM1 OTU5WjByMQswCQYDVQQGEwJERTEPMA0GA1UECBMGQmVybGluMTwwOgYDVQQKEzNC ZXJsaW4tQnJhbmRlbmJ1cmdpc2NoZSBBa2FkZW1pZSBkZXIgV2lzc2Vuc2NoYWZ0 ZW4xFDASBgNVBAMTC2NtZy5iYmF3LmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAxmc0yBwpKhAWIUkF1e/FCVK7A8ymBecC8Aoj8XxN6WcNH2z9MBNU ybYq7rEno1YGKonBrhkiz9sg4rP9qfS8qYarYdagjqzOCNgrMxxELtZkZJdnU2QR KqZ0uCLN6NgpGaCkEmpiAcqBLhG9ACo4zABkxqdp/I5HUPKOCFssc3WyjXkVKtIT c7EGTEdEzUizc/uJ//VcqdQehkXRKylFzv++x6nN5WYDWkepYZjhj+XQ6iDALyxI bzwzoyZKzjwnQr3S4zwfa3G5vhrGGcyD9mjjzLdz4EQNO3FY3Jkdo24lP5GJJEoD kdsH1ZQ2hJ+UYPIsi8XRR4lSLgsKbKdiA8gAdQG+71bcUXgINhUSdqM1mQQhLY6h h8uqu9+wtUoYK4R4J+LynCu5OqTrCZUA/j37Y/UI3sSMnHz1UlBl1xPGK0yU96mQ rID6abZmKyytn40IJlCYc8fkBdnSvfSoJ1xT5AOz4OtiggxIxxYlKXKc0yDfJ1uo o1IZd/D/fDpfOv40AkOlGPbHLhEyjgKgX2N9R8GgI5q2kAe1g998deTvE7hEC0Fv tQz9cBYQxVeg8TZhJ0LP8zVbHK5BCwfzJXsFjPtHrsSTXU+JL/Fi1D1GnNafXKHt C3EkSmK0EcRuMSAll6J9ofZbUyYYeNM7yaNlh1y7rpz/w6MmuIP4OcMCAwEAAaOC Ay0wggMpMB8GA1UdIwQYMBaAFG8dNUkQbDL6WaCevIroH5W+cXoMMB0GA1UdDgQW BBQ4a8NZmmYrD1+8NccLGkLvzW7QrDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/ BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA0 BgsrBgEEAbIxAQICTzAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29t L0NQUzAIBgZngQwBAgIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL0dFQU5ULmNy bC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNybDB1BggrBgEFBQcBAQRpMGcw OgYIKwYBBQUHMAKGLmh0dHA6Ly9HRUFOVC5jcnQuc2VjdGlnby5jb20vR0VBTlRP VlJTQUNBNC5jcnQwKQYIKwYBBQUHMAGGHWh0dHA6Ly9HRUFOVC5vY3NwLnNlY3Rp Z28uY29tMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgB2/4g/Crb7lVHCYcz1 h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYyGTdfvAAAEAwBHMEUCIAtfop7mvLuX/9rf YbNRLOVl7ymAU/GlzXgUMXXPNsN5AiEA+PytjP6oG+zZIOzqHT/asuyXjSpPIJB8 knmwC/8lb3kAdgA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYyG TdeoAAAEAwBHMEUCIDyPVogm/IEHDBMrI0i2R8hmEiB2kmmJutcMzvI/ITmRAiEA pk1N/fECBP8DWhooSdFpkpTTXzc6pEofoVxZZQ2hEhYAdgDuzdBk1dsazsVct520 zROiModGfLzs3sNRSFlGcR+1mwAAAYyGTdeEAAAEAwBHMEUCIQCcT8//GMHqGFS4 laIt1tHHsdAFOgVVQmm6ujNlnPuBSwIgPyIc8de/Chja8TEOhkP0CSgai7llj/Jq 6RZRsOTDa9QwJQYDVR0RBB4wHIILY21nLmJiYXcuZGWCDWdhbGVuLmJiYXcuZGUw DQYJKoZIhvcNAQEMBQADggIBAESpgsTgVx1viX83CiVgMmWYsWPN+XJjTDIMKegG XAF2SponaFXpAV9sKvYHXbQwRHzYTJ4CnHXhi3HzYbnzKTXYbaffPIWeKSPwmYy+ qBjqsKap3K9nc3HZ2QrXGYplJl2rU6158s5CHIUWtKyQnYRi0tblqY82yFAFRzZy pK6sF6rfotQq/FfPNx8flIPBJAr3j3Vbqj0eVJn0uxMf9XOA7d15R/d1ntCRd4m8 UnXwasorFGc/UXJbhq/c+TAJv/4VZ9bUJ6tP4Oh59D/acHmUZozS6pynUgi0/Zzv M+t07fXhMwrQ1K7yV09WDF8a4gPYDL6l2DPHaIdQjyQPvvigGHN3V9vkF1crcjjh iSJ3kjdtSROjlrCvEQ6A5cymIXa5Etqd1qJGQBtTLyyup0UdEnmgZsknBvquJiCt unYYMjWidzCWY/k7BSvlJjOsyJn2olNaL6bSDFXSYR85TeoLZUsJaLx0GrS2DmSz irJ33wyPW/WI7q/GQ+Mkm9Jg7iAauRBBGn/Y+gc4cyDly0fsF1Mkh43a+RfMnwBd Op+VpqvSyZHjVxDsjN2u4dTxbvpwADnMGI6AD5Jd0ukTEU1rVGtxYMWPb/14znKr nnSi8zU66pH1120XyQIaN/9L930sPyf80gk725HSgPI6vH52J6iDOWPDnyH78QGG mCGn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxmc0yBwpKhAWIUkF1e/F CVK7A8ymBecC8Aoj8XxN6WcNH2z9MBNUybYq7rEno1YGKonBrhkiz9sg4rP9qfS8 qYarYdagjqzOCNgrMxxELtZkZJdnU2QRKqZ0uCLN6NgpGaCkEmpiAcqBLhG9ACo4 zABkxqdp/I5HUPKOCFssc3WyjXkVKtITc7EGTEdEzUizc/uJ//VcqdQehkXRKylF zv++x6nN5WYDWkepYZjhj+XQ6iDALyxIbzwzoyZKzjwnQr3S4zwfa3G5vhrGGcyD 9mjjzLdz4EQNO3FY3Jkdo24lP5GJJEoDkdsH1ZQ2hJ+UYPIsi8XRR4lSLgsKbKdi A8gAdQG+71bcUXgINhUSdqM1mQQhLY6hh8uqu9+wtUoYK4R4J+LynCu5OqTrCZUA /j37Y/UI3sSMnHz1UlBl1xPGK0yU96mQrID6abZmKyytn40IJlCYc8fkBdnSvfSo J1xT5AOz4OtiggxIxxYlKXKc0yDfJ1uoo1IZd/D/fDpfOv40AkOlGPbHLhEyjgKg X2N9R8GgI5q2kAe1g998deTvE7hEC0FvtQz9cBYQxVeg8TZhJ0LP8zVbHK5BCwfz JXsFjPtHrsSTXU+JL/Fi1D1GnNafXKHtC3EkSmK0EcRuMSAll6J9ofZbUyYYeNM7 yaNlh1y7rpz/w6MmuIP4OcMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 38587672953188829808713291964090542022 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin-Brandenburgische Akademie der Wissenschaften' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cmg.bbaw.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 809414230443144468626108012774903188946043744076484760490938442224392008405438135688146238100848923086501330518900416546953624031415985220096356098809580951767219850500667739920379945750447325660021454861293409592390530689565706098328841824021947497221530354057203148025284415063948982359089441100564348751630580540661848587059756379019840073700273114432309644619447250094172047200308505707726411211983818700105248713590448684550260114017005897762591252789979103009766984959123799315612390962382384025398424124553848470371655024766780140510766386418547224197645168703695836601868482180949730461741107474463684162516761743558572333541174563982165847533086929293690816521330238633484198307823765652575909055327887876097190884541521008377638587739930887824168049029438731726119267617256254123133309450317176848848925250074743382860331734880188000301401114517255005366784578778565054239523309296771550870932799566377418661914948638878783868051520558055654744838201668870628397498635487306269889040327212004356376282571525989495366494515855537515136242057857656856112508330091082179248900246146107031756380056040797204951542974456986879030824742681767533331731756704147277713858728676728133783974825186707152529145986769395503865783663043 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 386bc3599a662b0f5fbc35c70b1a42efcd6ed0ac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmg.bbaw.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'galen.bbaw.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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