medical.ukaachen.de
- RWTH Aachen University -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number ab:d9:f5:6e:6d:08:96:94:43:84:31:fa:e8:6e:e2:92 was issued on by GEANT Vereniging.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RWTH Aachen University
Organization:
RWTH Aachen University
State / Province:
Nordrhein-Westfalen
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): ab:d9:f5:6e:6d:08:96:94:43:84:31:fa:e8:6e:e2:92Serial Number (int): 228429693636717691657312278709151916690
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 0e:02:fa:de:b0:1e:37:6b:25:8f:28:74:b0:59:c1:85:1b:e3:f5:58
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): a8:e4:8d:04:78:62:37:cc:c7:a4:21:80:58:5c:13:9e:b6:f3:9b:ad
Fingerprint (sha256): 18:df:5c:64:b7:45:7b:49:3c:6a:2d:99:fe:3e:9d:86:c9:8b:aa:4b:38:2b:8d:0e:b2:db:5e:88:52:e0:3d:88
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate medical.ukaachen.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for medical.ukaachen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
medical.ukaachen.de
medical-manager.ukaachen.de
medical-z.ukaachen.de
medical-manager.ukaachen.de
medical-z.ukaachen.de
Other certificates including the domain name ukaachen.de
(limited to 100 certificates)
jobs.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
Certificate
The complete raw certificate details for medical.ukaachen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIkzCCBnugAwIBAgIRAKvZ9W5tCJaUQ4Qx+uhu4pIwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIzMDMwMTAwMDAwMFoXDTI0MDIyOTIz NTk1OVowajELMAkGA1UEBhMCREUxHDAaBgNVBAgTE05vcmRyaGVpbi1XZXN0ZmFs ZW4xHzAdBgNVBAoTFlJXVEggQWFjaGVuIFVuaXZlcnNpdHkxHDAaBgNVBAMTE21l ZGljYWwudWthYWNoZW4uZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDEFp8HiTx0BpL+Bor4deD/DSpWZr+Vvg2COsWO2fDG9Rb9LQBn7WwhR2E300OW bPijjwMw2zL4xd9gl64DTC9ErhMkmHLyoySPDX3wfhu7DLd7s+ekHOBOLsxHxGQE 2Rp7BMqaGJWs1cbQ8ySwrap3f040fPA9mGn8YqGCAkf8JBsDsWM4e+0XDbRtyvpR auePmYIiFPPafbd+4KTedTYqQSBzsPspWWMFtZ8njVAimw3O5BsBCrwtHJ8nTLET 8kpOKFYUKFTknCldWRBLbcseiiVz9/g+uFTrrXUEDdU8PSGWyxZllzI50BrYmdSg duMbjowovNK8XSob3LcFEQnuFjcrMXNpo+igWX/SefTQbQEIh3BIn6cJ6PKQ4f9e g+i0hraooo92oyw5jj2RZPKFtRZh2pYz9yvdJwPiJhzR9TbV7PKsc36BA8v62TgX izoRNP59Cc6N8lign3AsHHlF42yjP1rTeDlMyiS0Vn9xyl8YAbFVcKgqMCCwYdIh JSnimJVJI02n/cnGdH6RVF2jL9ttL4lEgK5kfkoR115wHKPnJKuQ+JU/5OF+QFA7 zRM1ZQEdHfVsTngsuQkWEratwzl7HiqxGOqbwuWTJmHu2imbvUU3kcU1SI67rHMX PHEgxksLB1MAOhE0xsB9Fb+v6pkLaldknlrHm9+Td5H47wIDAQABo4IDWDCCA1Qw HwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFA4C+t6w HjdrJY8odLBZwYUb4/VYMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQB sjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgG BmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3Rp Z28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEF BQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0 LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20w ggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB1AHb/iD8KtvuVUcJhzPWHujS0pM27 KdxoQgqf5mdMWjp0AAABhp18ySUAAAQDAEYwRAIgbVTwobNXH/JXqep7fteBVscE FEo2hY+jwYb7uF0T7/YCICWzPePu3eW1vWOknLvLlsxCNon1xodhuhAozDCE1QCP AHUA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGGnXzJigAABAMA RjBEAiBhou/XZyM+QiAmcKTETiIsVQursLYCmxAzeKR8SjQYUwIgIk8U21OSgSa3 ZLsErNmhW0N2kQXxXNIRpxnFDnL62m4AdgDuzdBk1dsazsVct520zROiModGfLzs 3sNRSFlGcR+1mwAAAYadfMl6AAAEAwBHMEUCIDdvX6qIKxmVVnfcbESbilglhbIq QJefRzEmhUdYQRQfAiEAozMCjz/p+SmxvDTJhVwZl1s/uEIDTzLm0f7Me68TGP0w UgYDVR0RBEswSYITbWVkaWNhbC51a2FhY2hlbi5kZYIbbWVkaWNhbC1tYW5hZ2Vy LnVrYWFjaGVuLmRlghVtZWRpY2FsLXoudWthYWNoZW4uZGUwDQYJKoZIhvcNAQEM BQADggIBABazZvmHCJNUoAmdyxICnPwfd4klK6YPl27sCdEi5Wyc5T7VKqZ3Ydac JIXXuMGOYUOAmuGOiQcWgjinyGQtdOVjLau8RuVsxj66qWDKsnnKEmctC8GtdqUX YVGl6M5cQ0mUFNjREViwHF8oLwLvNjfuhTS+maua4HGNdy7BkKzl6yy7HHYvhKq7 gC07UxI9cYl2w8gT2yfRGhVeEQxKesem7z5MjUOWsODVQFKBTNpeK7VAZ/NbOKLW RH36m4Ms6Y8e4TonOQgakQ4nw1goZWW4+w9ArRWu6cdQ3oXzLsHjMwv+MHVf7Hn0 7tqiIYnvKx+UcNKBYq4dzHa3Z9vXnGWIIEFGatFctJ+h7fgq0WMF6Ci3H5Ib4HD1 +xMqOQrmpo0GcQVf4hVhOi8Rr6AU4IkxapqDfrO87btWnb2cN0/HLzRq4eQOgsoR x9CiytVVAe2gVYrAp0JWshJVWI84W6ZlK37QHXk1zfUOVcsfpIq5tmCJdWlo6D3R dF1mjc1CUea2OMbkb6ukdkI0myPskNCURTp+NlYg1fAxZjE6efeb5dzUO2ilC/j7 o3nl1f/GraJNCqgnJlMgp//3UMz7F12kfhGuG8sJ4qpXxe4k+XB5+Gy5kSyqfYWi zSwj91/LejEDoaJqo0OsSk5PNBTz4uKlfKb4IJ5IR/0iy+XjgRPy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxBafB4k8dAaS/gaK+HXg /w0qVma/lb4NgjrFjtnwxvUW/S0AZ+1sIUdhN9NDlmz4o48DMNsy+MXfYJeuA0wv RK4TJJhy8qMkjw198H4buwy3e7PnpBzgTi7MR8RkBNkaewTKmhiVrNXG0PMksK2q d39ONHzwPZhp/GKhggJH/CQbA7FjOHvtFw20bcr6UWrnj5mCIhTz2n23fuCk3nU2 KkEgc7D7KVljBbWfJ41QIpsNzuQbAQq8LRyfJ0yxE/JKTihWFChU5JwpXVkQS23L Hoolc/f4PrhU6611BA3VPD0hlssWZZcyOdAa2JnUoHbjG46MKLzSvF0qG9y3BREJ 7hY3KzFzaaPooFl/0nn00G0BCIdwSJ+nCejykOH/XoPotIa2qKKPdqMsOY49kWTy hbUWYdqWM/cr3ScD4iYc0fU21ezyrHN+gQPL+tk4F4s6ETT+fQnOjfJYoJ9wLBx5 ReNsoz9a03g5TMoktFZ/ccpfGAGxVXCoKjAgsGHSISUp4piVSSNNp/3JxnR+kVRd oy/bbS+JRICuZH5KEddecByj5ySrkPiVP+ThfkBQO80TNWUBHR31bE54LLkJFhK2 rcM5ex4qsRjqm8LlkyZh7topm71FN5HFNUiOu6xzFzxxIMZLCwdTADoRNMbAfRW/ r+qZC2pXZJ5ax5vfk3eR+O8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 228429693636717691657312278709151916690 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RWTH Aachen University' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'medical.ukaachen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 799970731394653641417409809997340821201403158320463233835642552067123593647969484717289559415624678502668929285073271563124123098912066321127177031759990013350505225392464612738668799292879705523752505787380175212216950393029847429689258054560869388296901551713948686939776089650724212616998281218077738248379439398238467045542281348239055810514732089658205598394997971239577868176510752872123911261926825174480819013839918100795842452391649161090035611166380155860397443292680912514944242906452884249756949186630260583263886943798629727302695998986694663568596922031024291156661592580752599637733664969894038897008075668703243809765411664924737685618164187173652294744669515315858933293790652769878591341853575462238129927991148502346702468200384195357518933349003863667033011626145581804710634473181026768227956249311841143118381359039732770737592984311850386973426968870078092225859688915726087083327914737886322816126849635373907332103823953504104477375698038040546620864306265148516236129864555626004766392876377318592225938670308373996487974834305003777073168001496915896177679931899379137503748839711346510504574424090899939867984275875306527018049874958416670155311749069682724102408667751113302666060389966140395161193150703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0e02fadeb01e376b258f2874b059c1851be3f558 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN asn1: syntax error: invalid boolean false . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:3|t:12|false] . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 44162230861698018567711419408115070431017894405562134250210588157042324936787 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 15518361717904994146862806559748792501468134421532743248749111959173291760238 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medical.ukaachen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medical-manager.ukaachen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medical-z.ukaachen.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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