cas-acc4.forux.nl
- Universiteit van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number d7:a8:8a:24:5f:80:14:ad:83:0b:bd:eb:cb:10:dd:28 was issued on by GEANT Vereniging.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit van Amsterdam
Organization:
Universiteit van Amsterdam
Organization unit: ICT Services
Organization unit: ICT Services
Address:
Spui 21
Postal code: 1012WX
State / Province: Noord-Holland
Locality: Amsterdam
Country: NL
Postal code: 1012WX
State / Province: Noord-Holland
Locality: Amsterdam
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): d7:a8:8a:24:5f:80:14:ad:83:0b:bd:eb:cb:10:dd:28Serial Number (int): 286659126820285834245943985503850257704
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ed:4d:87:84:fe:db:9c:68:47:1b:4a:a4:ea:7f:09:81:41:5d:ad:a8
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 95:d8:6b:4b:f7:aa:76:a1:18:97:0f:84:2b:f4:b3:ca:e4:5f:5d:48
Fingerprint (sha256): 1a:fc:f2:c4:18:36:6b:58:7f:e0:26:f1:9b:a4:bf:d1:2d:0d:9f:03:5f:00:1f:0c:0a:66:3a:54:fc:53:4c:eb
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate cas-acc4.forux.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cas-acc4.forux.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cas-acc4.forux.nl
cas-acc.ic.uva.nl
cas-acc5.forux.nl
cas-acc.ic.uva.nl
cas-acc5.forux.nl
Other certificates including the domain name forux.nl
(limited to 100 certificates)
sap-dev-rudx.ic.uva.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
Certificate
The complete raw certificate details for cas-acc4.forux.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHVTCCBT2gAwIBAgIRANeoiiRfgBStgwu968sQ3SgwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIwMTIwOTAwMDAwMFoXDTIxMTIwOTIz NTk1OVowgbQxCzAJBgNVBAYTAk5MMQ8wDQYDVQQREwYxMDEyV1gxFjAUBgNVBAgT DU5vb3JkLUhvbGxhbmQxEjAQBgNVBAcTCUFtc3RlcmRhbTEQMA4GA1UECRMHU3B1 aSAyMTEjMCEGA1UEChMaVW5pdmVyc2l0ZWl0IHZhbiBBbXN0ZXJkYW0xFTATBgNV BAsTDElDVCBTZXJ2aWNlczEaMBgGA1UEAxMRY2FzLWFjYzQuZm9ydXgubmwwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEAzGH0Hgvi66s40B3cixrTOOR T53g8EvjsxuxIGEA31UeQkmc5z2XchC8mp6SjOCu4USYA4p6ijyu1NNClbMIPgks NG+VJ6f8aO2Gx82nJWAMGIFN06oIH/p0kI96g2EPL1PMPM36d9g2XiucVSpk35ZN bwKzHoFAROm7MT0vUa8DTF9iHdJIOBxkCvo9qBz2PvX6OISKe1sMNH2WykqJwiVy 7z/n4LMxCHomNiqPmEFHLICxqnJNFOYrLE9FLnjW2UeV5H74H3rFlj3WMcApf2G4 Ea9H+i0oh8D4/IowkwPJ+WXZeMsh6jyS1cOP+lqoYA+sRDUKrtS0fOgkkUkDAgMB AAGjggLPMIICyzAfBgNVHSMEGDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAdBgNV HQ4EFgQU7U2HhP7bnGhHG0qk6n8JgUFdragwDgYDVR0PAQH/BAQDAgWgMAwGA1Ud EwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARC MEAwNAYLKwYBBAGyMQECAk8wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdv LmNvbS9DUFMwCAYGZ4EMAQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9HRUFO VC5jcmwuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUHAQEE aTBnMDoGCCsGAQUFBzAChi5odHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29tL0dF QU5UT1ZSU0FDQTQuY3J0MCkGCCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2NzcC5z ZWN0aWdvLmNvbTCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AH0+8viP/4hVaCTC wMqeUol5K8UOeAl/LmqXaJl+IvDXAAABdka96MAAAAQDAEYwRAIgVz+BTyK23vx6 a3qG1s4NwMK5pI+H5aSa30289Fdle68CIG3EQTXPJPxaMJTyL1rmi3AJgAZAPERO /0Cw8dnFy5pXAHYAlCC8Ho7VjWyIcx+CiyIsDdHaTV5sT5Q9YdtOL1hNosIAAAF2 Rr3pAAAABAMARzBFAiA4OpNYwKufgvrxncQ59kJFMNSbXt3KJZQ+Hlf+xgc3RQIh APOT6eE0nUODXOB36gRB668VHYJeP4dEETApWrG32vT+MEIGA1UdEQQ7MDmCEWNh cy1hY2M0LmZvcnV4Lm5sghFjYXMtYWNjLmljLnV2YS5ubIIRY2FzLWFjYzUuZm9y dXgubmwwDQYJKoZIhvcNAQEMBQADggIBAFFSuNt9l7ct13X4DEKD5YjwhTAXgDWH 6SaGskyc41J6EXuq6kAWyQUPe3rs/EbXvTlcNZooauZRcZV4c/kubtAfLyuK5OwZ pVv0dIgOJZuQL6kd1+kP4dowjPXK0EKWq3BMJNvg0tivtvzFmU9XyGqWMh2iE3zI Ash+BTmW8kFPr/bRPUJpciU/CrlM7Let+C/CnhTSAF46UEqPY2mADcjATkuU3QLl LW3BsHmzxnFagpoQrnDkVvEgL22MefKsYOLMUtqXFXpAxRGy9vooQir72biDzsl4 zhTTLNeGGjAM68c/wDdHDS2JgeEr8Wxb4J0HXLAa4ewnpnHysbQ04/BSbbs7bXIW y6ED9PqoTtKtdZ1xdRTlIXyi3lJNTfnaPNuDECkALVWx4N3JtFWf5LJ+mil+t2tW wul+5ilAwd5uYDTW4ue167d4tcI90FqpoyPQIbZv3UQv9PVhOQPE9us9gWzHlDHW WOmyUj3hpELmaAh2xxDwkHFrP2qecw4aVoHTdx+eyPxNiFk2k2T7CUqZkKUfQWbq 5Tp+UZFLCO4+uLDQy8Rnfu4C7GBkcc1ia2bMhGQ+DAjqrWW8gmhvhpTh5KQ4nRH+ xLLW0/Uo/1X5+zOgatL4AARtmO4Pl4SS625CKTo35r0IgweVux6LnJ0O3Kac/qpu PfL3AgKtgG2K -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxAMxh9B4L4uurONAd3Is a0zjkU+d4PBL47MbsSBhAN9VHkJJnOc9l3IQvJqekozgruFEmAOKeoo8rtTTQpWz CD4JLDRvlSen/GjthsfNpyVgDBiBTdOqCB/6dJCPeoNhDy9TzDzN+nfYNl4rnFUq ZN+WTW8Csx6BQETpuzE9L1GvA0xfYh3SSDgcZAr6Pagc9j71+jiEintbDDR9lspK icIlcu8/5+CzMQh6JjYqj5hBRyyAsapyTRTmKyxPRS541tlHleR++B96xZY91jHA KX9huBGvR/otKIfA+PyKMJMDyfll2XjLIeo8ktXDj/paqGAPrEQ1Cq7UtHzoJJFJ AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286659126820285834245943985503850257704 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1012WX' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Spui 21' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cas-acc4.forux.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24744282536343422143566873090760433464635030788810615279159582827315630515004198813105555881391238188687657919202920464042219542782966412918828631549501713292913571453123431548810675071240290250931875981399612527240500429699299325295901145984367560398503396382934203598053676031248180182587073071458403336822350432462686419164931353267085903660719404702976553917967438077273906416671107113125686520153849981145428366553012564649406348991617897137524429624931263643680231457238102596380472255377018491781424894667434248082710860900969531473169636013200137557689194267690301314895521779357133653612455799182912704825603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ed4d8784fedb9c68471b4aa4ea7f0981415dada8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075007d3ef2f88fff88556824c2c0ca9e5289792bc50e78097f2e6a9768997e22f0d70000017646bde8c000000403004630440220573f814f22b6defc7a6b7a86d6ce0dc0c2b9a48f87e5a49adf4dbcf457657baf02206dc44135cf24fc5a3094f22f5ae68b70098006403c444eff40b0f1d9c5cb9a570076009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c20000017646bde90000000403004730450220383a9358c0ab9f82faf19dc439f6424530d49b5eddca25943e1e57fec6073745022100f393e9e1349d43835ce077ea0441ebaf151d825e3f87441130295ab1b7daf4fe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-acc4.forux.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-acc.ic.uva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cas-acc5.forux.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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