www.ukaachen.de
- RWTH Aachen -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 20:12:35:72:5e:34:74:7a:76:aa:8a:8b was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RWTH Aachen
Organization:
RWTH Aachen
State / Province:
Nordrhein-Westfalen
Locality: Aachen
Country: DE
Locality: Aachen
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 20:12:35:72:5e:34:74:7a:76:aa:8a:8bSerial Number (int): 9925533374176700626102815371
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 0f:a2:79:93:50:6e:c9:af:3a:a2:17:f0:46:5b:c0:43:09:69:38:aa
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 29:35:85:24:25:a3:04:2b:3f:24:95:a5:03:c7:99:74:19:0b:cd:46
Fingerprint (sha256): 1c:8f:9f:35:a2:a1:ec:c9:fe:6b:9e:32:cc:5f:0c:36:b3:34:9b:dd:34:88:aa:16:d8:9b:25:57:77:74:32:f6
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate www.ukaachen.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ukaachen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ukaachen.de
Other certificates including the domain name ukaachen.de
(limited to 100 certificates)
jobs.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
for2591.ukaachen.de
proans.ukaachen.de
db-ucr-ods-d1.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
vhukaprdai01.hec.klinikum.rwth-aachen.de
balu-api.ukaachen.de
balu-api.ukaachen.de
db-iris-ths-d.ukaachen.de
elab-oos.cloud.ukaachen.de
medienonline.ukaachen.de
sbc2-n5-trk2a.tk.ukaachen.de
webmail.ukaachen.de
isp-notfall.pacs.ukaachen.de
db-ucr-ods-p1.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
as-medwik-imi.klinikum.rwth-aachen.de
aed-logs.ukaachen.de
webmail.ukaachen.de
db-trans-p2.ukaachen.de
as-prime02.klinikum.rwth-aachen.de
medical.ukaachen.de
vhukasnqci.hec.klinikum.rwth-aachen.de
vhukasnpci.hec.klinikum.rwth-aachen.de
as-nicofa.klinikum.rwth-aachen.de
www.cbmb.ukaachen.de
www.ukaachen.de
balu-api.ukaachen.de
vhukaepqci.hec.klinikum.rwth-aachen.de
mediaface.ukaachen.de
ndp.ukaachen.de
sts.ukaachen.de
balu-api.ukaachen.de
as-covas01.klinikum.rwth-aachen.de
www.vm.ukaachen.de
aed-dashboard.ukaachen.de
elab.cloud.ukaachen.de
as-prime03.klinikum.rwth-aachen.de
db-ucr-p1.ukaachen.de
as-iris-ws-p1.ukaachen.de
webmail.ukaachen.de
ctca-edc.ukaachen.de
izkf.ukaachen.de
vhukabp1sbo01.hec.klinikum.rwth-aachen.de
db-hi-p1.ukaachen.de
startportal.ukaachen.de
gast01.klinikum.rwth-aachen.de
db-ucr-t1.ukaachen.de
as-ucr-ws-p1.ukaachen.de
mdmrelay.ukaachen.de
service-portal.ukaachen.de
test-support.ukaachen.de
jobs.ukaachen.de
intranet.ukaachen.de
intranet.ukaachen.de
as-ucr-ws-t1.ukaachen.de
labooratory-eslide.ukaachen.de
redcap-weber.klinikum.rwth-aachen.de
ldaps-int.ukaachen.de
jobs.ukaachen.de
www.e-learning.ukaachen.de
momo.ukaachen.de
test-support.ukaachen.de
apps.ukaachen.de
imioc.ukaachen.de
db-ucr-ods-d2.ukaachen.de
ums-relay01.ukaachen.de
jira-imi.ukaachen.de
intranet.ukaachen.de
forschungsportal.ukaachen.de
rechtskataster.ukaachen.de
as-simlab.klinikum.rwth-aachen.de
jobs.ukaachen.de
vhukasndci.hec.klinikum.rwth-aachen.de
vhukaqssci.hec.klinikum.rwth-aachen.de
mdmrelay.ukaachen.de
as-cobra01.klinikum.rwth-aachen.de
cmdb.ukaachen.de
forschungsportal.ukaachen.de
elab-oos.cloud.ukaachen.de
coupons.ukaachen.de
as-jira-imi.klinikum.rwth-aachen.de
webmail.ukaachen.de
openproject-gbma.ukaachen.de
labooratory-eslide.ukaachen.de
medical.ukaachen.de
cipher2.ukaachen.de
vhukaepdci.hec.klinikum.rwth-aachen.de
db-trans-p2.ukaachen.de
cipher2.ukaachen.de
db-hi-t1.ukaachen.de
jobs.ukaachen.de
support.ukaachen.de
www.cbmb.ukaachen.de
ukaachen.de
pwreset.ukaachen.de
forschungsportal.ukaachen.de
isp-pacs.pacs.ukaachen.de
vhukaeppci.hec.klinikum.rwth-aachen.de
sbc1-n5-trk2b.tk.ukaachen.de
Certificate
The complete raw certificate details for www.ukaachen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKOzCCCSOgAwIBAgIMIBI1cl40dHp2qoqLMA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE4 MTExOTEzMTcyNloXDTIxMDIyMDEzMTcyNlowbDELMAkGA1UEBhMCREUxHDAaBgNV BAgME05vcmRyaGVpbi1XZXN0ZmFsZW4xDzANBgNVBAcMBkFhY2hlbjEUMBIGA1UE CgwLUldUSCBBYWNoZW4xGDAWBgNVBAMMD3d3dy51a2FhY2hlbi5kZTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANhxTH9aysPxgI/zkbVcd8ZVXVK6oaeU eN/LmF1CPi3arv3lD4JSB5xs5pm/r6HmFpDB6IUslMSro5qJMuoj4QJyOqc18fKi BUnfDjPS9xcFqelBGrFR3QeNobzsQ4Vws6fEE+9AR+TQfupsx3OoehzmR4pDubTp V6Isg5zcErkRjzx17Yq8TWGNbC1K2WH9X4y3Tvv5NMSHMMzHGLgTUDGClRovYSk3 LZsimfIpXj6rRlxk7bDH0iKVDPXuKdPTF6QeXYrQc8Ny7hJ4fxGANeR4aTScci+h ExbMtMxJxPQqljdR8MItAdsdgrLNAb8CiI86BKsz3YbMOqRzcg9PvQcvwiRefWsR fbWM5FA1OH3cddilQDTUhtliYnrRhN2pfhsb0DOhHncw3Kf8Doo0y5YVViBDOVCz 0yEsEoJKYQ8GwCPBZ0qLKJHHMapOnqqy0vw/4e4LGkTDPeAxmCt8tW8yUPMAtpf/ X9hxUcF3sfOxrILR9TVsjYfFUZdUHkfAxyXQLuWogMQeQLPkBbtVlgAO4cjQ/rHX GzC3H8yrMDNp9Hy859bHzLbRsw/PfXAmZOIh7U1GeyJtJ1aaBfqSBB2E7oAQqMnS P5hneEa4F1X+ZzZuUCr6VslXe2m5ZR6xJr50O1qBcIvQcL5lcCm4MJFHuMVTMKUj bi0okmSXm10fAgMBAAGjggW5MIIFtTBZBgNVHSAEUjBQMAgGBmeBDAECAjANBgsr BgEEAYGtIYIsHjAPBg0rBgEEAYGtIYIsAQEEMBEGDysGAQQBga0hgiwBAQQDCDAR Bg8rBgEEAYGtIYIsAgEEAwgwCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwEwYD VR0lBAwwCgYIKwYBBQUHAwEwHQYDVR0OBBYEFA+ieZNQbsmvOqIX8EZbwEMJaTiq MB8GA1UdIwQYMBaAFGs6mIv58lOJ2uCtsjIeCR/oqjt0MBoGA1UdEQQTMBGCD3d3 dy51a2FhY2hlbi5kZTCBjQYDVR0fBIGFMIGCMD+gPaA7hjlodHRwOi8vY2RwMS5w Y2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NybC9jYWNybC5jcmwwP6A9 oDuGOWh0dHA6Ly9jZHAyLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIv Y3JsL2NhY3JsLmNybDCB2wYIKwYBBQUHAQEEgc4wgcswMwYIKwYBBQUHMAGGJ2h0 dHA6Ly9vY3NwLnBjYS5kZm4uZGUvT0NTUC1TZXJ2ZXIvT0NTUDBJBggrBgEFBQcw AoY9aHR0cDovL2NkcDEucGNhLmRmbi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9j YWNlcnQvY2FjZXJ0LmNydDBJBggrBgEFBQcwAoY9aHR0cDovL2NkcDIucGNhLmRm bi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDCCA1wG CisGAQQB1nkCBAIEggNMBIIDSANGAHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQAp Bo2yCJo32RMAAAFnLB5m+gAABAMARjBEAiBpxOsXG3dSYbZ8cP4ztaItR1jM4V2W nsunQZ9RK94TZgIgPAxJLtHgL2ip1ncCZ6D1FNYpxyHsNcg+a2Cph0lBDPYAdgBV gdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAWcsHmfdAAAEAwBHMEUC IQDJPU0F+aCT++Y7fiqnosz0YppJUfV6DrHLWkCyHVTrnQIgfE2uhMFMKuhgI1i2 F4hzj+q1p4cOoWW9cfsAWf6G6sIAdgCq5wt/PLjVZshsLxaXnJ9EX2mrDrRTVYmy 93oDAQTzzQAAAWcsHmbRAAAEAwBHMEUCIQCJZpFZ32GhZWkXZ/KI3trZHJVjSxpA QeNFoeeFQ3pJ8gIgaKRKYGD3xIGrKP9NnsIDUkBtUFtBSLyQ4xW4sV5YVoIAdgC7 2d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2jh7RhQAAAWcsHmkxAAAEAwBHMEUC IQDOYn6mO8z7f1Ahp1weL2IKSnSxw+lhmhenwAffO8ayggIgJHfeE32il5Rs8E46 usqDlJzWiwqQLWicqtLIJFkG5RgAdgCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jj d80OyA3cEAAAAWcsHmk5AAAEAwBHMEUCIQDoMull8hRzse5E13GcWgAHijwweo1m t7JOtPLLC6PA2wIgFQMzjbKYfj7/NWC8ZQORFtRMWLguyvdbvraKfdDRCJ0AdQBE lGUusO7Or8RAB9io/ijA2uaCvtjLMbU/0zOWtbaBqAAAAWcsHmuNAAAEAwBGMEQC IBIFFQw6kEYOJhlwhDxeQmKqV9i6kV7e7gynSCctemScAiBcPlacTZvadnt61oAX MmFu/v0KENG+DRoIvLAQgmvY/gB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDE e4l6qP3LAAABZyweZtIAAAQDAEcwRQIgf99dxD96jGy5fkB7bEH1NjeLE1mlPQvG t8UjDMYzJuECIQDluVSAHaVw0UN6gPKbM28LjfxMBx7SKQXWehd2pQ0FXjANBgkq hkiG9w0BAQsFAAOCAQEAZee1wii9TzvLZ5S9S2uYYQUlzn8fOC7o1yW3v6tHEVGk Uptpr6FPVkMD6m+omE6Qipt9Wbey0FK//MMOw5ocDQyDt6+ssPkAvI6jsA+4Bda0 qRYgfSgILcxWIeeRGWN5Ab0TJZteOpKr3U6FzPuYOLREAidisMJAIxH3e9sgIiqP ZQptKFzA/x9jzsLXZxcUH473iHm2H5p0XPTLnJw9036ud/dFkdu9Stvj08RFCoqH kpXcl6qBNUZFE0P2LWWt2bwXIomX/ywNO+5HNilkdde7ETTWk1TYHvrNeR4eabY/ /dHlpK+Dj36yZS3pLqfo0Op1GQK7ND/km7q5Igt95w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2HFMf1rKw/GAj/ORtVx3 xlVdUrqhp5R438uYXUI+Ldqu/eUPglIHnGzmmb+voeYWkMHohSyUxKujmoky6iPh AnI6pzXx8qIFSd8OM9L3FwWp6UEasVHdB42hvOxDhXCzp8QT70BH5NB+6mzHc6h6 HOZHikO5tOlXoiyDnNwSuRGPPHXtirxNYY1sLUrZYf1fjLdO+/k0xIcwzMcYuBNQ MYKVGi9hKTctmyKZ8ilePqtGXGTtsMfSIpUM9e4p09MXpB5ditBzw3LuEnh/EYA1 5HhpNJxyL6ETFsy0zEnE9CqWN1Hwwi0B2x2Css0BvwKIjzoEqzPdhsw6pHNyD0+9 By/CJF59axF9tYzkUDU4fdx12KVANNSG2WJietGE3al+GxvQM6EedzDcp/wOijTL lhVWIEM5ULPTISwSgkphDwbAI8FnSosokccxqk6eqrLS/D/h7gsaRMM94DGYK3y1 bzJQ8wC2l/9f2HFRwXex87GsgtH1NWyNh8VRl1QeR8DHJdAu5aiAxB5As+QFu1WW AA7hyND+sdcbMLcfzKswM2n0fLzn1sfMttGzD899cCZk4iHtTUZ7Im0nVpoF+pIE HYTugBCoydI/mGd4RrgXVf5nNm5QKvpWyVd7abllHrEmvnQ7WoFwi9BwvmVwKbgw kUe4xVMwpSNuLSiSZJebXR8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9925533374176700626102815371 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-19 13:17:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-20 13:17:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nordrhein-Westfalen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'RWTH Aachen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.ukaachen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 883008661082585224706950311603602682374573285676508436701157775528143718019430245004095344924251592965756892852955780249826240399063021876106658499921898229635277037172000255134307581013428233208153228061274674794158799681816576377152096479842386723471809040121945065711151905207289203374670516925714628094504862450670319813540532311879567616396022035882375443498923958802412090408279506064226772523616775042909584153242527518405299358489231694899135578150638914837318253033179038823459636772481567274985143771170158475399362193880053690600705072652933863970714285433869204436776035606363732618373490459182103782375601081340782048494777785540757485896673401181453670415649542246271102857713774616770180680031935048831356400109045040653593176065693601631764103152132311626980911222001703242966929938009040219052313791692588364006915302522332719162793914943950497179372356253369023748427221503173111975732610006823656526224488734473473352945535347593826899230243899030175694358197986420250653632684343425013614364655295248820191369612434275059360500512572135242281381050511283739976685759564091950981301298995511822516628078743494237264399919553021214293033199635840151191085531307484084145269708976489973433177438252263123307076476191 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0fa27993506ec9af3aa217f0465bc043096938aa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ukaachen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (844 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (840 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0065e7b5c228bd4f3bcb6794bd4b6b98610525ce7f1f382ee8d725b7bfab471151a4529b69afa14f564303ea6fa8984e908a9b7d59b7b2d052bffcc30ec39a1c0d0c83b7afacb0f900bc8ea3b00fb805d6b4a916207d28082dcc5621e79119637901bd13259b5e3a92abdd4e85ccfb9838b444022762b0c2402311f77bdb20222a8f650a6d285cc0ff1f63cec2d76717141f8ef78879b61f9a745cf4cb9c9c3dd37eae77f74591dbbd4adbe3d3c4450a8a879295dc97aa813546451343f62d65add9bc17228997ff2c0d3bee4736296475d7bb1134d69354d81efacd791e1e69b63ffdd1e5a4af838f7eb2652de92ea7e8d0ea751902bb343fe49bbab9220b7de7