knooppunt.dataland.nl
- BghU -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 1a:2e:76:8d:bc:41:04:76:44:13:ab:c9:94:a3:84:76:a7:3a:5d:f5 was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
BghU
Company registration number:
00000001852712716000
Organization: BghU
Organization unit: Staf
Organization: BghU
Organization unit: Staf
State / Province:
Utrecht
Locality: Utrecht
Country: NL
Locality: Utrecht
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 1a:2e:76:8d:bc:41:04:76:44:13:ab:c9:94:a3:84:76:a7:3a:5d:f5Serial Number (int): 149469921800338372858999334512492829104345341429
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: 01:77:c9:ef:16:84:c6:b1:f7:50:57:c4:e2:41:23:c6:5f:d2:2c:b6
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): eb:e1:4d:21:52:98:56:79:e2:ec:f1:f0:26:ee:16:95:d6:db:68:83
Fingerprint (sha256): 1c:d2:f7:19:35:24:19:b9:e3:64:49:df:69:61:82:ab:44:4e:c5:8e:b9:88:af:11:e7:a3:f9:85:c4:6b:bd:e7
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate knooppunt.dataland.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for knooppunt.dataland.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
knooppunt.dataland.nl
Other certificates including the domain name dataland.nl
(limited to 100 certificates)
knoop.dataland.nl
dataland.nl
lufo.knoop.dataland.nl
weshare365.dataland.nl
digikoppelingtest.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
digikoppelingtest.dataland.nl
act.dataland.nl
digikoppeling.dataland.nl
lufo.knoop.dataland.nl
services.knoop.dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
weshare365.dataland.nl
dataland.nl
knooptm.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
knooppunttest.dataland.nl
belastingenknoop.dataland.nl
belastingenknoop.dataland.nl
weshare365.dataland.nl
weshare365.dataland.nl
bghu.knoop.dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
regioknoopln.dataland.nl
www.dataland.nl
dataland.nl
dataland.nl
dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
knooppunttest.dataland.nl
digikoppeling.dataland.nl
rbg.knoop.dataland.nl
dataland.nl
regioknoopln.dataland.nl
knooppunt.dataland.nl
dataland.nl
knooptm.dataland.nl
knooppunt.dataland.nl
knooptest.dataland.nl
dataland.nl
lufo.knoop.dataland.nl
weshare365.dataland.nl
digikoppelingtest.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
digikoppelingtest.dataland.nl
act.dataland.nl
digikoppeling.dataland.nl
lufo.knoop.dataland.nl
services.knoop.dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
weshare365.dataland.nl
dataland.nl
knooptm.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
knooppunttest.dataland.nl
belastingenknoop.dataland.nl
belastingenknoop.dataland.nl
weshare365.dataland.nl
weshare365.dataland.nl
bghu.knoop.dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
regioknoopln.dataland.nl
www.dataland.nl
dataland.nl
dataland.nl
dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
knooppunttest.dataland.nl
digikoppeling.dataland.nl
rbg.knoop.dataland.nl
dataland.nl
regioknoopln.dataland.nl
knooppunt.dataland.nl
dataland.nl
knooptm.dataland.nl
knooppunt.dataland.nl
knooptest.dataland.nl
Certificate
The complete raw certificate details for knooppunt.dataland.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG+DCCBOCgAwIBAgIUGi52jbxBBHZEE6vJlKOEdqc6XfUwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5O VFJOTC0yNzEyNDcwMTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2Fu aXNhdGllIFNlcnZlciBDQSAtIEczMB4XDTE5MDYxOTA5MDEwNFoXDTIwMDYyODEz MjAwNFowgY4xCzAJBgNVBAYTAk5MMRAwDgYDVQQIDAdVdHJlY2h0MRAwDgYDVQQH DAdVdHJlY2h0MQ0wCwYDVQQKDARCZ2hVMQ0wCwYDVQQLDARTdGFmMR0wGwYDVQQF ExQwMDAwMDAwMTg1MjcxMjcxNjAwMDEeMBwGA1UEAwwVa25vb3BwdW50LmRhdGFs YW5kLm5sMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwxIoeLTTSuy arLYCuH/Pqhd+O5UxAheAuxz8cOquKX4Z49HjoeO86a9QRUkZMH/DZ/LBsbaSUzY kN8E8BjugTbEgWJVNlH+VHcjhWociXllw+DGCd4QfKGfQh/OkHMFpmI7B6qZ8rcd HcwhXQmqVD7PDnUZabKfR3nVEUagT2WCv1BYW6nzitN690lkwNkWKjKO2kbW1e6p uDJDCnwxGv9jxLTywY7YgCQu0ST8jq5q2aTThW5nZjH+1rJR5kDqjyCE4FEThhTR 9qX0puPZuI5GDkXSdmDUpw4XKeFsoJf5ejiFotgRXL9afKqUhI9dOVtYxMKkXD3i Si0EdNFmLwIDAQABo4ICaDCCAmQwgZkGCCsGAQUFBwEBBIGMMIGJMF0GCCsGAQUF BzAChlFodHRwOi8vY2VydC5tYW5hZ2VkcGtpLmNvbS9DQWNlcnRzL0tQTkJWUEtJ b3ZlcmhlaWRPcmdhbmlzYXRpZVNlcnZlckNBRzMtMjAxOS5jZXIwKAYIKwYBBQUH MAGGHGh0dHA6Ly9nM29jc3AubWFuYWdlZHBraS5jb20wHQYDVR0OBBYEFAF3ye8W hMax91BXxOJBI8Zf0iy2MAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUw5qme150 K4K2xnL9dE6F0pfN/RgwgbEGA1UdIASBqTCBpjCBmQYKYIQQAYdrAQIFBjCBijA3 BggrBgEFBQcCARYraHR0cHM6Ly9jZXJ0aWZpY2FhdC5rcG4uY29tL3BraW92ZXJo ZWlkL2NwczBPBggrBgEFBQcCAjBDDEFPcCBkaXQgY2VydGlmaWNhYXQgaXMgaGV0 IENQUyBQS0lvdmVyaGVpZCB2YW4gS1BOIHZhbiB0b2VwYXNzaW5nLjAIBgZngQwB AgIwXgYDVR0fBFcwVTBToFGgT4ZNaHR0cDovL2NybC5tYW5hZ2VkcGtpLmNvbS9L UE5CVlBLSW92ZXJoZWlkT3JnYW5pc2F0aWVTZXJ2ZXJDQUczL0xhdGVzdENSTC5j cmwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcD ATAgBgNVHREEGTAXghVrbm9vcHB1bnQuZGF0YWxhbmQubmwwEwYKKwYBBAHWeQIE AwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggIBALdMo1glfULaHuhgogCBVBvDjc9J HnwaPR6vcM6ez8Gox1FujcAnVA7FAu1fQRwfhT4H1b90SV0qBmH1AnCec7FP0QUG fnhyQgwcUEWUwHPTSjqRVV0/cD40Y0QlypmXZ8lMeYJlM0p5k82SwUQPZyLy1k8Z qOD2Kkb9nCZwX3dCPq+loM/JuOt+VQMAWuoCo9S27wr8BZPrEkfx2dO2cd5APni2 KUdCnegK4TI6liZIArdkvrosoY0g9kFKUHLfI86ou7rHfdTCxJEuKnOmMjEmXsf5 bHsy+rnkIFlQ1aSEHWlMUM5K+1u/suTGXYyIXFNL3JMcm2dNw9YxGydrFG+dP8zf /OAtLHielu4hPpSylK8BbqhwARh9Lx+IZiUKBQlIA8qMuFEwl6+yosyDtesj9yu6 gsdzw0aHWaxkhNyzOX9ApigIQdEDagB8ntzA5KoK738sqKDG9xu8Rwm7Yy/4+zuJ xJnwf6eAE8e5G1hFTSACDxl4qm45hW383vqtvXvhhFeuMj3MjL51qjetFtZG0BHP vaILr/P0ZGSli1wCdYaV1dusO6niqbYAOWgXgBFYscjPp3KpUklI/9vDErRdK5d8 sPh+Bu+wFu2aQjWm773d0AK6GyuO6z8eH7VCttwTinUCVvjAz5SOu+hmJd5Caefa dYKeoDwN1Hz4ljVi -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwxIoeLTTSuyarLYCuH/ Pqhd+O5UxAheAuxz8cOquKX4Z49HjoeO86a9QRUkZMH/DZ/LBsbaSUzYkN8E8Bju gTbEgWJVNlH+VHcjhWociXllw+DGCd4QfKGfQh/OkHMFpmI7B6qZ8rcdHcwhXQmq VD7PDnUZabKfR3nVEUagT2WCv1BYW6nzitN690lkwNkWKjKO2kbW1e6puDJDCnwx Gv9jxLTywY7YgCQu0ST8jq5q2aTThW5nZjH+1rJR5kDqjyCE4FEThhTR9qX0puPZ uI5GDkXSdmDUpw4XKeFsoJf5ejiFotgRXL9afKqUhI9dOVtYxMKkXD3iSi0EdNFm LwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 149469921800338372858999334512492829104345341429 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-19 09:01:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-28 13:20:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BghU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Staf' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001852712716000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'knooppunt.dataland.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19068041378057732425017781930365505281417570462023187274585535069770691761027672366563657951456113817383760178518093839895434083992406593763801500540679742562445768114722633799101498334856172651834117222321803406768926850036579039947018042422000254236794978198595958798645129123967827656562411050626465249177988944895520358852072143250323337417364455075715467748302563779501003538268766611836062370581377145871616751269304484282150370802099755993499010829401343241773865916727408870965413546020150529940881080387279231672518966727596792008961769336328911712751646507839935939322851413448511343706021526908374401246767 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0177c9ef1684c6b1f75057c4e24123c65fd22cb6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knooppunt.dataland.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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