nza-form2.nza.nl
- De Nederlandse Zorgautoriteit (NZa) -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 62:89:c0:e0:e4:8f:ac:24 was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
De Nederlandse Zorgautoriteit (NZa)
Company registration number:
00000003525031430000
Organization: De Nederlandse Zorgautoriteit (NZa)
Organization: De Nederlandse Zorgautoriteit (NZa)
State / Province:
Utrecht
Locality: Utrecht
Country: NL
Locality: Utrecht
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 62:89:c0:e0:e4:8f:ac:24Serial Number (int): 7100418359666125860
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: 11:ac:35:35:76:cc:f2:ac:5f:60:7a:dc:f3:9c:91:fe:80:c4:a7:29
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 96:01:d4:36:a5:e2:cc:e4:ef:16:58:51:50:57:8e:00:5d:03:ff:b7
Fingerprint (sha256): 1d:56:78:a3:02:ff:5e:0f:6a:47:bd:e1:82:27:1b:74:a0:15:21:84:22:47:3c:24:7d:0f:f3:c1:15:39:dd:8f
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate nza-form2.nza.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nza-form2.nza.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nza-form2.nza.nl
Other certificates including the domain name nza.nl
(limited to 100 certificates)
www.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
www.werkenmetdbcs.nza.nl
systems.squaredup.com
dbcregels.nza.nl
adfs.nza.nl
praatmee.nza.nl
zorgproducten-test.nza.nl
*.nza.nl
hub.theriderfirm.cc
dbcregels.nza.nl
nza-portaal1.nza.nl
servicedesk.esmsglobal.com
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
service.littlegarth.org
nza-form6.nza.nl
www.nza.nl
leren.nza.nl
dkdlmodel.nza.nl
zorgvraagtypering.nza.nl
nza-form5.nza.nl
uitwisselportaal.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
hybrid.nza.nl
tarievenzoekerzorgprestatiemodel.nza.nl
dkdlmodel.nza.nl
support.homeinstead.ie
zorgvraagtypering-test.nza.nl
dbcregels.nza.nl
meldingsformulier.nza.nl
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
zorgclustertool-test.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
zorgproducten.nza.nl
www.nza.nl
zorgproducten-test.nza.nl
support.homeinstead.ie
service.littlegarth.org
soporte.martinezabolafio.com
zorgproducten-test.nza.nl
zorgproducten-test.nza.nl
nza.nl
servicedesk.coram.eu
uitwisselportaal.nza.nl
zorgcijfers.nza.nl
sd.srk-zuerich.ch
zorgproducten.nza.nl
login.nza.nl
nza-form2.nza.nl
mijn-accp.nza.nl
helpdesk.sunlight.gr
support.brill.com
portal.nza.nl
www.werkenmetdbcs.nza.nl
dbcregels.nza.nl
support.homeinstead.ie
nzarpsamd001.nza.nl
leren.nza.nl
helpdesk.itwfasteners.com
dbcregels.nza.nl
nzarpsamd002.nza.nl
mijn-accp.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
wireless.nza.nl
nza-portaal1.nza.nl
zorgproducten-test.nza.nl
zorgcijfers.nza.nl
uitwisselportaal.nza.nl
nza-form1.nza.nl
zorgproducten.nza.nl
nzarpsamd002.nza.nl
dbcregels.nza.nl
www.werkenmetdbcs.nza.nl
zorgproductenviewer.nza.nl
adfs.nza.nl
mta-sts.nza.nl
acceptatie.crm.nza.nl
owa.nza.nl
zorgclustertool.nza.nl
adfs.nza.nl
l1.platformrijksoverheid.nl
werkenbijde.nza.nl
ithelpdesk.koinly.io
nzarpsamd002.nza.nl
nieuwmodelggzfz.nza.nl
aanvragen.nza.nl
customerportal.uk.rlb.com
nzarpsamd001.nza.nl
nza-form3.nza.nl
l1.platformrijksoverheid.nl
helpdesk.sunlight.gr
wachttijden.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
www.werkenmetdbcs.nza.nl
systems.squaredup.com
dbcregels.nza.nl
adfs.nza.nl
praatmee.nza.nl
zorgproducten-test.nza.nl
*.nza.nl
hub.theriderfirm.cc
dbcregels.nza.nl
nza-portaal1.nza.nl
servicedesk.esmsglobal.com
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
service.littlegarth.org
nza-form6.nza.nl
www.nza.nl
leren.nza.nl
dkdlmodel.nza.nl
zorgvraagtypering.nza.nl
nza-form5.nza.nl
uitwisselportaal.nza.nl
zorgproducten-test.nza.nl
customerportal.uk.rlb.com
hybrid.nza.nl
tarievenzoekerzorgprestatiemodel.nza.nl
dkdlmodel.nza.nl
support.homeinstead.ie
zorgvraagtypering-test.nza.nl
dbcregels.nza.nl
meldingsformulier.nza.nl
nzarpsamd001.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
zorgclustertool-test.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
zorgproducten.nza.nl
www.nza.nl
zorgproducten-test.nza.nl
support.homeinstead.ie
service.littlegarth.org
soporte.martinezabolafio.com
zorgproducten-test.nza.nl
zorgproducten-test.nza.nl
nza.nl
servicedesk.coram.eu
uitwisselportaal.nza.nl
zorgcijfers.nza.nl
sd.srk-zuerich.ch
zorgproducten.nza.nl
login.nza.nl
nza-form2.nza.nl
mijn-accp.nza.nl
helpdesk.sunlight.gr
support.brill.com
portal.nza.nl
www.werkenmetdbcs.nza.nl
dbcregels.nza.nl
support.homeinstead.ie
nzarpsamd001.nza.nl
leren.nza.nl
helpdesk.itwfasteners.com
dbcregels.nza.nl
nzarpsamd002.nza.nl
mijn-accp.nza.nl
nzarpsamd002.nza.nl
nzarpsamd001.nza.nl
dbcregels.nza.nl
wireless.nza.nl
nza-portaal1.nza.nl
zorgproducten-test.nza.nl
zorgcijfers.nza.nl
uitwisselportaal.nza.nl
nza-form1.nza.nl
zorgproducten.nza.nl
nzarpsamd002.nza.nl
dbcregels.nza.nl
www.werkenmetdbcs.nza.nl
zorgproductenviewer.nza.nl
adfs.nza.nl
mta-sts.nza.nl
acceptatie.crm.nza.nl
owa.nza.nl
zorgclustertool.nza.nl
adfs.nza.nl
l1.platformrijksoverheid.nl
werkenbijde.nza.nl
ithelpdesk.koinly.io
nzarpsamd002.nza.nl
nieuwmodelggzfz.nza.nl
aanvragen.nza.nl
customerportal.uk.rlb.com
nzarpsamd001.nza.nl
nza-form3.nza.nl
l1.platformrijksoverheid.nl
helpdesk.sunlight.gr
wachttijden.nza.nl
Certificate
The complete raw certificate details for nza-form2.nza.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG7TCCBNWgAwIBAgIIYonA4OSPrCQwDQYJKoZIhvcNAQELBQAwcTELMAkGA1UE BhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5OVFJOTC0yNzEyNDcw MTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2FuaXNhdGllIFNlcnZl ciBDQSAtIEczMB4XDTE5MDMwMTEzMDAxOVoXDTIxMDIyODEzMDAxOVowgZkxCzAJ BgNVBAYTAk5MMRAwDgYDVQQIDAdVdHJlY2h0MRAwDgYDVQQHDAdVdHJlY2h0MSww KgYDVQQKDCNEZSBOZWRlcmxhbmRzZSBab3JnYXV0b3JpdGVpdCAoTlphKTEdMBsG A1UEBRMUMDAwMDAwMDM1MjUwMzE0MzAwMDAxGTAXBgNVBAMMEG56YS1mb3JtMi5u emEubmwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV94ZnWSxloRa4 XHCjuNGxSotHDxQCj3EPRsMxHNFeLKGrVe1lWb5uTfsOywIgR1Dfkrv78AnVDtTY PBFzKbp2PhHUCSC6OoBKmGdOd1u989PrsIbUwngRcmlP6oFy662/t43tbK4/m38r cLv4AqmpwgLsVqNcaYtOpyTTQ4+hRgNlWheEPFtUA1ISzg6waXrkdbNCQ7SQ1w2M 3N0WG0PKTVfGOt6HcvzcCjKyunNhstm7pYWX1IzdkQSGu+u67OPfrtCBZ3btxsQo RJEWlVIEfR37Dv0T6Er1wrg9BiboHaej0LjNpWvzwdzS+RHYTOwEX+FQ4jMjyFme R4LPPzFpAgMBAAGjggJeMIICWjCBlAYIKwYBBQUHAQEEgYcwgYQwWAYIKwYBBQUH MAKGTGh0dHA6Ly9jZXJ0Lm1hbmFnZWRwa2kuY29tL0NBY2VydHMvS1BOQlZQS0lv dmVyaGVpZE9yZ2FuaXNhdGllU2VydmVyQ0FHMy5jZXIwKAYIKwYBBQUHMAGGHGh0 dHA6Ly9nM29jc3AubWFuYWdlZHBraS5jb20wHQYDVR0OBBYEFBGsNTV2zPKsX2B6 3POckf6AxKcpMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUw5qme150K4K2xnL9 dE6F0pfN/RgwgbEGA1UdIASBqTCBpjCBmQYKYIQQAYdrAQIFBjCBijA3BggrBgEF BQcCARYraHR0cHM6Ly9jZXJ0aWZpY2FhdC5rcG4uY29tL3BraW92ZXJoZWlkL2Nw czBPBggrBgEFBQcCAjBDDEFPcCBkaXQgY2VydGlmaWNhYXQgaXMgaGV0IENQUyBQ S0lvdmVyaGVpZCB2YW4gS1BOIHZhbiB0b2VwYXNzaW5nLjAIBgZngQwBAgIwXgYD VR0fBFcwVTBToFGgT4ZNaHR0cDovL2NybC5tYW5hZ2VkcGtpLmNvbS9LUE5CVlBL SW92ZXJoZWlkT3JnYW5pc2F0aWVTZXJ2ZXJDQUczL0xhdGVzdENSTC5jcmwwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAbBgNV HREEFDASghBuemEtZm9ybTIubnphLm5sMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0G CSqGSIb3DQEBCwUAA4ICAQBlpzR8gnB8385RLTWqEP7I4N9E7h2xJhQqVp5XTGXd ITEjYHTlXeRRwsHw8JmTFm7T3HJ9Mi09EOos+A+7E8ej1loM5+qeIn+JwtOG0x1Y c6bMvz/BC6MYAoAl+JHEj3v7xd7fqDIsvgv6l37zGNTGBB63ogAAT5rYpKYlb4yz ndAcGbllc90KUq2ycQYL2iCoa/0z31YPcNjPRrZ1nbnCO/p3dDAJeBa1DPv3OFI7 l8tYO6sRSKVeUqAKf2l7Em4RDLTU5PJ86nRJeU0y4V6tTJUUIC7HIqXAMCJnlmJa TV0wE//Ze6KuxGkqZyoP6GwNatLBp35MSa/JUnD4EF35fvHTPoyyJxPpYtjNcVgY rOu1GEDGMRYyCslc3fAImITtjU5RTIcEdxYwXQIiGyw7e4Kp1mNsMQO+Ty+RO3kO fxY020BNSuvAS2NE0jvn5eDyLXQK7g7Qx6wQcH/NIwVGt5fycPh28uRx9w61T/DS EhrjV9ZkXfom/QwYfekH3HSYVRGQI7/uVgtY4tHySHlRZaSAgZWhP7P7EGHbpkyf +QBjYOMMFltkFfcKuvBmDWh7BRu9tJ2+aCJxMQrGnR+8o7w1G4J40lFjxNLP96x2 6nDuyVMRlqBXInYsZsiaDH5pB5qGqa1kzr2R1z2sAlAJCDrwr5jbpb0SUUNguEwg 4w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlfeGZ1ksZaEWuFxwo7jR sUqLRw8UAo9xD0bDMRzRXiyhq1XtZVm+bk37DssCIEdQ35K7+/AJ1Q7U2DwRcym6 dj4R1AkgujqASphnTndbvfPT67CG1MJ4EXJpT+qBcuutv7eN7WyuP5t/K3C7+AKp qcIC7FajXGmLTqck00OPoUYDZVoXhDxbVANSEs4OsGl65HWzQkO0kNcNjNzdFhtD yk1Xxjreh3L83AoysrpzYbLZu6WFl9SM3ZEEhrvruuzj367QgWd27cbEKESRFpVS BH0d+w79E+hK9cK4PQYm6B2no9C4zaVr88Hc0vkR2EzsBF/hUOIzI8hZnkeCzz8x aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7100418359666125860 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-01 13:00:19 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-28 13:00:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'De Nederlandse Zorgautoriteit (NZa)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000003525031430000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'nza-form2.nza.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18931566573784318442190702705879248521135315947796162825889487367324773229384029864365176793340588394223715042160332637517491422411618431434343269728160736015096316585172487416398397041296484683985665512237773073962976918647035827232072785722259504764605607726276154956344327962595890240809462578910943694976101708668347045906569409834696765643016323197508644402587797917745508665063873138260761719118739601216524917902813887740788556493136454064129619492434433154817621763548385030652809876319529276106422859945569789432168348628630421721383398491417452605279690327983959064918410156020532119845009181592063913701737 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 11ac353576ccf2ac5f607adcf39c91fe80c4a729 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nza-form2.nza.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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