www.loketgezondleven.nl
- Rijksinstituut voor Volksgezondheid en Milieu -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 0f:8b:f9:30:54:3f:ff:56:0d:fe:f5:33:b5:53:1c:e6 was issued on by TERENA.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Rijksinstituut voor Volksgezondheid en Milieu
Organization:
Rijksinstituut voor Volksgezondheid en Milieu
Organization unit: ICT-Beheer
Organization unit: ICT-Beheer
Locality:
Bilthoven
Country: NL
Country: NL
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0f:8b:f9:30:54:3f:ff:56:0d:fe:f5:33:b5:53:1c:e6Serial Number (int): 20665203349127298027056954728097455334
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 4e:29:36:5f:76:9c:d7:01:7b:05:73:29:ed:d8:71:de:70:6b:c6:ff
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 0f:03:cf:8e:98:c0:21:4c:02:d9:27:54:44:b7:6f:17:6a:64:df:9d
Fingerprint (sha256): 22:d4:1b:b9:af:35:15:8a:5e:64:01:9f:51:47:d5:a0:ef:ef:5a:bc:c1:4b:32:f3:49:13:a7:51:85:48:7a:3b
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate www.loketgezondleven.nl
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.loketgezondleven.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.loketgezondleven.nl
loketgezondleven.nl
interventies.loketgezondleven.nl
www.interventies.loketgezondleven.nl
loketgezondleven.nl
interventies.loketgezondleven.nl
www.interventies.loketgezondleven.nl
Other certificates including the domain name loketgezondleven.nl
(limited to 100 certificates)
drupal.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
test.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
drupal.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
drupal.loketgezondleven.nl
loketgezondleven.nl
www.loketgezondleven.nl
loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
test.loketgezondleven.nl
www.loketgezondleven.nl
toolkits.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
drupal.loketgezondleven.nl
acceptatie.drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
drupal.loketgezondleven.nl
loketgezondleven.nl
www.loketgezondleven.nl
loketgezondleven.nl
toolkits.loketgezondleven.nl
toolkits.loketgezondleven.nl
drupal.loketgezondleven.nl
toolkits.loketgezondleven.nl
Certificate
The complete raw certificate details for www.loketgezondleven.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHMjCCBhqgAwIBAgIQD4v5MFQ//1YN/vUztVMc5jANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xOTAyMjYwMDAwMDBaFw0yMDA3MjkxMjAwMDBaMIGQMQswCQYDVQQG EwJOTDESMBAGA1UEBxMJQmlsdGhvdmVuMTYwNAYDVQQKEy1SaWprc2luc3RpdHV1 dCB2b29yIFZvbGtzZ2V6b25kaGVpZCBlbiBNaWxpZXUxEzARBgNVBAsTCklDVC1C ZWhlZXIxIDAeBgNVBAMTF3d3dy5sb2tldGdlem9uZGxldmVuLm5sMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhNXzTJ0CmUw9utdNzFBFjZGwbyOlBfl POqWpj0wMqKF/IeS2b5IOUVDN5SPKtL+YKW/ebAjdlZuKy6XmVlIJIGlpYtfXX1u 9J+HZC//hFAenxufFWl5vXYHb/dybI9IwKYJinGqKOSHF4a5ziA+P2p45jiJhCza Ou7l2qphFe5WzTcepBRfiJ1BE6Dt/4I6xOnpbed55lkiOYBiLBUU5eK6X/nol0rS itHTTOwOO6/sCs8xbx9gt/x5UPYUMvJdYkHG+EJNW9bI373oNxkXMLmFm3rPpawQ e0UI+iQLM6xTZO3rgo/MAcc8wIPTvn9ZkUw9mC5otx+3kyMgWMzf2QIDAQABo4ID sTCCA60wHwYDVR0jBBgwFoAUZ/2IIBQnmMcJ0iUZu+lREWN1UGIwHQYDVR0OBBYE FE4pNl92nNcBewVzKe3Ycd5wa8b/MH8GA1UdEQR4MHaCF3d3dy5sb2tldGdlem9u ZGxldmVuLm5sghNsb2tldGdlem9uZGxldmVuLm5sgiBpbnRlcnZlbnRpZXMubG9r ZXRnZXpvbmRsZXZlbi5ubIIkd3d3LmludGVydmVudGllcy5sb2tldGdlem9uZGxl dmVuLm5sMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwawYDVR0fBGQwYjAvoC2gK4YpaHR0cDovL2NybDMuZGlnaWNlcnQuY29t L1RFUkVOQVNTTENBMy5jcmwwL6AtoCuGKWh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNv bS9URVJFTkFTU0xDQTMuY3JsMEwGA1UdIARFMEMwNwYJYIZIAYb9bAEBMCowKAYI KwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwCAYGZ4EMAQIC MG4GCCsGAQUFBwEBBGIwYDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNl cnQuY29tMDgGCCsGAQUFBzAChixodHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20v VEVSRU5BU1NMQ0EzLmNydDAMBgNVHRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSC AXAEggFsAWoAdwCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAWkp VBQAAAAEAwBIMEYCIQDHknmjfh54XTheLhvXzwu/1rf9Ukyi7c7FLIJBEsMphQIh AN34u/aWOKZJ7IZ0P7VirqtMwgqys24oa/WU//DMr8uRAHcAh3W/51l8+IxDmV+9 827/Vo1HVjb/SrVgwbTq/16ggw8AAAFpKVQVTAAABAMASDBGAiEAvH9Gc84GlrkN qKDLWliZz+MrHgoxTBgZkG00n+mmDZMCIQDzL0yRdUtm0I+hU3Rnm0nhkmuIVHcv HkopHv485/353wB2AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAAB aSlUFBcAAAQDAEcwRQIhANPPyeNTdA5KO4p0EcURssC3dWWIJPTCORriDvKWv0eQ AiAc1NHIYGO5MN8yUNLEDTWevx7bn0C0u6979VmpIyTBJDANBgkqhkiG9w0BAQsF AAOCAQEANNMK0HG4wINbSQxC8LJaZ2F4nnPISwexZ646LdoGZkydC2W5JyilK/I8 ZaxlzyDkoYeZEkaC3WgI0gflHCIxU/7uMUT5ORB9eUJgBLdOSuTt+yEEWx7dw2Tl 96kwlp2iUHq/hXRt0wp551Uj0PH12KuJ0fR8/gklwjCbWuJRgtMHzSwpR4MYvN8/ kJOdH/141e1j+dVJXbrYKekeczmTU0wX298qWbYCarNNJPfBZH6mRPeh5TbYVVbr zub/ZTmHqv/sLQnRXWkfZrFV2uym7fKt8cHuAr+0O8bo0wASt1UdwfJGLtzes1/o Cs9E60TuacYOyH4PLQkO16y7CkC1iQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhNXzTJ0CmUw9utdNzFB FjZGwbyOlBflPOqWpj0wMqKF/IeS2b5IOUVDN5SPKtL+YKW/ebAjdlZuKy6XmVlI JIGlpYtfXX1u9J+HZC//hFAenxufFWl5vXYHb/dybI9IwKYJinGqKOSHF4a5ziA+ P2p45jiJhCzaOu7l2qphFe5WzTcepBRfiJ1BE6Dt/4I6xOnpbed55lkiOYBiLBUU 5eK6X/nol0rSitHTTOwOO6/sCs8xbx9gt/x5UPYUMvJdYkHG+EJNW9bI373oNxkX MLmFm3rPpawQe0UI+iQLM6xTZO3rgo/MAcc8wIPTvn9ZkUw9mC5otx+3kyMgWMzf 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20665203349127298027056954728097455334 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bilthoven' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Rijksinstituut voor Volksgezondheid en Milieu' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT-Beheer' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.loketgezondleven.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21975003440472678102095688184042401994256979643824899860518870119357396765276900612166700163711999922608968655462802621957536267115574197818313438065718322792463194563965825873055842095648708783225937086487396869202961944159552687259601105761947378114943194540980836659543051142810927968714511831303877257933278429524365149451125375098880681277790374810382355665277032131072845112557794751941829695007462953978892972406202356839441200548163099532888030150796354907921239885735567905429506850357275765517601140961552488101604783110820552971467786790875992701855341312599813963110875227218830241263332831482193485029337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e29365f769cd7017b057329edd871de706bc6ff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.loketgezondleven.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'loketgezondleven.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'interventies.loketgezondleven.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.interventies.loketgezondleven.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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