mi-s3-1.rbb-online.de
- Rundfunk Berlin-Brandenburg -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 21:45:23:76:19:e8:47:d0:d6:9c:58:3b was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Rundfunk Berlin-Brandenburg
Organization:
Rundfunk Berlin-Brandenburg
Organization unit: OuI
Organization unit: OuI
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 21:45:23:76:19:e8:47:d0:d6:9c:58:3bSerial Number (int): 10296588667067318824106481723
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 9d:32:1f:8b:19:f1:be:f1:0f:91:f4:2e:40:47:c9:6c:60:ea:57:d9
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 14:cc:b3:ba:4e:35:24:aa:3c:67:54:d5:a0:39:55:1e:db:99:df:d3
Fingerprint (sha256): 25:52:d5:a8:9b:b9:25:a4:b9:80:83:0e:07:83:66:b6:72:c0:84:63:2f:59:15:46:13:51:42:eb:d3:ae:6b:59
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate mi-s3-1.rbb-online.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mi-s3-1.rbb-online.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mi-s3-1.rbb-online.de
Other certificates including the domain name rbb-online.de
(limited to 100 certificates)
evo-s0.rbb-online.de
mi-vsp02.rbb-online.de
distribution-status.rbb-online.de
sf-ad1.ad.rbb-online.de
ref.rbb-online.de
sp-flimgr03.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sp-ttximport02.rbb-online.de
mi-s4-1.rbb-online.de
sp-vcrpad02.rbb-online.de
sp-view01.ad.rbb-online.de
presseservice.rbb-online.de
rbbot1ev1.rbb-online.de
ttool-extern.rbb-online.de
ref-s0.w3.rbb-online.de
sp-wsa01-p1.rbb-online.de
mediathek-origin.rbb-online.de
sp-jobsmgr01.rbb-online.de
intranet-s0.rbb-online.de
distribution-status.rbb-online.de
mimo.rbb-online.de
munki.rbb-online.de
ndr-news.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sf-ad1.ad.rbb-online.de
sp-fmc01.rbb-online.de
rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
i-doit-i.rbb-online.de
rbblog.rbb-online.de
distribution-status.rbb-online.de
sts.rbb-online.de
evo-p-awx.rbb-online.de
lodoas03.rbb-online.de
sp-im02.rbb-online.de
data.rbb-online.de
sp-ise01.rbb-online.de
sp-dsp-prod01.ad.rbb-online.de
webdoku.rbb-online.de
mi-5.rbb-online.de
webapplog.rbb-online.de
data-vis.rbb-online.de
sp-webdav01.ad.rbb-online.de
smr.rbb-online.de
m-relayb02i.rbb-online.de
rbb-online.de
rbb-online.de
m-relayp02i.rbb-online.de
sp-ttximport02.rbb-online.de
distribution-status.rbb-online.de
m-relayb02.rbb-online.de
distribution-status.rbb-online.de
ip-mgmt.rbb-online.de
ucmobile.rbb-online.de
sb-ad3.ad.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
sb-osuca01.rbb-online.de
entree-b.rbb-online.de
medienbroker.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
docs.rbb-online.de
evo-static.rbb-online.de
rbb-online.de
sc-ad1.ad.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
ptp-gm-b.rbb-online.de
rmsext.rbb-online.de
rbb-online.de
mi-s3-1.rbb-online.de
sp-ad4.ad.rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
mond-mk.rbb-online.de
orbitdvb41.rbb-online.de
birddoghrstatus.paradox.ai
evo-s-awx.rbb-online.de
evo-t1.rbb-online.de
rbb-online.de
sb-aks-dpe00.ad.rbb-online.de
evo-p-fusion.rbb-online.de
evo-data.rbb-online.de
rbb-mon.rbb-online.de
webdoku.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
sb-ise01.rbb-online.de
sp-cpi02.rbb-online.de
entree-b.rbb-online.de
entree-p.rbb-online.de
sb-tipath01.rbb-online.de
sp-ise01.rbb-online.de
sp-mon-mk1.rbb-online.de
mi-vsp02.rbb-online.de
distribution-status.rbb-online.de
sf-ad1.ad.rbb-online.de
ref.rbb-online.de
sp-flimgr03.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sp-ttximport02.rbb-online.de
mi-s4-1.rbb-online.de
sp-vcrpad02.rbb-online.de
sp-view01.ad.rbb-online.de
presseservice.rbb-online.de
rbbot1ev1.rbb-online.de
ttool-extern.rbb-online.de
ref-s0.w3.rbb-online.de
sp-wsa01-p1.rbb-online.de
mediathek-origin.rbb-online.de
sp-jobsmgr01.rbb-online.de
intranet-s0.rbb-online.de
distribution-status.rbb-online.de
mimo.rbb-online.de
munki.rbb-online.de
ndr-news.rbb-online.de
rbb-online.de
sp-ad2.ad.rbb-online.de
sf-ad1.ad.rbb-online.de
sp-fmc01.rbb-online.de
rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
i-doit-i.rbb-online.de
rbblog.rbb-online.de
distribution-status.rbb-online.de
sts.rbb-online.de
evo-p-awx.rbb-online.de
lodoas03.rbb-online.de
sp-im02.rbb-online.de
data.rbb-online.de
sp-ise01.rbb-online.de
sp-dsp-prod01.ad.rbb-online.de
webdoku.rbb-online.de
mi-5.rbb-online.de
webapplog.rbb-online.de
data-vis.rbb-online.de
sp-webdav01.ad.rbb-online.de
smr.rbb-online.de
m-relayb02i.rbb-online.de
rbb-online.de
rbb-online.de
m-relayp02i.rbb-online.de
sp-ttximport02.rbb-online.de
distribution-status.rbb-online.de
m-relayb02.rbb-online.de
distribution-status.rbb-online.de
ip-mgmt.rbb-online.de
ucmobile.rbb-online.de
sb-ad3.ad.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
sb-osuca01.rbb-online.de
entree-b.rbb-online.de
medienbroker.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
distribution-status.rbb-online.de
docs.rbb-online.de
evo-static.rbb-online.de
rbb-online.de
sc-ad1.ad.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
ptp-gm-b.rbb-online.de
rmsext.rbb-online.de
rbb-online.de
mi-s3-1.rbb-online.de
sp-ad4.ad.rbb-online.de
pcp.rbb-online.de
distribution-status.rbb-online.de
mond-mk.rbb-online.de
orbitdvb41.rbb-online.de
birddoghrstatus.paradox.ai
evo-s-awx.rbb-online.de
evo-t1.rbb-online.de
rbb-online.de
sb-aks-dpe00.ad.rbb-online.de
evo-p-fusion.rbb-online.de
evo-data.rbb-online.de
rbb-mon.rbb-online.de
webdoku.rbb-online.de
rbb-online.de
distribution-status.rbb-online.de
sb-ise01.rbb-online.de
sp-cpi02.rbb-online.de
entree-b.rbb-online.de
entree-p.rbb-online.de
sb-tipath01.rbb-online.de
sp-ise01.rbb-online.de
sp-mon-mk1.rbb-online.de
Certificate
The complete raw certificate details for mi-s3-1.rbb-online.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDDCCBPSgAwIBAgIMIUUjdhnoR9DWnFg7MA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE5 MDcxMDA4NDYzNVoXDTIxMTAxMTA4NDYzNVowgYMxCzAJBgNVBAYTAkRFMQ8wDQYD VQQIDAZCZXJsaW4xDzANBgNVBAcMBkJlcmxpbjEkMCIGA1UECgwbUnVuZGZ1bmsg QmVybGluLUJyYW5kZW5idXJnMQwwCgYDVQQLDANPdUkxHjAcBgNVBAMMFW1pLXMz LTEucmJiLW9ubGluZS5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AJzscdTKJmDm6JDg3/XLROv200303pnELPLD78lyPZN8mfvi4l9a0rYDh4Myd7b+ reYQ9jzfXg4L6DxirZ5hpQl1fmxfAMeRk7Ep7ZEuPdBpjMEgt4ZVNhSdEJ9FRoOK xyWFkaxgix8yq08ANAq0u+K1ZJwi1v7cEAWvpSu3i5DeeBNbonodQB385aSDEwHO iAEGNgP5KQodZE5aQess7dNP3yX8TDyfQsHoW57HE9wFQ2PEZvVpAWnT7rhSZW5f DkWUhkNpVjvvMGpki6MnOxrT+aUXbcdv1pqB8nFH3MhCVi5aITdSXcjAwuLeS5hv rhEVDDObNVRSNk8/L5l9gL0CAwEAAaOCAnIwggJuMFcGA1UdIARQME4wCAYGZ4EM AQICMA0GCysGAQQBga0hgiweMA8GDSsGAQQBga0hgiwBAQQwEAYOKwYBBAGBrSGC LAEBBAQwEAYOKwYBBAGBrSGCLAIBBAQwCQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMC BaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwHQYDVR0OBBYEFJ0yH4sZ8b7xD5H0LkBH yWxg6lfZMB8GA1UdIwQYMBaAFGs6mIv58lOJ2uCtsjIeCR/oqjt0MCAGA1UdEQQZ MBeCFW1pLXMzLTEucmJiLW9ubGluZS5kZTCBjQYDVR0fBIGFMIGCMD+gPaA7hjlo dHRwOi8vY2RwMS5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NybC9j YWNybC5jcmwwP6A9oDuGOWh0dHA6Ly9jZHAyLnBjYS5kZm4uZGUvZGZuLWNhLWds b2JhbC1nMi9wdWIvY3JsL2NhY3JsLmNybDCB2wYIKwYBBQUHAQEEgc4wgcswMwYI KwYBBQUHMAGGJ2h0dHA6Ly9vY3NwLnBjYS5kZm4uZGUvT0NTUC1TZXJ2ZXIvT0NT UDBJBggrBgEFBQcwAoY9aHR0cDovL2NkcDEucGNhLmRmbi5kZS9kZm4tY2EtZ2xv YmFsLWcyL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDBJBggrBgEFBQcwAoY9aHR0cDov L2NkcDIucGNhLmRmbi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9jYWNlcnQvY2Fj ZXJ0LmNydDATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEA CEWzI9hs8bCYcFpiLOcGib90RRU5f0X3Or3SZmOoqNgJA97II9wLgNrhaP39lXJS Id+nh1mXi2sUktgF09GNj5dWEJXNTbXv8zSRuRv8g6zReYLsij1SyzG5X2Tvy1eq chaYj2XATbIRMBwYZK0WgxW24rYBxC+XjcL9qW738lVS1+r9D9TcqRWixZ6rRxuM AF4GOVe1Rmi0iqlv37olHY2kXCVcKHDvRvdwIhyFEoJrindKeuw6BEG07T+b6owW BXyEh5vmZv4cpxReqh+udxbCYfrhgxJVOqGlIwCkGXUbqHaumpdukC5aFnXRd1iJ gV8r1VYBfaMxIcZNQW2eiw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOxx1MomYObokODf9ctE 6/bTTfTemcQs8sPvyXI9k3yZ++LiX1rStgOHgzJ3tv6t5hD2PN9eDgvoPGKtnmGl CXV+bF8Ax5GTsSntkS490GmMwSC3hlU2FJ0Qn0VGg4rHJYWRrGCLHzKrTwA0CrS7 4rVknCLW/twQBa+lK7eLkN54E1uieh1AHfzlpIMTAc6IAQY2A/kpCh1kTlpB6yzt 00/fJfxMPJ9CwehbnscT3AVDY8Rm9WkBadPuuFJlbl8ORZSGQ2lWO+8wamSLoyc7 GtP5pRdtx2/WmoHycUfcyEJWLlohN1JdyMDC4t5LmG+uERUMM5s1VFI2Tz8vmX2A vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10296588667067318824106481723 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-10 08:46:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-11 08:46:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rundfunk Berlin-Brandenburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'OuI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'mi-s3-1.rbb-online.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19809770778742267541941312738455074069396520744924728265984946929610632362898572513141021268333417045305563341135734948722081276790159596768209753894040809734656186175269791879791839317949104766115584165580452313055644814225201716815498149835586526022199993777122078805463832093200046656114901978311973307879837159287782832683701062954953068074548335813574125708979560514581529250126046384070420780995705369686666732677075495453901057228572925048247977131339016349046723513793798456578330334675784582496068309457391141310337347938273355718691787747046537261428697814151317790986087799746103071265624488421510384287933 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9d321f8b19f1bef10f91f42e4047c96c60ea57d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mi-s3-1.rbb-online.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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