www.apotheeksaendelft.nl

Issued by Intermediate Certificate DV SSL CA

About this certificate


This digital certificate with serial number 08:7b was issued on by Intermediate Certificate .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

www.apotheeksaendelft.nl

Organization unit: GT98536672

Intermediate Certificate

Organization: Intermediate Certificate
Organization unit: Domain Validated SSL

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 08:7b
Serial Number (int): 2171
Serial Number lenght: 12 bits, 2 octets

SubjectKeyId: b5:7d:ca:e4:69:f1:1e:25:77:2b:79:97:2d:7e:97:b9:92:45:5a:3a
AuthorityKeyId: 2b:46:ad:c8:d6:87:ed:cc:90:04:0c:62:a1:57:3f:fb:6e:86:18:a0

Fingerprint (sha1): 50:f3:de:b1:9d:76:6b:74:b8:e1:77:41:5c:43:47:de:a1:b3:c6:e8
Fingerprint (sha256): d5:e1:6a:64:f1:98:43:66:f1:44:30:13:e4:42:47:98:d0:14:de:ff:12:f4:42:30:14:7c:7d:13:b7:f7:32:ce

Issuing Certificate URL: http://ica-aia.digitalcertvalidation.com/ica.crt

Revocation information

OCSP Server: http://ica-ocsp.digitalcertvalidation.com
CRL Distribution Point: http://ica-crl.digitalcertvalidation.com/crls/ica.crl

Check the revocation status for the current certificate on www.apotheeksaendelft.nl
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.apotheeksaendelft.nl
apotheeksaendelft.nl

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgICCHswDQYJKoZIhvcNAQEFBQAwfDELMAkGA1UEBhMCTkwx ITAfBgNVBAoTGEludGVybWVkaWF0ZSBDZXJ0aWZpY2F0ZTEdMBsGA1UECxMURG9t YWluIFZhbGlkYXRlZCBTU0wxKzApBgNVBAMTIkludGVybWVkaWF0ZSBDZXJ0aWZp Y2F0ZSBEViBTU0wgQ0EwHhcNMTMwNzA3MDYyMjM0WhcNMTQwOTA3MTkxMzAwWjA4 MRMwEQYDVQQLEwpHVDk4NTM2NjcyMSEwHwYDVQQDExh3d3cuYXBvdGhlZWtzYWVu ZGVsZnQubmwwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxZt4onpMA Pm7toVd8OhJR3yuiCrwkiO7UTPc/PYDmgXHPmXNCUuAAqKhL5OLuSxS7J1VNq+sR Mrba10AqEqnrAZhF9IRY8rbeK9+danwyd0QW8wfsLYBNxAbJ9UoqFa4tPZkD9QWe crDL30lpJTnN/nzRFfUi4tIIQZZCdvAK0teS3Q8Z10X7W9ywEzINxtgT10+hE+MV YHl8/K0NGG16CpuOSOHYzWyoKS3f80Xsa8U8Ns50HEQj+beUiZCIKbd/MpCuLyZy AH8GUhtpgbovbPV7TXVHeJO5BDVgehrKzRkTlIVzX+syeAiQ20sPiKcn9hVaRRp3 vNELNCRQsM2/AgMBAAGjggHYMIIB1DAfBgNVHSMEGDAWgBQrRq3I1oftzJAEDGKh Vz/7boYYoDCBgwYIKwYBBQUHAQEEdzB1MDUGCCsGAQUFBzABhilodHRwOi8vaWNh LW9jc3AuZGlnaXRhbGNlcnR2YWxpZGF0aW9uLmNvbTA8BggrBgEFBQcwAoYwaHR0 cDovL2ljYS1haWEuZGlnaXRhbGNlcnR2YWxpZGF0aW9uLmNvbS9pY2EuY3J0MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOQYD VR0RBDIwMIIYd3d3LmFwb3RoZWVrc2FlbmRlbGZ0Lm5sghRhcG90aGVla3NhZW5k ZWxmdC5ubDBGBgNVHR8EPzA9MDugOaA3hjVodHRwOi8vaWNhLWNybC5kaWdpdGFs Y2VydHZhbGlkYXRpb24uY29tL2NybHMvaWNhLmNybDAdBgNVHQ4EFgQUtX3K5Gnx HiV3K3mXLX6XuZJFWjowDAYDVR0TAQH/BAIwADBMBgNVHSAERTBDMEEGCmCGSAGG +EUBBzYwMzAxBggrBgEFBQcCARYlaHR0cDovL3d3dy5nZW90cnVzdC5jb20vcmVz b3VyY2VzL2NwczANBgkqhkiG9w0BAQUFAAOCAQEAzJ6EUcYUj99f+NS0nV/hO0Ma eGB5ie6g28hAdFp3B5GiXETUXK2Mi4Zte6vzSPNmmOO4yfyvTI6UNv0KbYZrEvn9 V1iA8xpJbLFvTbolCY18psLD5Gv99Hcbl9yVJ8W+8Z/SARvNi2BX8LxVHRyOSecY JQCiyvi1ai+qCfkFH3IQZuWgO+WPASxm/giqmz81IPluobiv80iUNEZa7kJby0t+ LJFFNwC5EvX7RRynXVewezjnadMd0/oDmVUPq36dL+ocTN3rQ+XSBtkwNothtX9k LMd186VNT0xEyFJf0sSdKGd+i8Qg2+nXjPIprBjKiUGx/+ko0XZ80y/sMJ7EjA== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWbeKJ6TAD5u7aFXfDoS Ud8rogq8JIju1Ez3Pz2A5oFxz5lzQlLgAKioS+Ti7ksUuydVTavrETK22tdAKhKp 6wGYRfSEWPK23ivfnWp8MndEFvMH7C2ATcQGyfVKKhWuLT2ZA/UFnnKwy99JaSU5 zf580RX1IuLSCEGWQnbwCtLXkt0PGddF+1vcsBMyDcbYE9dPoRPjFWB5fPytDRht egqbjkjh2M1sqCkt3/NF7GvFPDbOdBxEI/m3lImQiCm3fzKQri8mcgB/BlIbaYG6 L2z1e011R3iTuQQ1YHoays0ZE5SFc1/rMngIkNtLD4inJ/YVWkUad7zRCzQkULDN vwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2171 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Intermediate Certificate' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Intermediate Certificate DV SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-07-07 06:22:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-07 19:13:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT98536672' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.apotheeksaendelft.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22394905985357792561549532011271291921808649912221696367067820903526211924675564154707570328779534440118301409698739111202117662788636155069690286890341518194379938189241709215554457848420887249553183195941430042236859280061578663904161714060487042170081842344535584700387672917550107618744452044374491027419047786389219332589485952116751704155412510581717910099488767968427544506307821461273725184173395090086018312968814035186134816404482091642707905560091876107269394926364261133591080581838620794314138379555425068270704166088546455102190083426171304811613417941106302710741162584892053405922010488546316134698431 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2b46adc8d687edcc90040c62a1573ffb6e8618a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ica-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ica-aia.digitalcertvalidation.com/ica.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.apotheeksaendelft.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apotheeksaendelft.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ica-crl.digitalcertvalidation.com/crls/ica.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b57dcae469f11e25772b79972d7e97b992455a3a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00cc9e8451c6148fdf5ff8d4b49d5fe13b431a78607989eea0dbc840745a770791a25c44d45cad8c8b866d7babf348f36698e3b8c9fcaf4c8e9436fd0a6d866b12f9fd575880f31a496cb16f4dba25098d7ca6c2c3e46bfdf4771b97dc9527c5bef19fd2011bcd8b6057f0bc551d1c8e49e7182500a2caf8b56a2faa09f9051f721066e5a03be58f012c66fe08aa9b3f3520f96ea1b8aff3489434465aee425bcb4b7e2c91453700b912f5fb451ca75d57b07b38e769d31dd3fa0399550fab7e9d2fea1c4cddeb43e5d206d930368b61b57f642cc775f3a54d4f4c44c8525fd2c49d28677e8bc420dbe9d78cf229ac18ca8941b1ffe928d1767cd32fec309ec48c