uvacms-tst-ic1.forux.nl
- Universiteit van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number d3:ae:9b:4e:79:86:60:15:35:a1:07:24:43:4c:5e:19 was issued on by GEANT Vereniging.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit van Amsterdam
Organization:
Universiteit van Amsterdam
State / Province:
Noord-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): d3:ae:9b:4e:79:86:60:15:35:a1:07:24:43:4c:5e:19Serial Number (int): 281373716754897687298241112667354586649
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 4d:cb:1c:06:12:88:84:df:6c:c5:c3:54:56:02:dc:cc:40:12:8a:75
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): c2:98:85:78:8c:3b:7a:b6:33:f0:95:7b:ac:25:52:60:f9:47:e6:9f
Fingerprint (sha256): 2b:c2:81:31:f5:8e:84:b5:01:c6:2a:b4:3a:6b:09:3b:51:df:7d:80:cd:0a:ba:b3:81:41:25:72:ac:43:e6:01
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate uvacms-tst-ic1.forux.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for uvacms-tst-ic1.forux.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
uvacms-tst-ic1.forux.nl
integration-panda.cms.uva.nl
integration-tst.cms.uva.nl
integration-panda.cms.uva.nl
integration-tst.cms.uva.nl
Other certificates including the domain name forux.nl
(limited to 100 certificates)
sap-dev-rudx.ic.uva.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
Certificate
The complete raw certificate details for uvacms-tst-ic1.forux.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHoDCCBYigAwIBAgIRANOum055hmAVNaEHJENMXhkwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIyMDMyMTAwMDAwMFoXDTIzMDMyMTIz NTk1OVowbDELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvbGxhbmQxIzAh BgNVBAoTGlVuaXZlcnNpdGVpdCB2YW4gQW1zdGVyZGFtMSAwHgYDVQQDExd1dmFj bXMtdHN0LWljMS5mb3J1eC5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJd0Lk3IbVQ0xAeTGkMns2yFLgBupOP6OvjGEa52r8EjoQ5BBJqhu84oL8O dPbXakobsMrhcuIMbhhVD7uOMHQ+SzQVP5+L4A7pY4G6C4pU0suETKeddH6gc2Lq KBmz3UZUJ/vnS4Vd2hnZgHhj4W6QVaWgsjRzPMaEkre/Tn+CAvFw8u/GvkVVlDhb hbOYxT4SWavNlkfDFqohCmI2fmmdXV5xd5vRQeeed3Ne9Q/egLRYRBTcdpwjFhiL MUnVDb+yqTuBC0Or3OXugaDhDE9r3dHGE4ybuIDWtL1QVVB5C7px0N7gfXzG/l21 Uy6wrgrAEi5feBmAuWXHn1eT/JECAwEAAaOCA2MwggNfMB8GA1UdIwQYMBaAFG8d NUkQbDL6WaCevIroH5W+cXoMMB0GA1UdDgQWBBRNyxwGEoiE32zFw1RWAtzMQBKK dTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICTzAlMCMGCCsG AQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgIwPwYDVR0f BDgwNjA0oDKgMIYuaHR0cDovL0dFQU5ULmNybC5zZWN0aWdvLmNvbS9HRUFOVE9W UlNBQ0E0LmNybDB1BggrBgEFBQcBAQRpMGcwOgYIKwYBBQUHMAKGLmh0dHA6Ly9H RUFOVC5jcnQuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcnQwKQYIKwYBBQUH MAGGHWh0dHA6Ly9HRUFOVC5vY3NwLnNlY3RpZ28uY29tMIIBfQYKKwYBBAHWeQIE AgSCAW0EggFpAWcAdgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAA AX+r2y2fAAAEAwBHMEUCIAkpk3/vQn/1mSLqsfDlf1zfqOum+oyvNAAs5EC6zv2F AiEAlNJJ2orPAgJimjT6Le0PXIhz3ScOtaTjP28Qv20UUFkAdQB6MoxU2LcttiDq OOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAX+r2y1gAAAEAwBGMEQCIAyARMRsZtzJ EzBgjFf315+xHXS0CAtUvoa+kFfu92l7AiAFu4SfqWTBdMoLSj0OhB2uH1DXt3iu pdHSEXz94KdvDAB2AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAAB f6vbLToAAAQDAEcwRQIhAKSTDhpTAw1srn1A6qG/Jh6yx8rRHSRkDxRtmUmEDDKm AiAbVuCFk52ykL9+3I39uUbgcS0kzyM9rVI7wvoP3+ygMzBcBgNVHREEVTBTghd1 dmFjbXMtdHN0LWljMS5mb3J1eC5ubIIcaW50ZWdyYXRpb24tcGFuZGEuY21zLnV2 YS5ubIIaaW50ZWdyYXRpb24tdHN0LmNtcy51dmEubmwwDQYJKoZIhvcNAQEMBQAD ggIBAEQP0dHBAnf6TqjZ+4uLxvmicJmTxD/dhRMIf651nZLs831CIAPJtrQ0BAbg eksibnGowI92PzpdWZTiiANNy0V+CpuCn+SF0Wl3NK/qkGhsEMXbHVAnDFVV2yo9 787MMlSme4wLe1ozXK4gzEWrYifyW2gdMosjLVKkcWVpLcTF8u1GFrDh4YwrEDIM BbKOz8+JDQ+36gkFue8+W5P1coGVwdlUBBDZSkDcWrFqXAMZ5qvkq8bArWa2+yJq RWkGuGfshZclcJQEl9Tthx7FJm309DeTm8Ob4E/XYNyg4I4RM7miiCQWzvMGx4Mr qwoEBAeVl3aio0wZ3GJyXkPzFr9D9FEWbWd5Q20uoOVKbGi7r+s40JUfmXdU73pl DWKoGAqPH3ROzlkF8qI9sC5dhEmmWyulK+8++tnaOWdOKzJCtXztjAlGd3ipIdmS QmOGXwxUm6qzpTCTK/vikkVoT7oKhSoftbL2u24lPePo19toDySWNyFJFtLjwZ7n vhpU2PyTA293zwlqxFxbBnWaYaeeKwB66MZqKBbkhLBpIEVcdZy+/ffKrb3Yfr2A eP5QDQPlKs8tuAGnS1JS7jxLqnO/AqCuzWItXdJR5t87s2hPo14xnHGiyDkzMFJh hkpvoCH5KKOAHhtue7pOLTMEPlYSaiYOXlkteBzYEI3zVNlh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0l3QuTchtVDTEB5MaQye zbIUuAG6k4/o6+MYRrnavwSOhDkEEmqG7zigvw509tdqShuwyuFy4gxuGFUPu44w dD5LNBU/n4vgDuljgboLilTSy4RMp510fqBzYuooGbPdRlQn++dLhV3aGdmAeGPh bpBVpaCyNHM8xoSSt79Of4IC8XDy78a+RVWUOFuFs5jFPhJZq82WR8MWqiEKYjZ+ aZ1dXnF3m9FB5553c171D96AtFhEFNx2nCMWGIsxSdUNv7KpO4ELQ6vc5e6BoOEM T2vd0cYTjJu4gNa0vVBVUHkLunHQ3uB9fMb+XbVTLrCuCsASLl94GYC5ZcefV5P8 kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 281373716754897687298241112667354586649 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uvacms-tst-ic1.forux.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26556306104413478474160627451700269434343468312298177337141521992395790115905565470538062880659895291631497622322577880412529468709220592776954110800496366376772868888757556726489854982198486718213016234242511611766601932955852704814534984048145703947421631356359695245367971863363901551209485657605560163829890505764917651526128619240918296020725281564309633435524922189885346751942371044951542301737623994316469251283685574096072047089423932621997316122498240208210184794485868401277885247227205883675225466701018932388164440239845454214002694508774885813016892156418082717363427389743297580154161609290311825357969 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4dcb1c06128884df6cc5c3545602dccc40128a75 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (85 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uvacms-tst-ic1.forux.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'integration-panda.cms.uva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'integration-tst.cms.uva.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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