cap2-test.minfin.be
- FOD Financiën -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number b5:76:e1:33:67:83:7a:6d:34:e5:c4:24:00:73:04:db was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
FOD Financiën
Organization:
FOD Financiën
Organization unit: 0308357159
Organization unit: 0308357159
Address:
Boulevard Roi Albert II 33
Postal code: 1030
State / Province: Bruxelles-Capitale
Locality: Bruxelles
Country: BE
Postal code: 1030
State / Province: Bruxelles-Capitale
Locality: Bruxelles
Country: BE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): b5:76:e1:33:67:83:7a:6d:34:e5:c4:24:00:73:04:dbSerial Number (int): 241207525881209895946268022830011712731
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: ad:e1:0d:5f:e6:e2:98:44:c4:0a:c6:b0:89:1e:4a:aa:1e:8c:73:61
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 01:8a:c1:00:3a:00:12:dc:d7:7f:b8:a8:0e:51:08:1b:46:7b:52:49
Fingerprint (sha256): 2e:23:07:92:ff:bc:11:69:15:ef:8b:5c:c7:33:19:e8:78:0d:cb:f5:2f:79:54:53:bb:69:7a:1a:d1:0d:e9:30
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate cap2-test.minfin.be
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cap2-test.minfin.be
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cap2-test.minfin.be
www.cap2-test.minfin.be
www.cap2-test.minfin.be
Other certificates including the domain name minfin.be
(limited to 100 certificates)
minfin.be
fpsfinancesssltest.minfin.be
rrn-sitran-test.minfin.be
mrb.acc.minfin.be
minfin.be
lettercode.minfin.be
ccff-test2.minfin.be
RRN-SITRAN-test.minfin.be
dev-eservices.minfin.be
rrn-sitran-test.minfin.be
ccff-test1.minfin.be
mobmail.minfin.be
mobmail.minfin.be
ac4.dev.minfin.be
fpsfinancesssltest.minfin.be
test-eservices-t.minfin.be
connect.minfin.be
connect.minfin.be
ac4.acc.minfin.be
minfin.be
rrn-sitran-test.minfin.be
test-eservices.minfin.be
dev-eservices.minfin.be
testoauthtkgi.acc.minfin.be
dev-eservices.minfin.be
tsd-internalfrominternet.acc.minfin.be
minfin.be
minfin.be
mrb.dev.minfin.be
cap2-test.minfin.be
mrb.acc.minfin.be
kissic.dev.minfin.be
test-eservices.minfin.be
dev-eservices.minfin.be
rrn-sitran-test.minfin.be
vpn.minfin.be
uumds.minfin.be
eongw.dev.minfin.be
VPNAO-DEV.minfin.be
uumds.minfin.be
extranet.minfin.be
test-eservices.minfin.be
minfin.be
test-eservices.minfin.be
mrb.dev.minfin.be
ccff-test1.minfin.be
cap2-test.minfin.be
tsd-internalfrominternet.acc.minfin.be
tna-git.minfin.be
ac4.acc.minfin.be
ccff-test1.minfin.be
VPNAO.minfin.be
vpnao.minfin.be
308357159-rrn-sitran-test.minfin.be
minfin.be
test-eservices.minfin.be
fediam-t.minfin.be
test-eservices.minfin.be
fediam-i.minfin.be
minfin.be
test-eservices-t.minfin.be
ccff-test1.minfin.be
fpsfinancesssltest.minfin.be
finelts.acc.minfin.be
ccff-test1.minfin.be
lettercode.minfin.be
cap2-test.minfin.be
vpn.minfin.be
pandregister.acc.minfin.be
pangaspfod.acc.minfin.be
vpn.minfin.be
first-dev.minfin.be
da-dev.minfin.be
mail.minfin.be
testoauthclient.internalfrominternet.acc.minfin.be
dynatrace.minfin.be
testoauthclient.internalfrominternet.dev.minfin.be
test-eservices.minfin.be
vpnao.minfin.be
pangaspfod.dev.minfin.be
test-eservices.minfin.be
minfin.be
extranet.minfin.be
vpn.minfin.be
ccff-test1.minfin.be
VPNAO.minfin.be
tna-git.minfin.be
ccff-test1.minfin.be
ecredit.acc.minfin.be
eongw.dev.minfin.be
first-dev.minfin.be
kissic.acc.minfin.be
ccff-test2.minfin.be
fediam-t.minfin.be
extranet.minfin.be
ccff-test1.minfin.be
test-eservices.minfin.be
tna-git.minfin.be
FPS-Finance-BE-CTS-test.minfin.be
fediam-i.minfin.be
fpsfinancesssltest.minfin.be
rrn-sitran-test.minfin.be
mrb.acc.minfin.be
minfin.be
lettercode.minfin.be
ccff-test2.minfin.be
RRN-SITRAN-test.minfin.be
dev-eservices.minfin.be
rrn-sitran-test.minfin.be
ccff-test1.minfin.be
mobmail.minfin.be
mobmail.minfin.be
ac4.dev.minfin.be
fpsfinancesssltest.minfin.be
test-eservices-t.minfin.be
connect.minfin.be
connect.minfin.be
ac4.acc.minfin.be
minfin.be
rrn-sitran-test.minfin.be
test-eservices.minfin.be
dev-eservices.minfin.be
testoauthtkgi.acc.minfin.be
dev-eservices.minfin.be
tsd-internalfrominternet.acc.minfin.be
minfin.be
minfin.be
mrb.dev.minfin.be
cap2-test.minfin.be
mrb.acc.minfin.be
kissic.dev.minfin.be
test-eservices.minfin.be
dev-eservices.minfin.be
rrn-sitran-test.minfin.be
vpn.minfin.be
uumds.minfin.be
eongw.dev.minfin.be
VPNAO-DEV.minfin.be
uumds.minfin.be
extranet.minfin.be
test-eservices.minfin.be
minfin.be
test-eservices.minfin.be
mrb.dev.minfin.be
ccff-test1.minfin.be
cap2-test.minfin.be
tsd-internalfrominternet.acc.minfin.be
tna-git.minfin.be
ac4.acc.minfin.be
ccff-test1.minfin.be
VPNAO.minfin.be
vpnao.minfin.be
308357159-rrn-sitran-test.minfin.be
minfin.be
test-eservices.minfin.be
fediam-t.minfin.be
test-eservices.minfin.be
fediam-i.minfin.be
minfin.be
test-eservices-t.minfin.be
ccff-test1.minfin.be
fpsfinancesssltest.minfin.be
finelts.acc.minfin.be
ccff-test1.minfin.be
lettercode.minfin.be
cap2-test.minfin.be
vpn.minfin.be
pandregister.acc.minfin.be
pangaspfod.acc.minfin.be
vpn.minfin.be
first-dev.minfin.be
da-dev.minfin.be
mail.minfin.be
testoauthclient.internalfrominternet.acc.minfin.be
dynatrace.minfin.be
testoauthclient.internalfrominternet.dev.minfin.be
test-eservices.minfin.be
vpnao.minfin.be
pangaspfod.dev.minfin.be
test-eservices.minfin.be
minfin.be
extranet.minfin.be
vpn.minfin.be
ccff-test1.minfin.be
VPNAO.minfin.be
tna-git.minfin.be
ccff-test1.minfin.be
ecredit.acc.minfin.be
eongw.dev.minfin.be
first-dev.minfin.be
kissic.acc.minfin.be
ccff-test2.minfin.be
fediam-t.minfin.be
extranet.minfin.be
ccff-test1.minfin.be
test-eservices.minfin.be
tna-git.minfin.be
FPS-Finance-BE-CTS-test.minfin.be
fediam-i.minfin.be
Certificate
The complete raw certificate details for cap2-test.minfin.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIzzCCBregAwIBAgIRALV24TNng3ptNOXEJABzBNswDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIwMDUyNzAwMDAwMFoXDTIyMDUyNzIz NTk1OVowgb4xCzAJBgNVBAYTAkJFMQ0wCwYDVQQREwQxMDMwMRswGQYDVQQIExJC cnV4ZWxsZXMtQ2FwaXRhbGUxEjAQBgNVBAcTCUJydXhlbGxlczEjMCEGA1UECRMa Qm91bGV2YXJkIFJvaSBBbGJlcnQgSUkgMzMxFzAVBgNVBAoMDkZPRCBGaW5hbmNp w6tuMRMwEQYDVQQLEwowMzA4MzU3MTU5MRwwGgYDVQQDExNjYXAyLXRlc3QubWlu ZmluLmJlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2EwnnIlRDvD+ 7VfRY55dmanJkCJH1oD/M6oqUCrKIZmYCL9zekeYGyt5HWqVkuLUuKM38TxdWjbt GfdrWi7cmII1+qfNlAvekg8O+DvooaT3C4CvVe4v6Pg0prLYLRxc6qUFSVyafa9c rjYiHtC81UHCaYVhPGCsFqOPYa1qIWR1WzqDGY/dtG/zJ2rkDJGfDKefDSOc8Yfd JNLOyRGulHgX1XbLEbMYLKrhzEU04XTR6o+klxBhS6L1WmLhaRAJ0DNuVidMTpEp ZCNq6eepH/LE7YucqbJklDGSKIKa0OA7vAQFlamLeYDiGCgSAehAGw0B4chltIP4 J6HBEiNUWPu/qEoUFg5Op8ojZsODCanrVLDhFu/84dOQ1z5RfG/MYpypkomxCfyP vol9vSC0kKd2yllr5JqbggsAPz/I/OpnX2eR8sDXRNr32Qlta3SSeq4PkF8fxyOE yKxXrls6MNisC0ATv+2SerXcrD4n5quXwwY/AC1wX1T2DzhrWHITBj6dZIv9YPhh 83u1yYM8c5FTxNNyoPRh21xoukWFczDOC0Ljqah/+T3AK8LX3y2SU+6qKFxJ4GmA +lWy5k0OEyQQjzogBr4BPrcBLQWkqb9WYfLupw1+28rwLZcu1qfp71jAjopG65/d RBtaVhlURXQ5sQ3N3hx1K5b+YeOae+kCAwEAAaOCAz8wggM7MB8GA1UdIwQYMBaA FG8dNUkQbDL6WaCevIroH5W+cXoMMB0GA1UdDgQWBBSt4Q1f5uKYRMQKxrCJHkqq HoxzYTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICTzAlMCMG CCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgIwPwYD VR0fBDgwNjA0oDKgMIYuaHR0cDovL0dFQU5ULmNybC5zZWN0aWdvLmNvbS9HRUFO VE9WUlNBQ0E0LmNybDB1BggrBgEFBQcBAQRpMGcwOgYIKwYBBQUHMAKGLmh0dHA6 Ly9HRUFOVC5jcnQuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcnQwKQYIKwYB BQUHMAGGHWh0dHA6Ly9HRUFOVC5vY3NwLnNlY3RpZ28uY29tMDcGA1UdEQQwMC6C E2NhcDItdGVzdC5taW5maW4uYmWCF3d3dy5jYXAyLXRlc3QubWluZmluLmJlMIIB fgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdwBGpVXrdfqRIDC1oolp9PN9ESxBdL79 SbiFq/L8cP5tRwAAAXJVgmiPAAAEAwBIMEYCIQC0PoAEVALllkD4Xd7myynuQpYw CwbqtVr/x3PHFLpNwwIhAO1u0zd0Mi6WErQk8JAqvr5U2ki2cEH8w3DXe0c8i45/ AHYA36Veq2iCTx9sre64X04+WurNohKkal6OOxLAIERcKnMAAAFyVYJozwAABAMA RzBFAiATz9GYakt2hbarwQt0DE6yWdBShsqH00TAACx9zOCtRwIhALU7k8YdsZLK RjDqEUhWg6WpiWXevqCgND/31dSz1d/6AHUAb1N2rDHwMRnYmQCkURX/dxUcEdkC wQApBo2yCJo32RMAAAFyVYJoiAAABAMARjBEAiAWJtntWyVskK4OswYXPx4OdtZz cJdU3AIF7Dkfb0ycfQIgPoUJrw3TDwWMw1InSxirKikF6bmSDxFZwKlx3eqOOvYw DQYJKoZIhvcNAQEMBQADggIBAFzp60wWtImC7Tq/n43WqeIIG939MXscArVyYmqq VSUFLeIXiyWGJUAXAAEnNy6lWCXPIAmbtczInoFv+xxho0M7DYS/MlQQ42CPe+6y Bfx6+Lzqj97YfrSjQ6Fgy9fT0es9/vbKcXhNUuwJkET42csdw8FtBTGPzJDiOthI b+bScSjGmXMRA379c6QgTXoYv+NMpeSoBqgSaD+kkrCpH4yzJiwNI67ss+TdhqWm yqsP8pFoewSfuT599KUnh6HgNlIQo18HZrBTPI1mAwXxu1OMDJlmMsK9Q13Gj+3Q BZ+WFto0gDxml4LHTaPW2xkd14I0yqdAgurqWaZumyXDVARdGyiviUHu0EHkrFID 81gw1rB8ZMOidWBeteuvjjrOhZB1N80SPksjOX+PP+IgxqDrKU3OF/hUwZeFsYty 51caZbTiutJ/tijqGvTym1xLcl5A0E1Spdt0Gprh8Sl6uha/f5NweAuqHyuPRTiL duO2c1HxwS1dLAHQoTP7/gHWNLDIT4hmrgrTG0jGFJgao1MxWkEwWIwjC/tlHKYd oWNnL361YaFbCChAUl4BbHERi9FwUKGwSQGVv4g7xYCG4FLjamK2uguDMp5j6/5M c9U1PizpKUYOGdma0CRdfgX8y/4bb7V9q1sGTTpQtw5AbRXUFiAUjY0RvgjKgsSG NUW+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2EwnnIlRDvD+7VfRY55d manJkCJH1oD/M6oqUCrKIZmYCL9zekeYGyt5HWqVkuLUuKM38TxdWjbtGfdrWi7c mII1+qfNlAvekg8O+DvooaT3C4CvVe4v6Pg0prLYLRxc6qUFSVyafa9crjYiHtC8 1UHCaYVhPGCsFqOPYa1qIWR1WzqDGY/dtG/zJ2rkDJGfDKefDSOc8YfdJNLOyRGu lHgX1XbLEbMYLKrhzEU04XTR6o+klxBhS6L1WmLhaRAJ0DNuVidMTpEpZCNq6eep H/LE7YucqbJklDGSKIKa0OA7vAQFlamLeYDiGCgSAehAGw0B4chltIP4J6HBEiNU WPu/qEoUFg5Op8ojZsODCanrVLDhFu/84dOQ1z5RfG/MYpypkomxCfyPvol9vSC0 kKd2yllr5JqbggsAPz/I/OpnX2eR8sDXRNr32Qlta3SSeq4PkF8fxyOEyKxXrls6 MNisC0ATv+2SerXcrD4n5quXwwY/AC1wX1T2DzhrWHITBj6dZIv9YPhh83u1yYM8 c5FTxNNyoPRh21xoukWFczDOC0Ljqah/+T3AK8LX3y2SU+6qKFxJ4GmA+lWy5k0O EyQQjzogBr4BPrcBLQWkqb9WYfLupw1+28rwLZcu1qfp71jAjopG65/dRBtaVhlU RXQ5sQ3N3hx1K5b+YeOae+kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 241207525881209895946268022830011712731 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1030' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bruxelles-Capitale' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bruxelles' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Boulevard Roi Albert II 33' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'FOD Financiën' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '0308357159' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cap2-test.minfin.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 882416728856031137497793197062505504798478544840028969464038658016952834731849191003798331028407333198578566010415198967060686799836078004606865238509079932402754813529309762814802511929283526286992459130940873151405016986617416697051582750565196051055140625838910288069508222608191355457481701519687992537755862134413958967949790026555827559911074872203685464366205900937135147937084096977309914845338230216222963801760840025019636482426174175983912777330346447675115549166111560834917950784865297999483721593849834693662896439580762700086240922307265160291352578107992638601729271605262123513124566139236066749871348832074218902297573218445459170145985396995247537669888070642564198872637264198964175176202532092820926485801482755747631113198896270510602393633068932036866344501944963473047985292158369020872272289126807199493114029576747388637944567410036077655818510694113492867626375043007119566268289131351601567385627111182440533518311661371045371287489841050704887023793626712267805855297428654706893190771327140553405542261259557212847367400779901776133963405564936447132287709819420154835292010143601077112488379291161831073451858994123808952753451463476351201224942836994200044149932749115273322230920575715117475653385193 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ade10d5fe6e29844c40ac6b0891e4aaa1e8c7361 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cap2-test.minfin.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cap2-test.minfin.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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