waarmerk.wijchen.nl
- Gemeente Wijchen -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 1b:a3:f3:18:96:38:f9:de was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Gemeente Wijchen
Company registration number:
00000001001096874000
Organization: Gemeente Wijchen
Organization: Gemeente Wijchen
State / Province:
Gelderland
Locality: Wijchen
Country: NL
Locality: Wijchen
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 1b:a3:f3:18:96:38:f9:deSerial Number (int): 1991702747152972254
Serial Number lenght: 61 bits, 8 octets
SubjectKeyId: 29:84:90:c4:4f:b6:cb:00:b3:c3:5a:d8:c6:78:5c:14:4a:75:66:e5
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 11:18:e0:77:f0:c1:c7:a6:1a:e3:ac:1e:71:bd:ae:dc:ef:b9:14:d2
Fingerprint (sha256): 2e:8f:47:e8:2b:c2:22:6d:25:4e:64:6d:2b:2a:97:cb:8c:46:40:60:d2:81:27:78:84:e0:8f:f2:f7:f0:bd:e1
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate waarmerk.wijchen.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for waarmerk.wijchen.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
waarmerk.wijchen.nl
Other certificates including the domain name wijchen.nl
(limited to 100 certificates)
preproductie.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
Certificate
The complete raw certificate details for waarmerk.wijchen.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG4zCCBMugAwIBAgIIG6PzGJY4+d4wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UE BhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5OVFJOTC0yNzEyNDcw MTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2FuaXNhdGllIFNlcnZl ciBDQSAtIEczMB4XDTE4MTAxNjExMzAxMVoXDTIwMTExMDExMzAxMVowgYwxCzAJ BgNVBAYTAk5MMRMwEQYDVQQIDApHZWxkZXJsYW5kMRAwDgYDVQQHDAdXaWpjaGVu MRkwFwYDVQQKDBBHZW1lZW50ZSBXaWpjaGVuMR0wGwYDVQQFExQwMDAwMDAwMTAw MTA5Njg3NDAwMDEcMBoGA1UEAwwTd2Fhcm1lcmsud2lqY2hlbi5ubDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKzFmfJn4M1jxeoyiIOw0NE4J4QLVvun NTA2SEXjSHUm212smmHpR9P3RpkIiv48uAOTk6JzzMFDc9oih57tIImQGyb9M1x4 BtNvV2RnD8ATqmh16oJiRn4jZIceQETvkoBoCClHKxlLzLIYRFzVK6V5g1E7Q5sJ y2lSOBa1Ab9fSRQ9YFT+xABNzqH/fNKTznMBdyXZIhZoho01xz2SknZwkftm6fVR fHqsX921IvldYlvQmdfE03rSuHVzWQU+gHoDBC96uuEgqhI3luiPoPCdqqfsdoGw ZvGReddesZT/+iPM28vLB6G4McKiJiSKW3ipC8/UGHk9hXiAXN6PoucCAwEAAaOC AmEwggJdMIGUBggrBgEFBQcBAQSBhzCBhDBYBggrBgEFBQcwAoZMaHR0cDovL2Nl cnQubWFuYWdlZHBraS5jb20vQ0FjZXJ0cy9LUE5CVlBLSW92ZXJoZWlkT3JnYW5p c2F0aWVTZXJ2ZXJDQUczLmNlcjAoBggrBgEFBQcwAYYcaHR0cDovL2czb2NzcC5t YW5hZ2VkcGtpLmNvbTAdBgNVHQ4EFgQUKYSQxE+2ywCzw1rYxnhcFEp1ZuUwDAYD VR0TAQH/BAIwADAfBgNVHSMEGDAWgBTDmqZ7XnQrgrbGcv10ToXSl839GDCBsQYD VR0gBIGpMIGmMIGZBgpghBABh2sBAgUGMIGKMDcGCCsGAQUFBwIBFitodHRwczov L2NlcnRpZmljYWF0Lmtwbi5jb20vcGtpb3ZlcmhlaWQvY3BzME8GCCsGAQUFBwIC MEMMQU9wIGRpdCBjZXJ0aWZpY2FhdCBpcyBoZXQgQ1BTIFBLSW92ZXJoZWlkIHZh biBLUE4gdmFuIHRvZXBhc3NpbmcuMAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBP hk1odHRwOi8vY3JsLm1hbmFnZWRwa2kuY29tL0tQTkJWUEtJb3ZlcmhlaWRPcmdh bmlzYXRpZVNlcnZlckNBRzMvTGF0ZXN0Q1JMLmNybDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMB4GA1UdEQQXMBWCE3dhYXJt ZXJrLndpamNoZW4ubmwwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQEL BQADggIBAKUwaK8pvKnvIKjf1QjPMHhRGS6kCJc/6rUKM+Za7LCnJlt8dkVzoFdW 18zU/s7gi/E+SGEYFVaNtEcWebPx9GvrIJAH9XKhCQQ/gTTlpWfRRN6/B0xst7IX TLBx4lwSpaliKyePJm4rgtcKh04agRhH/B3cqjM571iAcaBvi/YMV3/zy6CVpWQe 6uzt88vhkqFcyO//dnaGd/mAAS/z8kdJEOOnMeCifdWGMoEOemKfJZjAnluiXqNB 22JhdGxaY+rT5eo07dqDq0U0KEgNfOMhCQ/AWUjQlhuJjedOti+hZBQQpfXmpFgv +RnMmnGOiLYOIkTqEZKNzXfddWn5IUeHRkDYQHHGVbYNx3SVr8zF+/4y0IBgwDN7 CU4GPn5TjLrfeX1Q+zIVz/q+ruJZjB2t8hvQPCxQLf5bFtYsgx6SGfaPVaS/+H/8 wU++P6BAqYf0SNTDUqfqkh2efIBNIpKNO29zS9TawPboXIFa5Wo5K0vdm24Vk5gR crrY9CPI3HKxFJb25If50xItBVXzlpbsAGqeHL/Ecp/NAGDpNlPIXa+EdHIisO/t ff17buJKnhwjoLxx+NQtVWmi15QqR6dA6dt93qGc74u4/aZwg47WbHtJdwd4mC/v 4LMkulU2GjevriwpvOHa2Eu807ZUKKVLMvewaXUUoFMpCK8ZgtHN -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMWZ8mfgzWPF6jKIg7DQ 0TgnhAtW+6c1MDZIReNIdSbbXayaYelH0/dGmQiK/jy4A5OTonPMwUNz2iKHnu0g iZAbJv0zXHgG029XZGcPwBOqaHXqgmJGfiNkhx5ARO+SgGgIKUcrGUvMshhEXNUr pXmDUTtDmwnLaVI4FrUBv19JFD1gVP7EAE3Oof980pPOcwF3JdkiFmiGjTXHPZKS dnCR+2bp9VF8eqxf3bUi+V1iW9CZ18TTetK4dXNZBT6AegMEL3q64SCqEjeW6I+g 8J2qp+x2gbBm8ZF5116xlP/6I8zby8sHobgxwqImJIpbeKkLz9QYeT2FeIBc3o+i 5wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1991702747152972254 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-16 11:30:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-10 11:30:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gelderland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeente Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001001096874000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'waarmerk.wijchen.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21810429314016977079214147421054427978840985978537117301720991158882033260381974983015431223920816489426332268422961760352220716429353886735079712201497859582380912134874506081972078381103970825033909900723566054340284710042096202352355623685316855490050671612703997662916779881418835954423546538957243219231374439233949939836903723718762937258730980373632703907491686401276936102080908698093037021155051309525455012534163420594514138573887924377979676768957096301674812205549844682727519496462833795669045801668351510656408508800196183583974169124255788221612920382368390872104089217454350330859784838087534078567143 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 298490c44fb6cb00b3c35ad8c6785c144a7566e5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waarmerk.wijchen.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 00a53068af29bca9ef20a8dfd508cf307851192ea408973feab50a33e65aecb0a7265b7c764573a05756d7ccd4fecee08bf13e48611815568db4471679b3f1f46beb209007f572a109043f8134e5a567d144debf074c6cb7b2174cb071e25c12a5a9622b278f266e2b82d70a874e1a811847fc1ddcaa3339ef588071a06f8bf60c577ff3cba095a5641eeaecedf3cbe192a15cc8efff76768677f980012ff3f2474910e3a731e0a27dd58632810e7a629f2598c09e5ba25ea341db6261746c5a63ead3e5ea34edda83ab453428480d7ce321090fc05948d0961b898de74eb62fa1641410a5f5e6a4582ff919cc9a718e88b60e2244ea11928dcd77dd7569f92147874640d84071c655b60dc77495afccc5fbfe32d08060c0337b094e063e7e538cbadf797d50fb3215cffabeaee2598c1dadf21bd03c2c502dfe5b16d62c831e9219f68f55a4bff87ffcc14fbe3fa040a987f448d4c352a7ea921d9e7c804d22928d3b6f734bd4dac0f6e85c815ae56a392b4bdd9b6e1593981172bad8f423c8dc72b11496f6e487f9d3122d0555f39696ec006a9e1cbfc4729fcd0060e93653c85daf84747222b0efed7dfd7b6ee24a9e1c23a0bc71f8d42d5569a2d7942a47a740e9db7ddea19cef8bb8fda670838ed66c7b49770778982fefe0b324ba55361a37afae2c29bce1dad84bbcd3b65428a54b32f7b0697514a0532908af1982d1cd