rooster.universiteitleiden.nl
- Universiteit Leiden -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number e2:70:24:3c:72:b1:66:db:e4:2d:46:2e:b2:ad:e5:3b was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit Leiden
Organization:
Universiteit Leiden
State / Province:
Zuid-Holland
Country: NL
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): e2:70:24:3c:72:b1:66:db:e4:2d:46:2e:b2:ad:e5:3bSerial Number (int): 300987799251478127014016535951645205819
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: b3:ba:e8:1f:72:0c:af:24:7c:76:9b:00:b9:a5:e4:a6:14:fc:09:15
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 06:2b:e2:83:83:16:14:e1:44:cf:0f:bb:74:43:ae:cf:29:7d:95:22
Fingerprint (sha256): 2f:57:b2:b5:5f:d0:10:1b:34:0a:12:e4:69:ce:55:3c:db:42:2e:07:07:64:0f:30:77:ca:8d:75:bb:1d:e1:12
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate rooster.universiteitleiden.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rooster.universiteitleiden.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rooster.universiteitleiden.nl
www.rooster.universiteitleiden.nl
www.rooster.universiteitleiden.nl
Other certificates including the domain name universiteitleiden.nl
(limited to 100 certificates)
bachelors.universiteitleiden.nl
scharrelaar-p1.leidenuniv.nl
springoffer.universiteitleiden.nl
weblectures-a.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
form.services.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
depthoffield.universiteitleiden.nl
aqa.universiteitleiden.nl
acquisitions.library.universiteitleiden.nl
cms-a.universiteitleiden.nl
planon-a.universiteitleiden.nl
web.universiteitleiden.nl
grasparkiet.leidenuniv.nl
aqa.universiteitleiden.nl
trail.universiteitleiden.nl
cms.universiteitleiden.nl
depthoffield.universiteitleiden.nl
www.universiteitleiden.nl
masters.universiteitleiden.nl
sapbo-acc.universiteitleiden.nl
planon-t.universiteitleiden.nl
ooievaar.web.leidenuniv.nl
ask-a-librarian.universiteitleiden.nl
scharrelaar-p3.leidenuniv.nl
presto-a.universiteitleiden.nl
grasparkiet.leidenuniv.nl
webpresentations-a.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
mfa.services.universiteitleiden.nl
mysites.universiteitleiden.nl
bachelors.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
mfa-a.services.universiteitleiden.nl
www.jotform3.leidenuniv.nl
finder.library.universiteitleiden.nl
scriptiebeoordeling-law.universiteitleiden.nl
planon.universiteitleiden.nl
redirectservice.universiteitleiden.nl
wiki.cfer.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
wbs.universiteitleiden.nl
tdm.universiteitleiden.nl
video.universiteitleiden.nl
planon.universiteitleiden.nl
aqa.universiteitleiden.nl
lu-card-activeren-a.universiteitleiden.nl
studiegids.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
video.universiteitleiden.nl
helpdesk-o.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
phdcareerplatform.universiteitleiden.nl
planon-a.universiteitleiden.nl
lenteactie.universiteitleiden.nl
aqa.universiteitleiden.nl
acquisitions.library.universiteitleiden.nl
aqa.universiteitleiden.nl
benb.universiteitleiden.nl
aqa.universiteitleiden.nl
aqa.universiteitleiden.nl
topaza-t.leidenuniv.nl
www-r.universiteitleiden.nl
omeroweb.services.universiteitleiden.nl
kokmeeuw.leidenuniv.nl
aqa.universiteitleiden.nl
indonesie.universiteitleiden.nl
gitlab.services.universiteitleiden.nl
scharrelaar-p3.leidenuniv.nl
studyspots.universiteitleiden.nl
mfa-a.services.universiteitleiden.nl
phdcareerplatform.universiteitleiden.nl
grasparkiet.leidenuniv.nl
rooster.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
jatos.services.universiteitleiden.nl
webpresentations.universiteitleiden.nl
bookandbyte.universiteitleiden.nl
hop-qa.leidenuniv.nl
brightspacesupport.universiteitleiden.nl
sshgw01.alice.universiteitleiden.nl
numerusfixus.universiteitleiden.nl
weblectures.leidenuniv.nl
aqa.universiteitleiden.nl
account-a.services.universiteitleiden.nl
p-issc-009996.infra.leidenuniv.nl
jatos-t.services.universiteitleiden.nl
finder.library.universiteitleiden.nl
aqa.universiteitleiden.nl
lithium.liacs.nl
scharrelaar-p1.leidenuniv.nl
depthoffield.universiteitleiden.nl
indonesie.universiteitleiden.nl
aqa.universiteitleiden.nl
scharrelaar-p1.leidenuniv.nl
springoffer.universiteitleiden.nl
weblectures-a.leidenuniv.nl
phdcareerplatform.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
form.services.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
studiegids-p.leidenuniv.nl
ooievaar.web.leidenuniv.nl
scharrelaar-p3.leidenuniv.nl
helpdesk.universiteitleiden.nl
depthoffield.universiteitleiden.nl
aqa.universiteitleiden.nl
acquisitions.library.universiteitleiden.nl
cms-a.universiteitleiden.nl
planon-a.universiteitleiden.nl
web.universiteitleiden.nl
grasparkiet.leidenuniv.nl
aqa.universiteitleiden.nl
trail.universiteitleiden.nl
cms.universiteitleiden.nl
depthoffield.universiteitleiden.nl
www.universiteitleiden.nl
masters.universiteitleiden.nl
sapbo-acc.universiteitleiden.nl
planon-t.universiteitleiden.nl
ooievaar.web.leidenuniv.nl
ask-a-librarian.universiteitleiden.nl
scharrelaar-p3.leidenuniv.nl
presto-a.universiteitleiden.nl
grasparkiet.leidenuniv.nl
webpresentations-a.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
mfa.services.universiteitleiden.nl
mysites.universiteitleiden.nl
bachelors.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
mfa-a.services.universiteitleiden.nl
www.jotform3.leidenuniv.nl
finder.library.universiteitleiden.nl
scriptiebeoordeling-law.universiteitleiden.nl
planon.universiteitleiden.nl
redirectservice.universiteitleiden.nl
wiki.cfer.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
tornado-p-https.web.leidenuniv.nl
wbs.universiteitleiden.nl
tdm.universiteitleiden.nl
video.universiteitleiden.nl
planon.universiteitleiden.nl
aqa.universiteitleiden.nl
lu-card-activeren-a.universiteitleiden.nl
studiegids.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
video.universiteitleiden.nl
helpdesk-o.universiteitleiden.nl
mentornetwerk.universiteitleiden.nl
phdcareerplatform.universiteitleiden.nl
planon-a.universiteitleiden.nl
lenteactie.universiteitleiden.nl
aqa.universiteitleiden.nl
acquisitions.library.universiteitleiden.nl
aqa.universiteitleiden.nl
benb.universiteitleiden.nl
aqa.universiteitleiden.nl
aqa.universiteitleiden.nl
topaza-t.leidenuniv.nl
www-r.universiteitleiden.nl
omeroweb.services.universiteitleiden.nl
kokmeeuw.leidenuniv.nl
aqa.universiteitleiden.nl
indonesie.universiteitleiden.nl
gitlab.services.universiteitleiden.nl
scharrelaar-p3.leidenuniv.nl
studyspots.universiteitleiden.nl
mfa-a.services.universiteitleiden.nl
phdcareerplatform.universiteitleiden.nl
grasparkiet.leidenuniv.nl
rooster.universiteitleiden.nl
tornado-p-https.web.leidenuniv.nl
jatos.services.universiteitleiden.nl
webpresentations.universiteitleiden.nl
bookandbyte.universiteitleiden.nl
hop-qa.leidenuniv.nl
brightspacesupport.universiteitleiden.nl
sshgw01.alice.universiteitleiden.nl
numerusfixus.universiteitleiden.nl
weblectures.leidenuniv.nl
aqa.universiteitleiden.nl
account-a.services.universiteitleiden.nl
p-issc-009996.infra.leidenuniv.nl
jatos-t.services.universiteitleiden.nl
finder.library.universiteitleiden.nl
aqa.universiteitleiden.nl
lithium.liacs.nl
scharrelaar-p1.leidenuniv.nl
depthoffield.universiteitleiden.nl
indonesie.universiteitleiden.nl
aqa.universiteitleiden.nl
Certificate
The complete raw certificate details for rooster.universiteitleiden.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIjjCCBnagAwIBAgIRAOJwJDxysWbb5C1GLrKt5TswDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIyMDUyNDAwMDAwMFoXDTIzMDUyNDIz NTk1OVowajELMAkGA1UEBhMCTkwxFTATBgNVBAgTDFp1aWQtSG9sbGFuZDEcMBoG A1UEChMTVW5pdmVyc2l0ZWl0IExlaWRlbjEmMCQGA1UEAxMdcm9vc3Rlci51bml2 ZXJzaXRlaXRsZWlkZW4ubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQC8PrzA4g1T9aOEjswA8qo4st94VMHm69SIqDjPZk7qtrIjNJLLWmtfmirI907V EGxu0QOacRCRGTBythDSDzzMMqqYps7JtO3TLc8bcgaUS7GZyjvZ0bNdgJtS9Haq ISDjlkMtJkNyh9C0nRYKkoF673Ica/ARyEyUpV1ueKiRQs8KzoPtR4L5J2S2wx66 1YwG34ZmE/mupmuQ+I9PoaSLoE3ae8BRbdHRj/w6eGzgJbmBmcCnTzdLLOWRirLa flWPX/N9GcBmPS4Y7rXbLwSFbzWTJPQGopz7OH0N3lIZH6q7OBBFN9DzUs1GnTRv VvJp11nm7w+fRfNZlwnt/3XXoMPkMM+QwaS23Dd3BUeLKTL57y48/yo6UShZqlki 6L/kHbcYjOFooQs08nQNs0DdkM/rZfbvZg0yBJ6NdN9q8z4Sm0YwU2KWJda2BR6q 1eEGAC2Bli6YgUI7g4nZc/EGoQ9TAWa9xYoOVXbrY1n7DYL2j9d7cSD8odjUUQAJ 1CDQIXVgoOZZAkLj7GQTskkhxWoSqUrkfb5+es+fqfYWzAm14GQwFoV9BIb9XgHi 0h1s1QIF1Sv85Ssibhds9r+PbUyFuRfw2zSNg3Q5b5dqLsOKOJ0u0h0h8y2lsk83 LM5EaTEE4n8TFmRbfEEdhDJWpVlIDghJ08xGewM0llyOFwIDAQABo4IDUzCCA08w HwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFLO66B9y DK8kfHabALml5KYU/AkVMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQB sjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgG BmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3Rp Z28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEF BQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0 LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20w ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB3AK33vvp8/xDIi509nB4+GGq0Zyld z7EMJMqFhjTr3IKKAAABgPVhBmUAAAQDAEgwRgIhAPNJxUOiff31XlFeoGJ/YPW2 +08YI6Koy68QHrQakogKAiEA1pvPkGFAqtPJ+l5puaAe3HqRfzIqOFTGp6MgAAxa SXMAdQB6MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAYD1YQYxAAAE AwBGMEQCIBIAcr1TtKi9jA/yX/njfgosrJ6eE2dEQ0GdMFrlV/kaAiAgSEFBYaqq 9L+76TZTQ4twda6tn3BNoe3LmmM0vR1mjAB2AOg+0No+9QY1MudXKLyJa8kD08vR EWvs62nhd31tBr1uAAABgPVhBgQAAAQDAEcwRQIhAPTaWQlB8CXOmoFLyceOkUew BPaQm2s74TgImOsmxwU/AiBNtsQasIHLk5muOSqeUj8h/ENRRH4nyOLf0XBqHljn izBLBgNVHREERDBCgh1yb29zdGVyLnVuaXZlcnNpdGVpdGxlaWRlbi5ubIIhd3d3 LnJvb3N0ZXIudW5pdmVyc2l0ZWl0bGVpZGVuLm5sMA0GCSqGSIb3DQEBDAUAA4IC AQCXguznLXWAmZw6ucriREqMw1hR4rha/Mh1mDv3kkVp/dYZOf4SG8XtECwaOaaA XE1tRHuIOB602aiknr+yL9pwznqB+i5UebSGHQX+wGbJusTChaVGT3Pr6cBqoL4t YDIYS1FswgHbxC5ijwbuuC7gEJZhO14H56ES9HOSzQOXcTa3ybWGCtDWR9b/L/Vv qjbCsxanv4TjTNxjexgDC5QRqFCA2NRLQa6EGNeV6u/189RDeXDUSnNUqH9npJsX 8TEZAs+P3bXfKfqfzMd6/U42u4niY0kNpwuNu0hpvPK/mhKUsW24AHtSkjO2DgbF 3NK4QfaaZZ/zLxLVmL6UTmvDxK1sUSwVyVJPSwULV7pK6HFxLY9L9KOCardF5CIa OZsN0Aoo8cM3D2ZBHgfQJTNCx4/TIeedvFIM0bssfQE/XP+Sn7LddOB/uQSGIQuH 2lH/xTedf0wWROVzqSe1WSBNNoaRh/csg+O4ppuSbIEbWYUwHjXh8lPbMaXAmDaf R3vVKW4QGNaV5u86pOT+hP1iiwBvl+n7i6N6zj+DYzfc4C4oD3NLhLDiLA/Lm/bC hZRK8buDHBgPIeQC3ebE2YxwulKmXkERhoYc/qQRlFtCsFrj/YBnhJl9RwLBBnIA Wg1uERq7iaM/gElGdnza+xc6pVsCDpfkmRhyprCWwEwv+w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvD68wOINU/WjhI7MAPKq OLLfeFTB5uvUiKg4z2ZO6rayIzSSy1prX5oqyPdO1RBsbtEDmnEQkRkwcrYQ0g88 zDKqmKbOybTt0y3PG3IGlEuxmco72dGzXYCbUvR2qiEg45ZDLSZDcofQtJ0WCpKB eu9yHGvwEchMlKVdbniokULPCs6D7UeC+SdktsMeutWMBt+GZhP5rqZrkPiPT6Gk i6BN2nvAUW3R0Y/8Onhs4CW5gZnAp083SyzlkYqy2n5Vj1/zfRnAZj0uGO612y8E hW81kyT0BqKc+zh9Dd5SGR+quzgQRTfQ81LNRp00b1byaddZ5u8Pn0XzWZcJ7f91 16DD5DDPkMGkttw3dwVHiyky+e8uPP8qOlEoWapZIui/5B23GIzhaKELNPJ0DbNA 3ZDP62X272YNMgSejXTfavM+EptGMFNiliXWtgUeqtXhBgAtgZYumIFCO4OJ2XPx BqEPUwFmvcWKDlV262NZ+w2C9o/Xe3Eg/KHY1FEACdQg0CF1YKDmWQJC4+xkE7JJ IcVqEqlK5H2+fnrPn6n2FswJteBkMBaFfQSG/V4B4tIdbNUCBdUr/OUrIm4XbPa/ j21MhbkX8Ns0jYN0OW+Xai7DijidLtIdIfMtpbJPNyzORGkxBOJ/ExZkW3xBHYQy VqVZSA4ISdPMRnsDNJZcjhcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 300987799251478127014016535951645205819 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit Leiden' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rooster.universiteitleiden.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 767972873568565304466251397557312600956739906138677036763806302340722592474232155385019091621862877011052218693608352995420346531750022553160141493185141017451128263328691116208439602670999225062219975230868188455301957268450021800867492531650844473409141396416119962258827257006608321033739532065388067653016511781399361055514671804448585111134959062412272993024962727459148922527508705166611766751325938430233030623976975818421214534839348445777298356709354884450841916688218012437690405994047510377483472190713232432583644980796697743874667454980455814896727276542947981094129635748819550104011165329673188518597741784880730772573441733786827878735166122528373204167010725531322836672633183313809383527155341108970226195980167270982702096689372290137360786822877093329245128814151628466937971930987252866527589804234973573162443250877875047617896057073431417181090135941211906655954807093765715362412024809256785846050715895333489287981531634858155055465263847699143349744026571477459439465689947869031684213742801001676424684763858068452869975134822787883925107122268611344471583535198738426920618678795863202166454250209608848823397826056212523307605552320934170041983906732228297426054946481425258733891358402201511001866407447 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b3bae81f720caf247c769b00b9a5e4a614fc0915 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rooster.universiteitleiden.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rooster.universiteitleiden.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 009782ece72d7580999c3ab9cae2444a8cc35851e2b85afcc875983bf7924569fdd61939fe121bc5ed102c1a39a6805c4d6d447b88381eb4d9a8a49ebfb22fda70ce7a81fa2e5479b4861d05fec066c9bac4c285a5464f73ebe9c06aa0be2d6032184b516cc201dbc42e628f06eeb82ee01096613b5e07e7a112f47392cd03977136b7c9b5860ad0d647d6ff2ff56faa36c2b316a7bf84e34cdc637b18030b9411a85080d8d44b41ae8418d795eaeff5f3d4437970d44a7354a87f67a49b17f1311902cf8fddb5df29fa9fccc77afd4e36bb89e263490da70b8dbb4869bcf2bf9a1294b16db8007b529233b60e06c5dcd2b841f69a659ff32f12d598be944e6bc3c4ad6c512c15c9524f4b050b57ba4ae871712d8f4bf4a3826ab745e4221a399b0dd00a28f1c3370f66411e07d0253342c78fd321e79dbc520cd1bb2c7d013f5cff929fb2dd74e07fb90486210b87da51ffc5379d7f4c1644e573a927b559204d36869187f72c83e3b8a69b926c811b5985301e35e1f253db31a5c098369f477bd5296e1018d695e6ef3aa4e4fe84fd628b006f97e9fb8ba37ace3f836337dce02e280f734b84b0e22c0fcb9bf6c285944af1bb831c180f21e402dde6c4d98c70ba52a65e411186861cfea411945b42b05ae3fd806784997d4702c10672005a0d6e111abb89a33f804946767cdafb173aa55b020e97e4991872a6b096c04c2ffb