www.ikpas.nl
- Stichting Positieve Leefstijl -
Issued by Sectigo RSA Extended Validation Secure Server CA
About this certificate
This digital certificate with serial number cf:ca:b3:ef:f0:1d:a3:c5:6d:4b:51:5a:d0:42:90:0a was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Stichting Positieve Leefstijl
Company registration number:
69594090
Organization: Stichting Positieve Leefstijl
Organization: Stichting Positieve Leefstijl
State / Province:
Gelderland
Country: NL
Country: NL
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): cf:ca:b3:ef:f0:1d:a3:c5:6d:4b:51:5a:d0:42:90:0aSerial Number (int): 276202688654063750023746201988353921034
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 6b:65:1d:57:54:a0:33:3b:cf:c2:fb:6a:50:ad:43:a3:4a:c4:8b:12
AuthorityKeyId: 2c:69:ff:80:c9:87:90:ae:34:e1:b4:e7:4c:93:85:99:40:e9:a7:b2
Fingerprint (sha1): 31:5d:4a:f7:12:af:13:cf:ce:a4:b7:2b:0a:96:01:b5:62:f5:b0:17
Fingerprint (sha256): 2f:8b:a0:c1:5a:95:15:81:87:0d:fb:1c:ae:10:c3:b4:9a:c9:05:3d:ae:d7:e0:4f:27:2a:ee:91:da:61:4c:89
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCRL Distribution Point: http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl
Check the revocation status for certificate www.ikpas.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ikpas.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ikpas.nl
ikpas.nl
ikpas.nl
Other certificates including the domain name ikpas.nl
(limited to 100 certificates)
acceptatie.ikpas.nl
dashboard.ikpas.nl
fire.sengsara.com
portal.rpsit.ac.in
regio.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
acceptatie.ikpas.nl
cardinalcapital.partnerhub.co.za
acceptatie.ikpas.nl
www.segfaultstudios.com
ikpas.nl
www.ikpas.nl
ikpas.nl
travexagency.com
dashboard.ikpas.nl
app.tokenate.dev
www.ikpas.nl
ikpas.nl
ikpas.nl
documenten.ikpas.nl
regio.ikpas.nl
dashboard.ikpas.nl
ikpas.nl
dashboard.ikpas.nl
acceptatie.ikpas.nl
www.ikpas.nl
ikpas.nl
ikpas.nl
www.cindydavisforschoolboard.com
ikpas.nl
ikpas.nl
dashboard.ikpas.nl
ikpas.nl
acceptatie.ikpas.nl
dashboard.ikpas.nl
www.duiardal.se
dashboard.ikpas.nl
acceptatie.ikpas.nl
ikpas.nl
ikpas.nl
tracking.ikpas.nl
www.afterlife.garden
portal.ikpas.nl
www.ikpas.nl
regio.ikpas.nl
documenten.ikpas.nl
ikpas.nl
mediagenerator.ikpas.nl
dashboard.ikpas.nl
www.ikpas.nl
ikpas.nl
ikpas.nl
ikpas.nl
crm.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
ikpas.nl
portal.ikpas.nl
acceptatie.ikpas.nl
tryfindr.com
documenten.ikpas.nl
ikpas.nl
portal.ikpas.nl
www.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
fire.sengsara.com
portal.rpsit.ac.in
regio.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
acceptatie.ikpas.nl
cardinalcapital.partnerhub.co.za
acceptatie.ikpas.nl
www.segfaultstudios.com
ikpas.nl
www.ikpas.nl
ikpas.nl
travexagency.com
dashboard.ikpas.nl
app.tokenate.dev
www.ikpas.nl
ikpas.nl
ikpas.nl
documenten.ikpas.nl
regio.ikpas.nl
dashboard.ikpas.nl
ikpas.nl
dashboard.ikpas.nl
acceptatie.ikpas.nl
www.ikpas.nl
ikpas.nl
ikpas.nl
www.cindydavisforschoolboard.com
ikpas.nl
ikpas.nl
dashboard.ikpas.nl
ikpas.nl
acceptatie.ikpas.nl
dashboard.ikpas.nl
www.duiardal.se
dashboard.ikpas.nl
acceptatie.ikpas.nl
ikpas.nl
ikpas.nl
tracking.ikpas.nl
www.afterlife.garden
portal.ikpas.nl
www.ikpas.nl
regio.ikpas.nl
documenten.ikpas.nl
ikpas.nl
mediagenerator.ikpas.nl
dashboard.ikpas.nl
www.ikpas.nl
ikpas.nl
ikpas.nl
ikpas.nl
crm.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
dashboard.ikpas.nl
ikpas.nl
portal.ikpas.nl
acceptatie.ikpas.nl
tryfindr.com
documenten.ikpas.nl
ikpas.nl
portal.ikpas.nl
www.ikpas.nl
dashboard.ikpas.nl
Certificate
The complete raw certificate details for www.ikpas.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIHDCCBwSgAwIBAgIRAM/Ks+/wHaPFbUtRWtBCkAowDQYJKoZIhvcNAQELBQAw gZExCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE5MDcGA1UE AxMwU2VjdGlnbyBSU0EgRXh0ZW5kZWQgVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVy IENBMB4XDTIzMTEwMzAwMDAwMFoXDTI0MTExODIzNTk1OVowgaoxETAPBgNVBAUT CDY5NTk0MDkwMRMwEQYLKwYBBAGCNzwCAQMTAk5MMR0wGwYDVQQPExRQcml2YXRl IE9yZ2FuaXphdGlvbjELMAkGA1UEBhMCTkwxEzARBgNVBAgTCkdlbGRlcmxhbmQx KDAmBgNVBAoTH1N0aWNodGluZyAgUG9zaXRpZXZlICBMZWVmc3RpamwxFTATBgNV BAMTDHd3dy5pa3Bhcy5ubDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB AMTQyvi9qaUnYs60rwagm9DRDrSIVNeBAhFsu60igtXZzm0eTwLFRdhJ/l9sF8z5 vf5YreOBXEIoDiGt+i1abPGXsHPW6DkbDBAQGPOgDj432TPldQ0eFxJG4mgtWrP/ aCvpmI9biSlxbCZfPs2tSLOhgbZqSUoNuZ2jkgX/kXEhiS9mtaNA21ava5f8fcJZ 4V9qrSra3FbQasZ+YsDkpmCc6TpcK4LfHW4SS9J90m92A0pQSEmyhExir7TGwi4z jrPeySUOtcvZ6R8uOZdxC4kGZ7bm4vyeI3AIWRB4qYCreyQJHmkpuJu4XeEcsGqx DAPXIL1lWMfQBHskzWEUgH9Dbv0YWj3WKd2ofTHnE/6PhNGVT8ZfIbCqtpG/lvbi bZzuyFWhTIQoMzvZPAVKN6CKxR4InFj3ifxF3dukFDEsKp6i+2pajuqfcVz9igLQ vGoX4SQ0nxyEjhvUqK7VKxLv54dL7jAESr7VYaYrCsUImYCslc9/2y1heGN2WhcA MEbUrgHQzgjF7HxlH6mvZ7VIOBJ+TvC6JmHQD6uxQE7eTFr1WZki4bgmhw00JobG r1ZCm91kz6iKIFRrzJc5ouWWKhtFZyGo88s+TarWsn+ou/rLxDxssjZeZh2kbEo0 Fq47920+a6kXFMTNVbXheSsaekbuMqwpDT4fZzMVTB9XAgMBAAGjggNSMIIDTjAf BgNVHSMEGDAWgBQsaf+AyYeQrjThtOdMk4WZQOmnsjAdBgNVHQ4EFgQUa2UdV1Sg MzvPwvtqUK1Do0rEixIwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNQYMKwYBBAGy MQECAQUBMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAcG BWeBDAEBMFYGA1UdHwRPME0wS6BJoEeGRWh0dHA6Ly9jcmwuc2VjdGlnby5jb20v U2VjdGlnb1JTQUV4dGVuZGVkVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNybDCB hgYIKwYBBQUHAQEEejB4MFEGCCsGAQUFBzAChkVodHRwOi8vY3J0LnNlY3RpZ28u Y29tL1NlY3RpZ29SU0FFeHRlbmRlZFZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5j cnQwIwYIKwYBBQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMCEGA1UdEQQa MBiCDHd3dy5pa3Bhcy5ubIIIaWtwYXMubmwwggF+BgorBgEEAdZ5AgQCBIIBbgSC AWoBaAB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABi5WbGn0A AAQDAEYwRAIgHLHK4v/Ezz8CR5q1CVoIcQdsscf9xxBcC8PgzbkBs9gCIA6L3jol /Ep1Yl97gCnal8rCtvNdDNrrUsHxhe+hnUOsAHcAPxdLT9ciR1iUHWUchL4NEu2Q N38fhWrrwb8ohez4ZG4AAAGLlZsbSAAABAMASDBGAiEAyA5psKpoR53X2F3AiYUz NrTA7MFR2P3Xrf5xGc6dYw0CIQCO+d2RDqmmZveHqPM1NXbzNRRhcINYlePkhlKW 98Rb0QB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABi5WbGuYA AAQDAEcwRQIhAPpqgU86wwD2t8VtU7WNH8ATCOxZHnt1uRwjCxyAh1aYAiBZB0K9 HfFkbMaX7u0LU47V1XCSzaidDwL32bMKPjODYTANBgkqhkiG9w0BAQsFAAOCAQEA Tjix7rmEWhi6UCemJ5brKPhiGZFK4yCF1Lbiwilcy+auy2yJWQ8zSFNxNKPAJ4gE xRo37b0EMQxaS3+Xr2RHr2v4CzEaEqROqLVM0zzecRKCI7IWymiwitTH5aa337LT socv830+Xz8GrwBCDv77jxlyxCluvxFMfbf4ue6wUlpyGD00zsrbe75eTbv2l5oY 7b0AVIj/ok8/l9SdCarBfLf0r7F7l4qR/3980h1Icb67AuBcTK443srJamnLb5CD m3xN0NcWi8f5zxXx5XzoNYu2++saoGmm/9bTTZWWzDzvJ1ys6FjecBlpzqyUHvHY cZz7UtD8Cp+Bt1QDV8O5yA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxNDK+L2ppSdizrSvBqCb 0NEOtIhU14ECEWy7rSKC1dnObR5PAsVF2En+X2wXzPm9/lit44FcQigOIa36LVps 8Zewc9boORsMEBAY86AOPjfZM+V1DR4XEkbiaC1as/9oK+mYj1uJKXFsJl8+za1I s6GBtmpJSg25naOSBf+RcSGJL2a1o0DbVq9rl/x9wlnhX2qtKtrcVtBqxn5iwOSm YJzpOlwrgt8dbhJL0n3Sb3YDSlBISbKETGKvtMbCLjOOs97JJQ61y9npHy45l3EL iQZntubi/J4jcAhZEHipgKt7JAkeaSm4m7hd4RywarEMA9cgvWVYx9AEeyTNYRSA f0Nu/RhaPdYp3ah9MecT/o+E0ZVPxl8hsKq2kb+W9uJtnO7IVaFMhCgzO9k8BUo3 oIrFHgicWPeJ/EXd26QUMSwqnqL7alqO6p9xXP2KAtC8ahfhJDSfHISOG9SortUr Eu/nh0vuMARKvtVhpisKxQiZgKyVz3/bLWF4Y3ZaFwAwRtSuAdDOCMXsfGUfqa9n tUg4En5O8LomYdAPq7FATt5MWvVZmSLhuCaHDTQmhsavVkKb3WTPqIogVGvMlzmi 5ZYqG0VnIajzyz5Nqtayf6i7+svEPGyyNl5mHaRsSjQWrjv3bT5rqRcUxM1VteF5 Kxp6Ru4yrCkNPh9nMxVMH1cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 276202688654063750023746201988353921034 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Extended Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '69594090' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gelderland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stichting Positieve Leefstijl' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ikpas.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 802937583208981165868093669164357006697020349010967238050803556079287469513452140941524619397213218598366785556904976453211257977210697365123131524663485112143649326651385742122304566660198079096025206649966622241668818076145489941868918419750202715794739075134501790726031270510411579772705527378636817063467000319454527502550752683805958290613218084167316047266225328973694003900052332908660119178617740016620086705264954848413896105426401187725448577985317890259332410145110619560493954872748297217660534899908044302338190499140589964456517496592150853398318767732730646239868561560357880419176358007095963056774419745308218103198829670116188066239546560373567778769143390660241370029898562098015273127733915551770362513018348313018676479884573410900576665551890495227609319114829169601409324781445729681126127561425318294436495815910735177486049595678126359669150644927951240845441138212504800373351353384493618635284285121247359903802799933713072965837598700610977355008017291107016012682530646520517659406941496829113934128507977664268917473508660784621300188246455998163740860349143495210415194308793715350452243332538968602699518904516865292927336292603566387204064853676669346393850538324538711453668997496518518483901488983 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2c69ff80c98790ae34e1b4e74c93859940e9a7b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6b651d5754a0333bcfc2fb6a50ad43a34ac48b12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.5.1 (Comodo EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (122 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSAExtendedValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ikpas.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ikpas.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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