ofvkexpe01.dwd.de
- Deutscher Wetterdienst -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 6f:6e:9e:c8:09:e0:bd:62:a2:a2:34:1d:39:eb:6e:1b was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Deutscher Wetterdienst
Organization:
Deutscher Wetterdienst
State / Province:
Hessen
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 6f:6e:9e:c8:09:e0:bd:62:a2:a2:34:1d:39:eb:6e:1bSerial Number (int): 148118680655971431567006391282466254363
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: f2:50:27:b6:fd:63:4e:54:eb:9f:f5:97:71:ed:84:27:08:c0:2e:e5
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): c2:5c:85:9d:12:39:8c:fa:60:95:1a:50:da:7b:29:c2:e8:87:35:2a
Fingerprint (sha256): 30:36:c4:59:2a:87:ae:27:8f:53:95:69:d4:50:b7:b6:b3:fc:d1:77:bb:ca:b0:a7:cb:4c:d5:74:d1:02:d7:9f
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate ofvkexpe01.dwd.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ofvkexpe01.dwd.de
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ofvkexpe01.dwd.de
vc.dwd.de
vc.dwd.de
Other certificates including the domain name dwd.de
(limited to 100 certificates)
maps.dwd.de
ssi-intern.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
ssi.dwd.de
www.deutscher-wetterdienst.de
hosting.dwd.de
maps.dwd.de
kunden.dwd.de
dwdvd.dwd.de
hosting.dwd.de
nl-prox.dwd.de
www.flugwetter.de
expertennetzwerk.mandant.dwd.de
www.dwd.de
ssi.dwd.de
isedmz-p.dwd.de
hosting.dwd.de
www.flugwetter.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
wis-gisc-test.dwd.de
hosting.dwd.de
hosting.dwd.de
www.dwd.de
kunden.dwd.de
oflsd46.dwd.de
hosting.dwd.de
hosting.dwd.de
webservice.dwd.de
ebc.mandant.dwd.de
ofvkexpc01.dwd.de
pappl.dwd.de
mszweb.mandant.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
www.flugwetter.de
hosting.dwd.de
alephino.dwd.de
hosting.dwd.de
fralux.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
gisc-test.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
webservice.dwd.de
kassandra.dwd.de
maps.dwd.de
brzvpngw.dwd.de
listen-prox.dwd.de
dwdhosting.mandant.dwd.de
hosting.dwd.de
hk.mandant.dwd.de
virtadm-hosts.dwd.de
klimawandel.mandant.dwd.de
oflxd18.dwd.de
hosting.dwd.de
oflxsn10.dwd.de
hosting.dwd.de
xmdm.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
qs-ninjoservices.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
cdc.dwd.de
oflsd46.dwd.de
beobachtungen.dwd.de
ninjoservices-neu.dwd.de
oflxs616.dwd.de
prometheus.dwd.de
gdws.mandant.dwd.de
ofvkexpe01.dwd.de
hosting.dwd.de
opendata.dwd.de
hosting.dwd.de
sva.mandant.dwd.de
stbauf.mandant.dwd.de
kunden.dwd.de
beobachtungen.dwd.de
hosting.dwd.de
oflsd46.dwd.de
molrao.dwd.de
hosting.dwd.de
webwerdis-intra.dwd.de
mszweb.mandant.dwd.de
hosting.dwd.de
hosting.dwd.de
listen-prox.dwd.de
ssi-intern.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
ssi.dwd.de
www.deutscher-wetterdienst.de
hosting.dwd.de
maps.dwd.de
kunden.dwd.de
dwdvd.dwd.de
hosting.dwd.de
nl-prox.dwd.de
www.flugwetter.de
expertennetzwerk.mandant.dwd.de
www.dwd.de
ssi.dwd.de
isedmz-p.dwd.de
hosting.dwd.de
www.flugwetter.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
wis-gisc-test.dwd.de
hosting.dwd.de
hosting.dwd.de
www.dwd.de
kunden.dwd.de
oflsd46.dwd.de
hosting.dwd.de
hosting.dwd.de
webservice.dwd.de
ebc.mandant.dwd.de
ofvkexpc01.dwd.de
pappl.dwd.de
mszweb.mandant.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
www.flugwetter.de
hosting.dwd.de
alephino.dwd.de
hosting.dwd.de
fralux.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
gisc-test.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
webservice.dwd.de
kassandra.dwd.de
maps.dwd.de
brzvpngw.dwd.de
listen-prox.dwd.de
dwdhosting.mandant.dwd.de
hosting.dwd.de
hk.mandant.dwd.de
virtadm-hosts.dwd.de
klimawandel.mandant.dwd.de
oflxd18.dwd.de
hosting.dwd.de
oflxsn10.dwd.de
hosting.dwd.de
xmdm.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
qs-ninjoservices.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
hosting.dwd.de
cdc.dwd.de
oflsd46.dwd.de
beobachtungen.dwd.de
ninjoservices-neu.dwd.de
oflxs616.dwd.de
prometheus.dwd.de
gdws.mandant.dwd.de
ofvkexpe01.dwd.de
hosting.dwd.de
opendata.dwd.de
hosting.dwd.de
sva.mandant.dwd.de
stbauf.mandant.dwd.de
kunden.dwd.de
beobachtungen.dwd.de
hosting.dwd.de
oflsd46.dwd.de
molrao.dwd.de
hosting.dwd.de
webwerdis-intra.dwd.de
mszweb.mandant.dwd.de
hosting.dwd.de
hosting.dwd.de
listen-prox.dwd.de
Certificate
The complete raw certificate details for ofvkexpe01.dwd.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH2jCCBcKgAwIBAgIQb26eyAngvWKiojQdOetuGzANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMxMTIwMDAwMDAwWhcNMjQxMTAyMjM1 OTU5WjBbMQswCQYDVQQGEwJERTEPMA0GA1UECBMGSGVzc2VuMR8wHQYDVQQKExZE ZXV0c2NoZXIgV2V0dGVyZGllbnN0MRowGAYDVQQDExFvZnZrZXhwZTAxLmR3ZC5k ZTCCAaIwDQYJKoZIhvcNAQEBBQADggGPADCCAYoCggGBAMhSnp7i3Ih+YKAqwqJO nwVxE9iu0xowv8Xs81f53HBUhlQNOXikIaxAqb3iT+5SxlePlxfLtHsEZI5GSoih SmLsGrKTrPu2lYubtHPzIj3paCrrf/sseprdf6mC0LdYxI8X6Z3cwzMkBv4UGCTq 5ThzTdjO7q0xehx5JBDHxR5TZSIPJFob7ngJTZl2lam1kXsz7IrwzIA/rLBYZxnp sfah5j2AsrVRHSXEnvTRjwy7F+WgNsI3ie4iV+vd1qCX0CZlyxzDg4DrzyKqFoqB wh8yM4e4C6Q5rpyustRwVMlNEGfVFEVrtL09xPHpld4XreNsaxyAlSWxNC59CM+F C58nRHqIqO/W3kUh3XWP0012IOTAIp4yfiDiO/AXQFR7wNfx8ON4u/UHLNxcvvEZ w3/Q8ZxYRPk+u7LELCG6WmYRyZYfQFvYFF2tbLpZzLxrd0uBGX+GaPc9N1rjlyPF YalKeUNmrMVlfUjceXNIMYTotyjpXxAWKT0ENdc4cjm4jwIDAQABo4IDLzCCAysw HwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0OBBYEFPJQJ7b9 Y05U65/1l3HthCcIwC7lMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQB sjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgG BmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQuY3JsLnNlY3Rp Z28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkwZzA6BggrBgEF BQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0 LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2VjdGlnby5jb20w ggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB3AHb/iD8KtvuVUcJhzPWHujS0pM27 KdxoQgqf5mdMWjp0AAABi+zlCYEAAAQDAEgwRgIhAOeBHDGJl6MMBV3TXoRu3CSt iGvehqe3SUfLGtY/sO56AiEAkjz+xq+bOlsnWbp55RLmCTq8Z6IsdvjcZKFnJEac 7GMAdgA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYvs5QpeAAAE AwBHMEUCIQDM0MJBCkFBA8YVCeYJNZsJddhGnSF7nexC7SKqH2bBLAIgQejUXY2o 6MXQ/WXP89fSSCfiIPVv/qqHCaO8nrIAZHgAdQDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAYvs5QmxAAAEAwBGMEQCIEE6aXSgiVwe++MXIBUC+Ona iVmM62xUKq3Y4jtTtLUDAiBEhRpU/1TsMY7CmBZhm51lu0bpCruSMSTWNw0whn5A GTAnBgNVHREEIDAeghFvZnZrZXhwZTAxLmR3ZC5kZYIJdmMuZHdkLmRlMA0GCSqG SIb3DQEBDAUAA4ICAQCQ20+ef7P9lrKE7yYzEaLcsfnpwEnrQNqRYts35OFOqK99 KZQMcNYrWua0APukVIemrBUhNnZKtmA1p7rd/WNFk03IdVNtG+luZ4o8XFMZOtVa wgASLoExeLcX8H40EvyjZ91qWKcVLW1la09rh6uilWPlwwjsQNATHq5YWMQGniao 9fxJsU7K/rm70R2PDGBIjry5Pzj2d9kdUaD5qmY3oi1JNwfP6ic/2Gfr+n8J0Oy3 SlpA336obpNQuOmij8i6HhqVBe5uAI6xMRrhYG81iibYnU46OeiLoyFj7KZfOZ9E YFbNbR28hHk5RAJk3iEjOBLCNjBZ+vwQsWYNV1Z91V6kEvdESY4CdJMuNJbwDBp+ Q+vpKFmKMDpP7cXw2Vn8lRPqzDtFR1rcahAVhGFbAEJJukl6THvqw+RE6ODQh62v 24SAi0U66UBZqvSso0hQmrYNIKxuL6rcDhojpXT9w7pWCVWoXtEeg5uBEfU9JWVg 7oUZvN90vUV8GUa1IH1pJvVHhJPDuaWLX4OUOSDw9qLzSyGxqsMO80Iwty0UoNny WM/1M1ytEDGmSX+H7qznwv55btvuBl9IZiilYai6c2xGBP2cY17I2lP3N4WGgPFV HLrb80QnPVcdzZ6JrN0kSctVHjJDhDaSVKQ8SN+q65+qPohavxMwbPw+x8iRSQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAyFKenuLciH5goCrCok6f BXET2K7TGjC/xezzV/nccFSGVA05eKQhrECpveJP7lLGV4+XF8u0ewRkjkZKiKFK YuwaspOs+7aVi5u0c/MiPeloKut/+yx6mt1/qYLQt1jEjxfpndzDMyQG/hQYJOrl OHNN2M7urTF6HHkkEMfFHlNlIg8kWhvueAlNmXaVqbWRezPsivDMgD+ssFhnGemx 9qHmPYCytVEdJcSe9NGPDLsX5aA2wjeJ7iJX693WoJfQJmXLHMODgOvPIqoWioHC HzIzh7gLpDmunK6y1HBUyU0QZ9UURWu0vT3E8emV3het42xrHICVJbE0Ln0Iz4UL nydEeoio79beRSHddY/TTXYg5MAinjJ+IOI78BdAVHvA1/Hw43i79Qcs3Fy+8RnD f9DxnFhE+T67ssQsIbpaZhHJlh9AW9gUXa1sulnMvGt3S4EZf4Zo9z03WuOXI8Vh qUp5Q2asxWV9SNx5c0gxhOi3KOlfEBYpPQQ11zhyObiPAgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 148118680655971431567006391282466254363 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hessen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Deutscher Wetterdienst' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ofvkexpe01.dwd.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4546078710260516534320329544674305969659304605258331231145801384664909181328657961867966299182886206442175822181505192573216014069818753339521281024604157829682466712335464439978844623548763719299924926975365769604115805186832546245852500251920324878285834559572912246121537442767954974996909003509409534198007943830155778379429778846399203513604078873292441820467711959349787481172666549241009485355999109668803699599457877378376582770707083116406416421532674002218475380024278080265689070146333571525791610410852376166798859391318198588824666117144216091919016502809330111719015075789059534412770497960158903091618295708992675199969551469622970916983884078528279111572620374507322044935842662660951607156091969442211605254094380207332844656681774481170732632731469198141183049930672577760195232332616400671853734899335625723109019319111049487805431343631513689258501928436778952890479025302457189793311961457470883975772303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f25027b6fd634e54eb9ff59771ed842708c02ee5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 016800770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018bece509810000040300483046022100e7811c318997a30c055dd35e846edc24ad886bde86a7b74947cb1ad63fb0ee7a022100923cfec6af9b3a5b2759ba79e512e6093abc67a22c76f8dc64a16724469cec630076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018bece50a5e0000040300473045022100ccd0c2410a414103c61509e609359b0975d8469d217b9dec42ed22aa1f66c12c022041e8d45d8da8e8c5d0fd65cff3d7d24827e220f56ffeaa8709a3bc9eb2006478007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018bece509b100000403004630440220413a6974a0895c1efbe317201502f8e9da89598ceb6c542aadd8e23b53b4b503022044851a54ff54ec318ec29816619b9d65bb46e90abb923124d6370d30867e4019 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ofvkexpe01.dwd.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vc.dwd.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 0090db4f9e7fb3fd96b284ef263311a2dcb1f9e9c049eb40da9162db37e4e14ea8af7d29940c70d62b5ae6b400fba45487a6ac152136764ab66035a7baddfd6345934dc875536d1be96e678a3c5c53193ad55ac200122e813178b717f07e3412fca367dd6a58a7152d6d656b4f6b87aba29563e5c308ec40d0131eae5858c4069e26a8f5fc49b14ecafeb9bbd11d8f0c60488ebcb93f38f677d91d51a0f9aa6637a22d493707cfea273fd867ebfa7f09d0ecb74a5a40df7ea86e9350b8e9a28fc8ba1e1a9505ee6e008eb1311ae1606f358a26d89d4e3a39e88ba32163eca65f399f446056cd6d1dbc847939440264de21233812c2363059fafc10b1660d57567dd55ea412f744498e0274932e3496f00c1a7e43ebe928598a303a4fedc5f0d959fc9513eacc3b45475adc6a101584615b004249ba497a4c7beac3e444e8e0d087adafdb84808b453ae94059aaf4aca348509ab60d20ac6e2faadc0e1a23a574fdc3ba560955a85ed11e839b8111f53d256560ee8519bcdf74bd457c1946b5207d6926f5478493c3b9a58b5f83943920f0f6a2f34b21b1aac30ef34230b72d14a0d9f258cff5335cad1031a6497f87eeace7c2fe796edbee065f486628a561a8ba736c4604fd9c635ec8da53f737858680f1551cbadbf344273d571dcd9e89acdd2449cb551e324384369254a43c48dfaaeb9faa3e885abf13306cfc3ec7c89149