gitlab-dev.forux.nl
- Stichting Hogeschool van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 06:ad:80:f8:f1:ad:b9:9f:95:be:c2:d3:6c:0a:70:74 was issued on by GEANT Vereniging.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Stichting Hogeschool van Amsterdam
Organization:
Stichting Hogeschool van Amsterdam
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 06:ad:80:f8:f1:ad:b9:9f:95:be:c2:d3:6c:0a:70:74Serial Number (int): 8876251203045499483888013658313879668
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 8d:9a:58:ad:2d:f6:a1:0a:9f:5d:7e:a3:4e:61:08:ba:14:e5:6a:c2
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 15:e1:85:49:2d:b1:fe:93:a6:8d:29:6d:c6:28:ce:c1:6d:e1:7a:01
Fingerprint (sha256): 36:e5:c8:1c:ef:fc:33:09:8f:09:c0:3c:8b:a9:30:2d:c9:10:0d:74:a8:44:c0:d1:d4:64:8a:f5:91:cb:32:48
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate gitlab-dev.forux.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gitlab-dev.forux.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gitlab-dev.forux.nl
Other certificates including the domain name forux.nl
(limited to 100 certificates)
sap-dev-rudx.ic.uva.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
oim-acc-be1.forux.nl
oim-acc-adm1.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
oim-acc-fe1.forux.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
oim-tst-devbe1.forux.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
oim-acc-be1.forux.nl
oim-acc-adm1.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
oim-acc-fe1.forux.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
oim-tst-devbe1.forux.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
Certificate
The complete raw certificate details for gitlab-dev.forux.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIAzCCBeugAwIBAgIQBq2A+PGtuZ+VvsLTbApwdDANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjEwMzE5MDAwMDAwWhcNMjIwMzE5MjM1 OTU5WjCBhDELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvbGxhbmQxEjAQ BgNVBAcTCUFtc3RlcmRhbTErMCkGA1UEChMiU3RpY2h0aW5nIEhvZ2VzY2hvb2wg dmFuIEFtc3RlcmRhbTEcMBoGA1UEAxMTZ2l0bGFiLWRldi5mb3J1eC5ubDCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALdJLeLzGc+y11+QV9k/h0CQMD+I f/KnJA+gZZpjk/mzhOu/os8DGXziYgYhW1c0Qqh2lqbKWZe7RrqUFXO4LFifoWDu 1HGaqI1QgK+KIW7sbTLHYmWepCZlsu5yKfpldXspwVvIYFT2kLtZs1b6ipmKPcPR cw6WC9yHNz1n21p50zAY23ejDBeeHHZ2grfv5diMTqL9EHW1ytx67tFidyroQ1hX XPAJ0Y3ptMt2dyIzUu6HmMnbjt/OngQxkx7ny///nPCivrlM42Jg53bRvzF7sF/p GVi+Kub4bZgpNjgCwxsk8LDxT86ccifAM7RxlS5v4BUNkDVanocLyHd4GUPqbB1+ NYsSjaVOh+GrUmblFUrJ6ep6d8Sc51okbfwW4rxE7yJhCN4xF1/Hr78ZR6HUX5Ck Pu3SikUc/obcLFIeeG3+a65392iAjsXAqXD9xmE2OHJltXtEWzYm15IImq2gVP+v 7aRBzgW9lh7ovRbcT9tPGzCSD/8kmW+M+fIRbLgyNpMlOxOmZlsgZ4HGy47c4jJD TppBAxKso5HU+mTA4tA41jskVHX265MFJtX+DWLmwk0vhbNnV9vxQ+npOkHVy8Y0 D9Mu880HvO42JULAmn2dKjAyJUXRscVbHp8F03+yLcZm4lsYhPGsRmkEeaOhzHzn LXFO7/FFJwg2B8sRAgMBAAGjggKuMIICqjAfBgNVHSMEGDAWgBRvHTVJEGwy+lmg nryK6B+VvnF6DDAdBgNVHQ4EFgQUjZpYrS32oQqfXX6jTmEIuhTlasIwDgYDVR0P AQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAk8wJTAjBggrBgEFBQcCARYX aHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQICMD8GA1UdHwQ4MDYwNKAy oDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5j cmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUFBzAChi5odHRwOi8vR0VBTlQuY3J0 LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3J0MCkGCCsGAQUFBzABhh1odHRw Oi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTCCAQYGCisGAQQB1nkCBAIEgfcEgfQA 8gB3AEalVet1+pEgMLWiiWn0830RLEF0vv1JuIWr8vxw/m1HAAABeEfTKLEAAAQD AEgwRgIhANfxH+M4t6smsmHJDsVFTzgoHYwWHIUxYKJeovobaHABAiEAyXrhgbob Hwq7H+E6r8a8C17ab+K7ztIQdTIlMxccaR0AdwDfpV6raIJPH2yt7rhfTj5a6s2i EqRqXo47EsAgRFwqcwAAAXhH0yhFAAAEAwBIMEYCIQCXzFE+GBTK/qw1tHneFy5b W0hrblCKp8S1t+O9cpkWlgIhAMUdQpJKBKvIAYGMVxgqz5Z12NCUzoEB2RaoGzuC a2aSMB4GA1UdEQQXMBWCE2dpdGxhYi1kZXYuZm9ydXgubmwwDQYJKoZIhvcNAQEM BQADggIBAHGCfQ1rJDLkwbDGk1ZJX+ezzmwyEfRNRcpU7cubf7SQZ4kIJA0NHCJn 0Jdw87LN4HGOnlqrYyBBD8xpvxqMn0jAYc8/0PCQGfY6yGE1thSGO7wtX7h17ZHC 7gixD4O70aQuaCFXXoAdEKkMXZYXWP5PmwlaFhx5WkitYeplZT/ZUbO+uETKAYTo /N5ip5lLVQtHW2mMxiPmUWzvEDmXOurCgeqAitg2ESO4V8/+mEfk/jpAS85eHqtA ESHATR8TN8FNB1SceqvjI6l0f37NhPHVdK2iBnbq+ZXW63N+6OmARgfo3MuB0+kV Zz9Q9rszBUmc2I6VWehLu7u8eYAtY5/VmAGSGpO+nj8E+oQo55c9m13iC0+Xosbb 8v29vpwhilKLeRQmP2Vg10f0UuZcZa/PkE/5417gIsqM1RWLypx7gHSN6et5CEg5 io6+4o0hSJbrWrlKfeWnJ/royIow83Rj5AnEUjKQzwxbcpKgyM8zfzy0lz08NCrB Dy2ujTfzK8M5vxsTMMH/2psC87LbZka28o0NmtC/nBuDpB8zHO9tCguxuEldZud7 yX3VsaAgNV9d/or4/RuuWxba0SrDkd1hxe+mRvIwWRQGoDZutB2Sz+xuf2H/ZpHn T2vV2NAhV05VhcWyTP0fZjoR5P+JCJqCkywA9f7BGVNNQ/uVJBVJ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAt0kt4vMZz7LXX5BX2T+H QJAwP4h/8qckD6BlmmOT+bOE67+izwMZfOJiBiFbVzRCqHaWpspZl7tGupQVc7gs WJ+hYO7UcZqojVCAr4ohbuxtMsdiZZ6kJmWy7nIp+mV1eynBW8hgVPaQu1mzVvqK mYo9w9FzDpYL3Ic3PWfbWnnTMBjbd6MMF54cdnaCt+/l2IxOov0QdbXK3Hru0WJ3 KuhDWFdc8AnRjem0y3Z3IjNS7oeYyduO386eBDGTHufL//+c8KK+uUzjYmDndtG/ MXuwX+kZWL4q5vhtmCk2OALDGyTwsPFPzpxyJ8AztHGVLm/gFQ2QNVqehwvId3gZ Q+psHX41ixKNpU6H4atSZuUVSsnp6np3xJznWiRt/BbivETvImEI3jEXX8evvxlH odRfkKQ+7dKKRRz+htwsUh54bf5rrnf3aICOxcCpcP3GYTY4cmW1e0RbNibXkgia raBU/6/tpEHOBb2WHui9FtxP208bMJIP/ySZb4z58hFsuDI2kyU7E6ZmWyBngcbL jtziMkNOmkEDEqyjkdT6ZMDi0DjWOyRUdfbrkwUm1f4NYubCTS+Fs2dX2/FD6ek6 QdXLxjQP0y7zzQe87jYlQsCafZ0qMDIlRdGxxVsenwXTf7ItxmbiWxiE8axGaQR5 o6HMfOctcU7v8UUnCDYHyxECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8876251203045499483888013658313879668 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stichting Hogeschool van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gitlab-dev.forux.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 747741056907096847129580847952140585562556966207459008120668343062224593973973505855562867554540750177330569717706841584353340585373379065345332127290539725791771025911397753967403478553088727392355598597978068799561534966079412982214022714876873103425870443012604608765545158905061273114683899298873832132064221598650969376375871556115818359104195065429136656387068965449257020157491587018372716729063930238980280449855468756430191043063866965127949335726336704493868744236813491889740080878463907136228359933143559140056719977051196853752409894920752987710213268505302305088979544292121262266586693241205911856596857629113642032736793075013071652384038878844801604434320173414131427296664095221486274792620280226202144674404286391644831512189694631092925612965778688436451876485569461080370126264788133736913336975329604180267215884686808071527573099827191688151720681797788911187194735376731515627443662115494951045098360841549745627535488412072621859534036821598944716875942401922073677290850211693401705006160416661299024394958704846695821320319804822405406778074011839593115009374248427669671912827058660164377955459493065717832387514567214863171719672301577852067761076529139264579205543100342458402051115134028972052787481361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8d9a58ad2df6a10a9f5d7ea34e6108ba14e56ac2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f200770046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d470000017847d328b10000040300483046022100d7f11fe338b7ab26b261c90ec5454f38281d8c161c853160a25ea2fa1b687001022100c97ae181ba1b1f0abb1fe13aafc6bc0b5eda6fe2bbced21075322533171c691d007700dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a730000017847d32845000004030048304602210097cc513e1814cafeac35b479de172e5b5b486b6e508aa7c4b5b7e3bd72991696022100c51d42924a04abc801818c57182acf9675d8d094ce8101d916a81b3b826b6692 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gitlab-dev.forux.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 0071827d0d6b2432e4c1b0c69356495fe7b3ce6c3211f44d45ca54edcb9b7fb490678908240d0d1c2267d09770f3b2cde0718e9e5aab6320410fcc69bf1a8c9f48c061cf3fd0f09019f63ac86135b614863bbc2d5fb875ed91c2ee08b10f83bbd1a42e6821575e801d10a90c5d961758fe4f9b095a161c795a48ad61ea65653fd951b3beb844ca0184e8fcde62a7994b550b475b698cc623e6516cef1039973aeac281ea808ad8361123b857cffe9847e4fe3a404bce5e1eab401121c04d1f1337c14d07549c7aabe323a9747f7ecd84f1d574ada20676eaf995d6eb737ee8e9804607e8dccb81d3e915673f50f6bb3305499cd88e9559e84bbbbbbc79802d639fd59801921a93be9e3f04fa8428e7973d9b5de20b4f97a2c6dbf2fdbdbe9c218a528b7914263f6560d747f452e65c65afcf904ff9e35ee022ca8cd5158bca9c7b80748de9eb790848398a8ebee28d214896eb5ab94a7de5a727fae8c88a30f37463e409c4523290cf0c5b7292a0c8cf337f3cb4973d3c342ac10f2dae8d37f32bc339bf1b1330c1ffda9b02f3b2db6646b6f28d0d9ad0bf9c1b83a41f331cef6d0a0bb1b8495d66e77bc97dd5b1a020355f5dfe8af8fd1bae5b16dad12ac391dd61c5efa646f230591406a0366eb41d92cfec6e7f61ff6691e74f6bd5d8d021574e5585c5b24cfd1f663a11e4ff89089a82932c00f5fec119534d43fb95241549