www.gtwiekens.nl
Issued by R3
About this certificate
This digital certificate with serial number 03:84:ce:0e:20:a0:83:02:98:45:fe:c8:7c:11:49:a5:73:24 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.gtwiekens.nl
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:84:ce:0e:20:a0:83:02:98:45:fe:c8:7c:11:49:a5:73:24Serial Number (int): 306528024549886488266807003182064818549540
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 75:d6:44:de:44:da:3a:b8:9a:dc:fc:ad:94:9d:c2:c3:bc:db:70:b9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e5:a3:2d:d8:c8:2a:dd:92:67:0c:80:3c:25:99:4c:d9:7b:cb:e4:97
Fingerprint (sha256): 37:8d:f3:bf:5b:05:97:18:d5:30:18:aa:30:13:aa:70:1c:61:6e:d8:bf:ea:bd:3e:1f:67:bb:ac:88:50:23:1c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.gtwiekens.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gtwiekens.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gtwiekens.nl
www.gtwiekens.nl
www.gtwiekens.nl
Other certificates including the domain name gtwiekens.nl
(limited to 100 certificates)
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
mail.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
mail.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
www.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
www.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
mail.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
handzenders.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
mail.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
mail.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
www.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
www.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
mail.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
handzenders.gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
gtwiekens.nl
Certificate
The complete raw certificate details for www.gtwiekens.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgISA4TODiCggwKYRf7IfBFJpXMkMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTcwNDM4MDFaFw0yNDA1MTcwNDM4MDBaMBsxGTAXBgNVBAMT EHd3dy5ndHdpZWtlbnMubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQDAWWAnKrn0urazruJix1HbAboW9cJacQhHuUVg7i3h/XGWVq3UH1eqP+aoedT1 v85j4NhoRQ9xME5qqj1bCGX0nzliLMgI9va23LZS3qCG+QrhArFtYGCpczdadZ58 kRO+95v64tWJ8s8t4rfhB2J9gsXfPGcPJr0S5cBnMowuMvYwjX7Vf5cQb7KvTM6Y DIA/TTg3FIV1IbVcQIusOIeSz2Xenzb7SaT5aW3cCVKdxG/Rce4QrAgfeSpFuN94 R3ji+KD5QNLfEUaPsK7lBHkJd9HscAcTh/+WWo+7IbiNuDGyohQlnAGo7VgCGco6 0e8Be/a1J9LnvEib1G8PY9IPl+lMDFt8L2p2pQOBTBfvZ1PZioOWvMm+WO7fKAmS k6iKL+gXTT97EJLmaebmbf3q2u8cZpp9wGcOW/bJXzzU6vVM5JHezLlvaBelHDce i4soMb+4nw69W8CLr/lMCOU7cfqNDPIvVp9Juw2tS9lGRfp5+6bVD8OOCT9MLIVS iUTUEdLV+pUSuB5/kQW2SE6iILktTccIFn0bhJaTrgD6E8/nyHnExc//+dVbOEln K9ZXb0NBckoQfCCiNVfgZt2GbkSNPbAGOZQfo7h9bKx1Bx7O67JoQoeXio5SUGQA Xz9jqLTe8TSVA5LlJ/asEWBMmRMxWTpENptXL047uaBHoQIDAQABo4ICHzCCAhsw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBR11kTeRNo6uJrc/K2UncLDvNtwuTAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzApBgNVHREEIjAgggxndHdpZWtlbnMubmyCEHd3 dy5ndHdpZWtlbnMubmwwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5 AgQCBIH0BIHxAO8AdgCi4r/WHt4vLweg1k5tN6fcZUOwxrUuotq3iviabfUX2AAA AY21klJMAAAEAwBHMEUCIErYCql0ZPBV+5r98vgCnDWlb5d1bH8u1YMfRZdZqPbj AiEA/VtYqtFzvpHJOy+3FL55FwdZZ3UxNLYjbtUAMUmrXJcAdQDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAY21klJDAAAEAwBGMEQCIDrb2h3HL0A3 1SA/utFdqecOpxj5+mlA1+iQJpgPWLI5AiBi7Z1e5JCcxj+LVhiiWyokKHEtjDnx f0H46094h3AlZTANBgkqhkiG9w0BAQsFAAOCAQEAoUfm1OMHfHXIfJp7LnZ/KEtp Dd8Y1NklTRJQweFFiiPIPsWydATxPFrMzs/jKAdevUwOK5smnX3f614QjNuB0mPe YAblyRbstPTC1YY+s8RY+jcpBhCKm7hC68LtAE1mGWveFxOT3CEt9cHU27BVgazh gbHPjwWWe1tMxuEmnjlUIkmKa2vZfGZbyQWDJV6+dU1h1LGZ3lRuRrmcoot5i24R z543+uIVCWEhhjAOIkvv9jXnPZVOe2mFxXXyyW1yBH1L9HM0QfXwbarB2m7tDQUF OrFksaAou7WZWz7jCYakF8RKobF3tJ1c4drEsq03TAQj89TScXRmI5fG/Xczgg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwFlgJyq59Lq2s67iYsdR 2wG6FvXCWnEIR7lFYO4t4f1xllat1B9Xqj/mqHnU9b/OY+DYaEUPcTBOaqo9Wwhl 9J85YizICPb2tty2Ut6ghvkK4QKxbWBgqXM3WnWefJETvveb+uLVifLPLeK34Qdi fYLF3zxnDya9EuXAZzKMLjL2MI1+1X+XEG+yr0zOmAyAP004NxSFdSG1XECLrDiH ks9l3p82+0mk+Wlt3AlSncRv0XHuEKwIH3kqRbjfeEd44vig+UDS3xFGj7Cu5QR5 CXfR7HAHE4f/llqPuyG4jbgxsqIUJZwBqO1YAhnKOtHvAXv2tSfS57xIm9RvD2PS D5fpTAxbfC9qdqUDgUwX72dT2YqDlrzJvlju3ygJkpOoii/oF00/exCS5mnm5m39 6trvHGaafcBnDlv2yV881Or1TOSR3sy5b2gXpRw3HouLKDG/uJ8OvVvAi6/5TAjl O3H6jQzyL1afSbsNrUvZRkX6efum1Q/Djgk/TCyFUolE1BHS1fqVErgef5EFtkhO oiC5LU3HCBZ9G4SWk64A+hPP58h5xMXP//nVWzhJZyvWV29DQXJKEHwgojVX4Gbd hm5EjT2wBjmUH6O4fWysdQcezuuyaEKHl4qOUlBkAF8/Y6i03vE0lQOS5Sf2rBFg TJkTMVk6RDabVy9OO7mgR6ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306528024549886488266807003182064818549540 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 04:38:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 04:38:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gtwiekens.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 784715960383050302288195456416514987913222007812008377652542050978212979127248451846618391863727422810554382244653679380639260759415762266394533041422364310812100079499226940178604906773952021684691303989048436473575115273478969613645379459987274822564589963516958668062183896511060000323403279232209803363175687446720244357449730209873393767645889255581446327388079669979629381391337439347447264467690837390974696830269658942340837797338402774617384971333860368108371358150175302548542270856195094673827557681455146562656559713712735012372871482444940559459758635386487327603225012319491405080059209067190893648835818653926629300492286790761853078329826607090778668384202347599404349586242801673166002309892019164673956305425366576805137441299050933650072903171719852134905379343246226765763660406285975141624312908873002713810667382864505971379589889176993804966982829748631556142096597171329572125384950686197193892058676829163023706172796664363582922990801320814794933917851508832424258405915029472893440228925441164873178978958381262813603952412873097519809547389846091419407461913626176306884799638906942757002015087487676541987325393243677480365301566046803616006600598913306946008866543658074269294844453300989075056977004449 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75d644de44da3ab89adcfcad949dc2c3bcdb70b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gtwiekens.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gtwiekens.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018db592524c000004030047304502204ad80aa97464f055fb9afdf2f8029c35a56f97756c7f2ed5831f459759a8f6e3022100fd5b58aad173be91c93b2fb714be7917075967753134b6236ed5003149ab5c97007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018db5925243000004030046304402203adbda1dc72f4037d5203fbad15da9e70ea718f9fa6940d7e89026980f58b239022062ed9d5ee4909cc63f8b5618a25b2a2428712d8c39f17f41f8eb4f7887702565 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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