secure.bloemendaal.nl

Issued by Getronics CSP Organisatie CA - G2

About this certificate


This digital certificate with serial number 30:3a:7e:a6:b7:b3:3f:da:59:62:4c:22:7e:f6:47:75 was issued on by Getronics Nederland BV .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: Certificate contains no Authority Info Access Issuers
  • ERROR: Certificate has key usage [KeyAgreement] set

Gemeente Bloemendaal

Organization: Gemeente Bloemendaal
Organization unit: Team Automatisering
State / Province: Noord Holland
Locality: Overveen
Country: NL

Getronics Nederland BV

Organization: Getronics Nederland BV
State / Province: Noord Holland
Locality: Overveen
Country: NL

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 30:3a:7e:a6:b7:b3:3f:da:59:62:4c:22:7e:f6:47:75
Serial Number (int): 64106665807808475436127554745883051893
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: bc:68:b0:88:eb:41:8a:36:19:97:d3:2d:2b:66:5a:25:a7:3d:05:74
AuthorityKeyId: 38:b2:85:e6:ad:f8:a6:d0:41:58:5b:78:6f:dc:d5:b8:44:76:c5:7b

Fingerprint (sha1): 17:02:02:3f:6f:2a:f7:94:6a:38:e6:20:94:3f:27:62:6c:4e:49:cb
Fingerprint (sha256): 6e:b0:c6:9b:7f:a9:e4:44:d1:9f:f3:ab:28:ff:d6:e6:48:b7:e8:59:e2:b3:41:3d:f4:d3:17:6a:4e:33:20:3a


Revocation information

OCSP Server: http://ocsp2.managedpki.com
CRL Distribution Point: http://cert.managedpki.com/pkioverheid/crl/GetronicsCSPOrganisatieCAG2/LatestCRL.crl

Check the revocation status for the current certificate on secure.bloemendaal.nl
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: secure.bloemendaal.nl

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGvDCCBKSgAwIBAgIQMDp+prezP9pZYkwifvZHdTANBgkqhkiG9w0BAQsFADBa MQswCQYDVQQGEwJOTDEfMB0GA1UECgwWR2V0cm9uaWNzIE5lZGVybGFuZCBCVjEq MCgGA1UEAwwhR2V0cm9uaWNzIENTUCBPcmdhbmlzYXRpZSBDQSAtIEcyMB4XDTEx MDkyNzAwMDAwMFoXDTE0MDkyNjIzNTk1OVowgZUxCzAJBgNVBAYTAk5MMRYwFAYD VQQIDA1Ob29yZCBIb2xsYW5kMREwDwYDVQQHDAhPdmVydmVlbjEdMBsGA1UECgwU R2VtZWVudGUgQmxvZW1lbmRhYWwxHDAaBgNVBAsME1RlYW0gQXV0b21hdGlzZXJp bmcxHjAcBgNVBAMMFXNlY3VyZS5ibG9lbWVuZGFhbC5ubDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAMrxmZlX/5eKzMinWS9BS6jvM2OlUokN0akxQwFm BFt3bXG8lNlg1KjSZSAf7IFfktz8DmMyCEJbt4DIC+1dpmZ2OrsL+VGxsHXsVgA+ MYppBixlWH8rDHJrqAqJ8qu8QREnnKkX56I3pfkX16CqD8RSaCzi704EmR+s2S0L EAQzETIRhphoIgsnkJ/mrs/Rd0AL24M9C42ol4gjzSg+DYf+mfy+zDWguFi5polo tf62eZYow7s7rUApqvCDx73vxhxXvPUGA4FkzN5KvjyS0pOpixAgHFLJwcM7Wi5p +5g8yKkHcQBwPA5auv9Nu4GIREEHTOt9CzSkmY/uK+bwPsMCAwEAAaOCAkAwggI8 MAwGA1UdEwEB/wQCMAAwZQYDVR0fBF4wXDBaoFigVoZUaHR0cDovL2NlcnQubWFu YWdlZHBraS5jb20vcGtpb3ZlcmhlaWQvY3JsL0dldHJvbmljc0NTUE9yZ2FuaXNh dGllQ0FHMi9MYXRlc3RDUkwuY3JsMA4GA1UdDwEB/wQEAwIDqDCBrgYDVR0gBIGm MIGjMIGgBgpghBABh2sBAgUGMIGRMDgGCCsGAQUFBwIBFixodHRwczovL3d3dy5w a2kuZ2V0cm9uaWNzLm5sL3BraW92ZXJoZWlkL2NwczBVBggrBgEFBQcCAjBJGkdP cCBkaXQgY2VydGlmaWNhYXQgaXMgaGV0IENQUyBQS0lvdmVyaGVpZCB2YW4gR2V0 cm9uaWNzIHZhbiB0b2VwYXNzaW5nLjAfBgNVHSMEGDAWgBQ4soXmrfim0EFYW3hv 3NW4RHbFezAdBgNVHQ4EFgQUvGiwiOtBijYZl9MtK2ZaJac9BXQwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMGwGA1UdEQRlMGOCFXNlY3VyZS5ibG9lbWVu ZGFhbC5ubKBKBgorBgEEAYI3FAIDoDwMOjIuMTYuNTI4LjEuMTAwMy4xLjMuNS40 LjEuODk4NjM0NjRjODkxODg2MDYyNjBiMWM1ZTE4NjA5OGUwNwYIKwYBBQUHAQEE KzApMCcGCCsGAQUFBzABhhtodHRwOi8vb2NzcDIubWFuYWdlZHBraS5jb20wDQYJ KoZIhvcNAQELBQADggIBAK7iJ+Kzrdzewnw7dJMGzjHGbbAF2bS48XZ56y7Z/GKD 5/7d29ltR5qY0lY2Mw5Vjl2C6TS9tRgtaEj6AlIU0LyLm6BLzp2K6SyAcZbW8s+L AfEVvY0GXTNIpd9UxJfChhQQPJgsgavfwEgCfjVgxY6dde1bjv4IScYf3SOHmEYp NiYgEMr2hhauTy/HGfAW0aX3MG1bePOlMxh+tkZj0mlfeHyBGYy/paDaWtWn58f0 5wtlSQp3R2WIwO0Q7f8j2HYkaUVqf07PmLN6r6SWgyPqTnJ728XWroUpB571tHgy gvcKN3ws00m634KVR0d7lFpbzx5a4KKrm2WpP6MUbCpDFuCY+V04gaocesTrWV0w mWNlVgEpdSNPfdMcZldpNWxBHwe5FXibO9hy40whCUe5ZP0fFGQI/9Y5rtDnYUcj hSFJlh2sjVKTDdu59N70Wq5IP1X1y05ha4qiqdFByjsVy/wgOoLbclSDD0Y4gvzj PE+b0dz043yyjC7rtrW0rFL43VY1kPii92roNXvo8sA+h1+30i2ItV9IocUt6LJb yQuUNAHpzTESeup3+RVZVkoYGCruLO0IH4FeF+KNDkW8709gMbUI1EDy5XYAIEcd oCB/EXhYaYOSUqJFVi9pcvqU/CpnELpQ//WPOyOyGnUr+tj4S1xLjzEncNSxhiT2 -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvGZmVf/l4rMyKdZL0FL qO8zY6VSiQ3RqTFDAWYEW3dtcbyU2WDUqNJlIB/sgV+S3PwOYzIIQlu3gMgL7V2m ZnY6uwv5UbGwdexWAD4ximkGLGVYfysMcmuoConyq7xBESecqRfnojel+RfXoKoP xFJoLOLvTgSZH6zZLQsQBDMRMhGGmGgiCyeQn+auz9F3QAvbgz0LjaiXiCPNKD4N h/6Z/L7MNaC4WLmmiWi1/rZ5lijDuzutQCmq8IPHve/GHFe89QYDgWTM3kq+PJLS k6mLECAcUsnBwztaLmn7mDzIqQdxAHA8Dlq6/027gYhEQQdM630LNKSZj+4r5vA+ wwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 64106665807808475436127554745883051893 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Getronics Nederland BV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Getronics CSP Organisatie CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-09-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Noord Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Overveen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeente Bloemendaal' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Team Automatisering' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'secure.bloemendaal.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25619275001527387910437107359641520420097281700112070227540795799175987376449656281780880091514518103274827873279863561929646691483817223170319682233099499287213534714163506749112343571874132340907903020240201096121829296748766753848803878849764350103612475444942796073358263540638430466493820464186223052069799053656007347730073096200535768152322640407890985605331270513732049790674523221191921167724660279130106294168348392747618828186691176362773894472120316317110001709272560675832066663812955134720488403027076749049730043037612270263457934557063783156832519889225428693233299258541341573861588700758042288864963 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/pkioverheid/crl/GetronicsCSPOrganisatieCAG2/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (166 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.pki.getronics.nl/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [79 112 32 100 105 116 32 99 101 114 116 105 102 105 99 97 97 116 32 105 115 32 104 101 116 32 67 80 83 32 80 75 73 111 118 101 114 104 101 105 100 32 118 97 110 32 71 101 116 114 111 110 105 99 115 32 118 97 110 32 116 111 101 112 97 115 115 105 110 103 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 38b285e6adf8a6d041585b786fdcd5b84476c57b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bc68b088eb418a361997d32d2b665a25a73d0574 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.bloemendaal.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.3 (universalPrincipalName) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '2.16.528.1.1003.1.3.5.4.1.89863464c89188606260b1c5e186098e' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.managedpki.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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