t3projects.mpimet.mpg.de
- Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V. -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 24:04:10:4b:0e:a0:7e:f4:fd:2e:f4:80:38:19:22:44 was issued on by GEANT Vereniging.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.
Organization:
Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.
State / Province:
Bayern
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate will expire on
Certificate Details
Serial Number (hex): 24:04:10:4b:0e:a0:7e:f4:fd:2e:f4:80:38:19:22:44Serial Number (int): 47873307500883775537666633989812200004
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: c1:ca:97:54:2a:bf:d0:af:c9:6f:b6:73:0c:04:b0:ed:56:84:91:bd
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): eb:43:ce:32:c5:2d:9c:48:83:b9:8a:8c:0a:35:bd:a6:84:94:a2:7f
Fingerprint (sha256): 38:bd:03:bb:88:9e:9b:5d:b6:60:e5:6b:52:34:a4:42:67:93:78:88:82:96:1f:8d:d4:82:44:a2:d5:82:17:e5
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate t3projects.mpimet.mpg.de
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for t3projects.mpimet.mpg.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
t3projects.mpimet.mpg.de
aerocom.mpimet.mpg.de
aerocom.zmaw.de
amb.mpimet.mpg.de
blue-action.mpimet.mpg.de
implicc.mpimet.mpg.de
imum2018.mpimet.mpg.de
miklip.mpimet.mpg.de
aerocom.mpimet.mpg.de
aerocom.zmaw.de
amb.mpimet.mpg.de
blue-action.mpimet.mpg.de
implicc.mpimet.mpg.de
imum2018.mpimet.mpg.de
miklip.mpimet.mpg.de
Other certificates including the domain name mpg.de
(limited to 100 certificates)
vweb14.gwdg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
nextcloud.mpi-klsb.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
reem.mpiwg-berlin.mpg.de
calc.init.mpg.de
gitlab.pks.mpg.de
mpicc.csl.mpg.de
srzadrest-e01.vw.iame.mpg.de
porta.bgc-jena.mpg.de
gitlab.intranet.mpl.mpg.de
kanboard.mpimp-golm.mpg.de
ex-mcsrv1.mpe.mpg.de
www.mpl.mpg.de
s2000-proxmox2.mpibpc.mpg.de
tickets.mpl.mpg.de
shibb-staging.mpcdf.mpg.de
www-legacy.csl.mpg.de
idp.bpcentral.biophys.mpg.de
gv-events.mpg.de
matomo.mpdl.mpg.de
labfolder.mpdl.mpg.de
krapiwa.mpipz.mpg.de
*.mpib-berlin.mpg.de
caramba.bgc-jena.mpg.de
gc-ticket.mpipz.mpg.de
aruba-master.mpikg.mpg.de
nc.molgen.mpg.de
aircapdata.is.tue.mpg.de
common-objective.is.tuebingen.mpg.de
public.web.mpg.de
travel-magic.aesthetics.mpg.de
bcw19.sf.mpg.de
helpdesk.mpimp-golm.mpg.de
ccp-cn01.eva.mpg.de
chlorobox.mpimp-golm.mpg.de
svn.test.mpi-klsb.mpg.de
nagiosext.biochem.mpg.de
vpngv.vw.mpg.de
srzsysmanage1.vw.mpg.de
deepspace.ice.mpg.de
bfish.neuro.mpg.de
sally.molgen.mpg.de
musawwaratgraffiti.mpiwg-berlin.mpg.de
rubin.cbs.mpg.de
knb.mpiwg-berlin.mpg.de
voipgwgefo1.vw.mpg.de
vweb14.gwdg.de
srvgvexp-c02.vw.mpg.de
nextcloud.mpi-klsb.mpg.de
rubinul.tuebingen.mpg.de
mph.tuebingen.mpg.de
colloquia.mpifr-bonn.mpg.de
pubweb.mpi-inf.mpg.de
gc-web.mpipz.mpg.de.mpipz.mpg.de
sslvpn1.mis.mpg.de
lp-bookings.age.mpg.de
lnxsrv-0.mpa-garching.mpg.de
stories.mmg.mpg.de
mail.mucam.mpg.de
fhi-fpr-02-chassis.gnz.mpg.de
proton-vle2.pc.linmpi.mpg.de
atlas-innovations.de
vweb14.gwdg.de
arc-lin-cpt04.mpib-berlin.mpg.de
ftp.mpdl.mpg.de
ncatmaid.tuebingen.mpg.de
db1.aei.mpg.de
csl.mpg.de
desktop.ipp-hgw.mpg.de
intranet.age.mpg.de
www.cbs.mpg.de
prometheus.mpi-inf.mpg.de
resourcespace.mpiwg-berlin.mpg.de
s1020-dc3.d200.bpc.mpg.de
oc.rz-berlin.mpg.de
wiki-virgo.esc.rzg.mpg.de
erebos02.demogr.mpg.de
cvpn01.mis.mpg.de
voucher2.mis.mpg.de
db.arevir.de
npsw-www.mpg.de
ecocn04.eva.mpg.de
kyblab.tuebingen.mpg.de
pc-t6-166.mpipz.mpg.de
voip.ice.mpg.de
scinote.molgen.mpg.de
imap.mis.mpg.de
oak.mpipz.mpg.de
hlltwiki.hll.mpg.de
mail.ip.mpg.de
wints1.pc.linmpi.mpg.de
ds11g-dps2.zmaw.de
typo3-01.mpp.mpg.de
sciform.fkf.mpg.de
wiki.hest.brain.mpg.de
messaging.evolbio.mpg.de
auth-services.vw.mpg.de
extlyncweb.neuro.mpg.de
npsw-xedit.mpg.de
neuro.rzg.mpg.de
hilprecht.mpiwg-berlin.mpg.de
voipgwgv1.vw.mpg.de
Certificate
The complete raw certificate details for t3projects.mpimet.mpg.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJJDCCBwygAwIBAgIQJAQQSw6gfvT9LvSAOBkiRDANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjMxMTI5MDAwMDAwWhcNMjQxMTI4MjM1 OTU5WjCBijELMAkGA1UEBhMCREUxDzANBgNVBAgTBkJheWVybjFHMEUGA1UECgw+ TWF4LVBsYW5jay1HZXNlbGxzY2hhZnQgenVyIEbDtnJkZXJ1bmcgZGVyIFdpc3Nl bnNjaGFmdGVuIGUuVi4xITAfBgNVBAMTGHQzcHJvamVjdHMubXBpbWV0Lm1wZy5k ZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKz8GOflqj7nLKI4p7O5 uS1Qg4OsnLywOvtnsG2S0PrAvvnc9DoY7UiW0RaSeQ6GULdGwOOCxEKGM/u27/nk 9pOeHXr8zFVKlDR9/M3PLefpoWvw5SPdcfebcMkI/iB8vm+XMXqHilVgpHQPzz90 eKispB/L/DV1i9jkBSpIfqc6QnCTs5Nr22fIACC3dWPMXDmfJVCn/RPufKYYfEkp BnbCLvudjM2jkG+iavk52FPn/TT+3rqmv7ZKUEt6GmQ33uwNyQ4tDWabjG/ABOZo XT5qqCs5CZRJ8/5+r/XyLIMVEMiGqeLamB+DkBvY39DW4KlCFWyaZjRmcRTrX7MF JilLqF2r3Pm9mdjLiiA3YPD1mXQ4n9lMw6Vs0XnFlIUsRXTt0OYgBTlAmzllLaR+ dYx0NPvA1SIjDAG3uSC8UfPVw/rhC4tRSylvE55u+P2lP1l38FrztNooHidcMpQs P1QUkMFl5NT8w/5foxiQsbtwcLUaX+o5woAi7RIYLNEc1IQYAQBoa5T7PD+LJegR 22P/6eL95Ir+EMBkCMbrKeiQbXf6FdazOTu4yE20XTB1tCvO46RcHOg+wJA2H0td RLqZh6YsuHwSnUSlptPAfwAyo5NKBswFkZFp43wiOoNeyfnvDbKCht0Q4RkW/88F 2b//fUwa4KDo5VcxzXhUouV/AgMBAAGjggPJMIIDxTAfBgNVHSMEGDAWgBRvHTVJ EGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQUwcqXVCq/0K/Jb7ZzDASw7VaEkb0w DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAk8wJTAjBggrBgEF BQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQICMD8GA1UdHwQ4 MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGlnby5jb20vR0VBTlRPVlJT QUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUFBzAChi5odHRwOi8vR0VB TlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3J0MCkGCCsGAQUFBzAB hh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTCCAX4GCisGAQQB1nkCBAIE ggFuBIIBagFoAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGM GnTDvAAABAMASDBGAiEAm5pfL0R4I53lAxMpXL+tSNO9uxUcFwYKYrrUccKyrLMC IQDB0HCIJ+oZ50MZfjJANJTEXLcKSYYaZOFrT2LlR1ua+wB1AD8XS0/XIkdYlB1l HIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjBp0xP0AAAQDAEYwRAIgM86nO/SaoYBW ldbM9s5RYnx2NLjH4CgmnujljhXfs3UCIEIMuaYk/6kQJyehrTlIdmHvB6Hef91U Pyrsuks934q3AHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGM GnTEBQAABAMARzBFAiBVN+ugp7goHmYip3D3EC2FAGv8aOJW3FYHAX51oFVQuwIh AJ4ZbqoKyPpSnZDmMPI4L32FP/cBojlnK4euRec06hRXMIHABgNVHREEgbgwgbWC GHQzcHJvamVjdHMubXBpbWV0Lm1wZy5kZYIVYWVyb2NvbS5tcGltZXQubXBnLmRl gg9hZXJvY29tLnptYXcuZGWCEWFtYi5tcGltZXQubXBnLmRlghlibHVlLWFjdGlv bi5tcGltZXQubXBnLmRlghVpbXBsaWNjLm1waW1ldC5tcGcuZGWCFmltdW0yMDE4 Lm1waW1ldC5tcGcuZGWCFG1pa2xpcC5tcGltZXQubXBnLmRlMA0GCSqGSIb3DQEB DAUAA4ICAQAdjZXOyGBCizmrp+S/OWJAH0GCVAw2tG8GEeU8D3YlFzlk30laPHbb J1fAHfxCj1/EY+TiPL9WO8yZjCewcJM4SxdnNRkAeIotpk8rlCJVGd8VJySJJJc6 63z5+QWUSNbxpGnCETmrnzlQM6ernE5lOwkN48iCgRLO8j50o8KT8fjdz//mwjbL DToAY+OF5K2VFLiVwaAI0r448Hpjoq+/m3XGF1kgWAd2EeelPn9WXYDBgvcBLYUL mOZW6ak+nTT8R+byxqg3lF3y24tucVx2Haw6/lvfn97AD1g2Q+9WkMOMr9X8CsSW nsl4CxPAlx+LnqKXFAy6OJWyJg0J4LqPBhly9c4Aw4TosoIVU5jwoehMbhiK6txa NSNC1lut1uURV5MpdXRKTCyxLr5xvzhkA+YMFlcbYzE+cyB+0OpttbXRD2CneVkU OVMmVwrChCOYHgELf/TsJKrCrW/DYeLq+e3m9BFiS+6kKQti7IR6KczaszVR+yNv 0U4Ekmd/xE5XkpweFxAuiGhxSM+YPobiPnxi5fykEC1hIeVtuWsurckNTnHNhLao KqmyAiNv9xJ0lE3FUMkpOzA+SWhPUiWedB9aYMbiBeVso1AzFv+54nx2gs8RgFY4 lduwRxcYFkxji2GU4qbiGxThRakxA+ElQBO8H2ODbe0abykuDuKLsw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArPwY5+WqPucsojins7m5 LVCDg6ycvLA6+2ewbZLQ+sC++dz0OhjtSJbRFpJ5DoZQt0bA44LEQoYz+7bv+eT2 k54devzMVUqUNH38zc8t5+mha/DlI91x95twyQj+IHy+b5cxeoeKVWCkdA/PP3R4 qKykH8v8NXWL2OQFKkh+pzpCcJOzk2vbZ8gAILd1Y8xcOZ8lUKf9E+58phh8SSkG dsIu+52MzaOQb6Jq+TnYU+f9NP7euqa/tkpQS3oaZDfe7A3JDi0NZpuMb8AE5mhd PmqoKzkJlEnz/n6v9fIsgxUQyIap4tqYH4OQG9jf0NbgqUIVbJpmNGZxFOtfswUm KUuoXavc+b2Z2MuKIDdg8PWZdDif2UzDpWzRecWUhSxFdO3Q5iAFOUCbOWUtpH51 jHQ0+8DVIiMMAbe5ILxR89XD+uELi1FLKW8Tnm74/aU/WXfwWvO02igeJ1wylCw/ VBSQwWXk1PzD/l+jGJCxu3BwtRpf6jnCgCLtEhgs0RzUhBgBAGhrlPs8P4sl6BHb Y//p4v3kiv4QwGQIxusp6JBtd/oV1rM5O7jITbRdMHW0K87jpFwc6D7AkDYfS11E upmHpiy4fBKdRKWm08B/ADKjk0oGzAWRkWnjfCI6g17J+e8NsoKG3RDhGRb/zwXZ v/99TBrgoOjlVzHNeFSi5X8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 47873307500883775537666633989812200004 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft zur Förderung der Wissenschaften e.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 't3projects.mpimet.mpg.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 705716229728633897299862659219271517800977962674200062315783539438416973355312718054136990329823668682171579412193816809130090204596619507358118080193402281581497514988280987543698060459629603925529419150075548914411559365478588629247953154011474423419878269235278229270777593571102515521396195582154244401145881178742443039792218633918178449028802991998576192326959783089479558888424384199086145787142344010309788502507431014178117802833148251123529410069338714676898057212911586941467598714889253150386168797998886000964883554877391713133276654949945754920789203182582186680690786937459025286634114688276905218197747921054098722960745937675559761697624242738537934800023182056611036366343431582356132188430184626844827187646914433630323165604512908200091746477889411793169528057351567314845424701810648435865624073642456249872951771832801687325795906141043967203217225711347733763995589252685398252221062919005550913465709700142967362164098833846953069514586336638656217137956224281694444644872144330400309020181857923265045181402511738343850946504600054933929926503186819480625943602670512250167078011345321780495839567857661509567458205081408786935329324106438594084193226748428102780133577244610218135748614250329930401084269951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c1ca97542abfd0afc96fb6730c04b0ed568491bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (184 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 't3projects.mpimet.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aerocom.mpimet.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aerocom.zmaw.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amb.mpimet.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blue-action.mpimet.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'implicc.mpimet.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imum2018.mpimet.mpg.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'miklip.mpimet.mpg.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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