dot.kpn.com
- Koninklijke KPN N.V. -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 4d:65:c3:cb:ef:11:ce:13:69:bb:d2:7c was issued on by KPN B.V..
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Koninklijke KPN N.V.
Company registration number:
00000003020452000000
Organization: Koninklijke KPN N.V.
Organization: Koninklijke KPN N.V.
State / Province:
Zuid-Holland
Locality: Rotterdam
Country: NL
Locality: Rotterdam
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 4d:65:c3:cb:ef:11:ce:13:69:bb:d2:7cSerial Number (int): 23953371887404631014751588988
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: d3:93:e8:5d:95:38:de:8f:4e:18:08:2b:bd:44:1d:b9:52:fe:7c:47
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 4e:b3:a3:bf:cc:e2:a9:ce:c7:55:a4:e0:a0:4d:2f:1b:0a:6c:0a:90
Fingerprint (sha256): 3c:07:89:55:1d:51:56:6a:ee:e7:b2:c9:2b:96:90:85:c8:7d:09:08:0a:68:c7:b3:18:c4:95:13:45:95:dd:c4
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate dot.kpn.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dot.kpn.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dot.kpn.com
resolver1.kpn.net
resolver2.kpn.net
resolver3.kpn.net
resolver4.kpn.net
resolver1.kpn.net
resolver2.kpn.net
resolver3.kpn.net
resolver4.kpn.net
Other certificates including the domain name kpn.com
(limited to 100 certificates)
sentrymail.acc.kpnnet.org
api-stg.kpn.com
shop.kpn.com
aditum.kpn.com
status.digital.kpn.com
*.qvmd.infrastructure-testing.np.aws.kpn.com
*.mdaieg.infrastructure-testing.np.aws.kpn.com
*.laxbcp.infrastructure-testing.np.aws.kpn.com
lotte.kpn.com
*.mcmws.pmr.kpn.com
admin.dsh-dev.dsh.np.aws.kpn.com
*.2uqknv.infrastructure-testing.np.aws.kpn.com
api.cloudcontrol.kpn.com
lotteschedulee2e2-tst-new.kpn.com
*.0gcg.infrastructure-testing.np.aws.kpn.com
*.mcmws.pmr.kpn.com
zakelijk.kpn.com
*.j6yt.infrastructure-testing.np.aws.kpn.com
*.rp0ryg.infrastructure-testing.np.aws.kpn.com
*.jgtn.infrastructure-testing.np.aws.kpn.com
transfer-datalab.kpn.com
cordys-zm-value.kpn.com
*.ldhou6.infrastructure-testing.np.aws.kpn.com
prexdsl-c-serviceweb.kpn.com
portal.sap-hosting.kpn.com
mcpms.pmrtest.kpn.com
mosaic.generictaskservice.tst.kpn.com
*.3xoc.infrastructure-testing.np.aws.kpn.com
rt2-vlg-1.pmr.kpn.net
0122016378.StichtingKentalis.client.mvr.kpn.com
cloudkleinzakelijk.kpn.com
secure04.lithium.com
*.lzg4l6.infrastructure-testing.np.aws.kpn.com
ws.kpn.com
files.cloudcontrol.kpn.com
service.kpn.com
*.bbh5ey.infrastructure-testing.np.aws.kpn.com
design.kpn.com
nieuwbouwportaal.kpn.com
aditum.kpn.com
zakelijke-community.kpn.com
*.cqbmrv.infrastructure-testing.np.aws.kpn.com
b2bacc-connect-int.kpn.com
saml.eid.kpn.com
*.hwm44g.infrastructure-testing.np.aws.kpn.com
aas.tv.kpn.com
*.71qaiv.infrastructure-testing.np.aws.kpn.com
wsipuat4.kpn.com
cordys-zm-value-acc.kpn.com
*.u46qkt.infrastructure-testing.np.aws.kpn.com
account.online.kpn.com
kpnassistent.kpn.com
*.hibwy1.infrastructure-testing.np.aws.kpn.com
frea-test.kpn.com
businesspartner-ppd-s.kpn.com
*.mcmws.pmrtest.kpn.com
store.online-demo.kpn.com
inloggen.acc.kpn.com
zakelijk.kpn.com
x.acc.kpn.com
monteurstool.kpn.com
lottedev2-tst.kpn.com
login.kpn.com
*.rzr3o1.infrastructure-testing.np.aws.kpn.com
zeus-prd.kpn.com
eventgateway.acc.kpn.com
*.c6tnfz.infrastructure-testing.np.aws.kpn.com
*.nl9s.infrastructure-testing.np.aws.kpn.com
LotteSimulation.kpn.com
atvorder.kpn.com
*.lcfivp.infrastructure-testing.np.aws.kpn.com
lotte.kpn.com
uwv.portal.soc.kpn.com
serviscopeapi.kpn.com
secure08.lithium.com
vm4.kpn.com
prexdsl.kpn.com
if.auraportal.kpn.com
w5031.kpn.com
mobielbeheer.kpn.com
*.vre7br.infrastructure-testing.np.aws.kpn.com
*.gehq.infrastructure-testing.np.aws.kpn.com
secure08.lithium.com
*.jhlv.infrastructure-testing.np.aws.kpn.com
*.sukf.infrastructure-testing.np.aws.kpn.com
marketing.kpn.com
b2bpoc-connect-portal.kpn.com
b2b-portal.sympac.kpn.com
*.fiw8vk.infrastructure-testing.np.aws.kpn.com
sip.kpn.com
bpapi.kpn.com
*.holw.infrastructure-testing.np.aws.kpn.com
*.jmgvyq.infrastructure-testing.np.aws.kpn.com
www.kpn.com
cloudkleinzakelijk.kpn.com
mcpms.pmr.kpn.com
*.zunvtd.infrastructure-testing.np.aws.kpn.com
login.wifi.kpn.com
*.tvcx.infrastructure-testing.np.aws.kpn.com
mosaic.generictaskservice.acc.kpn.com
api-stg.kpn.com
shop.kpn.com
aditum.kpn.com
status.digital.kpn.com
*.qvmd.infrastructure-testing.np.aws.kpn.com
*.mdaieg.infrastructure-testing.np.aws.kpn.com
*.laxbcp.infrastructure-testing.np.aws.kpn.com
lotte.kpn.com
*.mcmws.pmr.kpn.com
admin.dsh-dev.dsh.np.aws.kpn.com
*.2uqknv.infrastructure-testing.np.aws.kpn.com
api.cloudcontrol.kpn.com
lotteschedulee2e2-tst-new.kpn.com
*.0gcg.infrastructure-testing.np.aws.kpn.com
*.mcmws.pmr.kpn.com
zakelijk.kpn.com
*.j6yt.infrastructure-testing.np.aws.kpn.com
*.rp0ryg.infrastructure-testing.np.aws.kpn.com
*.jgtn.infrastructure-testing.np.aws.kpn.com
transfer-datalab.kpn.com
cordys-zm-value.kpn.com
*.ldhou6.infrastructure-testing.np.aws.kpn.com
prexdsl-c-serviceweb.kpn.com
portal.sap-hosting.kpn.com
mcpms.pmrtest.kpn.com
mosaic.generictaskservice.tst.kpn.com
*.3xoc.infrastructure-testing.np.aws.kpn.com
rt2-vlg-1.pmr.kpn.net
0122016378.StichtingKentalis.client.mvr.kpn.com
cloudkleinzakelijk.kpn.com
secure04.lithium.com
*.lzg4l6.infrastructure-testing.np.aws.kpn.com
ws.kpn.com
files.cloudcontrol.kpn.com
service.kpn.com
*.bbh5ey.infrastructure-testing.np.aws.kpn.com
design.kpn.com
nieuwbouwportaal.kpn.com
aditum.kpn.com
zakelijke-community.kpn.com
*.cqbmrv.infrastructure-testing.np.aws.kpn.com
b2bacc-connect-int.kpn.com
saml.eid.kpn.com
*.hwm44g.infrastructure-testing.np.aws.kpn.com
aas.tv.kpn.com
*.71qaiv.infrastructure-testing.np.aws.kpn.com
wsipuat4.kpn.com
cordys-zm-value-acc.kpn.com
*.u46qkt.infrastructure-testing.np.aws.kpn.com
account.online.kpn.com
kpnassistent.kpn.com
*.hibwy1.infrastructure-testing.np.aws.kpn.com
frea-test.kpn.com
businesspartner-ppd-s.kpn.com
*.mcmws.pmrtest.kpn.com
store.online-demo.kpn.com
inloggen.acc.kpn.com
zakelijk.kpn.com
x.acc.kpn.com
monteurstool.kpn.com
lottedev2-tst.kpn.com
login.kpn.com
*.rzr3o1.infrastructure-testing.np.aws.kpn.com
zeus-prd.kpn.com
eventgateway.acc.kpn.com
*.c6tnfz.infrastructure-testing.np.aws.kpn.com
*.nl9s.infrastructure-testing.np.aws.kpn.com
LotteSimulation.kpn.com
atvorder.kpn.com
*.lcfivp.infrastructure-testing.np.aws.kpn.com
lotte.kpn.com
uwv.portal.soc.kpn.com
serviscopeapi.kpn.com
secure08.lithium.com
vm4.kpn.com
prexdsl.kpn.com
if.auraportal.kpn.com
w5031.kpn.com
mobielbeheer.kpn.com
*.vre7br.infrastructure-testing.np.aws.kpn.com
*.gehq.infrastructure-testing.np.aws.kpn.com
secure08.lithium.com
*.jhlv.infrastructure-testing.np.aws.kpn.com
*.sukf.infrastructure-testing.np.aws.kpn.com
marketing.kpn.com
b2bpoc-connect-portal.kpn.com
b2b-portal.sympac.kpn.com
*.fiw8vk.infrastructure-testing.np.aws.kpn.com
sip.kpn.com
bpapi.kpn.com
*.holw.infrastructure-testing.np.aws.kpn.com
*.jmgvyq.infrastructure-testing.np.aws.kpn.com
www.kpn.com
cloudkleinzakelijk.kpn.com
mcpms.pmr.kpn.com
*.zunvtd.infrastructure-testing.np.aws.kpn.com
login.wifi.kpn.com
*.tvcx.infrastructure-testing.np.aws.kpn.com
mosaic.generictaskservice.acc.kpn.com
Certificate
The complete raw certificate details for dot.kpn.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIKzCCBhOgAwIBAgIMTWXDy+8RzhNpu9J8MA0GCSqGSIb3DQEBCwUAMHExCzAJ BgNVBAYTAk5MMREwDwYDVQQKDAhLUE4gQi5WLjEXMBUGA1UEYQwOTlRSTkwtMjcx MjQ3MDExNjA0BgNVBAMMLUtQTiBCViBQS0lvdmVyaGVpZCBPcmdhbmlzYXRpZSBT ZXJ2ZXIgQ0EgLSBHMzAeFw0xOTA1MDEwNzUwMDJaFw0yMTA0MzAwNzUwMDJaMIGM MQswCQYDVQQGEwJOTDEVMBMGA1UECAwMWnVpZC1Ib2xsYW5kMRIwEAYDVQQHDAlS b3R0ZXJkYW0xHTAbBgNVBAoMFEtvbmlua2xpamtlIEtQTiBOLlYuMR0wGwYDVQQF ExQwMDAwMDAwMzAyMDQ1MjAwMDAwMDEUMBIGA1UEAwwLZG90Lmtwbi5jb20wggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCwy6A+O6m40L1eaAYd6byESGM2 CKacpeBAHjl+3IDoHCXldvGqhQVM57PQfHX/f8+xQbVObWunYGwXRyNB5l1xyCml OVcB8RH7fDn936FfP5nGPumjppvfVhQiKZoTXZz0aQ+Ey7IvQgDAHpf8Olc00Hpd ppBH1pe9HZGGYVBNezgOzd9PyLx3/km0llZCXXvUzO67Ep4p7cNiZp+yQWsezRgl ZtD+vG0oUl3AOHp6AqFPnpklcA0UK2r3zz2MJWqVh4oYULVPAllSKcKgpMzZwg1d fNaz/gVcUzumccFDciC7GMB6JkSs6tUORb92+q6enC6JL4l3N0xxVsbhrtWY7jvo Kt0nBM4WVpAoNPn8jkd7mIskKPPJMolGTknoLBCllhGVE+z69pReAqoyfYtgRD0n pydEjrIqp/ta0JbRPV3pgNw9kThi+542PV+GzdCqZPnrXoNAZODmyjlKRpoe2eSF nF9UQAlNmqgALGSFX6D1K3pRpbnzJlFavBDaz9mLS5+7botsUO5Kc5S8LcDw3jVC kXVqIRK331UttwPrH+JJkxJ2a/XWrhWXMJqzQ6YF2I8VDDNHhG+rBi1wL0lou2Ml rML4IKDfysCiSQiloNZ3qcc3C9dGfnJCOhiM60jJDkVCKOq5a+AL+RqRoT/cJmIH LnqvFWdAPFOCeKkw3wIDAQABo4ICpTCCAqEwgZQGCCsGAQUFBwEBBIGHMIGEMFgG CCsGAQUFBzAChkxodHRwOi8vY2VydC5tYW5hZ2VkcGtpLmNvbS9DQWNlcnRzL0tQ TkJWUEtJb3ZlcmhlaWRPcmdhbmlzYXRpZVNlcnZlckNBRzMuY2VyMCgGCCsGAQUF BzABhhxodHRwOi8vZzNvY3NwLm1hbmFnZWRwa2kuY29tMB0GA1UdDgQWBBTTk+hd lTjej04YCCu9RB25Uv58RzAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFMOapnte dCuCtsZy/XROhdKXzf0YMIGxBgNVHSAEgakwgaYwgZkGCmCEEAGHawECBQYwgYow NwYIKwYBBQUHAgEWK2h0dHBzOi8vY2VydGlmaWNhYXQua3BuLmNvbS9wa2lvdmVy aGVpZC9jcHMwTwYIKwYBBQUHAgIwQwxBT3AgZGl0IGNlcnRpZmljYWF0IGlzIGhl dCBDUFMgUEtJb3ZlcmhlaWQgdmFuIEtQTiB2YW4gdG9lcGFzc2luZy4wCAYGZ4EM AQICMF4GA1UdHwRXMFUwU6BRoE+GTWh0dHA6Ly9jcmwubWFuYWdlZHBraS5jb20v S1BOQlZQS0lvdmVyaGVpZE9yZ2FuaXNhdGllU2VydmVyQ0FHMy9MYXRlc3RDUkwu Y3JsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUH AwEwYgYDVR0RBFswWYILZG90Lmtwbi5jb22CEXJlc29sdmVyMS5rcG4ubmV0ghFy ZXNvbHZlcjIua3BuLm5ldIIRcmVzb2x2ZXIzLmtwbi5uZXSCEXJlc29sdmVyNC5r cG4ubmV0MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4ICAQC9 x0lJ1UzCRDDZzS5hBBgOhCa00NASgLDdhxRwk/MVNTL+SVP/XRJP9jKaHgIlg9EJ 6x4iv1g6z6Hya/68E0lLKSiA1FLtqK9Rw/CCuOP5WR+u7DEMra5Y1ZHvyL0fJu5Q OEBa41FlivOcS18KJPCxtfcJVMsqn+sybMHJ/76UfZ5iNvXzoFIW7chtACt7/Fxt 6Yg6iCE0mIRdHiT3Dp92Pf9cANtHh626pvX6aw1PK/wLTOm3tlf0rAc9ew1s4Jgs eo6JgRFmDOqx6dqvWuCJlbAmIwDaWqRN5NMi7IyIHDHRev2bT9OWwcuz4Z5lxDNC vhPJHKef/A9j/0TdkshuliLU5VYqOvhupCpPetZLmjykAPIsS3h9rRgdhztZ9R1T eKAwNWn4yLLu2idmLBu2AKplE6ShEcsoH2OsfndRu+1L3DIoAOkCti0rdBd3mDav PFx+k3pI07zrZvM2DV2cCvWwDeuMSiMhHy2IMe12l7UKNDJL5456PHcZbrx6Mvg5 h69ovB1EwD69F223gOXhusQ2GnMhII2fSQrHnrxJiG30Z2s2gF8/Y6kJywip1bt0 UK4oisgkP5SyaxNUtnpqBtXs9Hwb/qhsB9idz1jIz9D0MCNZdBOtE0EzHqD8eCap oIcaKds7KIkuRCV1Dj72tpH7fLJ8nZ274iRTBgyRjQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsMugPjupuNC9XmgGHem8 hEhjNgimnKXgQB45ftyA6Bwl5XbxqoUFTOez0Hx1/3/PsUG1Tm1rp2BsF0cjQeZd ccgppTlXAfER+3w5/d+hXz+Zxj7po6ab31YUIimaE12c9GkPhMuyL0IAwB6X/DpX NNB6XaaQR9aXvR2RhmFQTXs4Ds3fT8i8d/5JtJZWQl171MzuuxKeKe3DYmafskFr Hs0YJWbQ/rxtKFJdwDh6egKhT56ZJXANFCtq9889jCVqlYeKGFC1TwJZUinCoKTM 2cINXXzWs/4FXFM7pnHBQ3IguxjAeiZErOrVDkW/dvqunpwuiS+JdzdMcVbG4a7V mO476CrdJwTOFlaQKDT5/I5He5iLJCjzyTKJRk5J6CwQpZYRlRPs+vaUXgKqMn2L YEQ9J6cnRI6yKqf7WtCW0T1d6YDcPZE4YvueNj1fhs3QqmT5616DQGTg5so5Skaa HtnkhZxfVEAJTZqoACxkhV+g9St6UaW58yZRWrwQ2s/Zi0ufu26LbFDuSnOUvC3A 8N41QpF1aiESt99VLbcD6x/iSZMSdmv11q4VlzCas0OmBdiPFQwzR4RvqwYtcC9J aLtjJazC+CCg38rAokkIpaDWd6nHNwvXRn5yQjoYjOtIyQ5FQijquWvgC/kakaE/ 3CZiBy56rxVnQDxTgnipMN8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23953371887404631014751588988 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-01 07:50:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-30 07:50:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rotterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Koninklijke KPN N.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000003020452000000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'dot.kpn.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 721262361430078065067127935147624705878226722353705162013047176419703684065974818482828267038685194554344032143997405546869332271188053355105981449695041810471682209252147507337467929236121149144413483062031688564125844194058408575833156005744398613367688431735553391127707758873929835402022371979824436476987376389764723345151474346326298140140798677850493655464352271711231937559807188908150816249560491744653825719150502549212101747630152400996436157223047027755087769151207845965159448679769484899954373730123447996416079857284383270974371485069737715044151299969930056558596911109455066852275029527424184530140622574446776398634319537838608598640849508641364730156936467969238223443695614708639265937814927053355317793237887645334884667114278985151843943020183808515977254937656551604434700948865657660062560550166674547589789541445000387705703714991737906218753275733561894848496630910188235379026241626965925477310515311354564477218633952965689523755383305006384706456543119380957150964709442440882523424968296191075727656132496873426187808807340050100377558301776158252357166475674520723862521065299020191212055760818044285605642081734938358592520982876961552673625560909256243851963941026757990382666075049806716606211502303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d393e85d9538de8f4e18082bbd441db952fe7c47 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dot.kpn.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resolver1.kpn.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resolver2.kpn.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resolver3.kpn.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resolver4.kpn.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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