hvacms-acc-be1.forux.nl
- Stichting Hogeschool van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number b8:f9:c1:92:79:2d:1f:c2:7b:75:3a:62:3a:85:12:37 was issued on by GEANT Vereniging.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Stichting Hogeschool van Amsterdam
Organization:
Stichting Hogeschool van Amsterdam
Address:
Wibautstraat 3
Postal code: 1091GH
State / Province: Noord-Holland
Locality: Amsterdam
Country: NL
Postal code: 1091GH
State / Province: Noord-Holland
Locality: Amsterdam
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): b8:f9:c1:92:79:2d:1f:c2:7b:75:3a:62:3a:85:12:37Serial Number (int): 245874759252067162379980514874192368183
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 89:bf:94:2a:a4:93:82:2c:e7:de:b2:7a:b9:64:5c:2d:ee:5f:f6:05
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): ec:9d:f2:56:4e:6f:ab:c9:18:2d:be:c3:89:97:0a:18:9c:50:ef:66
Fingerprint (sha256): 41:57:81:f9:6e:e9:80:8a:85:16:52:6f:e1:72:e7:db:3f:13:4c:dd:44:7a:99:8d:2f:dc:c6:52:94:79:94:0f
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate hvacms-acc-be1.forux.nl
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hvacms-acc-be1.forux.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hvacms-acc-be1.forux.nl
hvacms-acc-be2.forux.nl
redactie-acc.cms.hva.nl
hvacms-acc-be2.forux.nl
redactie-acc.cms.hva.nl
Other certificates including the domain name forux.nl
(limited to 100 certificates)
sap-dev-rudx.ic.uva.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
Certificate
The complete raw certificate details for hvacms-acc-be1.forux.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHZTCCBU2gAwIBAgIRALj5wZJ5LR/Ce3U6YjqFEjcwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIxMDIwODAwMDAwMFoXDTIyMDIwODIz NTk1OVowgbIxCzAJBgNVBAYTAk5MMQ8wDQYDVQQREwYxMDkxR0gxFjAUBgNVBAgT DU5vb3JkLUhvbGxhbmQxEjAQBgNVBAcTCUFtc3RlcmRhbTEXMBUGA1UECRMOV2li YXV0c3RyYWF0IDMxKzApBgNVBAoTIlN0aWNodGluZyBIb2dlc2Nob29sIHZhbiBB bXN0ZXJkYW0xIDAeBgNVBAMTF2h2YWNtcy1hY2MtYmUxLmZvcnV4Lm5sMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FgSWOJaqmyIC73sE0AslDyVZLFd 6gVkRvBuW2Mt38wK4+HsNGjhAZSiT4jIlw/qImpsF7bjnagd1tNRadObI5vG6WEa s0JpnEhVPEQZ8A9hoB3qQkqP6RLUP/HiC4CklABLjMaLWRQ3i+Yj2k1XOqDKZDQQ 4/vB/gK0xQqkIz4LVh7+Z4cyXQcwFck63qa7p+f3Rg/OyGkdehdX0Pvqp6PTYnsP PtA5u+8WA7Z1EMfrs3lW55sDTWbn9yDeJX1fRz1Ce2nmMrZvZcu2seaWDQwD2QZZ rLMV8ujTrsob0L8S4oFsjs6d3MoqzmvwlP4H8uoYu7G8hur3Pfp/knJdfQIDAQAB o4IC4TCCAt0wHwYDVR0jBBgwFoAUbx01SRBsMvpZoJ68iugflb5xegwwHQYDVR0O BBYEFIm/lCqkk4Is596yerlkXC3uX/YFMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMB Af8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBA MDQGCysGAQQBsjEBAgJPMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5j b20vQ1BTMAgGBmeBDAECAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vR0VBTlQu Y3JsLnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3JsMHUGCCsGAQUFBwEBBGkw ZzA6BggrBgEFBQcwAoYuaHR0cDovL0dFQU5ULmNydC5zZWN0aWdvLmNvbS9HRUFO VE9WUlNBQ0E0LmNydDApBggrBgEFBQcwAYYdaHR0cDovL0dFQU5ULm9jc3Auc2Vj dGlnby5jb20wggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdgBGpVXrdfqRIDC1oolp 9PN9ESxBdL79SbiFq/L8cP5tRwAAAXeBfbkYAAAEAwBHMEUCID18KZaqnSgKVjyo EpaaklFjglpLSr7niypnPAlS4Bk6AiEAx9KPGNS+jnLvhhwYZRi2AVpbq51Ti2uG bTJuCdUBt20AdQDfpV6raIJPH2yt7rhfTj5a6s2iEqRqXo47EsAgRFwqcwAAAXeB fblLAAAEAwBGMEQCICS11CEYa3xiLzQW/+Fc84WnIGmJmadfQOofC+ke0aTMAiBf zNGwWMDGcd6eJswzHXTWyo+qr+lTy0+ZiPDH24FghDBUBgNVHREETTBLghdodmFj bXMtYWNjLWJlMS5mb3J1eC5ubIIXaHZhY21zLWFjYy1iZTIuZm9ydXgubmyCF3Jl ZGFjdGllLWFjYy5jbXMuaHZhLm5sMA0GCSqGSIb3DQEBDAUAA4ICAQA236RFW6F4 SeLKwkAOfLl5urOTDyIPY7kI1c7va3VagMgrSmpdglqlUm+DwPYhy2b9K+N8NBDz GXNKxkNC/EEYd15tFJKpDuT77LQE5AlfjxsSuc52CxKsUmFw5vxHXNPJWNby0mzq sBjbufG4+Aj3uok3Kq2R3rXaoopZjf7mkFxqxqSjvZKJhRSKUj77QlL6fpDbYTmK DxEkvEnV8+xBfgEuL0/BRtrtczhpPz3bcNCDn2JHModj8ihmqqRnSdptnqn4ePRQ yyqPM6h42kHuMGC4Kn0hOj+1sAvNB4WB/V/Z9zNEJvJ64YE9rxebY/r1Gj+DkX1+ bw/bgZdI0bhlkUhZPSh0XoUIFvZh5qeltK5EQ86arAtqwdszc5rbFGGnXJm+I0/t kaMRVirGXthKQdxHSpvsTJXxCvSzSDIEAZKAWo1uszUjYvWcwe6rnz+ZJaccwyjN Hd20wQ0ka9unK5bFPEaHMFiAPuwGN8zuBB/1YwLdgXwCUsYU9U/9FAK2SRHnIVP8 xQc7f2FjRttxXKPTLUQhUjptP8kGOUrseJ6gMkvio/d8+lIQJYRwkmatlvMGFEfs Y1hQIMSVnpYXCFFCgOX1EdkzmG9iSNlgQm5yPIsK/GuH54bY+2TU03N+cyti6q52 O0BENa4k5fdjspXRJYS4uU11kBnAP26OiA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FgSWOJaqmyIC73sE0As lDyVZLFd6gVkRvBuW2Mt38wK4+HsNGjhAZSiT4jIlw/qImpsF7bjnagd1tNRadOb I5vG6WEas0JpnEhVPEQZ8A9hoB3qQkqP6RLUP/HiC4CklABLjMaLWRQ3i+Yj2k1X OqDKZDQQ4/vB/gK0xQqkIz4LVh7+Z4cyXQcwFck63qa7p+f3Rg/OyGkdehdX0Pvq p6PTYnsPPtA5u+8WA7Z1EMfrs3lW55sDTWbn9yDeJX1fRz1Ce2nmMrZvZcu2seaW DQwD2QZZrLMV8ujTrsob0L8S4oFsjs6d3MoqzmvwlP4H8uoYu7G8hur3Pfp/knJd fQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 245874759252067162379980514874192368183 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1091GH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wibautstraat 3' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Stichting Hogeschool van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hvacms-acc-be1.forux.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27815856851050282194252414701944982401743695719355093575856562625668764520723483400987526950659355056532263777574599392791399332408944817539498429046178929498930959188466234461796437792863250503828735485176403376220723821448660830000543864278273147260372103879016877010606858927104858026256589264995084479182701466587980661851357863306925516328780338963841008981365125630063531827756639405174288462868220772132983620883721939864711481600052086069863661157261761170558065967736032343808775115474303634143354524572815655174933484095495916493830369884654110799743418551224151950622716685380739129358388875201049561030013 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 89bf942aa493822ce7deb27ab9645c2dee5ff605 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760046a555eb75fa912030b5a28969f4f37d112c4174befd49b885abf2fc70fe6d4700000177817db918000004030047304502203d7c2996aa9d280a563ca812969a925163825a4b4abee78b2a673c0952e0193a022100c7d28f18d4be8e72ef861c186518b6015a5bab9d538b6b866d326e09d501b76d007500dfa55eab68824f1f6cadeeb85f4e3e5aeacda212a46a5e8e3b12c020445c2a7300000177817db94b0000040300463044022024b5d421186b7c622f3416ffe15cf385a720698999a75f40ea1f0be91ed1a4cc02205fccd1b058c0c671de9e26cc331d74d6ca8faaafe953cb4f9988f0c7db816084 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (77 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hvacms-acc-be1.forux.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hvacms-acc-be2.forux.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redactie-acc.cms.hva.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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