diginet-ps.dai-lab.de
- Technische Universitaet Berlin -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 21:bd:56:79:bf:9e:de:22:80:e0:81:f3 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Technische Universitaet Berlin
Organization:
Technische Universitaet Berlin
Organization unit: DAI-Labor
Organization unit: DAI-Labor
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 21:bd:56:79:bf:9e:de:22:80:e0:81:f3Serial Number (int): 10441900673392829637618336243
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 79:48:ea:2e:0f:d0:c1:26:51:82:2f:50:ef:82:3f:c8:5c:c9:8a:19
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 8f:e1:0a:88:f8:f6:68:2b:c9:e4:c4:75:3c:3a:56:4b:db:10:4b:2a
Fingerprint (sha256): 41:d1:66:98:58:57:b6:1b:e7:ad:68:d6:d4:ce:2c:9c:cf:22:ff:53:d2:4c:62:bd:45:95:5e:26:48:bb:c1:50
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate diginet-ps.dai-lab.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for diginet-ps.dai-lab.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
diginet-ps.aot.tu-berlin.de
diginet-ps.dai-lab.de
diginet-ps.dai-labor.de
diginet-ps.dai-lab.de
diginet-ps.dai-labor.de
Other certificates including the domain name dai-lab.de
(limited to 100 certificates)
www.dai-labor.de
dai-labor.de
winterser.dai-lab.de
jenkins.dai-labor.de
edu.dai-labor.de
gitlab-edu.dai-labor.de
aot2018.aot.tu-berlin.de
115bot.irml.dai-labor.de
dai-labor.de
intern.dai-labor.de
cucm-pub-ms.cm.dai-lab.de
vcenter.dai-lab.de
cucm-pub-ms.cm.dai-lab.de
ia.dailab.de
daiccm1.dai-lab.de
imp-pub-ms.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
cvs.dai-labor.de
imp-pub.cm.dai-lab.de
intern.dai-labor.de
flexnet.dai-labor.de
www.dai-labor.de
daitool.dai-labor.de
dai-labor.de
mail.dai-labor.de
diginet-ps.dai-lab.de
dainas.dai-labor.de
mail.dai-labor.de
old-diginet-ps.dai-lab.de
dai-lab.de
daiwordpress-neu.dai-lab.de
imp-sub.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
daibasi.dai-lab.de
imp-pub-ms.cm.dai-lab.de
daibasi.dai-lab.de
registry.gitlab.dai-labor.de
ssds2.aot.tu-berlin.de
repositories.dai-labor.de
wlc-5508.mgmt.dai-lab.de
exp-c-2.cm.dai-lab.de
diginetdataint.dai-labor.de
cms.cm.dai-lab.de
www.dai-labor.de
mail.dai-labor.de
www.redmine.dai-labor.de
www.dai-labor.de
dainet-guest-gw.dai-lab.de
registry.gitlab.dai-labor.de
repositories.dai-labor.de
mail.dai-labor.de
tuleap.dai-labor.de
cuc-pub-ms.cm.dai-lab.de
www.dai-lab.de
gitlab-edu.dai-labor.de
newsreel-edu.aot.tu-berlin.de
mail.dai-labor.de
dainas.dai-labor.de
dc3.dai-lab.de
dai-labor.de
cvs.dai-labor.de
daneser.dai-lab.de
cluster.gc.dai-lab.de
diginet-services.aot.tu-berlin.de
teampass.dai-labor.de
daneser.dai-lab.de
www.dai-labor.de
scb-erp.aot.tu-berlin.de
dc3.dai-lab.de
windnode.aot.tu-berlin.de
cucm-pub-ms.cm.dai-lab.de
jenkins.dai-labor.de
cms.cm.dai-lab.de
dai-labor.de
dai-labor.de
winterser.dai-lab.de
jenkins.dai-labor.de
edu.dai-labor.de
gitlab-edu.dai-labor.de
aot2018.aot.tu-berlin.de
115bot.irml.dai-labor.de
dai-labor.de
intern.dai-labor.de
cucm-pub-ms.cm.dai-lab.de
vcenter.dai-lab.de
cucm-pub-ms.cm.dai-lab.de
ia.dailab.de
daiccm1.dai-lab.de
imp-pub-ms.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
cvs.dai-labor.de
imp-pub.cm.dai-lab.de
intern.dai-labor.de
flexnet.dai-labor.de
www.dai-labor.de
daitool.dai-labor.de
dai-labor.de
mail.dai-labor.de
diginet-ps.dai-lab.de
dainas.dai-labor.de
mail.dai-labor.de
old-diginet-ps.dai-lab.de
dai-lab.de
daiwordpress-neu.dai-lab.de
imp-sub.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
daibasi.dai-lab.de
imp-pub-ms.cm.dai-lab.de
daibasi.dai-lab.de
registry.gitlab.dai-labor.de
ssds2.aot.tu-berlin.de
repositories.dai-labor.de
wlc-5508.mgmt.dai-lab.de
exp-c-2.cm.dai-lab.de
diginetdataint.dai-labor.de
cms.cm.dai-lab.de
www.dai-labor.de
mail.dai-labor.de
www.redmine.dai-labor.de
www.dai-labor.de
dainet-guest-gw.dai-lab.de
registry.gitlab.dai-labor.de
repositories.dai-labor.de
mail.dai-labor.de
tuleap.dai-labor.de
cuc-pub-ms.cm.dai-lab.de
www.dai-lab.de
gitlab-edu.dai-labor.de
newsreel-edu.aot.tu-berlin.de
mail.dai-labor.de
dainas.dai-labor.de
dc3.dai-lab.de
dai-labor.de
cvs.dai-labor.de
daneser.dai-lab.de
cluster.gc.dai-lab.de
diginet-services.aot.tu-berlin.de
teampass.dai-labor.de
daneser.dai-lab.de
www.dai-labor.de
scb-erp.aot.tu-berlin.de
dc3.dai-lab.de
windnode.aot.tu-berlin.de
cucm-pub-ms.cm.dai-lab.de
jenkins.dai-labor.de
cms.cm.dai-lab.de
dai-labor.de
Certificate
The complete raw certificate details for diginet-ps.dai-lab.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHSzCCBjOgAwIBAgIMIb1Web+e3iKA4IHzMA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE5 MTAwOTEyNTYxMVoXDTIyMDExMDEyNTYxMVowgYwxCzAJBgNVBAYTAkRFMQ8wDQYD VQQIDAZCZXJsaW4xDzANBgNVBAcMBkJlcmxpbjEnMCUGA1UECgweVGVjaG5pc2No ZSBVbml2ZXJzaXRhZXQgQmVybGluMRIwEAYDVQQLDAlEQUktTGFib3IxHjAcBgNV BAMMFWRpZ2luZXQtcHMuZGFpLWxhYi5kZTCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBAKsT/KgiM5/JAeWWVUEDp6TnbSaEWeEb0w1glTYOoFRnLh28PYQ3 xejKfvmxmdox9YFB7cMZSfhMlsRyDXuFMCdsxk0qnisXlVGY5beZT5PpJ1k213jx 5e9RiQCz+9NJRS3DnFg5qdpOM+2hhCUxHk3vXAXCHgCMvhVacMfaFn6ZU883pPNM wVF+oSUIWdY4HzS2Ve5LjHFieTbNuDJacAY1lp25mySvFnsftPT2CcLEQEoFaP+W ZQJITSfvs7oaAHQbXDTmatdISP1MhvSrQpVhX9mpnACKCTlYAe5xmZMrdhZQ6GxH oB+dbzjCWOZ2PMjcgOi3mk1+IWjrRIsd4pweNcStFcd3foy3wav9OjERpEpATrK1 vJhpwwLWAnbahPIFFEAOhOE4AT4f13xBYLI6gXsywSccXcLNpuZ+TjE4HAM7VE8g 9VH3yVTTwO5rXxbhGtbEhHkPa/46flVlsGTGg4zqw/DA616Md7Q/W+bgpHRjHB1w 4EZlBu62BCPavT53JDyucJfSVcRXdw4pewy43yF3MH1sIdMHGde04+SPlDm2vNVC 35OaEHYFfveSRZTwozeMPc4nDXbeyJu9v5Pw88IjC/ZYbQsTIKLuJVPsC9aiUTQh ZDMbrAINFAmyjznxut/tslQh+PcaV2aBIXU53IhQqM1c4XZAEP+gvk6pAgMBAAGj ggKoMIICpDBXBgNVHSAEUDBOMAgGBmeBDAECAjANBgsrBgEEAYGtIYIsHjAPBg0r BgEEAYGtIYIsAQEEMBAGDisGAQQBga0hgiwBAQQEMBAGDisGAQQBga0hgiwCAQQE MAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMB MB0GA1UdDgQWBBR5SOouD9DBJlGCL1Dvgj/IXMmKGTAfBgNVHSMEGDAWgBRrOpiL +fJTidrgrbIyHgkf6Ko7dDBWBgNVHREETzBNghtkaWdpbmV0LXBzLmFvdC50dS1i ZXJsaW4uZGWCFWRpZ2luZXQtcHMuZGFpLWxhYi5kZYIXZGlnaW5ldC1wcy5kYWkt bGFib3IuZGUwgY0GA1UdHwSBhTCBgjA/oD2gO4Y5aHR0cDovL2NkcDEucGNhLmRm bi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9jcmwvY2FjcmwuY3JsMD+gPaA7hjlo dHRwOi8vY2RwMi5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NybC9j YWNybC5jcmwwgdsGCCsGAQUFBwEBBIHOMIHLMDMGCCsGAQUFBzABhidodHRwOi8v b2NzcC5wY2EuZGZuLmRlL09DU1AtU2VydmVyL09DU1AwSQYIKwYBBQUHMAKGPWh0 dHA6Ly9jZHAxLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIvY2FjZXJ0 L2NhY2VydC5jcnQwSQYIKwYBBQUHMAKGPWh0dHA6Ly9jZHAyLnBjYS5kZm4uZGUv ZGZuLWNhLWdsb2JhbC1nMi9wdWIvY2FjZXJ0L2NhY2VydC5jcnQwEwYKKwYBBAHW eQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAFR0AkkZf1oopWdifCgWYrdX 0uMk50MHop8dSM1Ep2kp5KNPEMXlgZOtlp1hPNBlotUeKXO9TO8rB8b7iiodB1Mx fdCBr1bYsWCnJnkYGeBzfWLXZYCpOgOCFiQ/fCErbemsQ7+62VDQ/Gi8T6u7Icfi OC7ErsvWMMrNb9vnd3iS1J0vLDs6ZOGBIGui9Az6wFJGyTe2rm7RkDBYoIxPOSmW Igh/YFPlbxOw7u5j4D8Sdgcee3AUxbxg49V5qqzf50OdERbW9YUVz5eSZuKtapcz y0IQCOTqxkXSLVWGkov3iq8QT8LQqqDwpNlEGJecHr33LiBfLGcHNGilMxyOMxE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqxP8qCIzn8kB5ZZVQQOn pOdtJoRZ4RvTDWCVNg6gVGcuHbw9hDfF6Mp++bGZ2jH1gUHtwxlJ+EyWxHINe4Uw J2zGTSqeKxeVUZjlt5lPk+knWTbXePHl71GJALP700lFLcOcWDmp2k4z7aGEJTEe Te9cBcIeAIy+FVpwx9oWfplTzzek80zBUX6hJQhZ1jgfNLZV7kuMcWJ5Ns24Mlpw BjWWnbmbJK8Wex+09PYJwsRASgVo/5ZlAkhNJ++zuhoAdBtcNOZq10hI/UyG9KtC lWFf2amcAIoJOVgB7nGZkyt2FlDobEegH51vOMJY5nY8yNyA6LeaTX4haOtEix3i nB41xK0Vx3d+jLfBq/06MRGkSkBOsrW8mGnDAtYCdtqE8gUUQA6E4TgBPh/XfEFg sjqBezLBJxxdws2m5n5OMTgcAztUTyD1UffJVNPA7mtfFuEa1sSEeQ9r/jp+VWWw ZMaDjOrD8MDrXox3tD9b5uCkdGMcHXDgRmUG7rYEI9q9PnckPK5wl9JVxFd3Dil7 DLjfIXcwfWwh0wcZ17Tj5I+UOba81ULfk5oQdgV+95JFlPCjN4w9zicNdt7Im72/ k/DzwiML9lhtCxMgou4lU+wL1qJRNCFkMxusAg0UCbKPOfG63+2yVCH49xpXZoEh dTnciFCozVzhdkAQ/6C+TqkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10441900673392829637618336243 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-09 12:56:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-10 12:56:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Technische Universitaet Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DAI-Labor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'diginet-ps.dai-lab.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 697937649706873207542075052993866434157003598112672074101965445280238036828278893026979958392993895732281935402977684721505436760864789727853082355755300333067743282777026413500593813568280057851912885858167727982227015610441124204668770778223183297031778927584312018185568592092975541161698117709242087983298718461822041610612227995033041803847788548766689186708330969335869390365331767644591110056782385774405140870560715528200853958686327624071044550682522758146927793485498872219955730667435798166759598083178960749998921987411235365717284417106535552524893757256627174155082658292031577490562955378988399384204629288657597244613359729374287314338725894955803825038630846611407200272898472233950089080471803432825172214530658269140188482427336614588277760350792926222035955692969083088511574294882884534677114553406208259586384587731264868187728365226966638069579944549289832020289305800275317479045884799211723923609617818563988682637060687598894737511770983487102853366071291451340216933818825483156540588394341035693247680816769644267905017344137655174004965474285363589876316095399123616648613681523755901249790222700044871059042300398784149254880470528596700961441457408763645657592929753125036311726112057014877657317133993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7948ea2e0fd0c12651822f50ef823fc85cc98a19 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diginet-ps.aot.tu-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diginet-ps.dai-lab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'diginet-ps.dai-labor.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0054740249197f5a28a567627c281662b757d2e324e74307a29f1d48cd44a76929e4a34f10c5e58193ad969d613cd065a2d51e2973bd4cef2b07c6fb8a2a1d0753317dd081af56d8b160a726791819e0737d62d76580a93a038216243f7c212b6de9ac43bfbad950d0fc68bc4fabbb21c7e2382ec4aecbd630cacd6fdbe7777892d49d2f2c3b3a64e181206ba2f40cfac05246c937b6ae6ed1903058a08c4f39299622087f6053e56f13b0eeee63e03f1276071e7b7014c5bc60e3d579aaacdfe7439d1116d6f58515cf979266e2ad6a9733cb421008e4eac645d22d5586928bf78aaf104fc2d0aaa0f0a4d94418979c1ebdf72e205f2c67073468a5331c8e3311