office.helmholtz-berlin.de
- Helmholtz-Zentrum Berlin für Materialien und Energie GmbH -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number b8:88:70:0c:4b:64:dd:42:ba:75:00:0c:33:b2:33:20 was issued on by GEANT Vereniging.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Helmholtz-Zentrum Berlin für Materialien und Energie GmbH
Organization:
Helmholtz-Zentrum Berlin für Materialien und Energie GmbH
State / Province:
Berlin
Country: DE
Country: DE
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): b8:88:70:0c:4b:64:dd:42:ba:75:00:0c:33:b2:33:20Serial Number (int): 245286376201132129522515991051017270048
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 68:3f:1e:b2:2e:b6:f9:d4:00:65:b9:9c:d5:2a:36:91:ed:c4:ff:a8
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): e1:e7:7b:56:95:bc:a4:9d:02:01:9d:2f:c5:b7:40:a1:7c:03:65:30
Fingerprint (sha256): 43:4d:ff:9b:2c:93:60:fb:33:b4:36:d7:dd:ae:f8:a4:1c:4a:93:95:f1:a7:c4:e1:24:6c:97:ab:fc:a6:49:46
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate office.helmholtz-berlin.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for office.helmholtz-berlin.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
office.helmholtz-berlin.de
offon1-prod.basisit.de
offon2-prod.basisit.de
offon1-prod.basisit.de
offon2-prod.basisit.de
Other certificates including the domain name helmholtz-berlin.de
(limited to 100 certificates)
gate.helmholtz-berlin.de
portal.helmholtz-berlin.de
webapp.basisit.de
ise-psn-a-1.helmholtz-berlin.de
imap.helmholtz-berlin.de
ess.helmholtz-berlin.de
divuwiki.basisit.de
dms.helmholtz-berlin.de
nc.helmholtz-berlin.de
workadventure.helmholtz-berlin.de
collab.helmholtz-berlin.de
rica.helmholtz-berlin.de
rica.helmholtz-berlin.de
nc.basisit.de
kanboard.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
imap.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
mail.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
lyncpool.basisit.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
ebisscattest.helmholtz-berlin.de
nubes.helmholtz-berlin.de
divlog.helmholtz-berlin.de
indico.helmholtz-berlin.de
imap.helmholtz-berlin.de
hzb-intern.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
mail.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
www.helmholtz-berlin.de
sas.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
dect-controller-01.voip.helmholtz-berlin.de
wssadmin-intern.helmholtz-berlin.de
smtp.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
www.helmholtz-berlin.de
hc-awx.basisit.de
ebisscatprod.helmholtz-berlin.de
f-intern.helmholtz-berlin.de
e-intern.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
nc.basisit.de
onlyoffice.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
sbc-gw-01.voip.helmholtz-berlin.de
webapp.basisit.de
mapi.helmholtz-berlin.de
portal.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
office.helmholtz-berlin.de
icat.helmholtz-berlin.de
dirac-meister.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
ise-psn-w-2.helmholtz-berlin.de
indico.helmholtz-berlin.de
rica.helmholtz-berlin.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
rica.helmholtz-berlin.de
portal-hzb.helmholtz-berlin.de
voip.helmholtz-berlin.de
icat.helmholtz-berlin.de
pyweb1.basisit.de
sbc-user-01-int.voip.helmholtz-berlin.de
voip.helmholtz-berlin.de
ncoffice.basisit.de
autodiscover.helmholtz-berlin.de
divwiki.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
nc.basisit.de
ebissprod.helmholtz-berlin.de
gw-ibz-h2.helmholtz-berlin.de
jitsi1.basisit.de
ise-psn-a-1.helmholtz-berlin.de
dits.helmholtz-berlin.de
sip.helmholtz-berlin.de
indico.helmholtz-berlin.de
evetest.helmholtz-berlin.de
sharetex.helmholtz-berlin.de
divwiki.basisit.de
g-intern.helmholtz-berlin.de
nubes.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
nubes.helmholtz-berlin.de
lyncpool.basisit.de
ise-psn-w-2.helmholtz-berlin.de
radius.hmi.de
voip.helmholtz-berlin.de
ise-psn-w-1.helmholtz-berlin.de
dits1.helmholtz-berlin.de
divlog.helmholtz-berlin.de
nubes-test.helmholtz-berlin.de
portal.helmholtz-berlin.de
webapp.basisit.de
ise-psn-a-1.helmholtz-berlin.de
imap.helmholtz-berlin.de
ess.helmholtz-berlin.de
divuwiki.basisit.de
dms.helmholtz-berlin.de
nc.helmholtz-berlin.de
workadventure.helmholtz-berlin.de
collab.helmholtz-berlin.de
rica.helmholtz-berlin.de
rica.helmholtz-berlin.de
nc.basisit.de
kanboard.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
imap.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
mail.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
lyncpool.basisit.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
ebisscattest.helmholtz-berlin.de
nubes.helmholtz-berlin.de
divlog.helmholtz-berlin.de
indico.helmholtz-berlin.de
imap.helmholtz-berlin.de
hzb-intern.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
mail.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
www.helmholtz-berlin.de
sas.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
dect-controller-01.voip.helmholtz-berlin.de
wssadmin-intern.helmholtz-berlin.de
smtp.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
www.helmholtz-berlin.de
hc-awx.basisit.de
ebisscatprod.helmholtz-berlin.de
f-intern.helmholtz-berlin.de
e-intern.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
nc.basisit.de
onlyoffice.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
sbc-gw-01.voip.helmholtz-berlin.de
webapp.basisit.de
mapi.helmholtz-berlin.de
portal.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
office.helmholtz-berlin.de
icat.helmholtz-berlin.de
dirac-meister.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
ise-psn-w-2.helmholtz-berlin.de
indico.helmholtz-berlin.de
rica.helmholtz-berlin.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
rica.helmholtz-berlin.de
portal-hzb.helmholtz-berlin.de
voip.helmholtz-berlin.de
icat.helmholtz-berlin.de
pyweb1.basisit.de
sbc-user-01-int.voip.helmholtz-berlin.de
voip.helmholtz-berlin.de
ncoffice.basisit.de
autodiscover.helmholtz-berlin.de
divwiki.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
nc.basisit.de
ebissprod.helmholtz-berlin.de
gw-ibz-h2.helmholtz-berlin.de
jitsi1.basisit.de
ise-psn-a-1.helmholtz-berlin.de
dits.helmholtz-berlin.de
sip.helmholtz-berlin.de
indico.helmholtz-berlin.de
evetest.helmholtz-berlin.de
sharetex.helmholtz-berlin.de
divwiki.basisit.de
g-intern.helmholtz-berlin.de
nubes.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
nubes.helmholtz-berlin.de
lyncpool.basisit.de
ise-psn-w-2.helmholtz-berlin.de
radius.hmi.de
voip.helmholtz-berlin.de
ise-psn-w-1.helmholtz-berlin.de
dits1.helmholtz-berlin.de
divlog.helmholtz-berlin.de
nubes-test.helmholtz-berlin.de
Certificate
The complete raw certificate details for office.helmholtz-berlin.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIItzCCBp+gAwIBAgIRALiIcAxLZN1CunUADDOyMyAwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIyMDcxNDAwMDAwMFoXDTIzMDcxNDIz NTk1OVowgYgxCzAJBgNVBAYTAkRFMQ8wDQYDVQQIEwZCZXJsaW4xQzBBBgNVBAoM OkhlbG1ob2x0ei1aZW50cnVtIEJlcmxpbiBmw7xyIE1hdGVyaWFsaWVuIHVuZCBF bmVyZ2llIEdtYkgxIzAhBgNVBAMTGm9mZmljZS5oZWxtaG9sdHotYmVybGluLmRl MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0ewATrQSq5s8HkHUyBhu ZgD0/bpU9HGHSiX6jwJbjLMiUu99MrnCO0T8KzTX9UV4vcre0qK2n5rNXDaVLeTo bHmup0yiUjcTcdQMYp3NDwfpjtqTTqjTmTmMlcOFJ6T2rvLyMc1TChHQCRUwpknL 7m/sDKHlwH0zOuT9Jaei+h9b0mKKscBRDhxUqvnXBV0TiZPHmLJpdXCokI3r2mLp eSmcfiEgIxO9RcqP+eKMugUpHtpo7T1/gNceIlqj2sEDdxiQ/Ih5hyPXpVGaz79t VfDCXpphXItiI1nNBNOWfKAShtEWAtbg+rTr9ldoUTCTZ9af6TtSieijMbwlCDwu 8wXZCr0XHcs6m4QBieOMtBet0bWt1ChsbJFFtI2Mnpve62X6fxGJocfk7BlQ1ZOg 13iacXpBYESimQRyp4DUA+aCdAMOqbOMAmzR3agHw+C7m1Kxxl3mB2Gu2lGGenTv EfAjRVJu07ChCooG5HajmLvk6b8+CpJGkI45okUBSnUCzRnQ69xjgCYXP/dQIIg4 PMA8svLk8XIHIPYdHSHDZ7B2f6+2FXmLjfydAabPLeUjapLL7O9jLDG78QVpa5xP zq949QgPH1gWGrIh5N1OgGt44BMRVhY7+nAyRwaPwUteyRafJmpTVYtElrr5nQX1 tlDJ266MSuywF0LSia82IXUCAwEAAaOCA10wggNZMB8GA1UdIwQYMBaAFG8dNUkQ bDL6WaCevIroH5W+cXoMMB0GA1UdDgQWBBRoPx6yLrb51ABluZzVKjaR7cT/qDAO BgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICTzAlMCMGCCsGAQUF BwIBFhdodHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgIwPwYDVR0fBDgw NjA0oDKgMIYuaHR0cDovL0dFQU5ULmNybC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNB Q0E0LmNybDB1BggrBgEFBQcBAQRpMGcwOgYIKwYBBQUHMAKGLmh0dHA6Ly9HRUFO VC5jcnQuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcnQwKQYIKwYBBQUHMAGG HWh0dHA6Ly9HRUFOVC5vY3NwLnNlY3RpZ28uY29tMIIBfgYKKwYBBAHWeQIEAgSC AW4EggFqAWgAdgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYH8 0O+QAAAEAwBHMEUCIGvGitPZXHBhLjvLmsQwaOgZvx5jVKcAWoPLeBvsSm7RAiEA 1tM+sVgMR3lgytmNkExAJK659YQ7jG2sGNPamskpvJgAdgB6MoxU2LcttiDqOOBS HumEFnAyE4VNO9IrwTpXo1LrUgAAAYH80O+pAAAEAwBHMEUCIGO+uhoxfcPaHbBa YUEr4R37mUWNvQubHdUyKUSTjkIgAiEAsocwYUpcUWL5KBYDDL0k/pknGYEtwqLh kCXC/hdhUEwAdgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYH8 0O9xAAAEAwBHMEUCIQDTkU/UxplxPXu4AGUZLTNJheRSVCdN8rAIBt77p9r5QQIg Bn2samDRamGGtw710FhsCPAxq868Uc2p+7sl9OrAlxAwVQYDVR0RBE4wTIIab2Zm aWNlLmhlbG1ob2x0ei1iZXJsaW4uZGWCFm9mZm9uMS1wcm9kLmJhc2lzaXQuZGWC Fm9mZm9uMi1wcm9kLmJhc2lzaXQuZGUwDQYJKoZIhvcNAQEMBQADggIBABbRpMQo DiFfGjD5O2xkX38IV9zETE9DDo5Xl3HYGJ4gXQP/whOIokv/T1xqV7YmaMPgOfrC 0FSWyxZgT01TvLCc6dpz/aZabstm3prUac/x5UzFgnRjMJCm+jTPUoUbbvKuwN4R jSoDKKlsRTCwBY11Xc4D7s/OmkFYYICOX9CM6yQ7m46LE8Cls2bDKpAAmAYV2b7p Q+Do+jjrMQUuL3r938gr7/6kHrwnWlu/BcOVd34xI5Frag6UQB25IXKzYckO2hy2 FsyFDqDdd6g6ZpN63NAnY2NxZtviMFsPTZBdoVtZ//jRjFm7C8RXhI1LyNksFmTX t+GarJw8jJLF5aR2e0rm1PlQp4Khk20nAfpjhoOknNvJRaqF7PIeJBZGXNL8Eujr Xn49nGKDxBNh7adEaXQKdH2ohLGQd+EZk26+DZ5cbTlK/nsY9kuqGKmtRdyhQahB U4yd61ImHO+yhO5SDkTLaFe0LToNHnKpDtud5FDqNWVQ9CLmRcOIt+c4OR8/CR8m ijd/a0pJGUHd78iAM60/7Kw/uiKqXsAw2y7f8GiYa+4P2NeUa/kpL5OjCuDORuYs +xl8L/MzYv6ayYhL8vfoHV5JijQw1/vCv25Q9onWi8c2fb50t6oSrGxUsMSWXgDO Lh66KdGJRskT1INYZ7rrSNNQUrrRBnKhl10U -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0ewATrQSq5s8HkHUyBhu ZgD0/bpU9HGHSiX6jwJbjLMiUu99MrnCO0T8KzTX9UV4vcre0qK2n5rNXDaVLeTo bHmup0yiUjcTcdQMYp3NDwfpjtqTTqjTmTmMlcOFJ6T2rvLyMc1TChHQCRUwpknL 7m/sDKHlwH0zOuT9Jaei+h9b0mKKscBRDhxUqvnXBV0TiZPHmLJpdXCokI3r2mLp eSmcfiEgIxO9RcqP+eKMugUpHtpo7T1/gNceIlqj2sEDdxiQ/Ih5hyPXpVGaz79t VfDCXpphXItiI1nNBNOWfKAShtEWAtbg+rTr9ldoUTCTZ9af6TtSieijMbwlCDwu 8wXZCr0XHcs6m4QBieOMtBet0bWt1ChsbJFFtI2Mnpve62X6fxGJocfk7BlQ1ZOg 13iacXpBYESimQRyp4DUA+aCdAMOqbOMAmzR3agHw+C7m1Kxxl3mB2Gu2lGGenTv EfAjRVJu07ChCooG5HajmLvk6b8+CpJGkI45okUBSnUCzRnQ69xjgCYXP/dQIIg4 PMA8svLk8XIHIPYdHSHDZ7B2f6+2FXmLjfydAabPLeUjapLL7O9jLDG78QVpa5xP zq949QgPH1gWGrIh5N1OgGt44BMRVhY7+nAyRwaPwUteyRafJmpTVYtElrr5nQX1 tlDJ266MSuywF0LSia82IXUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 245286376201132129522515991051017270048 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Helmholtz-Zentrum Berlin für Materialien und Energie GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'office.helmholtz-berlin.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 856406551229385143462427836998976461953850227448440593774773069362556672772862279338436275733192426529484768595435139658457731301872057344459409690750410646343752186689016714424305976445127117461589879669220498323355396232646971047148300564602127512819963424725451222156319806833301456639465475718275838215786665789212559867696276617949649697800638678527191560335249191491541677999147284727612345957266514776250562631438479749304467166365429756866251775824646180508401057022235627643988182537750024510684944524471161086490899427271742312829362969492074387333277255976716659583437078878411458334237594361125162018242401007186638532327391147558428302560595473909563532241918498289041768980512022146665787619662183690955007120480860303140027253592267849720644853228522551432079333793652815765790166594627919551374362454902390085498929779029054936504681815880514986062998555172683818284169737849499016219521760190774860740604363733090889013776314915290453645790139770056199205876531848854500561574914089468204999223908601813692110761684901286889071247491745306454503620588136225054918805522626762138015950664758248196743281926577946686862392396555328994989194630526698246977865542966481511795283498414278678061477581468151335267113247093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 683f1eb22eb6f9d40065b99cd52a3691edc4ffa8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'office.helmholtz-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'offon1-prod.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'offon2-prod.basisit.de' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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