oim-acc-be1.forux.nl
- Universiteit van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 4d:9b:bf:3c:1e:c4:2e:ad:73:fa:30:1e:5e:37:ef:3a was issued on by GEANT Vereniging.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit van Amsterdam
Organization:
Universiteit van Amsterdam
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 4d:9b:bf:3c:1e:c4:2e:ad:73:fa:30:1e:5e:37:ef:3aSerial Number (int): 103159240391957189004713401211193651002
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 7b:77:f5:68:4a:ba:10:97:00:7d:17:1e:60:73:d8:50:94:40:57:7d
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): cf:eb:69:16:69:86:43:a8:8b:e5:96:9a:ac:9a:58:1f:36:86:22:79
Fingerprint (sha256): 44:3a:42:9a:fb:f4:07:bd:ba:51:52:ee:da:71:5a:d2:5d:c0:1a:67:4f:5e:d9:06:75:40:b7:52:72:c7:0c:06
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate oim-acc-be1.forux.nl
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for oim-acc-be1.forux.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
oim-acc-be1.forux.nl
idm-acc-beheer.ic.uva.nl
idm-acc-beheer.ict.hva.nl
oim-acc-be2.forux.nl
idm-acc-beheer.ic.uva.nl
idm-acc-beheer.ict.hva.nl
oim-acc-be2.forux.nl
Other certificates including the domain name forux.nl
(limited to 100 certificates)
sap-dev-rudx.ic.uva.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
psql-prd1.forux.nl
sap-acc-ruax.ic.uva.nl
content-dev.sap.uva.nl
canvas-acc-apps2.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
unixbeheer.forux.nl
sap-prd-bupx.forux.nl
hva.nl
admin.uva.icts-dev-app1.aws.forux.nl
maven.ic.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
moodle-prd-db1.forux.nl
canvas-acc-apps2.forux.nl
sap-prd-ffpx.forux.nl
aanmelden.hva.nl
netdisco-acc1.forux.nl
hva.nl
uvacms-tst-ic1.forux.nl
expenseclaims.uva.nl
airm-acc.forux.nl
psql-prd1.forux.nl
admin.hva.icts-dev-app1.aws.forux.nl
gitlab-dev.forux.nl
ipam-dev1.forux.nl
tsm.uva.nl
lamp-prd-dba1.forux.nl
uvacms-tst-fe1.forux.nl
uvacms-tst-ic1.forux.nl
tst-aanmelden.hva.nl
api.ocp-tst1.ocp2.forux.nl
api.expenseclaims.uva.nl
ocpidp-acc.lb.forux.nl
content.sap.uva.nl
ocpidp-prd.lb.forux.nl
content-acc.sap.uva.nl
web-prd-wordpress1.forux.nl
expenseclaims-acc.uva.nl
loadbalancer.icts-dev-app1.aws.forux.nl
hva.nl
tower.forux.nl
jira.ic.uva.nl
cas-acc4.forux.nl
api.ocp-prd1.ocp1.forux.nl
builder.ic.uva.nl
airm-acc.forux.nl
nra.sis.uva.nl
admin.uva.icts-dev-app1.aws.forux.nl
monitor.forux.nl
moodle-dev.fdmci.hva.nl
unixbeheer.forux.nl
tower-dev.forux.nl
m.sis.uva.nl
uvacms-tst-be1.forux.nl
uvacms-tst-fe1.forux.nl
sap-dev-budx.ic.uva.nl
integration-test.cms.uva.nl
content.sap.uva.nl
psql-prd1.forux.nl
hva.nl
cmx-prd-anonymizer1.forux.nl
content.sap.uva.nl
vault.forux.nl
canvas-tst-apps1.forux.nl
uvacms-tst-ic1.forux.nl
sap-dev-ffdx.forux.nl
tsm-dev.ic.uva.nl
kassa.hva.icts-dev-app1.aws.forux.nl
kassa.uva.icts-dev-app1.aws.forux.nl
ldap-dev.ic.uva.nl
tlscertmon-dev.forux.nl
a10-devx.forux.nl
psql-dev1.forux.nl
monitor.forux.nl
nessus-prd1.forux.nl
uvacms-prd-ic1.forux.nl
hvacms-acc-fe1.forux.nl
moodle-prd-db1.forux.nl
uvacms-acc-fe1.forux.nl
test.uba.uva.nl
oim-prd-fe1.forux.nl
gitlab-dev.forux.nl
moodle-prd-db1.forux.nl
ipam.forux.nl
lamp-prd-dba1.forux.nl
hvacms-acc-ic1.forux.nl
smtp-acc3.forux.nl
sap-prd-rupx.ic.uva.nl
netdisco-acc1.forux.nl
hvacms-acc-ic1.forux.nl
loadbalancer.icts-dev-app1.aws.forux.nl
canvas-acc-apps1.forux.nl
labservant.ic.uva.nl
sap-tst-ruzx.forux.nl
sap-prd-bupx.forux.nl
ubbis-prd-web1.forux.nl
hvacms-acc-be1.forux.nl
ubdpc-acc-web2.forux.nl
Certificate
The complete raw certificate details for oim-acc-be1.forux.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBDqgAwIBAgIQTZu/PB7ELq1z+jAeXjfvOjANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjIwMjAyMDAwMDAwWhcNMjMwMjAyMjM1 OTU5WjB9MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAG A1UEBxMJQW1zdGVyZGFtMSMwIQYDVQQKExpVbml2ZXJzaXRlaXQgdmFuIEFtc3Rl cmRhbTEdMBsGA1UEAxMUb2ltLWFjYy1iZTEuZm9ydXgubmwwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDdQkHs/ReKgLKrOaBp8mQhRs1Neo2ML66XNQ2J k5vL7bi9Gyj/trozlPJR5UeQdZmMbbbTH6I4mSiaMdwsnSVLYo/WntnwEpYM2TpG kg0CC9NuJvN2pV6zeYFZGEqltZKeY4Iz1NiZ7rVANr26fDuYLLX1j1OGyGaYYcLA i64Ch/qxShlu2gV+74bTHE5BmaPC1QI7Ksl5aemM++n/9iqx8mY2hzRJRZ5m7Goa i6CDzBPBGy1X0NTxFdulA74BC5DDY23yEwzj6uRr64F/6OvARC3rUmi8htkz8CmW y1R+g07pLGz9Aqvg5GpaxkD7dTudP1/MXRy93v2s5myc7+ZjAgMBAAGjggIFMIIC ATAfBgNVHSMEGDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQUe3f1 aEq6EJcAfRceYHPYUJRAV30wDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYB BAGyMQECAk8wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMw CAYGZ4EMAQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2Vj dGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsG AQUFBzAChi5odHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FD QTQuY3J0MCkGCCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNv bTATBgorBgEEAdZ5AgQDAQH/BAIFADBqBgNVHREEYzBhghRvaW0tYWNjLWJlMS5m b3J1eC5ubIIYaWRtLWFjYy1iZWhlZXIuaWMudXZhLm5sghlpZG0tYWNjLWJlaGVl ci5pY3QuaHZhLm5sghRvaW0tYWNjLWJlMi5mb3J1eC5ubDANBgkqhkiG9w0BAQwF AAOCAgEAjdHDSDmOD7iLBaDuzlbxh+QYM3hFMrkpXthVneMs/uYjJ6Os5K1AbIg3 3NWnznCYH3+KXm4zuq1dBkhQU4iIZftCd6peegItbvAknepiCDRtCEOIF3xCCTEc fW78nVe4AwvGRBWmuBHmf3hdDVwDMMgoAItLKdnDO/E+NbQVtZgJTX+88301YBOC BJThuIQD2B5K2vFDQ20JXebo8XOLcV2on3OiPBRHqPLzk8i5ORk+KYG938R8C92S hCpx3chJS5Vq59KMKzv85j0aes8gsArwMiT5oCGeEaDgq3DzbbLIuRc2k7K8Wc5p gRbwpO0Q1T/vM48ecY+jw6y6ZE8ITakDYyoxr3immcYnm5YNnM0xZ1gI0vr74NWQ XrUnRE90febKYq57fKMs0qb42ZTgWdjxlQ9V/mmGxMSfWcxhFgFeylrr+cjrr47M SXWdz8RVTY9EPNtSDwZabf9/HYWcnCN3nTKN63XdTD3w3QzEuZ2HH8xayEMNx2eW oHyQeB0YpBRekPn3LPI1IzgcPqscvqX8Y3yS/7TEZu5D+YJhkM9k+7NP/KNTozJo HIgVBAbvJHr2RDVh0EqgMKcorvjXCUzD772qaxTwfPV03jBvBQYU8Tg5ydQ0nI7f MRN+buUaqTg2XXepCGicH8S06YLLBVh5R+fWQjetbZMi73WIZZ0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3UJB7P0XioCyqzmgafJk IUbNTXqNjC+ulzUNiZOby+24vRso/7a6M5TyUeVHkHWZjG220x+iOJkomjHcLJ0l S2KP1p7Z8BKWDNk6RpINAgvTbibzdqVes3mBWRhKpbWSnmOCM9TYme61QDa9unw7 mCy19Y9ThshmmGHCwIuuAof6sUoZbtoFfu+G0xxOQZmjwtUCOyrJeWnpjPvp//Yq sfJmNoc0SUWeZuxqGougg8wTwRstV9DU8RXbpQO+AQuQw2Nt8hMM4+rka+uBf+jr wEQt61JovIbZM/AplstUfoNO6Sxs/QKr4ORqWsZA+3U7nT9fzF0cvd79rOZsnO/m YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 103159240391957189004713401211193651002 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'oim-acc-be1.forux.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27931338199531174309418231474405216783924982070754715331066067326712465469820867355074189179647426962114554342563205912691839215615590978858796186034083223826899172721976333526913400152739088917018134911592351318943098526664191334251419437593183647889327809612357436645135954326637891081301890367073788499050484188666499745314074735353197460387594036154358739112665896496909667603066299093190882206725217879872339050155234824227482810931992027558560678857707203780232981132114358434359565880677913517186752949119699245101578220629707068535303717548121200032651229189157475035923654191303887577239910462804635964925539 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7b77f5684aba1097007d171e6073d8509440577d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oim-acc-be1.forux.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idm-acc-beheer.ic.uva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idm-acc-beheer.ict.hva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oim-acc-be2.forux.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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