ghost.mlz-garching.de
- Technische Universitaet Muenchen -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 21:42:59:92:fc:d6:be:b3:9b:0c:de:b1 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Technische Universitaet Muenchen
Organization:
Technische Universitaet Muenchen
Organization unit: Forschungs-Neutronenquelle Heinz Maier-Leibnitz (FRM II)
Organization unit: Forschungs-Neutronenquelle Heinz Maier-Leibnitz (FRM II)
State / Province:
Bayern
Locality: Muenchen
Country: DE
Locality: Muenchen
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 21:42:59:92:fc:d6:be:b3:9b:0c:de:b1Serial Number (int): 10293217430259521974650592945
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 92:2a:2d:2d:24:61:cf:f9:67:a3:f4:8d:b8:5c:26:30:d9:24:08:3b
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): d1:ab:4f:d4:7c:2e:a7:87:3d:4f:9d:68:d7:42:6b:0e:3d:83:01:5b
Fingerprint (sha256): 4b:b3:05:a3:6d:fe:fb:11:16:18:60:ff:3a:b7:19:e3:5c:89:08:48:61:a8:06:a6:ce:f9:87:c4:07:0d:5b:98
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate ghost.mlz-garching.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ghost.mlz-garching.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ghost-test.mlz-garching.de
ghost.mlz-garching.de
ghost.mlz-garching.de
Other certificates including the domain name mlz-garching.de
(limited to 100 certificates)
impulse.mlz-garching.de
physicslab.frm2.tum.de
impulse.mlz-garching.de
indico.frm2.tum.de
groupware.frm2.tum.de
mlz-garching.de
mlz-garching.de
excas02.frm2.tum.de
mlz-garching.de
excas02.frm2.tum.de
computing.mlz-garching.de
remote.mlz-garching.de
ftp.frm2.tum.de
exmbx02.frm2.tum.de
idm.mlz-garching.de
ghost.mlz-garching.de
ghost.mlz-garching.de
nmi3.eu
ghost.mlz-garching.de
training.mlz-garching.de
indico.frm2.tum.de
excas02.frm2.tum.de
ftp.frm2.tum.de
excas02.frm2.tum.de
groupware.frm2.tum.de
groupware.frm2.tum.de
speedtest.frm2.tum.de
groupware.frm2.tum.de
exmbx03.frm2.tum.de
ghost.mlz-garching.de
statusinfo.frm2.tum.de
statusinfo.frm2.tum.de
impulse.mlz-garching.de
impulse.mlz-garching.de
ghost.mlz-garching.de
exmbx01.frm2.tum.de
nmi3.eu
ftp.frm2.tum.de
impulse.mlz-garching.de
physicslab.frm2.tum.de
impulse.mlz-garching.de
indico.frm2.tum.de
groupware.frm2.tum.de
mlz-garching.de
mlz-garching.de
excas02.frm2.tum.de
mlz-garching.de
excas02.frm2.tum.de
computing.mlz-garching.de
remote.mlz-garching.de
ftp.frm2.tum.de
exmbx02.frm2.tum.de
idm.mlz-garching.de
ghost.mlz-garching.de
ghost.mlz-garching.de
nmi3.eu
ghost.mlz-garching.de
training.mlz-garching.de
indico.frm2.tum.de
excas02.frm2.tum.de
ftp.frm2.tum.de
excas02.frm2.tum.de
groupware.frm2.tum.de
groupware.frm2.tum.de
speedtest.frm2.tum.de
groupware.frm2.tum.de
exmbx03.frm2.tum.de
ghost.mlz-garching.de
statusinfo.frm2.tum.de
statusinfo.frm2.tum.de
impulse.mlz-garching.de
impulse.mlz-garching.de
ghost.mlz-garching.de
exmbx01.frm2.tum.de
nmi3.eu
ftp.frm2.tum.de
impulse.mlz-garching.de
Certificate
The complete raw certificate details for ghost.mlz-garching.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKsTCCCZmgAwIBAgIMIUJZkvzWvrObDN6xMA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE5 MDcwODA2MDA0MFoXDTIxMTAwOTA2MDA0MFowgb8xCzAJBgNVBAYTAkRFMQ8wDQYD VQQIDAZCYXllcm4xETAPBgNVBAcMCE11ZW5jaGVuMSkwJwYDVQQKDCBUZWNobmlz Y2hlIFVuaXZlcnNpdGFldCBNdWVuY2hlbjFBMD8GA1UECww4Rm9yc2NodW5ncy1O ZXV0cm9uZW5xdWVsbGUgSGVpbnogTWFpZXItTGVpYm5pdHogKEZSTSBJSSkxHjAc BgNVBAMMFWdob3N0Lm1sei1nYXJjaGluZy5kZTCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBALre7odzge4+m3dfHiWLyQOHowHPDcOPQAdtADEVloK+eNSC uKfZ8ea1KylMUwDU+Der/oSOKsxNVmUQcAOx4+OXDATGhHpGOroNSYge1wxy2vQE 1060QTKoRrAKTqShhMmHlliJkyXRq8kn3ull8s3CFS2q7MdDsSQQnuSDG2yGDoT/ G5sXu7+rwPHKz4IOtn4U1KbqlmEvHFC8cYjZ5XKCZbBarrxcEbAou994JjqxhOgA flVGM7FRlmGSZsJCcdAzNSLrP+rTOvkxCK/8j0eswbWQgmXpCyt9LYDN9JH+rJg1 Em6cn5AAF1b+BZlUno1MxZZGDKX0KOhnqwYNeiLbz86MVyCV3Vg3DaeZq6CpMJhq usS7LT2pOlrXBINmEckbtKAdBywGD0CC3DVrIkYX9BxSxpUj6qOGN2QqONswOKQG GVU8ZYiSzkXpamAzBGsWB7QCLgUkA1Jk9zNWtZ/gAi1Ki21dVrsw2PI14u+/XYrV quC6YbaJdjF38IlS+TEyEFMlmKX/k8DnZFkg5LNcL9DMG4lAUOKX1YEqeCyIck+w 1SD5WOaL/oItVZiMiSPPeGkgbYNDN9iVhqpLtuZI41rFyyXUIrzqZ2ye7yIUGBT4 BW2yPjXvv7Zx6jOelm/CtflZ+7Zsn9DJ8/He1WaFcIz8dxYD6uQZjAcWMyhLAgMB AAGjggXbMIIF1zBXBgNVHSAEUDBOMAgGBmeBDAECAjANBgsrBgEEAYGtIYIsHjAP Bg0rBgEEAYGtIYIsAQEEMBAGDisGAQQBga0hgiwBAQQEMBAGDisGAQQBga0hgiwC AQQEMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUF BwMBMB0GA1UdDgQWBBSSKi0tJGHP+Wej9I24XCYw2SQIOzAfBgNVHSMEGDAWgBRr OpiL+fJTidrgrbIyHgkf6Ko7dDA8BgNVHREENTAzghpnaG9zdC10ZXN0Lm1sei1n YXJjaGluZy5kZYIVZ2hvc3QubWx6LWdhcmNoaW5nLmRlMIGNBgNVHR8EgYUwgYIw P6A9oDuGOWh0dHA6Ly9jZHAxLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9w dWIvY3JsL2NhY3JsLmNybDA/oD2gO4Y5aHR0cDovL2NkcDIucGNhLmRmbi5kZS9k Zm4tY2EtZ2xvYmFsLWcyL3B1Yi9jcmwvY2FjcmwuY3JsMIHbBggrBgEFBQcBAQSB zjCByzAzBggrBgEFBQcwAYYnaHR0cDovL29jc3AucGNhLmRmbi5kZS9PQ1NQLVNl cnZlci9PQ1NQMEkGCCsGAQUFBzAChj1odHRwOi8vY2RwMS5wY2EuZGZuLmRlL2Rm bi1jYS1nbG9iYWwtZzIvcHViL2NhY2VydC9jYWNlcnQuY3J0MEkGCCsGAQUFBzAC hj1odHRwOi8vY2RwMi5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2Nh Y2VydC9jYWNlcnQuY3J0MIIDXgYKKwYBBAHWeQIEAgSCA04EggNKA0gAdgBvU3as MfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWvQK5LeAAAEAwBHMEUCIQDq BA3iXEIRE9yohxLEgCxJ3hPomGCZM+SCgCkuzLNmSAIgb7g5MDuxtqOfuQq9SvYg 5RhYwC4hm8GSzcN+iSM40NsAdQCq5wt/PLjVZshsLxaXnJ9EX2mrDrRTVYmy93oD AQTzzQAAAWvQK5MAAAAEAwBGMEQCIBGbZE3MZbda/mRhm2nlnWjfccI5aNuKeNXy WYpEv1A6AiAhzFtn/U3rBLgAE6Wqtl/e0muUwgTWJs2mxuynpfOxsAB2AFWB1MIW kDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABa9Ark8wAAAQDAEcwRQIhAP9I DZY6xfw8ZJW7oJMvffwFrio/j8ksqFYEJBZael6cAiAq5MCVhaguMBlerlzOVgZV y4dVEaq4ubdq2/kMIHMTqgB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6 qP3LAAABa9ArkrwAAAQDAEcwRQIhANULitwBKTIq+KrT9M49FCcN0Zsp14HCzmPz mhTV7Lu/AiAOwz8vsahg29uN4GCSIf4JuCK4ZHoKQeJvz43frCbkmgB3AKS5CZC0 GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABa9ArksQAAAQDAEgwRgIhAJRC r2oLeuM62czMHnWhO+D60hor4CPFR6R2q2VCJa8nAiEAxXn95y2dsP5QEY+G6KHL BUdCqhqYTP6M/vSddKLsEDMAdgC72d+8H4pxtZOUI5eqkntHOFeVCqtS6BqQlmQ2 jh7RhQAAAWvQK5K3AAAEAwBHMEUCICIh0KhCbhwuFP2xvEJQMhVvLEyvGibvBcPc v/wR1vsUAiEAmkkyO+i7AgKk0mVCAo4GEvQxed11diTmJWUF26HyCFEAdgBElGUu sO7Or8RAB9io/ijA2uaCvtjLMbU/0zOWtbaBqAAAAWvQK5XWAAAEAwBHMEUCIQCM d7CCKgv9n2ZTs+L0jh8jjHfTrGZgHbHi4OL1gvGRPAIgLNXEd4WZ7ZD2i4eKFe9l mQQY6m2f5Z1YQYrWgRahk2MwDQYJKoZIhvcNAQELBQADggEBAFrEchH5mXM9u50t J5Bu1e8SyeRfwmdzbdSshku/f64WXfBVV0ZAcTG1zSrFzKQyyp5ISXTYXUHw3CMN j0sq0NtflEzcLRJFggD1riiWGnKFwOOAeOsYWhA9GTUy6fNqm5v/Ry+c2Nf+Pssr 3NDuLKN4CzLPca20tfR/DAIN3i5svEw6NaK6ehLvOQKJHMr1C1HL+Xv2X5Yl2ULZ r/e6n3MF2t3Araon2F5vK5dPb5TGrlIqytdJFnZHp3MYkVsnEfLD4CgaMgaXmkS0 W3UchiiXXUWfwCwjpbf4Zv+qhr2Bi3RdI8zCk1tV1MSsTO53gclr7cTiZDvzEqP6 K3Isixo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAut7uh3OB7j6bd18eJYvJ A4ejAc8Nw49AB20AMRWWgr541IK4p9nx5rUrKUxTANT4N6v+hI4qzE1WZRBwA7Hj 45cMBMaEekY6ug1JiB7XDHLa9ATXTrRBMqhGsApOpKGEyYeWWImTJdGrySfe6WXy zcIVLarsx0OxJBCe5IMbbIYOhP8bmxe7v6vA8crPgg62fhTUpuqWYS8cULxxiNnl coJlsFquvFwRsCi733gmOrGE6AB+VUYzsVGWYZJmwkJx0DM1Ius/6tM6+TEIr/yP R6zBtZCCZekLK30tgM30kf6smDUSbpyfkAAXVv4FmVSejUzFlkYMpfQo6GerBg16 ItvPzoxXIJXdWDcNp5mroKkwmGq6xLstPak6WtcEg2YRyRu0oB0HLAYPQILcNWsi Rhf0HFLGlSPqo4Y3ZCo42zA4pAYZVTxliJLORelqYDMEaxYHtAIuBSQDUmT3M1a1 n+ACLUqLbV1WuzDY8jXi779ditWq4Lphtol2MXfwiVL5MTIQUyWYpf+TwOdkWSDk s1wv0MwbiUBQ4pfVgSp4LIhyT7DVIPlY5ov+gi1VmIyJI894aSBtg0M32JWGqku2 5kjjWsXLJdQivOpnbJ7vIhQYFPgFbbI+Ne+/tnHqM56Wb8K1+Vn7tmyf0Mnz8d7V ZoVwjPx3FgPq5BmMBxYzKEsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10293217430259521974650592945 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-08 06:00:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-09 06:00:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Muenchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Technische Universitaet Muenchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Forschungs-Neutronenquelle Heinz Maier-Leibnitz (FRM II)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ghost.mlz-garching.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 762366461531002408345199541336051877181351922552390279207960066018884548878304222993961554647674717544753079060769151042154605088358541137415304696495940276165204987661050353912446298502678742474339234257307761799581944396065762154230268363288059311737626956011769277203066116758426112393942753911086621808568173733996005994372817382587826638178289582404444619026494314779573971470132480455586567264756534557500514680572661167456280443943119628744518272538670041546727327335784353632336163858685861691240859673252809944486091057734251680967605892602331307939768622805070161044257813310298522886270697809569520803694512634487946158835597833183304097765924718326164827966719527761880076084414764263219068684116396502305095847970338860181623293081829265416810375721612972424518322445591365155755072277997717274867980654835311750901163665253310069156335633637230939361526249336199798753541234535923992821857777639523847203983407555781394843706208092299802872492062507117372305734284753486868838771072042436953586350249510747124266407874002967731487663549854376856422694782470934276141914345153645973467468710439690211446895064366178692964105656566781042212111555738903365261032569927793159576792567272571458513578031156501823842329765963 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 922a2d2d2461cff967a3f48db85c2630d924083b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ghost-test.mlz-garching.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ghost.mlz-garching.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (846 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (842 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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