de-hh-vfic01.ger.hkl-baumaschinen.de
- Rolf Tittmann -
Issued by StartCom Class 2 IV Server CA
About this certificate
This digital certificate with serial number 1b:d2:0f:03:58:67:17:84:df:3e:ea:94:04:c5:3a:d8 was issued on by StartCom Ltd..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Rolf Tittmann
Organization:
Rolf Tittmann
State / Province:
Schleswig-Holstein
Locality: Tangstedt
Country: DE
Locality: Tangstedt
Country: DE
StartCom Ltd.
Organization:
StartCom Ltd.
Organization unit: StartCom Certification Authority
Organization unit: StartCom Certification Authority
Country:
IL
This certificate has expire since
Certificate Details
Serial Number (hex): 1b:d2:0f:03:58:67:17:84:df:3e:ea:94:04:c5:3a:d8Serial Number (int): 36979842727672895977428116270852946648
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 79:4e:89:ff:87:7e:dd:d1:d7:71:5b:49:de:79:36:af:59:19:cc:de
AuthorityKeyId: 94:de:85:41:2a:a5:d9:45:f6:60:2c:2e:4c:93:09:a6:2c:23:7e:3e
Fingerprint (sha1): 84:4a:02:51:f2:d6:16:f6:d4:1f:c8:e4:8d:79:d9:09:35:cc:9f:e3
Fingerprint (sha256): 50:02:e3:d7:e3:66:14:ea:59:32:fe:4f:42:06:55:9b:47:d5:f7:a5:d6:64:49:4c:45:36:72:ab:58:2c:fa:f3
Issuing Certificate URL: http://aia.startssl.com/certs/sca.server2.crt
Revocation information
OCSP Server: http://ocsp.startssl.comCRL Distribution Point: http://crl.startssl.com/sca-server2.crl
Check the revocation status for certificate de-hh-vfic01.ger.hkl-baumaschinen.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for de-hh-vfic01.ger.hkl-baumaschinen.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
de-hh-vfic01.ger.hkl-baumaschinen.de
de-hh-vfic02.ger.hkl-baumaschinen.de
de-hh-vfic02.ger.hkl-baumaschinen.de
Other certificates including the domain name hkl-baumaschinen.de
(limited to 100 certificates)
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
enterpriseenrollment.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
*.hkl-baumaschinen.de
kiosk.laloupe.com
intranet.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
test-mingle.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
intranet.hkl-baumaschinen.de
tennis.yumpu100.com
monitoring.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
intranet.hkl-baumaschinen.de
go.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
gasthh.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
www.hkl-baumaschinen.de
workflow.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mail.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
de-hh-vfic01.ger.hkl-baumaschinen.de
*.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
gateway.hkl-baumaschinen.de
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
test-webapps.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
enterpriseenrollment.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
*.hkl-baumaschinen.de
kiosk.laloupe.com
intranet.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mitarbeiter.hkl-baumaschinen.de
test-mingle.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
intranet.hkl-baumaschinen.de
tennis.yumpu100.com
monitoring.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
intranet.hkl-baumaschinen.de
go.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
gasthh.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
www.hkl-baumaschinen.de
workflow.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
mail.hkl-baumaschinen.de
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
de-hh-vfic01.ger.hkl-baumaschinen.de
*.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
gateway.hkl-baumaschinen.de
tennis.yumpu100.com
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
tennis.yumpu100.com
kiosk.laloupe.com
*.hkl-baumaschinen.de
test-webapps.hkl-baumaschinen.de
tennis.yumpu100.com
kiosk.laloupe.com
kiosk.laloupe.com
kiosk.laloupe.com
tennis.yumpu100.com
Certificate
The complete raw certificate details for de-hh-vfic01.ger.hkl-baumaschinen.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGljCCBX6gAwIBAgIQG9IPA1hnF4TfPuqUBMU62DANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDIgSVYgU2VydmVyIENBMB4XDTE2MDQyMDA2NTcyNFoXDTE4MDQy MDA2NTcyNFowgYUxCzAJBgNVBAYTAkRFMRswGQYDVQQIDBJTY2hsZXN3aWctSG9s c3RlaW4xEjAQBgNVBAcMCVRhbmdzdGVkdDEWMBQGA1UECgwNUm9sZiBUaXR0bWFu bjEtMCsGA1UEAwwkZGUtaGgtdmZpYzAxLmdlci5oa2wtYmF1bWFzY2hpbmVuLmRl MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApsxU4ov6PIshInaEyyYT KX1rUg2Vst1WUR6Q6qrxSFqkYb4w3K8rnmcxsoLjbTcSVtTCzhsNRPFq3Z4aNMjt lDNmAp7Fte9U9KDyzX9i5JCUehRyPhvr0O7RwnPI0BhWHXTqJcmc/rbWaqCysvsZ brYxOwxNq9LkFH7+CHG1voWh8ZciTB6MVARDQyCMpV3JhvYtPE1zimaVZFt6WHEC /rwCDuRmqldNwsmdvdoqeySQULrYImlJnbpABEADi+uosvIDYIXZQiAw4RK62pdP Gw07qFz7eTq9GeHKhh7ymsbEt5c8kb+/9XlXaCUiZWnTtgFKn7soPB705eiC8rId BusPq35YzoYfGiyR3kYPIdXTxS7Iz/SloxsLHZXDxWz0vjQ6XExj1apdMZJa4jaT bbz2l3nwOCvC9F5Pq+kVyjr6SN8IW/YBQ2Kmh9nuc5Jvb3dCELxlD0zH17BMMovS DtH3t+wQLWJmiFs4aYmbs8sb0Nh1WdYNXcSUWxBOBPfZaAN5sfwRThhlZFbfixmC tt1yb+xgkSgi13QwRXDubF+jh7BkIepJL7K2N0dy+NlpInkAFS+WQtxK5KAtfunW epdNX2r5cuCB7QGJJyqJ9L0X5bI4h6gFfJyl7Su5tPyjAH21vjbxols5KjIVbjCy 1Toe8deoOTkQHKzh0xnOL5cCAwEAAaOCAgwwggIIMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwCQYDVR0TBAIwADAdBgNVHQ4E FgQUeU6J/4d+3dHXcVtJ3nk2r1kZzN4wHwYDVR0jBBgwFoAUlN6FQSql2UX2YCwu TJMJpiwjfj4wbwYIKwYBBQUHAQEEYzBhMCQGCCsGAQUFBzABhhhodHRwOi8vb2Nz cC5zdGFydHNzbC5jb20wOQYIKwYBBQUHMAKGLWh0dHA6Ly9haWEuc3RhcnRzc2wu Y29tL2NlcnRzL3NjYS5zZXJ2ZXIyLmNydDA4BgNVHR8EMTAvMC2gK6AphidodHRw Oi8vY3JsLnN0YXJ0c3NsLmNvbS9zY2Etc2VydmVyMi5jcmwwVQYDVR0RBE4wTIIk ZGUtaGgtdmZpYzAxLmdlci5oa2wtYmF1bWFzY2hpbmVuLmRlgiRkZS1oaC12Zmlj MDIuZ2VyLmhrbC1iYXVtYXNjaGluZW4uZGUwIwYDVR0SBBwwGoYYaHR0cDovL3d3 dy5zdGFydHNzbC5jb20vMFAGA1UdIARJMEcwCAYGZ4EMAQIDMDsGCysGAQQBgbU3 AQIFMCwwKgYIKwYBBQUHAgEWHmh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGlj eTATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXsxqxxME NcL87bGsZ1QAnotF30L8N2Ct2+f5RiXOX8Lv+JC0sEyQERuDLdxLgx4W0UYINSmy fo8GiQouZBFLXLG/ZZnAiPXFF7CxcnnubnrTolH78Q52TeuuA0Js9UJsH8AQnjSH yPYr0xIqP3y06RmT8ru5ATNF265Rez4dhDWMpBv+OKcdwzMQEVA0sKFzPwnSDVZO 8b+nfYMHMhAO6YwtJsyrdBLfd0ovHuugZyIVLUUXAUx/O1pwhagQkP86Id6Dc1pt jNcqX17byd2sFeIJUeFOnU00WP9CfPQMz3o7orqeTlTd06f0Y2I4ZxoP0/DA9LkS UmQpj6RiayoL6g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApsxU4ov6PIshInaEyyYT KX1rUg2Vst1WUR6Q6qrxSFqkYb4w3K8rnmcxsoLjbTcSVtTCzhsNRPFq3Z4aNMjt lDNmAp7Fte9U9KDyzX9i5JCUehRyPhvr0O7RwnPI0BhWHXTqJcmc/rbWaqCysvsZ brYxOwxNq9LkFH7+CHG1voWh8ZciTB6MVARDQyCMpV3JhvYtPE1zimaVZFt6WHEC /rwCDuRmqldNwsmdvdoqeySQULrYImlJnbpABEADi+uosvIDYIXZQiAw4RK62pdP Gw07qFz7eTq9GeHKhh7ymsbEt5c8kb+/9XlXaCUiZWnTtgFKn7soPB705eiC8rId BusPq35YzoYfGiyR3kYPIdXTxS7Iz/SloxsLHZXDxWz0vjQ6XExj1apdMZJa4jaT bbz2l3nwOCvC9F5Pq+kVyjr6SN8IW/YBQ2Kmh9nuc5Jvb3dCELxlD0zH17BMMovS DtH3t+wQLWJmiFs4aYmbs8sb0Nh1WdYNXcSUWxBOBPfZaAN5sfwRThhlZFbfixmC tt1yb+xgkSgi13QwRXDubF+jh7BkIepJL7K2N0dy+NlpInkAFS+WQtxK5KAtfunW epdNX2r5cuCB7QGJJyqJ9L0X5bI4h6gFfJyl7Su5tPyjAH21vjbxols5KjIVbjCy 1Toe8deoOTkQHKzh0xnOL5cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 36979842727672895977428116270852946648 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 2 IV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-20 06:57:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-20 06:57:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Schleswig-Holstein' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Tangstedt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Rolf Tittmann' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'de-hh-vfic01.ger.hkl-baumaschinen.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 680477165782436569198096828909248242846685739033082224938730421027313350965743251695505209083110851543046395616759149960668866568490462423658392612120539360629880469573284792018978598644265672548485354258921918540409341482271200269022029718307761056837850861599204147296669333899627644807911642181068349086856066974540218829941380510956528188237571305453454790418253564062995641356623844152074266038746199647765285093629450536539700052577564710541960765530411380988969664086055704563343439360019860506744150283697734646473311286608419819877903394181375063401170234705470530946288179517262530451352556857648819542508104356489968702244687103853842397257323914428975238293848248794619959770632684631050882335673708627065306238031277721709058919259341229566443267020683999948448800115515312487204201428977602672045224114321483753084177873225372511782704401524109787971135736596587146489664481257240330440426070693455627800040134628461336675328183832375101780032992786466529009131008674986004906079919351756062423851573009358282507892355306648793460421077500427421779747817244967783950647406778398817437390665171822596765670453487654622803388540411849371918033128429609026942251327565531734956586077034663846756571141004467520591056744343 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 794e89ff877eddd1d7715b49de7936af5919ccde . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 94de85412aa5d945f6602c2e4c9309a62c237e3e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (78 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'de-hh-vfic01.ger.hkl-baumaschinen.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'de-hh-vfic02.ger.hkl-baumaschinen.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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