tcs-escience-portal.terena.org

Issued by TERENA SSL CA 2

About this certificate


This digital certificate with serial number 01:07:68:a8:28:09:e3:bb:2c:05:e5:2f:7b:4d:df:c3 was issued on by TERENA .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

tcs-escience-portal.terena.org

Organization unit: Domain Control Validated

TERENA

Organization: TERENA

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 01:07:68:a8:28:09:e3:bb:2c:05:e5:2f:7b:4d:df:c3
Serial Number (int): 1367696767116097991571607873462853571
Serial Number lenght: 121 bits, 16 octets

SubjectKeyId: bd:43:47:19:e9:01:11:37:bd:73:6e:e8:6d:8c:26:66:d2:e5:52:86
AuthorityKeyId: 5b:d0:8a:1c:9a:32:5b:e0:b5:dd:96:54:1b:e1:86:28:b0:fd:b6:bd

Fingerprint (sha1): 9c:4d:24:50:6f:ce:1b:2a:d8:cc:3f:de:3a:7c:4a:73:9e:86:64:35
Fingerprint (sha256): 35:cc:a4:56:be:15:4e:10:98:86:73:0b:37:98:1f:27:67:68:f1:6b:e0:26:c3:87:a4:11:47:07:79:59:72:dd

Issuing Certificate URL: http://crt.usertrust.com/TERENASSLCA2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.usertrust.com/TERENASSLCA2.crl

Check the revocation status for the current certificate on tcs-escience-portal.terena.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: tcs-escience-portal.terena.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgIQAQdoqCgJ47ssBeUve03fwzANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMjAeFw0xNTAxMDIwMDAwMDBaFw0xODAxMDEyMzU5NTlaMEwxITAfBgNVBAsT GERvbWFpbiBDb250cm9sIFZhbGlkYXRlZDEnMCUGA1UEAxMedGNzLWVzY2llbmNl LXBvcnRhbC50ZXJlbmEub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAvBVl69pu1LSEpxtID9qlMz99sHL1bz4M71CZloERGg3tzu8tK/M8bDtqaFTH CoKFDCiD6LErMeg7+wzFPQKZp7JhGhLm53zH75Q/UlX20gXt80ZTqiiXAia8ge0i lNfBNUTYl7NSC1Ze4Q0PuOxDa7QNm8ukPAPW9X4ABjf5UydPZppITevI7QRMKgsC v9V0GQDWfY26a9vSD9/1SVuCWn926+q917YJFa81H3DdDt7StCZz0F7LGhgjmRN7 03G2nJAijHtnaCdkNyiRBeQ/d6hgnkEuOq5o/4zPmWjcNKekIlDNCNnVvxO2CIpZ mL4UBbyBiY3YwkDPCNX5NHXQgrCVSaRtJ+mfOZhIWJijjHyWsTHfPeElaMPLUnCN iUAr8PW9yNL9mSs6IroJJqAJHKtP5+qj8Jfz3jFcTF+13j6b6Y+zod/61N5kPDGM HKnrWkVuCDXFKVWK0flJidQ7W+qWg5ICkFMY7cxXGKXloclvr1ZGyaK54xaA10qn 5cUe2CYHOUoXVTWBf0+nqFKWw/wAT17hUQZ1gNoe1ZjmqjXogCfw7CeqSAl9tAti wb1NrSwUoizX8EpllRTTeKcjhyrWLqK/+v9oWL9N3rt/kSJFKFVkm46GMnVndltJ TAGX5bbZTs/Nfd60VjZjSxakE//HWsM0uOIPqAAeige6OlMCAwEAAaOCAXowggF2 MB8GA1UdIwQYMBaAFFvQihyaMlvgtd2WVBvhhiiw/ba9MB0GA1UdDgQWBBS9Q0cZ 6QERN71zbuhtjCZm0uVShjAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwIgYDVR0gBBswGTANBgsrBgEE AbIxAQICHTAIBgZngQwBAgEwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybC51 c2VydHJ1c3QuY29tL1RFUkVOQVNTTENBMi5jcmwwbAYIKwYBBQUHAQEEYDBeMDUG CCsGAQUFBzAChilodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVEVSRU5BU1NMQ0Ey LmNydDAlBggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTApBgNV HREEIjAggh50Y3MtZXNjaWVuY2UtcG9ydGFsLnRlcmVuYS5vcmcwDQYJKoZIhvcN AQELBQADggEBAJ8yFZHMYD87Iq0XlTD2wyhhKw1Cq3RHjoIfvDoh7MkX80viS5Xi /qxf+aGfiqYJgdhjOLFyX2PxqHCkBZHen7d5/os+boNbICMq9n2GYi3QWW2j6iwX gH5PglNf+aLrc1rvw3Z/F9F9znjDu+yKDxFROEtAF7XaoeU6vP2WKKkbTJfVBWyp Mt37aRQONZGPNF50eu8kdVuCPL6Fu7C6WtkBCMhVJ4zBBhYlJUfNpZSTibIWwPzi 6cEz1YGYAzdifJD1UeNoslvNwwSlwZqWJh8An+iOCstLM7g8XgJyI3wlqfUangbz LzBReWdcceKWnlr4kbmPoI8b2G98zit+mIU= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvBVl69pu1LSEpxtID9ql Mz99sHL1bz4M71CZloERGg3tzu8tK/M8bDtqaFTHCoKFDCiD6LErMeg7+wzFPQKZ p7JhGhLm53zH75Q/UlX20gXt80ZTqiiXAia8ge0ilNfBNUTYl7NSC1Ze4Q0PuOxD a7QNm8ukPAPW9X4ABjf5UydPZppITevI7QRMKgsCv9V0GQDWfY26a9vSD9/1SVuC Wn926+q917YJFa81H3DdDt7StCZz0F7LGhgjmRN703G2nJAijHtnaCdkNyiRBeQ/ d6hgnkEuOq5o/4zPmWjcNKekIlDNCNnVvxO2CIpZmL4UBbyBiY3YwkDPCNX5NHXQ grCVSaRtJ+mfOZhIWJijjHyWsTHfPeElaMPLUnCNiUAr8PW9yNL9mSs6IroJJqAJ HKtP5+qj8Jfz3jFcTF+13j6b6Y+zod/61N5kPDGMHKnrWkVuCDXFKVWK0flJidQ7 W+qWg5ICkFMY7cxXGKXloclvr1ZGyaK54xaA10qn5cUe2CYHOUoXVTWBf0+nqFKW w/wAT17hUQZ1gNoe1ZjmqjXogCfw7CeqSAl9tAtiwb1NrSwUoizX8EpllRTTeKcj hyrWLqK/+v9oWL9N3rt/kSJFKFVkm46GMnVndltJTAGX5bbZTs/Nfd60VjZjSxak E//HWsM0uOIPqAAeige6OlMCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1367696767116097991571607873462853571 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tcs-escience-portal.terena.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 767314087734925220964263673527984645179976971997937259166691759319748049856083759614305980530966512048740053169760503280427042883626140212453881524914778397727311588691961904897287125756908732965125322261706225460366133834014644861969229673820957417694388747490926211390491366160331011028035252594219796811816598668631169015842224727221348951863180469408403438920599923844636032642573765187568948340345559752491757056019123552939978103010679943140580594813843353533379906942627330640566526889634579879708342690289827165530141404278047156186063052350767285480705822006579265004982305161485633494729400498530350779267849978106899748087464009375716018610077343087751485763199239674277454880869674001465978515221580058099385954683876838241218395800681236259711804630592534993791257811314949737327169450169210735673762492752008484340159803106145781104419555655180666353067439947842512228920092889421994111713746703665707391537336487520090343417681543896120990125883674223393877159360835401264686968681519525733154505523677098640116275626443450241313121404607913434122061617734819802421697681835068705818429554022632802494830905530469604545861554702830505437449529081978802769016198698173743969618837265410938995786161671729947630892628563 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5bd08a1c9a325be0b5dd96541be18628b0fdb6bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bd434719e9011137bd736ee86d8c2666d2e55286 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TERENASSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TERENASSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tcs-escience-portal.terena.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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