alemserv1.tnw.utwente.nl

Issued by TERENA SSL CA 2

About this certificate


This digital certificate with serial number 62:9b:81:90:95:07:5e:76:3f:ff:43:f6:62:fa:49:df was issued on by TERENA .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

alemserv1.tnw.utwente.nl

Organization unit: Domain Control Validated

TERENA

Organization: TERENA

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 62:9b:81:90:95:07:5e:76:3f:ff:43:f6:62:fa:49:df
Serial Number (int): 131071777485811101974439008861792389599
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 6c:94:f3:1c:82:ec:98:3a:63:09:46:d6:0f:ab:93:f1:7c:17:df:cd
AuthorityKeyId: 5b:d0:8a:1c:9a:32:5b:e0:b5:dd:96:54:1b:e1:86:28:b0:fd:b6:bd

Fingerprint (sha1): ff:c6:5f:3c:82:e5:18:0a:16:11:90:7d:70:04:c5:d8:b5:3f:a5:77
Fingerprint (sha256): 9c:66:bf:97:62:63:21:e8:b0:b9:37:91:88:b1:f6:05:cb:5b:d2:35:73:de:7e:a0:77:a1:7a:af:a3:a2:be:f2

Issuing Certificate URL: http://crt.usertrust.com/TERENASSLCA2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.usertrust.com/TERENASSLCA2.crl

Check the revocation status for the current certificate on alemserv1.tnw.utwente.nl
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: alemserv1.tnw.utwente.nl

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgIQYpuBkJUHXnY//0P2YvpJ3zANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMjAeFw0xNTAxMzAwMDAwMDBaFw0xODAxMjkyMzU5NTlaMEYxITAfBgNVBAsT GERvbWFpbiBDb250cm9sIFZhbGlkYXRlZDEhMB8GA1UEAxMYYWxlbXNlcnYxLnRu dy51dHdlbnRlLm5sMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArNEB 9pwigRSY5u/DrIcdgHY3D7eIPPBZL68S3GRlDJII/DZ0aNlVNQflJvD11IQTHkiG lvTJ2u8B1h308DDJ1cYXLGMfGaegQUlimNATduA1SI6R5dWrNdSs1cDEycNOWgxE 4iS3ppt1ulLpVNom27PIaGJR6A7elf4/ZBaf2hnZ/I6zkNuYlbeudNNHdQiWgH1H tJWvDO925gloMblTTY3206/kHJwbvgPqf5sYGSLXeAQHZFh7ikN2ufWIheqIibDC 1UUcIt6vJxNnZAjoEXyXv7fAy/Wk5Q8KUtxBorKMqfQf+9MIo9IlbHnlyWImexrA P1Tlue8u1yubGCeZtC4G8/Bwa+MC8kY+xh8QcLid3GsRFOM8tsO9gYeg78YjvmJi vRnX4YeKZq8HIcgiDC/IJ64vbH137ko9UxuzFiXTxhS+x8sA0ORu8OhnL/1C834m N1loeZXGbXRR+tBsu6OUmZsGK87KXWjLCo62seB+lbqzX5wI2deT5v/9YZ6L437f WMzzq2EYxaUiuRT0rsdun7oC0wN7ha006gH2PVWgeFbCWbONQhq2ojfBkwP9RTNq BAQKbcby24tI87Y/TVd2+SyLNlfeTSERe8XNvp48m8wKZ4nbYvgAX3evs0HFPgzE F5orXtG0gDdIQw0QPBOALFONo15SBttyQPoc5o8CAwEAAaOCAXQwggFwMB8GA1Ud IwQYMBaAFFvQihyaMlvgtd2WVBvhhiiw/ba9MB0GA1UdDgQWBBRslPMcguyYOmMJ RtYPq5PxfBffzTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwIgYDVR0gBBswGTANBgsrBgEEAbIxAQIC HTAIBgZngQwBAgEwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybC51c2VydHJ1 c3QuY29tL1RFUkVOQVNTTENBMi5jcmwwbAYIKwYBBQUHAQEEYDBeMDUGCCsGAQUF BzAChilodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVEVSRU5BU1NMQ0EyLmNydDAl BggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTAjBgNVHREEHDAa ghhhbGVtc2VydjEudG53LnV0d2VudGUubmwwDQYJKoZIhvcNAQELBQADggEBAG0r jz2uTzjzwB2suk8v4sBEVhzC3VSgWlB+ZAluIOHObNVWNovVHnm/VmyGV9LepiEx 7y9ijjdG2BgH4MFmgMyluSaXg/t+/v0y/Jav6rw6ExAmaNxBa1kydZdmve3A1orC geQLVq2rOJleo10yCcBmiSkRCAkDyk3YEK7MoxKk0aYvs2vmhiI2+Qxa/7TNzJUW lnKtl/KkkLSG5dDfW8W+ROLSLLPx8sgIJf3Kp8pTl3s8anQ2WHn/jy5wLmrgrGfi Wo1yZwn843Gx/QP7xde5FNuRxj4NaMHqfWd3yroytBPJocJhJbKcf7EckoiMvZMQ in3A00v4CV1VcbX8VYM= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArNEB9pwigRSY5u/DrIcd gHY3D7eIPPBZL68S3GRlDJII/DZ0aNlVNQflJvD11IQTHkiGlvTJ2u8B1h308DDJ 1cYXLGMfGaegQUlimNATduA1SI6R5dWrNdSs1cDEycNOWgxE4iS3ppt1ulLpVNom 27PIaGJR6A7elf4/ZBaf2hnZ/I6zkNuYlbeudNNHdQiWgH1HtJWvDO925gloMblT TY3206/kHJwbvgPqf5sYGSLXeAQHZFh7ikN2ufWIheqIibDC1UUcIt6vJxNnZAjo EXyXv7fAy/Wk5Q8KUtxBorKMqfQf+9MIo9IlbHnlyWImexrAP1Tlue8u1yubGCeZ tC4G8/Bwa+MC8kY+xh8QcLid3GsRFOM8tsO9gYeg78YjvmJivRnX4YeKZq8HIcgi DC/IJ64vbH137ko9UxuzFiXTxhS+x8sA0ORu8OhnL/1C834mN1loeZXGbXRR+tBs u6OUmZsGK87KXWjLCo62seB+lbqzX5wI2deT5v/9YZ6L437fWMzzq2EYxaUiuRT0 rsdun7oC0wN7ha006gH2PVWgeFbCWbONQhq2ojfBkwP9RTNqBAQKbcby24tI87Y/ TVd2+SyLNlfeTSERe8XNvp48m8wKZ4nbYvgAX3evs0HFPgzEF5orXtG0gDdIQw0Q PBOALFONo15SBttyQPoc5o8CAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 131071777485811101974439008861792389599 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alemserv1.tnw.utwente.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 705029548831875255405214552579379126633121451174995692560413540004338396275754448619006662895228983498077827884874019646256744235161847286260338565332714324604905191815700366164466202440596641218805502943081614228087999643649878127409125965817380242824906792099464081684433834633800982071012262548877319370002974452114736350621242261478415530731901367627141994941212306506179732818454725860105678245659818481199246499396093788542409322712836505151603900933776355425200925737444112134153197802895021950668915237242502462133851470309111379660762166686244802844484644680193665679494988025850185306855106433091281906470791556664432812704529899223231240706120001686073928980695456421003519777001905435795113514784978399896585486091098756240595594769351611608285217428531286177935060951149719202682107744634236421430361226145468362058700034673627921467507628656973986061210836064520938393434543069742825817849614248327101376490129261262277648557879868932661899592092183349084041035509277681501239188571309244795246701125142666083695636789997205800416870825723653650169645574731579418001616160663914778696526530434452717921011976770761467034018680169107371110461650755277317120682515361525302472202846783045713925743842802550421849659729551 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5bd08a1c9a325be0b5dd96541be18628b0fdb6bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c94f31c82ec983a630946d60fab93f17c17dfcd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TERENASSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TERENASSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alemserv1.tnw.utwente.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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