pontifex-acc.hum.uva.nl

Issued by TERENA SSL CA 2

About this certificate


This digital certificate with serial number 94:00:98:ef:36:7c:b2:6e:f0:93:d1:41:bf:15:6c:dc was issued on by TERENA .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

pontifex-acc.hum.uva.nl

Organization unit: Domain Control Validated

TERENA

Organization: TERENA

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 94:00:98:ef:36:7c:b2:6e:f0:93:d1:41:bf:15:6c:dc
Serial Number (int): 196728845254821085112540645865379163356
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: af:42:72:f3:95:f8:cf:8e:8f:ff:84:8a:77:f4:8e:4c:13:3e:95:6b
AuthorityKeyId: 5b:d0:8a:1c:9a:32:5b:e0:b5:dd:96:54:1b:e1:86:28:b0:fd:b6:bd

Fingerprint (sha1): eb:54:2c:38:e2:92:c2:a3:ed:23:67:2a:a9:51:5a:f4:45:f3:d4:91
Fingerprint (sha256): d0:9e:7e:ff:1d:49:da:e6:5b:96:0e:e9:9b:38:1b:42:bc:f5:a3:fe:da:cd:d6:c6:49:f0:4a:d4:d3:24:ef:ad

Issuing Certificate URL: http://crt.usertrust.com/TERENASSLCA2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.usertrust.com/TERENASSLCA2.crl

Check the revocation status for the current certificate on pontifex-acc.hum.uva.nl
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: pontifex-acc.hum.uva.nl

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgIRAJQAmO82fLJu8JPRQb8VbNwwDQYJKoZIhvcNAQELBQAw ZDELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvbGxhbmQxEjAQBgNVBAcT CUFtc3RlcmRhbTEPMA0GA1UEChMGVEVSRU5BMRgwFgYDVQQDEw9URVJFTkEgU1NM IENBIDIwHhcNMTQxMjE5MDAwMDAwWhcNMTcxMjE4MjM1OTU5WjBFMSEwHwYDVQQL ExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxIDAeBgNVBAMTF3BvbnRpZmV4LWFj Yy5odW0udXZhLm5sMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs9sz hkZx+sM3JRfjsL/UetPNmJ1E5UxKy20IyK8ujZXoaiXJd745FNB4sLc12M2v1wZb x7DVi/kZDLun3eBAJ1YamiMhl/ZPZQj6SUjabTWAz+bko0WEQgE5DO/6ft9fl9dx jZw8Z5KV9edFAH1niVLWUTFyUIhufMVMWFsBbCIbGR9P381ZKfYy43zN+C9nwRC6 415AgUo4eub6A0djwzHNFPx3Wn8wMgfwLKpIJR3xifTGsZEMoVQdQol+ejTHJVWW derzZERylvqnWi/EJCVUh4yb7WWvwrxdLi/UhRImR9WIcu74Bt3+XFFB65x9Syen gCKL5nbQXBea4GvL0vlTeQot9s/bvTfqS3wwigi3Xy7eskY/8Uk6rojwETNBIQPE 2lFJrQvOABq/nIyPtIqdcfuryckiLlP0yh5wthJSzOcQNwEpJPSqjwE8sRMB+wQG k5H2rCYynIAqpSCgE+XvMHsH8MLNpnAk/bPzH8kGDc3DTzNehMy6ys4jS2ZqSEtF H28qJlvhIYg2SxAAlBBsgovHllR5NORQHhmsDS+RX5dh1s26orN2SrgIaPbb10z/ iLRrOubM9WU2/vDQzY/5c33t+WKgjqRDIqL7W9JASFBDGJFm2Cx9ZYKQ9sek20fq iYQiQLXfC1z3833z+GxEzC9QOMXcmxqoLRPJazsCAwEAAaOCAXMwggFvMB8GA1Ud IwQYMBaAFFvQihyaMlvgtd2WVBvhhiiw/ba9MB0GA1UdDgQWBBSvQnLzlfjPjo// hIp39I5MEz6VazAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwIgYDVR0gBBswGTANBgsrBgEEAbIxAQIC HTAIBgZngQwBAgEwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybC51c2VydHJ1 c3QuY29tL1RFUkVOQVNTTENBMi5jcmwwbAYIKwYBBQUHAQEEYDBeMDUGCCsGAQUF BzAChilodHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVEVSRU5BU1NMQ0EyLmNydDAl BggrBgEFBQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTAiBgNVHREEGzAZ ghdwb250aWZleC1hY2MuaHVtLnV2YS5ubDANBgkqhkiG9w0BAQsFAAOCAQEAOo6Z yqbyvxptGQAyQN6Wu1VJ7MC1GCttvX4kF8oNNY2uTJyoXR6qIJVQHMjZX3A6gvuW TsU6qDSyNMOEVtGoSJWgGI5PgwM9rhLWWolKAiw5Qxxupy6+wVFb5gHiNBGgMPgl kxOFTKJc0wZEHu8BmQIx75zEn3ZX+BYEtesLvAzGrJ6L91KbCEoVXZafxwwjNYRX Y/Km1txtggEbEqm5NwsrwnJeZ6JTnblYhKDD1lF06OXPwimpAzs9bjOkvMVvOcPq SFaJKcDKXIWsG7tuvP80WXDIMFkdaQScHhDO31GVZVn+VsYEUrGW9oRQATZVLvY/ evxLqz385acj1J8AXA== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs9szhkZx+sM3JRfjsL/U etPNmJ1E5UxKy20IyK8ujZXoaiXJd745FNB4sLc12M2v1wZbx7DVi/kZDLun3eBA J1YamiMhl/ZPZQj6SUjabTWAz+bko0WEQgE5DO/6ft9fl9dxjZw8Z5KV9edFAH1n iVLWUTFyUIhufMVMWFsBbCIbGR9P381ZKfYy43zN+C9nwRC6415AgUo4eub6A0dj wzHNFPx3Wn8wMgfwLKpIJR3xifTGsZEMoVQdQol+ejTHJVWWderzZERylvqnWi/E JCVUh4yb7WWvwrxdLi/UhRImR9WIcu74Bt3+XFFB65x9SyengCKL5nbQXBea4GvL 0vlTeQot9s/bvTfqS3wwigi3Xy7eskY/8Uk6rojwETNBIQPE2lFJrQvOABq/nIyP tIqdcfuryckiLlP0yh5wthJSzOcQNwEpJPSqjwE8sRMB+wQGk5H2rCYynIAqpSCg E+XvMHsH8MLNpnAk/bPzH8kGDc3DTzNehMy6ys4jS2ZqSEtFH28qJlvhIYg2SxAA lBBsgovHllR5NORQHhmsDS+RX5dh1s26orN2SrgIaPbb10z/iLRrOubM9WU2/vDQ zY/5c33t+WKgjqRDIqL7W9JASFBDGJFm2Cx9ZYKQ9sek20fqiYQiQLXfC1z3833z +GxEzC9QOMXcmxqoLRPJazsCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 196728845254821085112540645865379163356 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pontifex-acc.hum.uva.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 733749503609881403278012641546861684310529196765145006040319054097748685682151695804515993243947818177398395772973561077380938758840140122648306151183280786754872057845031177857515516504763981088443613449142364816305582444458715445052687019955260780381043242113235417477852194110588232892076439947543835354103177438772888129768126247518220798480347080729803340415497866353744590471524110517165212269605976800252639918916943825651795491549860477096815806446017086565176470703841090371197646755113030136929074523640010331380123884525217878015970479025333643119863587869591826878707704838239195183621700996003285089874521910255624870742830257674144800073852023581331872555063941734347559306387765745041166691772244748587779957093257090252664768643275110734097692307538143200463349237096586334087517033333316444820137025423621404873363068824063795654479450419867170124447978526065371215365293116775718921308905440584934175194254314896650361494342600949604313542581485557289954918267489048784489192393406086559866965510915167334524973304644194953450032292147683522272571719389077124228497025588692238467322676915686905641497007846087517462330660531200212667037352182472812851290196848405884282274529204147852276326979473419525990002551611 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5bd08a1c9a325be0b5dd96541be18628b0fdb6bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af4272f395f8cf8e8fff848a77f48e4c133e956b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TERENASSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TERENASSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pontifex-acc.hum.uva.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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