daibasi.dai-lab.de
- Technische Universitaet Berlin -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 20:68:f2:d1:be:c4:ed:7d:d3:88:e6:54 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
Technische Universitaet Berlin
Organization:
Technische Universitaet Berlin
Organization unit: DAI-Labor
Organization unit: DAI-Labor
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 20:68:f2:d1:be:c4:ed:7d:d3:88:e6:54Serial Number (int): 10030395281327702580117694036
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 59:79:df:a6:37:75:ff:c5:f9:61:fe:73:c7:c2:d0:fc:74:e8:66:30
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): df:8d:7a:2a:37:eb:0e:2c:3d:ff:f3:3d:9a:56:39:d8:57:65:7c:22
Fingerprint (sha256): 5d:e7:df:03:d6:35:8b:84:c1:0e:a9:fb:8e:a1:9a:a5:bf:18:b7:c5:5b:a1:74:2b:ad:bb:47:a6:0b:6e:ce:6c
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate daibasi.dai-lab.de
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for daibasi.dai-lab.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
daibasi.aot.tu-berlin.de
daibasi.dai-lab.de
daibasi.dai-labor.de
daibasi.dai-lab.de
daibasi.dai-labor.de
Other certificates including the domain name dai-lab.de
(limited to 100 certificates)
www.dai-labor.de
dai-labor.de
winterser.dai-lab.de
jenkins.dai-labor.de
edu.dai-labor.de
gitlab-edu.dai-labor.de
aot2018.aot.tu-berlin.de
115bot.irml.dai-labor.de
dai-labor.de
intern.dai-labor.de
cucm-pub-ms.cm.dai-lab.de
vcenter.dai-lab.de
cucm-pub-ms.cm.dai-lab.de
ia.dailab.de
daiccm1.dai-lab.de
imp-pub-ms.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
cvs.dai-labor.de
imp-pub.cm.dai-lab.de
intern.dai-labor.de
flexnet.dai-labor.de
www.dai-labor.de
daitool.dai-labor.de
dai-labor.de
mail.dai-labor.de
diginet-ps.dai-lab.de
dainas.dai-labor.de
mail.dai-labor.de
old-diginet-ps.dai-lab.de
dai-lab.de
daiwordpress-neu.dai-lab.de
imp-sub.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
daibasi.dai-lab.de
imp-pub-ms.cm.dai-lab.de
daibasi.dai-lab.de
registry.gitlab.dai-labor.de
ssds2.aot.tu-berlin.de
repositories.dai-labor.de
wlc-5508.mgmt.dai-lab.de
exp-c-2.cm.dai-lab.de
diginetdataint.dai-labor.de
cms.cm.dai-lab.de
www.dai-labor.de
mail.dai-labor.de
www.redmine.dai-labor.de
www.dai-labor.de
dainet-guest-gw.dai-lab.de
registry.gitlab.dai-labor.de
repositories.dai-labor.de
mail.dai-labor.de
tuleap.dai-labor.de
cuc-pub-ms.cm.dai-lab.de
www.dai-lab.de
gitlab-edu.dai-labor.de
newsreel-edu.aot.tu-berlin.de
mail.dai-labor.de
dainas.dai-labor.de
dc3.dai-lab.de
dai-labor.de
cvs.dai-labor.de
daneser.dai-lab.de
cluster.gc.dai-lab.de
diginet-services.aot.tu-berlin.de
teampass.dai-labor.de
daneser.dai-lab.de
www.dai-labor.de
scb-erp.aot.tu-berlin.de
dc3.dai-lab.de
windnode.aot.tu-berlin.de
cucm-pub-ms.cm.dai-lab.de
jenkins.dai-labor.de
cms.cm.dai-lab.de
dai-labor.de
dai-labor.de
winterser.dai-lab.de
jenkins.dai-labor.de
edu.dai-labor.de
gitlab-edu.dai-labor.de
aot2018.aot.tu-berlin.de
115bot.irml.dai-labor.de
dai-labor.de
intern.dai-labor.de
cucm-pub-ms.cm.dai-lab.de
vcenter.dai-lab.de
cucm-pub-ms.cm.dai-lab.de
ia.dailab.de
daiccm1.dai-lab.de
imp-pub-ms.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
cvs.dai-labor.de
imp-pub.cm.dai-lab.de
intern.dai-labor.de
flexnet.dai-labor.de
www.dai-labor.de
daitool.dai-labor.de
dai-labor.de
mail.dai-labor.de
diginet-ps.dai-lab.de
dainas.dai-labor.de
mail.dai-labor.de
old-diginet-ps.dai-lab.de
dai-lab.de
daiwordpress-neu.dai-lab.de
imp-sub.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
daibasi.dai-lab.de
imp-pub-ms.cm.dai-lab.de
daibasi.dai-lab.de
registry.gitlab.dai-labor.de
ssds2.aot.tu-berlin.de
repositories.dai-labor.de
wlc-5508.mgmt.dai-lab.de
exp-c-2.cm.dai-lab.de
diginetdataint.dai-labor.de
cms.cm.dai-lab.de
www.dai-labor.de
mail.dai-labor.de
www.redmine.dai-labor.de
www.dai-labor.de
dainet-guest-gw.dai-lab.de
registry.gitlab.dai-labor.de
repositories.dai-labor.de
mail.dai-labor.de
tuleap.dai-labor.de
cuc-pub-ms.cm.dai-lab.de
www.dai-lab.de
gitlab-edu.dai-labor.de
newsreel-edu.aot.tu-berlin.de
mail.dai-labor.de
dainas.dai-labor.de
dc3.dai-lab.de
dai-labor.de
cvs.dai-labor.de
daneser.dai-lab.de
cluster.gc.dai-lab.de
diginet-services.aot.tu-berlin.de
teampass.dai-labor.de
daneser.dai-lab.de
www.dai-labor.de
scb-erp.aot.tu-berlin.de
dc3.dai-lab.de
windnode.aot.tu-berlin.de
cucm-pub-ms.cm.dai-lab.de
jenkins.dai-labor.de
cms.cm.dai-lab.de
dai-labor.de
Certificate
The complete raw certificate details for daibasi.dai-lab.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHkTCCBnmgAwIBAgIMIGjy0b7E7X3TiOZUMA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE5 MDEyNDA4MjAyMVoXDTIxMDQyNzA4MjAyMVowgYkxCzAJBgNVBAYTAkRFMQ8wDQYD VQQIDAZCZXJsaW4xDzANBgNVBAcMBkJlcmxpbjEnMCUGA1UECgweVGVjaG5pc2No ZSBVbml2ZXJzaXRhZXQgQmVybGluMRIwEAYDVQQLDAlEQUktTGFib3IxGzAZBgNV BAMMEmRhaWJhc2kuZGFpLWxhYi5kZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCC AgoCggIBALzMYz593cDNQ8x0kylu4gH7w8QC6aUa0LgskgMwedq14bag2qUVNfjo 23pCpfO7gL/N5FD7AGWJVaihVI6kd4Xiy1Ei+UdMQs3BG5EP/VlSCTswQNh4V6F2 n59cUwjW3romWo1LMmQsCbTlpybMYofew2nGmXmejjHCsYbDw58FjQh2hmfU9ito HtMrjOK42NKdAstAO2sGAAosQ/diyfWco7riBaydcQmhQiSzddhzvYkN8/f5esAO 4iys2bQGfAVB4ZVJ4+IOb2nm1RUUzfrzjlb1FebiChZn5Wy40vE4ZhHxXnSowJJi wUKmleIuXD8hr7XGmprBeSUb61JFZ+O+mCXTeRV9OMX3VQ06PvCV0iU0kVf5W6/k GuyiTzxSeFJwavziAIJkgQ4MPpgKL8wtdezLrKIGsTZarjKBLwYy5NtErUFLUOIL E9cAOOM/i9MqdwAcexE53zmrT+76UkgRuZgjNcZPFyX5SzgfiU/PXfw5FrqPCWsv zJgJYM2gmytz9DqV9MRcGkajDE/Mzp9/VCuRqpAO3UJAlFgVw98QMdxG3ACsFsFH C7iOi9vqyj3mAcQwtvyWwiKnSOUpVUIXieJANK5z9pTbyYoo6t9NXrRsScwfY484 +E5pavyUCBG+sahfkdsN3VC0QcGtdKHaw4rATTZEJ4O5FXgtIaXNAgMBAAGjggLx MIIC7TBZBgNVHSAEUjBQMAgGBmeBDAECAjANBgsrBgEEAYGtIYIsHjAPBg0rBgEE AYGtIYIsAQEEMBEGDysGAQQBga0hgiwBAQQDCDARBg8rBgEEAYGtIYIsAgEEAwgw CQYDVR0TBAIwADAOBgNVHQ8BAf8EBAMCBaAwMgYDVR0lBCswKQYIKwYBBQUHAwIG CCsGAQUFBwMBBgorBgEEAYI3FAICBgcrBgEFAgMFMC8GCSsGAQQBgjcUAgQiHiAA RABvAG0AYQBpAG4AQwBvAG4AdAByAG8AbABsAGUAcjAdBgNVHQ4EFgQUWXnfpjd1 /8X5Yf5zx8LQ/HToZjAwHwYDVR0jBBgwFoAUazqYi/nyU4na4K2yMh4JH+iqO3Qw TQYDVR0RBEYwRIIYZGFpYmFzaS5hb3QudHUtYmVybGluLmRlghJkYWliYXNpLmRh aS1sYWIuZGWCFGRhaWJhc2kuZGFpLWxhYm9yLmRlMIGNBgNVHR8EgYUwgYIwP6A9 oDuGOWh0dHA6Ly9jZHAxLnBjYS5kZm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIv Y3JsL2NhY3JsLmNybDA/oD2gO4Y5aHR0cDovL2NkcDIucGNhLmRmbi5kZS9kZm4t Y2EtZ2xvYmFsLWcyL3B1Yi9jcmwvY2FjcmwuY3JsMIHbBggrBgEFBQcBAQSBzjCB yzAzBggrBgEFBQcwAYYnaHR0cDovL29jc3AucGNhLmRmbi5kZS9PQ1NQLVNlcnZl ci9PQ1NQMEkGCCsGAQUFBzAChj1odHRwOi8vY2RwMS5wY2EuZGZuLmRlL2Rmbi1j YS1nbG9iYWwtZzIvcHViL2NhY2VydC9jYWNlcnQuY3J0MEkGCCsGAQUFBzAChj1o dHRwOi8vY2RwMi5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NhY2Vy dC9jYWNlcnQuY3J0MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAbgIFP4Ns1wJbjwOsWUReByyJrfFNTmp/w9BrI4EEtwEJMSQrGELO2tndW IXrHeHAzaCyltGnPtx+S/xVlyBWu3rWO5vbs9YNQpO8pbWVhrK/M4wtFC1HG8Auz rtGPFJQH6OE/J1y97ZPI6l4hIar+x01iMXQm+hhZqHPK7WVnbKPMGDrrC3MHsBPV h1bVLyYaoBHTHUGQqFJgelhWD+wGMt9+1FRK6v0+m/M/gNAMemiYcHcNRypu69SE TvApmUPCztqSnuNvHZ1Q+OqP7L+SGQ4qijnsJsHZ3u8FogzB0NEfqnf0o/crq6Go h/LJi+qjNNZC2aUkMO7p8wY7suh0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvMxjPn3dwM1DzHSTKW7i AfvDxALppRrQuCySAzB52rXhtqDapRU1+OjbekKl87uAv83kUPsAZYlVqKFUjqR3 heLLUSL5R0xCzcEbkQ/9WVIJOzBA2HhXoXafn1xTCNbeuiZajUsyZCwJtOWnJsxi h97DacaZeZ6OMcKxhsPDnwWNCHaGZ9T2K2ge0yuM4rjY0p0Cy0A7awYACixD92LJ 9ZyjuuIFrJ1xCaFCJLN12HO9iQ3z9/l6wA7iLKzZtAZ8BUHhlUnj4g5vaebVFRTN +vOOVvUV5uIKFmflbLjS8ThmEfFedKjAkmLBQqaV4i5cPyGvtcaamsF5JRvrUkVn 476YJdN5FX04xfdVDTo+8JXSJTSRV/lbr+Qa7KJPPFJ4UnBq/OIAgmSBDgw+mAov zC117MusogaxNlquMoEvBjLk20StQUtQ4gsT1wA44z+L0yp3ABx7ETnfOatP7vpS SBG5mCM1xk8XJflLOB+JT89d/DkWuo8Jay/MmAlgzaCbK3P0OpX0xFwaRqMMT8zO n39UK5GqkA7dQkCUWBXD3xAx3EbcAKwWwUcLuI6L2+rKPeYBxDC2/JbCIqdI5SlV QheJ4kA0rnP2lNvJiijq301etGxJzB9jjzj4Tmlq/JQIEb6xqF+R2w3dULRBwa10 odrDisBNNkQng7kVeC0hpc0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10030395281327702580117694036 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-24 08:20:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-27 08:20:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Technische Universitaet Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DAI-Labor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'daibasi.dai-lab.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 770230229142719192025488018366607484440076089803586556242302440482158066917809867486520078680817363661891931070245922891653791503377212334904533883901032113617322692319134704621612412504120439351848700598142018378885786051904301948935248080281516160278557508852611444230335846936545123350057328751722293132619671498198458961375331312519359087048334147585728207568043691702498104301330285422961638919894798779325117252631234338103490275399900780297233976022081749834146344039493094077696005910995553843504934927468020204927659653184137036044347997414900548366614225539463619917021499853763061734618978432072146468973302536334281996852814134653197890439308668998605455587494175145473865038386032869091703364874642373833383483048002852351882748420540436422412407556441156316854826471247230181858475434247734166930357083724320993954857653640274546913051062716522440758319859970888043460234625840896511068467365196819084731840044811699285942786900683290228955468700532315214568802020071127019748760971017756017315388777036555522237467475872797412488452077791951589089321551275256479771231482908753916597410333563991381837478713447235859459840799638024731451756550951307158203893488156608004869760499911793703324672919758975048734098957773 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.2 (smartcardLogon) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.2.3.5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2 (enrollCerttypeExtension) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [0 68 0 111 0 109 0 97 0 105 0 110 0 67 0 111 0 110 0 116 0 114 0 111 0 108 0 108 0 101 0 114] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5979dfa63775ffc5f961fe73c7c2d0fc74e86630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daibasi.aot.tu-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daibasi.dai-lab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daibasi.dai-labor.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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