*.proxy.bnl.lu
- Biblioth�que nationale de Luxembourg -
Issued by LuxTrust Qualified CA
About this certificate
This digital certificate with serial number 02:a2:97 was issued on by LuxTrust S.A..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth emailProtection serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
Biblioth�que nationale de Luxembourg
Organization:
Biblioth�que nationale de Luxembourg
Locality:
Luxembourg
Country: LU
Country: LU
LuxTrust S.A.
Organization:
LuxTrust S.A.
Country:
LU
This certificate has expire since
Certificate Details
Serial Number (hex): 02:a2:97Serial Number (int): 172695
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId: a5:6b:8d:7e:96:ca:c4:d2:84:96:99:f9:59:7a:fd:55:1c:9e:b5:c0
AuthorityKeyId: 8d:90:a3:07:dd:1a:13:77:99:4c:92:ab:4d:43:de:3f:cd:29:64:05
Fingerprint (sha1): ae:06:bc:24:43:22:fc:b5:f8:f0:85:f7:59:4e:98:a6:36:b7:02:83
Fingerprint (sha256): 5e:e2:56:55:f3:f8:d1:87:b1:da:e1:36:da:3c:ad:88:ce:3f:2c:d3:b6:b3:f2:c3:06:3f:c0:d3:5b:a6:05:77
Issuing Certificate URL: http://ca.luxtrust.lu/LTQCA.crt
Revocation information
OCSP Server: http://ocsp.luxtrust.luCRL Distribution Point: http://crl.luxtrust.lu/LTQCA.crl
Check the revocation status for certificate *.proxy.bnl.lu
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.proxy.bnl.lu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Email Protection
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name bnl.lu
(limited to 100 certificates)
*.proxy02.bnl.lu
*.proxy.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
bnl.lu
auth.bnl.lu
*.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
auth.bnl.lu
*.proxy04.bnl.lu
bnl.lu
*.proxy04.bnl.lu
auth3.bnl.lu
bnl.lu
luxemburgensia.bnl.lu
*.proxy.bnl.lu
analytics.bnl.lu
bnl.lu
windbook.bnl.lu
bnl.lu
bnl.lu
wifiportal-1.bnl.lu
auth-dev.bnl.lu
*.bnl.lu
*.proxy03.bnl.lu
auth1.bnl.lu
bnl.lu
auth1.bnl.lu
bnl.lu
analytics.bnl.lu
*.proxy03.bnl.lu
bnl.lu
windbook.bnl.lu
mia.bnl.lu
*.proxy03.bnl.lu
*.proxy.bnl.lu
bnl.lu
auth.bnl.lu
auth3.bnl.lu
lida.bnl.lu
bnl.lu
*.proxy04.bnl.lu
*.proxy.bnl.lu
luxemburgensia.bnl.lu
bnl.lu
*.proxy.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
bnl.lu
auth.bnl.lu
*.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
auth.bnl.lu
*.proxy04.bnl.lu
bnl.lu
*.proxy04.bnl.lu
auth3.bnl.lu
bnl.lu
luxemburgensia.bnl.lu
*.proxy.bnl.lu
analytics.bnl.lu
bnl.lu
windbook.bnl.lu
bnl.lu
bnl.lu
wifiportal-1.bnl.lu
auth-dev.bnl.lu
*.bnl.lu
*.proxy03.bnl.lu
auth1.bnl.lu
bnl.lu
auth1.bnl.lu
bnl.lu
analytics.bnl.lu
*.proxy03.bnl.lu
bnl.lu
windbook.bnl.lu
mia.bnl.lu
*.proxy03.bnl.lu
*.proxy.bnl.lu
bnl.lu
auth.bnl.lu
auth3.bnl.lu
lida.bnl.lu
bnl.lu
*.proxy04.bnl.lu
*.proxy.bnl.lu
luxemburgensia.bnl.lu
bnl.lu
Certificate
The complete raw certificate details for *.proxy.bnl.lu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIDAqKXMA0GCSqGSIb3DQEBBQUAMEUxCzAJBgNVBAYTAkxV MRYwFAYDVQQKEw1MdXhUcnVzdCBTLkEuMR4wHAYDVQQDExVMdXhUcnVzdCBRdWFs aWZpZWQgQ0EwHhcNMTAxMjE3MTQ1NzMyWhcNMTUxMjE3MTQ1NzMyWjCBkjELMAkG A1UEBhMCTFUxEzARBgNVBAcTCkx1eGVtYm91cmcxLTArBgNVBAoUJEJpYmxpb3Ro 6HF1ZSBuYXRpb25hbGUgZGUgTHV4ZW1ib3VyZzEXMBUGA1UEAxQOKi5wcm94eS5i bmwubHUxJjAkBgkqhkiG9w0BCQEWF2NhcmxvLmJsdW1AY3RpZS5ldGF0Lmx1MIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbZm4c4nNmHKsF0yJFcRPcem dDddKwfwb0GAOZLUumf/GL3Sawj0RyTAMLckJ7FfEwzqkNeKJQ6BMJOyIp//jw1P Capp78rleLuKPiJR3MhQfIqOyw71t8lMQ7M1C+7cU19/zJY+iAvaV/hF0DgXpeXt 7O/CC/BeC9QfTWVQLmFOOiZ/Fi45K18qfQijfpCLuFaV7llePsnVh7edTHnF9qIp Z5zjV3kHNa94Oy/YoJbH7kriOcohB/FqgGdtkfST/PhhOX2P9uRDK/LlQxD6jjqj ydsITN9fe5Qn/JZ/m8DgsT9CS0WquTCkxCefgXJ58N5XCmAHjjFnoQH1F77EQQID AQABo4ICNzCCAjMwDAYDVR0TAQH/BAIwADBgBggrBgEFBQcBAQRUMFIwIwYIKwYB BQUHMAGGF2h0dHA6Ly9vY3NwLmx1eHRydXN0Lmx1MCsGCCsGAQUFBzAChh9odHRw Oi8vY2EubHV4dHJ1c3QubHUvTFRRQ0EuY3J0MIIBAAYDVR0gBIH4MIH1MIHoBggr gSsBAQIGATCB2zCBrQYIKwYBBQUHAgIwgaAagZ1MdXhUcnVzdCBTZXJ2ZXIgQ2Vy dGlmaWNhdGUuIE5vdCBzdXBwb3J0ZWQgYnkgU1NDRCwgS2V5IEdlbmVyYXRpb24g YnkgU3Vic2NyaWJlci4gR1RDLCBDUCBhbmQgQ1BTIG9uIGh0dHA6Ly9yZXBvc2l0 b3J5Lmx1eHRydXN0Lmx1LiBTaWduZWQgYnkgYSBRdWFsaWZpZWQgQ0EuMCkGCCsG AQUFBwIBFh1odHRwOi8vcmVwb3NpdG9yeS5sdXh0cnVzdC5sdTAIBgYEAI96AQMw EQYJYIZIAYb4QgEBBAQDAgXgMA4GA1UdDwEB/wQEAwIEsDAnBgNVHSUEIDAeBggr BgEFBQcDAQYIKwYBBQUHAwIGCCsGAQUFBwMEMB8GA1UdIwQYMBaAFI2QowfdGhN3 mUySq01D3j/NKWQFMDEGA1UdHwQqMCgwJqAkoCKGIGh0dHA6Ly9jcmwubHV4dHJ1 c3QubHUvTFRRQ0EuY3JsMB0GA1UdDgQWBBSla41+lsrE0oSWmflZev1VHJ61wDAN BgkqhkiG9w0BAQUFAAOCAQEAR/l82nArbp5rbsHFr7yLySSq4kfxdYbbTbNeClvy ETtw8F3pYaFPVegdz7zXddYhyIWHaHw8yeeT5TAio+fKPFmCHbT7IZex2vsCjZFz pPW/YO66tq8IWfejRR0yfg1duglaK8Kkx4QiOB74rnN1b/1yGJ7c5x9COAG4GjVe RgbhXSySk6YBqVz1NDG2nJ9Ar8FIGFtn4+HrpLyJe0PUeZMvLehJTcYKV8TFyGzK 7XV+4GQBprWqmaxclJ8j5/O5+I0vGz1La6yMdjVcsyBKhgnAkfepJohwX/+9tFLX a1jo+E3n/ZuFO32KrwCgBfVZnSkuds9SqMJ7ROA3iGQdhQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbZm4c4nNmHKsF0yJFcR PcemdDddKwfwb0GAOZLUumf/GL3Sawj0RyTAMLckJ7FfEwzqkNeKJQ6BMJOyIp// jw1PCapp78rleLuKPiJR3MhQfIqOyw71t8lMQ7M1C+7cU19/zJY+iAvaV/hF0DgX peXt7O/CC/BeC9QfTWVQLmFOOiZ/Fi45K18qfQijfpCLuFaV7llePsnVh7edTHnF 9qIpZ5zjV3kHNa94Oy/YoJbH7kriOcohB/FqgGdtkfST/PhhOX2P9uRDK/LlQxD6 jjqjydsITN9fe5Qn/JZ/m8DgsT9CS0WquTCkxCefgXJ58N5XCmAHjjFnoQH1F77E QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 172695 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LuxTrust S.A.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LuxTrust Qualified CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-12-17 14:57:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-17 14:57:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Luxembourg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Biblioth�que nationale de Luxembourg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.proxy.bnl.lu' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24453938579287046189935605245898238652387964472840392044056988349692416224166589035789453130574547782630294334301197120385475867634997097103408256842637367106481531444764854985974943093282820325665797678970867216368859142928665139597412279740663968368476109502553326050676149771665854603594997535564378589497737798378016614384502871791417749374011466584308937611384833412888597461638264344547700919221597265544804019538164716523408536177241460376364992924589101945628920757704466582436153436171569155292645638696719005593174511050996364844837949724745223781996761497805416480142900179513355042231896478844482018526273 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.luxtrust.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ca.luxtrust.lu/LTQCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (248 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.171.1.1.2.6.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [76 117 120 84 114 117 115 116 32 83 101 114 118 101 114 32 67 101 114 116 105 102 105 99 97 116 101 46 32 78 111 116 32 115 117 112 112 111 114 116 101 100 32 98 121 32 83 83 67 68 44 32 75 101 121 32 71 101 110 101 114 97 116 105 111 110 32 98 121 32 83 117 98 115 99 114 105 98 101 114 46 32 71 84 67 44 32 67 80 32 97 110 100 32 67 80 83 32 111 110 32 104 116 116 112 58 47 47 114 101 112 111 115 105 116 111 114 121 46 108 117 120 116 114 117 115 116 46 108 117 46 32 83 105 103 110 101 100 32 98 121 32 97 32 81 117 97 108 105 102 105 101 100 32 67 65 46] . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.luxtrust.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.1.1 (netscape-cert-type) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05e0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.4 (emailProtection) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d90a307dd1a1377994c92ab4d43de3fcd296405 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.luxtrust.lu/LTQCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a56b8d7e96cac4d2849699f9597afd551c9eb5c0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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