secure.wijchen.nl
- Gemeente Wijchen -
Issued by KPN Corporate Market CSP Organisatie CA - G2
About this certificate
This digital certificate with serial number 70:d3:a5:ab:00:6f:c6:15:b5:56:69:bc:ee:e4:f8:b4 was issued on by KPN Corporate Market BV.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The Subject Alternate Name extension MUST contain only 'dnsName' and 'ipaddress' name types. (BRs: 7.1.4.2.1)
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
Gemeente Wijchen
Company registration number:
00000001001096874000
Organization: Gemeente Wijchen
Organization: Gemeente Wijchen
State / Province:
Gelderland
Locality: Wijchen
Country: NL
Locality: Wijchen
Country: NL
KPN Corporate Market BV
Organization:
KPN Corporate Market BV
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 70:d3:a5:ab:00:6f:c6:15:b5:56:69:bc:ee:e4:f8:b4Serial Number (int): 149972470310796945054657210474431838388
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: a2:d0:e2:05:d5:43:a2:51:b2:09:2e:ef:bc:e5:9a:8e:bc:e1:d4:ca
AuthorityKeyId: 26:d0:65:13:f1:ee:7a:6f:61:08:28:de:4d:98:07:12:48:78:b4:ef
Fingerprint (sha1): 09:a6:21:dd:7f:59:48:a6:29:cc:3a:54:dd:e2:2b:b8:64:91:dc:3c
Fingerprint (sha256): 78:af:c8:64:41:4b:c3:cd:20:40:bb:32:26:83:bd:86:41:b3:c9:92:2e:f2:0e:83:80:61:f0:1a:d9:f9:f4:ae
Revocation information
OCSP Server: http://ocsp3.managedpki.comCRL Distribution Point: http://cert.managedpki.com/crl/KPNCorporateMarketCSPOrganisatieCAG2/LatestCRL.crl
Check the revocation status for certificate secure.wijchen.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secure.wijchen.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secure.wijchen.nl
Other certificates including the domain name wijchen.nl
(limited to 100 certificates)
preproductie.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
Certificate
The complete raw certificate details for secure.wijchen.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGrzCCBJegAwIBAgIQcNOlqwBvxhW1Vmm87uT4tDANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJOTDEgMB4GA1UECgwXS1BOIENvcnBvcmF0ZSBNYXJrZXQgQlYx NTAzBgNVBAMMLEtQTiBDb3Jwb3JhdGUgTWFya2V0IENTUCBPcmdhbmlzYXRpZSBD QSAtIEcyMB4XDTE0MDgyNjAwMDAwMFoXDTE3MDgyNTIzNTk1OVowgYoxCzAJBgNV BAYTAk5MMRMwEQYDVQQIDApHZWxkZXJsYW5kMRAwDgYDVQQHDAdXaWpjaGVuMRkw FwYDVQQKDBBHZW1lZW50ZSBXaWpjaGVuMR0wGwYDVQQFExQwMDAwMDAwMTAwMTA5 Njg3NDAwMDEaMBgGA1UEAwwRc2VjdXJlLndpamNoZW4ubmwwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDXnmxG+GN6oBRHkrUT2CDHebX9oHmffRtPNaO5 ov4THzuk5ewFZujdFH+VdG5LJaZaF97CpZ5a+w3mzgppkrnUh5ATn2SrnahPr+gf PiK0G2OpXP8VF2dzkxarHtycNLkg8qWgiymXxErmkqUbsj2ZhY9rZDX/Mc+I81d2 biow4pNHzgWqAHByxsYtoGxMpZ6BFM93bZd5Zq7uV0qrN3MdO4N/5FjIuoOwOQj4 U2N8xA4rGhoscK2oj7J0loIZv3X74hvdMsyNqWE7ytlfeb97/cMqRSDDThFh2GIV mcaYLPhw/yCu3LGFhbVcXs2cPFAfCVYHT5b5E7mBX/hkK2qPAgMBAAGjggIyMIIC LjAMBgNVHRMBAf8EAjAAMGIGA1UdHwRbMFkwV6BVoFOGUWh0dHA6Ly9jZXJ0Lm1h bmFnZWRwa2kuY29tL2NybC9LUE5Db3Jwb3JhdGVNYXJrZXRDU1BPcmdhbmlzYXRp ZUNBRzIvTGF0ZXN0Q1JMLmNybDAOBgNVHQ8BAf8EBAMCA6gwgacGA1UdIASBnzCB nDCBmQYKYIQQAYdrAQIFBjCBijA3BggrBgEFBQcCARYraHR0cHM6Ly9jZXJ0aWZp Y2FhdC5rcG4uY29tL3BraW92ZXJoZWlkL2NwczBPBggrBgEFBQcCAjBDGkFPcCBk aXQgY2VydGlmaWNhYXQgaXMgaGV0IENQUyBQS0lvdmVyaGVpZCB2YW4gS1BOIHZh biB0b2VwYXNzaW5nLjAfBgNVHSMEGDAWgBQm0GUT8e56b2EIKN5NmAcSSHi07zAd BgNVHQ4EFgQUotDiBdVDolGyCS7vvOWajrzh1MowHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMGgGA1UdEQRhMF+CEXNlY3VyZS53aWpjaGVuLm5soEoGCisG AQQBgjcUAgOgPAw6Mi4xNi41MjguMS4xMDAzLjEuMy41LjkuMS5hYTU2NGZkZmRl MThmMzQ1MTJjNTNjZTQ2OWFhMzFhNDA3BggrBgEFBQcBAQQrMCkwJwYIKwYBBQUH MAGGG2h0dHA6Ly9vY3NwMy5tYW5hZ2VkcGtpLmNvbTANBgkqhkiG9w0BAQsFAAOC AgEAjVvaF4mtrBV2WKQ0t4aXVws7PKqeKgU4j3PgL1Sej1aHBfTZCAGdaWqUtEp2 DLGAF071QJCWFMJAbGbGGSgvt9Cd7ab10y4uqxZBivVeDQ3XzHZKThI93wQOzTze OP8awmUN2/pcEkXg9jdPj0EWajpLdH1aX4soEW+vKJKwF/5DGUcYb0T4Te3dOFc4 NsdgkbSJyl05JK6cxDO6NBCdBltV2aYf3wDge9q1uV40TUeZSLqv33p9DrcZWEeI k7dZxrghpLyWnkend0azpvHmHQd8xmHZgATXd5G0+/x2bdOjs+2sZnWQX0wmiMzE P9RRVrd1k/LU0hSnw46S13Mxs4gZdQYrd6bsrzCuqzd9lM4E6OMzO8oEF6UsDDZI 6jvD1cpqHQvZmb5O4nyd+Y5aSCgZsSXbYppF/XryPVyx2rcALoBdIHx34taxOtOS GgOwZajzmTdCGTaMq2jDnrOlffXRz495rn65Yml2RyQgad5Lu3x4t7KuVIFn7/01 Au8sV14G6bIO1IOuVqOg3RA04Mvi1yvHa1jf4GFfknV1amWB9tZ9VpEdWSDWaYfO Q1PLanjU6tulpyjc+AMD1iRwK6VzlcEVJEZYhfl2Dg4bsMprWQk4oclCwx7mz3fD z1MaQu8GBpItgWnxmr7Czp3og5Ng9JI8EmiRy4lf3pL88Vc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA155sRvhjeqAUR5K1E9gg x3m1/aB5n30bTzWjuaL+Ex87pOXsBWbo3RR/lXRuSyWmWhfewqWeWvsN5s4KaZK5 1IeQE59kq52oT6/oHz4itBtjqVz/FRdnc5MWqx7cnDS5IPKloIspl8RK5pKlG7I9 mYWPa2Q1/zHPiPNXdm4qMOKTR84FqgBwcsbGLaBsTKWegRTPd22XeWau7ldKqzdz HTuDf+RYyLqDsDkI+FNjfMQOKxoaLHCtqI+ydJaCGb91++Ib3TLMjalhO8rZX3m/ e/3DKkUgw04RYdhiFZnGmCz4cP8grtyxhYW1XF7NnDxQHwlWB0+W+RO5gV/4ZCtq jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 149972470310796945054657210474431838388 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN Corporate Market BV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN Corporate Market CSP Organisatie CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-08-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gelderland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeente Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001001096874000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'secure.wijchen.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27219356839872814600735669646494817708762653096712863542875236695285354966301582152627273045767925887707956646060625311138144594808615642981189297992265253523412171272196348464760114003107697549838412553723393403960318489262768417787857536304402263173795787545382730890591360713439306231694338759184112570710125714277267239349824133924949203844438345676790491171804603629412316740244749575036978272642485249413776905899068988913800396170849259340711206133344525884945002113885382337731886089623440713450297257890952687037449949888678644665839318092623167530753958457845534070241665575104152912803731220549838209510031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (91 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/crl/KPNCorporateMarketCSPOrganisatieCAG2/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (159 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [79 112 32 100 105 116 32 99 101 114 116 105 102 105 99 97 97 116 32 105 115 32 104 101 116 32 67 80 83 32 80 75 73 111 118 101 114 104 101 105 100 32 118 97 110 32 75 80 78 32 118 97 110 32 116 111 101 112 97 115 115 105 110 103 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 26d06513f1ee7a6f610828de4d9807124878b4ef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a2d0e205d543a251b2092eefbce59a8ebce1d4ca . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (97 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.wijchen.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.3 (universalPrincipalName) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '2.16.528.1.1003.1.3.5.9.1.aa564fdfde18f34512c53ce469aa31a4' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp3.managedpki.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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