idp.helmholtz-berlin.de
- Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH -
Issued by HZB CA
About this certificate
This digital certificate with serial number 15:b1:84:c0:36:c0:80 was issued on by Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The Subject Alternate Name extension MUST contain only 'dnsName' and 'ipaddress' name types. (BRs: 7.1.4.2.1)
- KeyUsage [ContentCommitment DigitalSignature KeyEncipherment] (00000111) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH
Organization:
Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH
Organization unit: Zentrale DV-Systeme und Netze
Organization unit: Zentrale DV-Systeme und Netze
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH
Organization:
Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
This certificate has expire since
Certificate Details
Serial Number (hex): 15:b1:84:c0:36:c0:80Serial Number (int): 6106158229536896
Serial Number lenght: 53 bits, 7 octets
SubjectKeyId: ea:76:c2:c9:73:3b:fc:4a:1b:b1:1d:dd:24:cf:c7:26:71:0b:e2:bd
AuthorityKeyId: 5e:42:2c:b7:51:36:03:8a:c4:08:9c:81:94:bd:be:db:e3:4b:7c:dc
Fingerprint (sha1): 9d:00:b1:aa:8a:21:d7:fb:a7:23:a2:f1:8a:25:6b:36:67:04:93:d2
Fingerprint (sha256): 82:3e:bc:cc:79:32:da:fb:5d:8f:bc:8e:7f:aa:28:60:67:80:c7:ed:50:82:90:88:1b:1a:51:21:db:3c:09:20
Issuing Certificate URL: http://cdp1.pca.dfn.de/hzb-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/hzb-ca/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/hzb-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/hzb-ca/pub/crl/cacrl.crl
Check the revocation status for certificate idp.helmholtz-berlin.de
3
DNS Names
1
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for idp.helmholtz-berlin.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
Other certificates including the domain name helmholtz-berlin.de
(limited to 100 certificates)
gate.helmholtz-berlin.de
portal.helmholtz-berlin.de
webapp.basisit.de
ise-psn-a-1.helmholtz-berlin.de
imap.helmholtz-berlin.de
ess.helmholtz-berlin.de
divuwiki.basisit.de
dms.helmholtz-berlin.de
nc.helmholtz-berlin.de
workadventure.helmholtz-berlin.de
collab.helmholtz-berlin.de
rica.helmholtz-berlin.de
rica.helmholtz-berlin.de
nc.basisit.de
kanboard.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
imap.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
mail.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
lyncpool.basisit.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
ebisscattest.helmholtz-berlin.de
nubes.helmholtz-berlin.de
divlog.helmholtz-berlin.de
indico.helmholtz-berlin.de
imap.helmholtz-berlin.de
hzb-intern.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
mail.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
www.helmholtz-berlin.de
sas.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
dect-controller-01.voip.helmholtz-berlin.de
wssadmin-intern.helmholtz-berlin.de
smtp.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
www.helmholtz-berlin.de
hc-awx.basisit.de
ebisscatprod.helmholtz-berlin.de
f-intern.helmholtz-berlin.de
e-intern.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
nc.basisit.de
onlyoffice.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
sbc-gw-01.voip.helmholtz-berlin.de
webapp.basisit.de
mapi.helmholtz-berlin.de
portal.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
office.helmholtz-berlin.de
icat.helmholtz-berlin.de
dirac-meister.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
ise-psn-w-2.helmholtz-berlin.de
indico.helmholtz-berlin.de
rica.helmholtz-berlin.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
rica.helmholtz-berlin.de
portal-hzb.helmholtz-berlin.de
voip.helmholtz-berlin.de
icat.helmholtz-berlin.de
pyweb1.basisit.de
sbc-user-01-int.voip.helmholtz-berlin.de
voip.helmholtz-berlin.de
ncoffice.basisit.de
autodiscover.helmholtz-berlin.de
divwiki.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
nc.basisit.de
ebissprod.helmholtz-berlin.de
gw-ibz-h2.helmholtz-berlin.de
jitsi1.basisit.de
ise-psn-a-1.helmholtz-berlin.de
dits.helmholtz-berlin.de
sip.helmholtz-berlin.de
indico.helmholtz-berlin.de
evetest.helmholtz-berlin.de
sharetex.helmholtz-berlin.de
divwiki.basisit.de
g-intern.helmholtz-berlin.de
nubes.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
nubes.helmholtz-berlin.de
lyncpool.basisit.de
ise-psn-w-2.helmholtz-berlin.de
radius.hmi.de
voip.helmholtz-berlin.de
ise-psn-w-1.helmholtz-berlin.de
dits1.helmholtz-berlin.de
divlog.helmholtz-berlin.de
nubes-test.helmholtz-berlin.de
portal.helmholtz-berlin.de
webapp.basisit.de
ise-psn-a-1.helmholtz-berlin.de
imap.helmholtz-berlin.de
ess.helmholtz-berlin.de
divuwiki.basisit.de
dms.helmholtz-berlin.de
nc.helmholtz-berlin.de
workadventure.helmholtz-berlin.de
collab.helmholtz-berlin.de
rica.helmholtz-berlin.de
rica.helmholtz-berlin.de
nc.basisit.de
kanboard.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
imap.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
mail.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
lyncpool.basisit.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
ebisscattest.helmholtz-berlin.de
nubes.helmholtz-berlin.de
divlog.helmholtz-berlin.de
indico.helmholtz-berlin.de
imap.helmholtz-berlin.de
hzb-intern.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
mail.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
www.helmholtz-berlin.de
sas.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
sbc-lync-01-int.voip.helmholtz-berlin.de
dect-controller-01.voip.helmholtz-berlin.de
wssadmin-intern.helmholtz-berlin.de
smtp.helmholtz-berlin.de
sbc-user-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
www.helmholtz-berlin.de
hc-awx.basisit.de
ebisscatprod.helmholtz-berlin.de
f-intern.helmholtz-berlin.de
e-intern.helmholtz-berlin.de
ifolder.helmholtz-berlin.de
nc.basisit.de
onlyoffice.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
sbc-gw-01.voip.helmholtz-berlin.de
webapp.basisit.de
mapi.helmholtz-berlin.de
portal.helmholtz-berlin.de
sbc-gw-01-int.voip.helmholtz-berlin.de
radius.helmholtz-berlin.de
office.helmholtz-berlin.de
icat.helmholtz-berlin.de
dirac-meister.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
ebisscatprod.helmholtz-berlin.de
ise-psn-w-2.helmholtz-berlin.de
indico.helmholtz-berlin.de
rica.helmholtz-berlin.de
idp.helmholtz-berlin.de
www.helmholtz-berlin.de
rica.helmholtz-berlin.de
portal-hzb.helmholtz-berlin.de
voip.helmholtz-berlin.de
icat.helmholtz-berlin.de
pyweb1.basisit.de
sbc-user-01-int.voip.helmholtz-berlin.de
voip.helmholtz-berlin.de
ncoffice.basisit.de
autodiscover.helmholtz-berlin.de
divwiki.basisit.de
sbc-gw-02-int.voip.helmholtz-berlin.de
nc.basisit.de
ebissprod.helmholtz-berlin.de
gw-ibz-h2.helmholtz-berlin.de
jitsi1.basisit.de
ise-psn-a-1.helmholtz-berlin.de
dits.helmholtz-berlin.de
sip.helmholtz-berlin.de
indico.helmholtz-berlin.de
evetest.helmholtz-berlin.de
sharetex.helmholtz-berlin.de
divwiki.basisit.de
g-intern.helmholtz-berlin.de
nubes.helmholtz-berlin.de
ebisscatent.helmholtz-berlin.de
nubes.helmholtz-berlin.de
lyncpool.basisit.de
ise-psn-w-2.helmholtz-berlin.de
radius.hmi.de
voip.helmholtz-berlin.de
ise-psn-w-1.helmholtz-berlin.de
dits1.helmholtz-berlin.de
divlog.helmholtz-berlin.de
nubes-test.helmholtz-berlin.de
Certificate
The complete raw certificate details for idp.helmholtz-berlin.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXzCCBUegAwIBAgIHFbGEwDbAgDANBgkqhkiG9w0BAQUFADCBrzELMAkGA1UE BhMCREUxDzANBgNVBAgTBkJlcmxpbjEPMA0GA1UEBxMGQmVybGluMUMwQQYDVQQK EzpIZWxtaG9sdHotWmVudHJ1bSBCZXJsaW4gZnVlciBNYXRlcmlhbGllbiB1bmQg RW5lcmdpZSBHbWJIMQ8wDQYDVQQDEwZIWkIgQ0ExKDAmBgkqhkiG9w0BCQEWGWh6 YmNhQGhlbG1ob2x0ei1iZXJsaW4uZGUwHhcNMTMwNTE0MDk0MzEzWhcNMTgwNTEz MDk0MzEzWjCBvjELMAkGA1UEBhMCREUxDzANBgNVBAgTBkJlcmxpbjEPMA0GA1UE BxMGQmVybGluMUMwQQYDVQQKEzpIZWxtaG9sdHotWmVudHJ1bSBCZXJsaW4gZnVl ciBNYXRlcmlhbGllbiB1bmQgRW5lcmdpZSBHbWJIMSYwJAYDVQQLEx1aZW50cmFs ZSBEVi1TeXN0ZW1lIHVuZCBOZXR6ZTEgMB4GA1UEAxMXaWRwLmhlbG1ob2x0ei1i ZXJsaW4uZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSQMXxMjK/ HJ9ZLG/2idyO/YSXNXaYSbOJGKRgNqdG7rnGvfSyoLTCS2noTsZ1BNv0C0aHMtqp 7wadoCviSVDWupEbRZbHQB3P9bXBDP2dw9ZLeAidLtxVmkaOT+ByipX8IQ0j69YR lkVEJgF9KVbBsKu2C9f9WLSsWbOQa1sff/tcQq+mhWn2qgwY/TnPLyOMHtYXhgl/ nS3bdXTD9kd90KU5GbUp/F26tZHvfOq1XDQ9WoOWyl52uAs52xJH55ncTL8G4X0+ 5yIR8itP0JaVp29C92bDiR3RIbt1LxEhcoHDc+t/MBV+rKQolDEiUvYWqKZUA5/w JaKQoKitcg4VAgMBAAGjggJtMIICaTA5BgNVHSAEMjAwMBEGDysGAQQBga0hgiwB AQQDADARBg8rBgEEAYGtIYIsAgEEAwAwCAYGZ4EMAQICMAkGA1UdEwQCMAAwCwYD VR0PBAQDAgXgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAdBgNVHQ4E FgQU6nbCyXM7/EobsR3dJM/HJnEL4r0wHwYDVR0jBBgwFoAUXkIst1E2A4rECJyB lL2+2+NLfNwwcgYDVR0RBGswaYIXaWRwLmhlbG1ob2x0ei1iZXJsaW4uZGWCEXNo aWJiMS5iYXNpc2l0LmRlghFzaGliYjIuYmFzaXNpdC5kZYEoa29uc3RhbnRpbi5z Y2hldW1hbm5AaGVsbWhvbHR6LWJlcmxpbi5kZTB3BgNVHR8EcDBuMDWgM6Axhi9o dHRwOi8vY2RwMS5wY2EuZGZuLmRlL2h6Yi1jYS9wdWIvY3JsL2NhY3JsLmNybDA1 oDOgMYYvaHR0cDovL2NkcDIucGNhLmRmbi5kZS9oemItY2EvcHViL2NybC9jYWNy bC5jcmwwgccGCCsGAQUFBwEBBIG6MIG3MDMGCCsGAQUFBzABhidodHRwOi8vb2Nz cC5wY2EuZGZuLmRlL09DU1AtU2VydmVyL09DU1AwPwYIKwYBBQUHMAKGM2h0dHA6 Ly9jZHAxLnBjYS5kZm4uZGUvaHpiLWNhL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDA/ BggrBgEFBQcwAoYzaHR0cDovL2NkcDIucGNhLmRmbi5kZS9oemItY2EvcHViL2Nh Y2VydC9jYWNlcnQuY3J0MA0GCSqGSIb3DQEBBQUAA4IBAQAVJnjOR5r5bBtmVVNx 9zK4gkGLY2jCE4L9VU+3gu+FauNgGkvGEyHztUCbgLdJ57JvgnYkYJWRI80iaFAI Uux2J/qf5Rv0Epved2w9FJu1lovp7qGL5TUAk0gwj3vMWCQEJBhyQ52zO7n6V0P8 oDf309rlzPXnfUFGkavMmesskOfYzu21AJPYs5D1o6zFKyd+vEQoVQXXrdE7gQed 2dL7+bRoOvGS65EDOlWGWl9mtkgFZnuw/p8gZye4REebI3jhSWY+ICJplQlEcZ5Z gcCAufMg4YgQpwXbmQnt2jfUvz96av0G0BiLWI3nFZiu57iziSkLVQZilVfAlVpA uihM -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0kDF8TIyvxyfWSxv9onc jv2ElzV2mEmziRikYDanRu65xr30sqC0wktp6E7GdQTb9AtGhzLaqe8GnaAr4klQ 1rqRG0WWx0Adz/W1wQz9ncPWS3gInS7cVZpGjk/gcoqV/CENI+vWEZZFRCYBfSlW wbCrtgvX/Vi0rFmzkGtbH3/7XEKvpoVp9qoMGP05zy8jjB7WF4YJf50t23V0w/ZH fdClORm1KfxdurWR73zqtVw0PVqDlspedrgLOdsSR+eZ3Ey/BuF9PuciEfIrT9CW ladvQvdmw4kd0SG7dS8RIXKBw3PrfzAVfqykKJQxIlL2FqimVAOf8CWikKCorXIO FQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6106158229536896 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HZB CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-14 09:43:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-13 09:43:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Helmholtz-Zentrum Berlin fuer Materialien und Energie GmbH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zentrale DV-Systeme und Netze' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'idp.helmholtz-berlin.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26541984903969501876257750538807950131021498573822422439737492912606708002334018724536606231532826018311929156129964336906315772881763798416308909370421350870930930874976538682249315012236092762485352423687400990050556397489040740316187947342024518976805036897971428742929245982179803107509142602494169176347262613153740544776169107477778917710989578337646039016436023551232996176500165817207930754723524229031250350118957140861851823259182958356719437514757990580530267688687049497934513924693106949615421040123914050408404889850956734045007926400334556055653936587123197771902847979044762324104407011991461859298837 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.0 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.0 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05e0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ea76c2c9733bfc4a1bb11ddd24cfc726710be2bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5e422cb75136038ac4089c8194bdbedbe34b7cdc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idp.helmholtz-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibb1.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shibb2.basisit.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:1|false] IA5String '[email protected]' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/hzb-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/hzb-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (186 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/hzb-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/hzb-ca/pub/cacert/cacert.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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