apodat.iadb.nl

Issued by R3

About this certificate

This digital certificate with serial number 04:d5:7c:a9:86:21:4d:2a:a2:f0:50:bb:d2:55:b2:6a:75:b5 was issued on by Let's Encrypt.

With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=apodat.iadb.nl

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:d5:7c:a9:86:21:4d:2a:a2:f0:50:bb:d2:55:b2:6a:75:b5
Serial Number (int): 421094992371328599400695316733869450491317
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 97:aa:69:29:58:64:27:04:bf:85:1a:12:04:92:e9:65:d2:bc:64:ee
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 55:e9:bf:01:6a:02:fe:14:6a:70:9a:e0:51:d4:ca:9b:8f:ee:62:ec
Fingerprint (sha256): 88:2c:79:86:2c:07:19:8f:39:99:61:70:09:36:e8:75:47:c9:a8:7c:9b:5e:e5:36:51:0c:42:7c:74:91:50:20

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate apodat.iadb.nl

7

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for apodat.iadb.nl

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

apodat.farm.rug.nl
apodat.iadb.nl
dmp.iadb.nl
gpn.iadb.nl
iadb.farm.rug.nl
iproc.iadb.nl
portal.iadb.nl

Other certificates including the domain name iadb.nl

(limited to 100 certificates)
apodat.iadb.nl
apodat.iadb.nl
iproc.iadb.nl
iproc.iadb.nl
pharmlines.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
iadb.nl
apodat.iadb.nl
apodat.iadb.nl
iproc.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
iproc.iadb.nl
iadb.nl
apodat.iadb.nl
apodat.iadb.nl
pharmlines.iadb.nl
pharmlines.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl
apodat.iadb.nl

Certificate

The complete raw certificate details for apodat.iadb.nl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjbKIDwN+7MSU6l2E8DX
WoLdgEkPvHG4hcA4ypwALQ6Zb4+WD4scWtxhav7621iwpBr7v4hTouwtiNmEoaP1
ECjF7tbz1bq+HeGw9hCLFL5Kkrfcakgj0XnjQupbS8VgocwxASr9ii6dw5hTqBkx
Osglsq9hiInHJAtWAsDE2fuK4CkP+ilnivdaly5TpDbmt1/8bcLzRxLbcR9AqUB8
xFksmGSSqUHf7J5N+XtDOUe4YoX8stwr0WDt0NkPjkzKeIJrrTjk2LUsSyZI4LGD
R8w2OzeIBjHpR/ZGGRzaL3wUNX7dELyBxUDPSWk00YrjwYM21uKEBRXPQdXqq9UK
EwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 421094992371328599400695316733869450491317
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-21 06:55:48 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-20 06:55:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'apodat.iadb.nl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24517248899635494394693295757290574192273718813587871047417832156910324956795057407161596695716469152432117228998766778374595761471802080637016745446386514219631538353831798788672786542903549653929166358379858352340307227585800901225676732134003174672799145761324420353460985313092459179740676492400599924183796909522778859206130992110356196828460212693853261355423608954590402656244859564543475415579891393778252926417784776502649865413263141120790422580792494992955749673665459140587158456853872851631202584908291315041722775783736849363725264273696841065391232046513153969574188423133767377797603393234092451760659
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							97aa692958642704bf851a120492e965d2bc64ee
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apodat.farm.rug.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apodat.iadb.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dmp.iadb.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gpn.iadb.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iadb.farm.rug.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iproc.iadb.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.iadb.nl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e300000178f36d954e00000403004830460221008264df4dad5528b6d26150c13f9e056bfaf346f2e3a067f61fb714b2bb85838f022100f9a18ba6325957eef8b428aad9c8ad3ec8749d52da716ac10abaeb29a82dc7440075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000178f36d95c2000004030046304402203f4dae7fb37a4fe835ff0bdd5453c2e47832c9e50fcf43e56f269aafee895b8b02206846f6e32860c2846f414dd4919d9e1f74273ad3e4f429c682a830da7d52535b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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