data.gemnet.irvn.nl
- Modulaire Gemeenschappelijke regeling Rijk van Nijmegen -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 6b:8d:9c:db:39:36:61:cb:09:2b:b1:a1:f2:43:37:24:d1:39:85:c0 was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Modulaire Gemeenschappelijke regeling Rijk van Nijmegen
Company registration number:
00000001854380140000
Organization: Modulaire Gemeenschappelijke regeling Rijk van Nijmegen
Organization: Modulaire Gemeenschappelijke regeling Rijk van Nijmegen
State / Province:
Gelderland
Locality: Nijmegen
Country: NL
Locality: Nijmegen
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 6b:8d:9c:db:39:36:61:cb:09:2b:b1:a1:f2:43:37:24:d1:39:85:c0Serial Number (int): 614020081665635720509891120808223719286606759360
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: c5:45:dc:03:f1:b8:f2:fa:43:a8:b2:b7:4b:e5:2b:f4:1e:7c:42:b5
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 34:a0:7a:f9:92:5c:e6:fb:c4:cb:3b:a2:f2:93:da:1b:fe:ca:45:58
Fingerprint (sha256): 8f:ea:49:47:6c:30:dc:90:ce:fc:85:09:53:29:90:4f:f1:99:c5:84:25:7f:4b:b1:2e:46:ab:79:71:61:25:78
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate data.gemnet.irvn.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for data.gemnet.irvn.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
data.gemnet.irvn.nl
Other certificates including the domain name irvn.nl
(limited to 100 certificates)
irvn.nl
zaaksysteem.data.irvn.nl
data.irvn.nl
govroam.irvn.nl
ftp.ggi.irvn.nl
ciscocloud.irvn.nl
eva.data.irvn.nl
irvn.nl
xs.irvn.nl
zsh.irvn.nl
djuma.data.irvn.nl
dg.irvn.nl
xs.irvn.nl
services.irvn.nl
dg.irvn.nl
mfa.irvn.nl
xs.irvn.nl
ftp.ggi.irvn.nl
support.irvn.nl
oc.irvn.nl
oc.irvn.nl
sts.irvn.nl
wizportaal.data.irvn.nl
webapps.irvn.nl
mfa.irvn.nl
autodiscover.irvn.nl
autodiscover.irvn.nl
samen.irvn.nl
login.irvn.nl
portal.irvn.nl
samen.irvn.nl
ciscocloud.irvn.nl
sts.irvn.nl
logon.irvn.nl
autodiscover.irvn.nl
wachtwoord.irvn.nl
irvn.nl
mfa.irvn.nl
govroam.irvn.nl
data.gemnet.irvn.nl
wizportaal.data.irvn.nl
portal.irvn.nl
ftp.irvn.nl
zaaksysteem.data.irvn.nl
govroam.irvn.nl
djuma.data.irvn.nl
micollab.irvn.nl
xs.irvn.nl
dg.irvn.nl
data-test.gemnet.irvn.nl
irvn.nl
autodiscover.irvn.nl
login.irvn.nl
eva.data.irvn.nl
dgtest.irvn.nl
wachtwoord.irvn.nl
autodiscover.irvn.nl
xs.irvn.nl
samen.irvn.nl
services.irvn.nl
logon.irvn.nl
xs.irvn.nl
webmail.irvn.nl
data-test.irvn.nl
ftp.irvn.nl
dgtest.irvn.nl
myprint.irvn.nl
xs.irvn.nl
zaaksysteem.data.irvn.nl
data.irvn.nl
govroam.irvn.nl
ftp.ggi.irvn.nl
ciscocloud.irvn.nl
eva.data.irvn.nl
irvn.nl
xs.irvn.nl
zsh.irvn.nl
djuma.data.irvn.nl
dg.irvn.nl
xs.irvn.nl
services.irvn.nl
dg.irvn.nl
mfa.irvn.nl
xs.irvn.nl
ftp.ggi.irvn.nl
support.irvn.nl
oc.irvn.nl
oc.irvn.nl
sts.irvn.nl
wizportaal.data.irvn.nl
webapps.irvn.nl
mfa.irvn.nl
autodiscover.irvn.nl
autodiscover.irvn.nl
samen.irvn.nl
login.irvn.nl
portal.irvn.nl
samen.irvn.nl
ciscocloud.irvn.nl
sts.irvn.nl
logon.irvn.nl
autodiscover.irvn.nl
wachtwoord.irvn.nl
irvn.nl
mfa.irvn.nl
govroam.irvn.nl
data.gemnet.irvn.nl
wizportaal.data.irvn.nl
portal.irvn.nl
ftp.irvn.nl
zaaksysteem.data.irvn.nl
govroam.irvn.nl
djuma.data.irvn.nl
micollab.irvn.nl
xs.irvn.nl
dg.irvn.nl
data-test.gemnet.irvn.nl
irvn.nl
autodiscover.irvn.nl
login.irvn.nl
eva.data.irvn.nl
dgtest.irvn.nl
wachtwoord.irvn.nl
autodiscover.irvn.nl
xs.irvn.nl
samen.irvn.nl
services.irvn.nl
logon.irvn.nl
xs.irvn.nl
webmail.irvn.nl
data-test.irvn.nl
ftp.irvn.nl
dgtest.irvn.nl
myprint.irvn.nl
xs.irvn.nl
Certificate
The complete raw certificate details for data.gemnet.irvn.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHHDCCBQSgAwIBAgIUa42c2zk2YcsJK7Gh8kM3JNE5hcAwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5O VFJOTC0yNzEyNDcwMTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2Fu aXNhdGllIFNlcnZlciBDQSAtIEczMB4XDTE5MDkxNjA4MTAwOFoXDTIxMDkxNTA4 MTAwOFowgbQxCzAJBgNVBAYTAk5MMRMwEQYDVQQIDApHZWxkZXJsYW5kMREwDwYD VQQHDAhOaWptZWdlbjFAMD4GA1UECgw3TW9kdWxhaXJlIEdlbWVlbnNjaGFwcGVs aWprZSByZWdlbGluZyBSaWprIHZhbiBOaWptZWdlbjEdMBsGA1UEBRMUMDAwMDAw MDE4NTQzODAxNDAwMDAxHDAaBgNVBAMME2RhdGEuZ2VtbmV0Lmlydm4ubmwwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZhnyJ7WwmX/cfuJqiHB1rKO1Z OMV3GqSTazD1dxmR7i/cAVu5wgZ6HTW5EPRs+5gqsbebEosfGtSfOxgEYkZ9oA9m 8SpfwB18ibZ8MSrhQvC9Fji+7X3RO4sRa3ZErB7FA9baRpvqfbKeC/7FW02LRoYo jeuvPnSN1e8Q/fPA4Fgz3VrSfzn2wXS1amIh1Kvl8tX5cmBJAp6K/jj6/xXy4oxz mBcXViAkfIcNKagWJemjrM2SEIrM+dhjENcn05VUGcarWMeVRKisM9kSQXuC+DRY 9KPcoBNE0U3OqJ4aLNKKTkzSE+tD7/WjKOXNPmTc1JMNzpcLOyQLLcfTLVtZAgMB AAGjggJmMIICYjCBmQYIKwYBBQUHAQEEgYwwgYkwXQYIKwYBBQUHMAKGUWh0dHA6 Ly9jZXJ0Lm1hbmFnZWRwa2kuY29tL0NBY2VydHMvS1BOQlZQS0lvdmVyaGVpZE9y Z2FuaXNhdGllU2VydmVyQ0FHMy0yMDE5LmNlcjAoBggrBgEFBQcwAYYcaHR0cDov L2czb2NzcC5tYW5hZ2VkcGtpLmNvbTAdBgNVHQ4EFgQUxUXcA/G48vpDqLK3S+Ur 9B58QrUwDAYDVR0TAQH/BAIwADAfBgNVHSMEGDAWgBTDmqZ7XnQrgrbGcv10ToXS l839GDCBsQYDVR0gBIGpMIGmMIGZBgpghBABh2sBAgUGMIGKMDcGCCsGAQUFBwIB FitodHRwczovL2NlcnRpZmljYWF0Lmtwbi5jb20vcGtpb3ZlcmhlaWQvY3BzME8G CCsGAQUFBwICMEMMQU9wIGRpdCBjZXJ0aWZpY2FhdCBpcyBoZXQgQ1BTIFBLSW92 ZXJoZWlkIHZhbiBLUE4gdmFuIHRvZXBhc3NpbmcuMAgGBmeBDAECAjBeBgNVHR8E VzBVMFOgUaBPhk1odHRwOi8vY3JsLm1hbmFnZWRwa2kuY29tL0tQTkJWUEtJb3Zl cmhlaWRPcmdhbmlzYXRpZVNlcnZlckNBRzMvTGF0ZXN0Q1JMLmNybDAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMB4GA1UdEQQX MBWCE2RhdGEuZ2VtbmV0Lmlydm4ubmwwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJ KoZIhvcNAQELBQADggIBAC3BBW9IDatSs0SgKy52Ki5/dpusF4LHrvpNzCfMqMKg ucQ923kaG4U/p1AusbKmP4odzSmakKkxT1tzwCMjL0Zb3YLkvTXCaCDmq8sB9M3C A/Nhb8EoJ41S/zTmYag3/OgVbJzXHZyJ9UCl1YqVGivIaBT49ThRY1k8+w/El9TU 5t2iFj3BnrzAwXD1xfkTONoSqZJb3hfOrjeRC9PChX52kLpSmdME5LczKIgxDGcS K/YNoA6a1mcZlm897nHwfHsd51dgN12iZabTfwdDTrqoXFfWMFAkJvCQwCrlbVgG CRkmLhG74TmkD4vIs5GWOe/m8geekNJ8by4qJaNRPndxzxkChKRSzAfFNZTaW8fk bnmJleamCNKdf8P0/1Z9yRnbFta2QpCWmA0zYDL0qp8RpsQ+g2nGIhMFGIzG3B7G WVrlHDvQ6lcqPxyS9SPkUy8i9L+fmtBTjCK9U/g8wbTC4nCzG2xevBBKzYSNRX01 bf/SFWssm1bdWX8ygfRn1DOm9nSGmI/sFGVUmR18z1gEoWfTttHSH3zgufPbrZKL 0NbBIrVoq6rQ3vKGUyM4qpGhC4WS0GufC4Hs0EZFFi1MOKW09QNQ5kNTGPsr/okL ZXMBf6fwpQbGOrDslyvDt/uJlffVeravHMcuANTLHpOq7YaI4DklfJGs4q1YXpT+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYZ8ie1sJl/3H7iaohwd ayjtWTjFdxqkk2sw9XcZke4v3AFbucIGeh01uRD0bPuYKrG3mxKLHxrUnzsYBGJG faAPZvEqX8AdfIm2fDEq4ULwvRY4vu190TuLEWt2RKwexQPW2kab6n2yngv+xVtN i0aGKI3rrz50jdXvEP3zwOBYM91a0n859sF0tWpiIdSr5fLV+XJgSQKeiv44+v8V 8uKMc5gXF1YgJHyHDSmoFiXpo6zNkhCKzPnYYxDXJ9OVVBnGq1jHlUSorDPZEkF7 gvg0WPSj3KATRNFNzqieGizSik5M0hPrQ+/1oyjlzT5k3NSTDc6XCzskCy3H0y1b WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 614020081665635720509891120808223719286606759360 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-16 08:10:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-15 08:10:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gelderland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nijmegen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Modulaire Gemeenschappelijke regeling Rijk van Nijmegen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001854380140000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'data.gemnet.irvn.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19380778414597052051695112871118738983072625221038273522244180474213472458885854451920153002215564684163798689086657607562599648562712161941619446445213144293460575464038864941651853513499392856125420861974763378135356356218363562170099531028915348227408660373882644543451346562634371784451177952385391696270105949490690341626225722169670435250627077780967934193997154177611911936391222743737498639682561810507611390443859588245550094303437989075760308271224783814130853849320792305061945801434655421601428177718862483890209317504959887489812438956890493586084122004741433429055799924628963240780646130096949366184793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c545dc03f1b8f2fa43a8b2b74be52bf41e7c42b5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'data.gemnet.irvn.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 002dc1056f480dab52b344a02b2e762a2e7f769bac1782c7aefa4dcc27cca8c2a0b9c43ddb791a1b853fa7502eb1b2a63f8a1dcd299a90a9314f5b73c023232f465bdd82e4bd35c26820e6abcb01f4cdc203f3616fc128278d52ff34e661a837fce8156c9cd71d9c89f540a5d58a951a2bc86814f8f5385163593cfb0fc497d4d4e6dda2163dc19ebcc0c170f5c5f91338da12a9925bde17ceae37910bd3c2857e7690ba5299d304e4b7332888310c67122bf60da00e9ad66719966f3dee71f07c7b1de75760375da265a6d37f07434ebaa85c57d630502426f090c02ae56d58060919262e11bbe139a40f8bc8b3919639efe6f2079e90d27c6f2e2a25a3513e7771cf190284a452cc07c53594da5bc7e46e798995e6a608d29d7fc3f4ff567dc919db16d6b6429096980d336032f4aa9f11a6c43e8369c6221305188cc6dc1ec6595ae51c3bd0ea572a3f1c92f523e4532f22f4bf9f9ad0538c22bd53f83cc1b4c2e270b31b6c5ebc104acd848d457d356dffd2156b2c9b56dd597f3281f467d433a6f67486988fec146554991d7ccf5804a167d3b6d1d21f7ce0b9f3dbad928bd0d6c122b568abaad0def286532338aa91a10b8592d06b9f0b81ecd04645162d4c38a5b4f50350e6435318fb2bfe890b6573017fa7f0a506c63ab0ec972bc3b7fb8995f7d57ab6af1cc72e00d4cb1e93aaed8688e039257c91ace2ad585e94fe