www.wijchen.nl
- Gemeente Wijchen -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 0c:97:56:f7:fc:bc:28:3a was issued on by KPN B.V..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Gemeente Wijchen
Company registration number:
00000001001096874000
Organization: Gemeente Wijchen
Organization unit: ICT Rijk van Nijmegen
Organization: Gemeente Wijchen
Organization unit: ICT Rijk van Nijmegen
State / Province:
Gelderland
Locality: Wijchen
Country: NL
Locality: Wijchen
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:97:56:f7:fc:bc:28:3aSerial Number (int): 907289473035544634
Serial Number lenght: 60 bits, 8 octets
SubjectKeyId: 64:f7:19:3d:c3:1d:81:89:6a:b3:70:c6:19:51:44:5c:ef:f4:72:1d
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 5d:8b:0c:e9:d9:fc:90:4d:7a:a0:2b:1b:18:5d:86:ec:5b:56:2a:84
Fingerprint (sha256): 96:af:7a:8b:b1:2a:c1:69:e5:b3:ae:42:cf:07:8c:74:f0:3c:24:2e:d4:bb:f8:ec:ac:3c:69:7d:01:00:10:85
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate www.wijchen.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.wijchen.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.wijchen.nl
wijchen.nl
wijchen.nl
Other certificates including the domain name wijchen.nl
(limited to 100 certificates)
preproductie.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
Certificate
The complete raw certificate details for www.wijchen.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHBTCCBO2gAwIBAgIIDJdW9/y8KDowDQYJKoZIhvcNAQELBQAwcTELMAkGA1UE BhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5OVFJOTC0yNzEyNDcw MTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2FuaXNhdGllIFNlcnZl ciBDQSAtIEczMB4XDTE5MDIwNDA4MzIzMVoXDTIxMDMzMDA4MzIzMVowgacxCzAJ BgNVBAYTAk5MMRMwEQYDVQQIDApHZWxkZXJsYW5kMRAwDgYDVQQHDAdXaWpjaGVu MRkwFwYDVQQKDBBHZW1lZW50ZSBXaWpjaGVuMR4wHAYDVQQLDBVJQ1QgUmlqayB2 YW4gTmlqbWVnZW4xHTAbBgNVBAUTFDAwMDAwMDAxMDAxMDk2ODc0MDAwMRcwFQYD VQQDDA53d3cud2lqY2hlbi5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPI6H/iRes1LzKLiijGPp2E3CElrBh3Abg1yuw+vhoXJiBpAn9jcpQ9dmsSD 7pKVgGntxLmCOIUFpWX6DMctvEPvBa05Y6ljj/1mLX6aBCAi7zkYpk1/5HR7fQog vGtFXQwj2ExH1Uh4GDf4vAGx0tejn8xMHTa9G9SX+KYxMveyX/dx8/j/tiMQia/X EI/V6f5FU8pQvkPrP0iJ6dJbPf/JNeRCAq6jQ+KSK634t8pNJ5kJKIdeSsyFhYA6 YdtAvZCPEY+QuNkhzCPhEMOCLGKsx7/hd6vPO5nqQy3IgE1FqJ7XzBIskl6NDqJR xezyBKrY6amXNuATNMYO2V21qCMCAwEAAaOCAmgwggJkMIGUBggrBgEFBQcBAQSB hzCBhDBYBggrBgEFBQcwAoZMaHR0cDovL2NlcnQubWFuYWdlZHBraS5jb20vQ0Fj ZXJ0cy9LUE5CVlBLSW92ZXJoZWlkT3JnYW5pc2F0aWVTZXJ2ZXJDQUczLmNlcjAo BggrBgEFBQcwAYYcaHR0cDovL2czb2NzcC5tYW5hZ2VkcGtpLmNvbTAdBgNVHQ4E FgQUZPcZPcMdgYlqs3DGGVFEXO/0ch0wDAYDVR0TAQH/BAIwADAfBgNVHSMEGDAW gBTDmqZ7XnQrgrbGcv10ToXSl839GDCBsQYDVR0gBIGpMIGmMIGZBgpghBABh2sB AgUGMIGKMDcGCCsGAQUFBwIBFitodHRwczovL2NlcnRpZmljYWF0Lmtwbi5jb20v cGtpb3ZlcmhlaWQvY3BzME8GCCsGAQUFBwICMEMMQU9wIGRpdCBjZXJ0aWZpY2Fh dCBpcyBoZXQgQ1BTIFBLSW92ZXJoZWlkIHZhbiBLUE4gdmFuIHRvZXBhc3Npbmcu MAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBPhk1odHRwOi8vY3JsLm1hbmFnZWRw a2kuY29tL0tQTkJWUEtJb3ZlcmhlaWRPcmdhbmlzYXRpZVNlcnZlckNBRzMvTGF0 ZXN0Q1JMLmNybDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIG CCsGAQUFBwMBMCUGA1UdEQQeMByCDnd3dy53aWpjaGVuLm5sggp3aWpjaGVuLm5s MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4ICAQCPJr0BpIiF tSOKMvK/K9h7gcT1mNUPQY/QwfW0Xh+B6hPhE+RoAo9kxUlY/bXBspO6ZNvT2/7x tD4PvFq0CXRMRGiLTwjrpv/7tathwT/Cn0iNXpjlwEa7/9R2olp4qx77oUvJq1Nl XXugwK9DNdKq41c5mxxotqcrCGPUkUTio06pGwgOH023pUvUldgZtefV7ZyQ1GPL o2b6mOCBIuKubyzwgX9sQvNYoFa3TB99LTBaUH9IMhm6pGKNNlh/Vvk45UsV5kCi YfECpuNfNnetPoKJmU0HkSOLZK5jEBx7K8VERbuZsIEMIgNCje6z00aQUu1KVNSp Clvwd+Or/MVbc6IEVsCk60DAFw0q5/+eQiT4HVVxTVmrPwV/qTV9dFh5LZ+H4hGL QG5yoiaHSHiAqqRhPvEbj0UOhg4P+XLxIHMbkTZbubIjwX0Bh4Y/dQgaRg2u/t8k 3RClBUI4zG4Z3X3P2BleaYMaDxZrvuRLDJfcMovXGXfaOJzpc+1oVP7aJkmA2Z7C m37IcrqPgVmtIKhEB06W67LrbiSE119bqHQmUw5opENiaQSe4dAUEIghGfmiyNEi TEjgpJ34ArZLU1ounP0KgKFkkNt9+Evt8k8oWr+aiwp52SOq0XJjPJ6gdHWH3uPs iwRVQ9xXhGzn7qDxf8EzMeeyYys7ASkC5Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8jof+JF6zUvMouKKMY+n YTcISWsGHcBuDXK7D6+GhcmIGkCf2NylD12axIPukpWAae3EuYI4hQWlZfoMxy28 Q+8FrTljqWOP/WYtfpoEICLvORimTX/kdHt9CiC8a0VdDCPYTEfVSHgYN/i8AbHS 16OfzEwdNr0b1Jf4pjEy97Jf93Hz+P+2IxCJr9cQj9Xp/kVTylC+Q+s/SInp0ls9 /8k15EICrqND4pIrrfi3yk0nmQkoh15KzIWFgDph20C9kI8Rj5C42SHMI+EQw4Is YqzHv+F3q887mepDLciATUWontfMEiySXo0OolHF7PIEqtjpqZc24BM0xg7ZXbWo IwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 907289473035544634 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-04 08:32:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-30 08:32:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gelderland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeente Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ICT Rijk van Nijmegen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001001096874000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.wijchen.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30578332251633251765768787284100642569447301367296248039072153142731836238660898522165958841254384890294734422637309382863768632875318001598680120298826129230762794101573545661272629940561924355362834578009542994125102087859941051957689539914804796929799233138217249036735888246304934091743219251970971889746857157612502937520601254185606258313756313957354337342050566484429304563477531140417232057134113163093237401092275674991670435229821289454684007519915892004924531742513433085971281449265831959394354854241895091919599456210701032040143201731027665346981598512862208383429085289840454185863570070546127982536739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64f7193dc31d81896ab370c61951445ceff4721d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wijchen.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wijchen.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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