bghu.knoop.dataland.nl
- Gemeenschappelijke Regeling BghU -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 1d:17:68:f9:c8:6e:ae:1d:69:24:f7:e7:6a:ee:14:ee:b8:2c:9b:44 was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Gemeenschappelijke Regeling BghU
Company registration number:
00000001852712716000
Organization: Gemeenschappelijke Regeling BghU
Organization: Gemeenschappelijke Regeling BghU
State / Province:
Utrecht
Locality: Utrecht
Country: NL
Locality: Utrecht
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 1d:17:68:f9:c8:6e:ae:1d:69:24:f7:e7:6a:ee:14:ee:b8:2c:9b:44Serial Number (int): 166082794167924100195195517220628813452631907140
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: be:89:92:a1:e0:45:fa:44:0c:6f:fa:c7:aa:50:bd:42:f9:32:b1:cf
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 4d:db:7a:0f:b5:b2:0f:9c:54:17:e6:ff:9b:2f:53:a6:6c:ff:3e:5d
Fingerprint (sha256): 98:61:c3:d6:eb:57:31:25:84:c5:88:5a:4a:c5:cb:0c:d4:9e:48:88:c2:0e:04:e9:eb:b3:7f:9f:0b:6a:d7:03
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate bghu.knoop.dataland.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bghu.knoop.dataland.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bghu.knoop.dataland.nl
Other certificates including the domain name dataland.nl
(limited to 100 certificates)
knoop.dataland.nl
dataland.nl
lufo.knoop.dataland.nl
weshare365.dataland.nl
digikoppelingtest.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
digikoppelingtest.dataland.nl
act.dataland.nl
digikoppeling.dataland.nl
lufo.knoop.dataland.nl
services.knoop.dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
weshare365.dataland.nl
dataland.nl
knooptm.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
knooppunttest.dataland.nl
belastingenknoop.dataland.nl
belastingenknoop.dataland.nl
weshare365.dataland.nl
weshare365.dataland.nl
bghu.knoop.dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
regioknoopln.dataland.nl
www.dataland.nl
dataland.nl
dataland.nl
dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
knooppunttest.dataland.nl
digikoppeling.dataland.nl
rbg.knoop.dataland.nl
dataland.nl
regioknoopln.dataland.nl
knooppunt.dataland.nl
dataland.nl
knooptm.dataland.nl
knooppunt.dataland.nl
knooptest.dataland.nl
dataland.nl
lufo.knoop.dataland.nl
weshare365.dataland.nl
digikoppelingtest.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
digikoppelingtest.dataland.nl
act.dataland.nl
digikoppeling.dataland.nl
lufo.knoop.dataland.nl
services.knoop.dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
weshare365.dataland.nl
dataland.nl
knooptm.dataland.nl
dataland.nl
knooppunt.dataland.nl
knooppunt.dataland.nl
knooppunttest.dataland.nl
belastingenknoop.dataland.nl
belastingenknoop.dataland.nl
weshare365.dataland.nl
weshare365.dataland.nl
bghu.knoop.dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
regioknoopln.dataland.nl
www.dataland.nl
dataland.nl
dataland.nl
dataland.nl
knooppuntdemo.dataland.nl
dataland.nl
knooppunttest.dataland.nl
digikoppeling.dataland.nl
rbg.knoop.dataland.nl
dataland.nl
regioknoopln.dataland.nl
knooppunt.dataland.nl
dataland.nl
knooptm.dataland.nl
knooppunt.dataland.nl
knooptest.dataland.nl
Certificate
The complete raw certificate details for bghu.knoop.dataland.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIBzCCBe+gAwIBAgIUHRdo+churh1pJPfnau4U7rgsm0QwDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5O VFJOTC0yNzEyNDcwMTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2Fu aXNhdGllIFNlcnZlciBDQSAtIEczMB4XDTIwMDIwNTEzMTAwMloXDTIxMDIwNDEz MTAwMlowgZwxCzAJBgNVBAYTAk5MMRAwDgYDVQQIDAdVdHJlY2h0MRAwDgYDVQQH DAdVdHJlY2h0MSkwJwYDVQQKDCBHZW1lZW5zY2hhcHBlbGlqa2UgUmVnZWxpbmcg QmdoVTEdMBsGA1UEBRMUMDAwMDAwMDE4NTI3MTI3MTYwMDAxHzAdBgNVBAMMFmJn aHUua25vb3AuZGF0YWxhbmQubmwwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQDCKtDRcBIMKjBu6tEcB9z+mXCQqt1KhJ1Ee4iM8zRFNKxdmFugE17R+ipm rwuXIUJ6QRDcF2s1r11mXivKmghT4QQmhc9XqerGxMyDJln4In8EQKz0BpUsxjSD 8HU+vdGTu9Ro8HYC/jJtQbkQdPUbxHgb/2THmfQtTX7+VI1uneCSsN/A4jWUeYg6 gGGByG4kYRFe/sig2xDLgCHATSOAr/HLoekvPnTfkDnT3pXpSbLwzJ5HV84oRRk7 C21vyKsUwRbOdOuf0IlFBxOwL1ROXk7VlZ7YzSJn2C6p8qcQ7csyWG9NHnnJNiFt hnlm0uvj6cOkdttxszOYOaHCIuRI2TtKc8+jLCG+6GrR0Kl6BnOklnVJmMdxDy79 VuxTbMIxkTnBeutSCQyL11t3SAALbmfq0YMpTA5IOkCngjaVioo+grO9QiWxmBLD Azr65VEqC84ZrhbqFGw5rYaXaFSN0Lbo4d8SUKwdHsez8gvgjySLEKlpHzryH2M6 HNxzrxbvj0k2fq8Q/JAuH2maVokgsntWvoxHoXYEGdO+yIiS5EwXeSiF7p8Gjoq8 E1qMurNjYHRQJvgH/qfYPJWnHEaLmQpI3GHl7e2llmG1aJaDR41Oa4OlDWxcenIS IatK8+YoS4I+T0TnkGMKmCIwU6Mf7OIrLeh5gNi0X+BaJUxVOQIDAQABo4ICaTCC AmUwDAYDVR0TAQH/BAIwADAfBgNVHSMEGDAWgBTDmqZ7XnQrgrbGcv10ToXSl839 GDCBmQYIKwYBBQUHAQEEgYwwgYkwXQYIKwYBBQUHMAKGUWh0dHA6Ly9jZXJ0Lm1h bmFnZWRwa2kuY29tL0NBY2VydHMvS1BOQlZQS0lvdmVyaGVpZE9yZ2FuaXNhdGll U2VydmVyQ0FHMy0yMDE5LmNlcjAoBggrBgEFBQcwAYYcaHR0cDovL2czb2NzcC5t YW5hZ2VkcGtpLmNvbTAhBgNVHREEGjAYghZiZ2h1Lmtub29wLmRhdGFsYW5kLm5s MIGxBgNVHSAEgakwgaYwgZkGCmCEEAGHawECBQYwgYowNwYIKwYBBQUHAgEWK2h0 dHBzOi8vY2VydGlmaWNhYXQua3BuLmNvbS9wa2lvdmVyaGVpZC9jcHMwTwYIKwYB BQUHAgIwQwxBT3AgZGl0IGNlcnRpZmljYWF0IGlzIGhldCBDUFMgUEtJb3Zlcmhl aWQgdmFuIEtQTiB2YW4gdG9lcGFzc2luZy4wCAYGZ4EMAQICMB0GA1UdJQQWMBQG CCsGAQUFBwMCBggrBgEFBQcDATBeBgNVHR8EVzBVMFOgUaBPhk1odHRwOi8vY3Js Lm1hbmFnZWRwa2kuY29tL0tQTkJWUEtJb3ZlcmhlaWRPcmdhbmlzYXRpZVNlcnZl ckNBRzMvTGF0ZXN0Q1JMLmNybDAdBgNVHQ4EFgQUvomSoeBF+kQMb/rHqlC9Qvky sc8wDgYDVR0PAQH/BAQDAgWgMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3 DQEBCwUAA4ICAQBHG4Xaj621iHlAMYFZdKR+BlNehBS47boW08p+EaqXSo5uy4Uj HhEP6wxobcQBcI7RY7s9+LdV+VWi2vl6d6ksE3PB2TGN+bNi33OBO+RG5M9VYCSC +fLpRojeIfQtuqa4T7Px1Hl2XDDXA9Vb/Xx/sfHANZDRaEioC+Qo0HqNnyLUDnLp yWfW0wZ14PQnJro9rmyXN62Vtg/tRRGJKpV8h6uH+sfn30er6RVal5tKNwsf3Rbh Narnz1q+EQhuuWp0zqoz3g/H5HkdgF1YGR4y1ieWI7OeHApyRHuMSFaiqcMbox5U Kcj6iWLs4EMNKLi8zyKrdn+8z5DhE1rdbiUHpK2sYjYLH4BZtLoYbEsQSwr4dPI6 +G4KnE6bSkCdDjxPXPloSkyZ/fmEhJ/T6R4YVVBJ3pLmeABSqbNIim5Sf8reF5O0 EMq9xyr5e8zI5r99XHVTzmQhm1rtZK7YJhRhMC35cKStYY1qs3IUdV7iLYQPRV/V kiVNE4N8IBXaB25AqSLPGvPyUi6KV8P9MKVJ3PrV68GNyZe3l2CoHMKcR06QHGTe 2UMy6eMJZdtxNLmBNX8enHO4zr1lpIGUvfqs/WwyL3u1qEPfE352LCKiT6TlSL2D A6qsbzC89SwyTU2btdFKKERnCU3orymh+aeyxrvCJ7yPn1V5YY/fsrJtiA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwirQ0XASDCowburRHAfc /plwkKrdSoSdRHuIjPM0RTSsXZhboBNe0foqZq8LlyFCekEQ3BdrNa9dZl4rypoI U+EEJoXPV6nqxsTMgyZZ+CJ/BECs9AaVLMY0g/B1Pr3Rk7vUaPB2Av4ybUG5EHT1 G8R4G/9kx5n0LU1+/lSNbp3gkrDfwOI1lHmIOoBhgchuJGERXv7IoNsQy4AhwE0j gK/xy6HpLz5035A5096V6Umy8MyeR1fOKEUZOwttb8irFMEWznTrn9CJRQcTsC9U Tl5O1ZWe2M0iZ9guqfKnEO3LMlhvTR55yTYhbYZ5ZtLr4+nDpHbbcbMzmDmhwiLk SNk7SnPPoywhvuhq0dCpegZzpJZ1SZjHcQ8u/VbsU2zCMZE5wXrrUgkMi9dbd0gA C25n6tGDKUwOSDpAp4I2lYqKPoKzvUIlsZgSwwM6+uVRKgvOGa4W6hRsOa2Gl2hU jdC26OHfElCsHR7Hs/IL4I8kixCpaR868h9jOhzcc68W749JNn6vEPyQLh9pmlaJ ILJ7Vr6MR6F2BBnTvsiIkuRMF3kohe6fBo6KvBNajLqzY2B0UCb4B/6n2DyVpxxG i5kKSNxh5e3tpZZhtWiWg0eNTmuDpQ1sXHpyEiGrSvPmKEuCPk9E55BjCpgiMFOj H+ziKy3oeYDYtF/gWiVMVTkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 166082794167924100195195517220628813452631907140 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-05 13:10:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-04 13:10:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Utrecht' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeenschappelijke Regeling BghU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001852712716000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'bghu.knoop.dataland.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 792133264817987947037789017341088260470883241852507608748018215950783104589026744922029834751839369952451997839634678983103741722099198339798101725276247315746415197847178961133102654860665501957762347322681761208391952776027939751412090594613224524281538968363140520421961864611556675953849751952816005612998993385350979930025680351315193108009357088010358042867755066303206784464829670154997757960815397068524098117212529348936831996587794103632812220652380529523700357901042606037429817884923922703323498361176306422579435831872901702399554272342317318903561168232980094440717319417938683632640208657353685317261698382878308689678479801189257751233171262488387210305380320914634491446085256682493247574171791643673544720673834463708970333324116699181089978456898292138311479048075060102790751963880112353414714712631143364441542163572559085248470389637008737746177574614660909006697859416382230481335051803159957870226251579222469887264809576421695395620944256232982277771194995191633450622344977533177693259511157766049316653559277118658645518899741164949942927226777973052033848904020712978185945786125973824000079833380158521509825121659240467147610907691909187813470792885213493160709278526437068410866660073414145813238273337 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bghu.knoop.dataland.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) be8992a1e045fa440c6ffac7aa50bd42f932b1cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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