gdi.ti.bund.de
- Thuenen-Institut -
Issued by Thuenen-Institut CA - G01
About this certificate
This digital certificate with serial number 17:ba:30:28:70:8d:25 was issued on by Thuenen-Institut.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [ContentCommitment KeyEncipherment DataEncipherment DigitalSignature] (00001111) inconsistent with ExtKeyUsage serverAuth The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Thuenen-Institut
Organization:
Thuenen-Institut
Organization unit: WO
Organization unit: WO
State / Province:
Niedersachsen
Locality: Braunschweig
Country: DE
Locality: Braunschweig
Country: DE
Thuenen-Institut
Organization:
Thuenen-Institut
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 17:ba:30:28:70:8d:25Serial Number (int): 6678640464006437
Serial Number lenght: 53 bits, 7 octets
SubjectKeyId: ac:8f:45:d7:19:a9:12:aa:ee:c1:46:6f:0a:88:d2:40:9f:20:d2:8d
AuthorityKeyId: c6:7e:82:9e:d7:8a:f2:79:37:0f:a8:11:13:95:fc:8d:13:92:9b:35
Fingerprint (sha1): 8d:24:f4:c5:27:b9:15:f9:22:5f:ff:33:06:fe:35:05:ae:86:c5:d4
Fingerprint (sha256): 9c:57:9f:9e:b9:f3:76:8c:7f:c8:82:29:c9:6f:1e:49:6f:38:4d:20:62:20:ea:6e:f0:e9:8a:e4:3d:71:4f:3f
Issuing Certificate URL: http://cdp1.pca.dfn.de/thuenen-institut-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/thuenen-institut-ca/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/thuenen-institut-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/thuenen-institut-ca/pub/crl/cacrl.crl
Check the revocation status for certificate gdi.ti.bund.de
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gdi.ti.bund.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gdi.ti.bund.de
Other certificates including the domain name bund.de
(limited to 100 certificates)
bundes.cloud.bmfsfj.in.bund.de
schulung5.eakte.zoll.in.bund.de
bamf.bund.de
ctx02.bmwi.bund.de
20220922.cloud.bcsv.in.bund.de
stu-extc.dvdv.bund.de
vlps7w4zstxe.petclin.cloud.itz.in.bund.de
cafm-tn1.cloud.bcsv.in.bund.de
promadmz.jki.bund.de
upload.prod.gsb.bmel.in.bund.de
schulung17.eakte.zoll.in.bund.de
access.bmjv.cloud.intranet.bund.de
bclogin3.bkamt.cloud.intranet.bund.de
artifactory.zssi.bva.in.bund.de
vlpvws2uyvwh.pvsplus1.cloud.zoll.in.bund.de
hosting.dwd.de
hosting.dwd.de
lernplattform.bund.de
www.normenkontrollrat.bund.de
vlpzrtfbavdp.bmigate1.cloud.bmi.in.bund.de
access.itz.cloud.intranet.bund.de
editor.egesetz.zd.in.bund.de
vlpu6xc8ixat.my1stsalone60.cloud.bcsv.in.bund.de
vlpxub43mocj.testentw.cloud.stba.in.bund.de
redconf.itz.cloud.intranet.bund.de
hashdb.mwscan.bund.de
int.bpm-extern.bzst.itzbund.net
forum.bfdi.bund.de
personalhaushalt.prod.bmf.in.bund.de
schulung.eakte.bsh.itz.res.bund.de
formularcenter.bvl.bund.de
bmfbox6.cloud.bmf.in.bund.de
gittest.bc-mgmt01.cloud.intranet.bund.de
travis.baw.res.bund.de
cafm-ti1.cloud.bcsv.in.bund.de
sicherheit.bund.de
formularcenter.bvl.bund.de
dzmgit05.bc-mgmt05.cloud.intranet.bund.de
redaktion.atu.gsb.bmi.in.bund.de
ref.xrechnung.bund.de
mob.bmz.bund.de
eakte-t.cloud.base.in.bund.de
vlpc092q2btk.btsapqp.cloud.zitis.in.bund.de
redaktion.atu.gsb.bmjv.in.bund.de
ivva-ref2.id-ref-bug.it.bund.de
list.sozialwerk.bund.de
accesst.cloud.itz.in.bund.de
gigis-s.bkg.bund.de
fis-vl.bvl.bund.de
amp1.cloud.zitis.in.bund.de
appladebaw2.front.test.adeba.wsv.itzbund.net
www.bamf.de
vlppaksi2niz.mr15pp10.cloud.bcsv.in.bund.de
www.kvb.bund.de
sso.bvl.bund.de
eservice2022.itz.res.bund.de
warnung.bund.de
webapp.staging.wire.zd.in.bund.de
cafm0322.cloud.bcsv.in.bund.de
vlpzw166d320.emakorv-cloud.cloud.itz.in.bund.de
vwpsl8qtdinb.bcwsus-05a.cloud.bcsv.in.bund.de
ilp03812.iamservice.iaas.itz.cloud.intranet.bund.de
sportal.bmi.in.bund.de
hosting.dwd.de
eakte-i.cloud.bkm.in.bund.de
bcadminjumphost.bc-mgmt05.cloud.intranet.bund.de
cafm1028.cloud.bcsv.in.bund.de
sibboxaa.cloud.bcsv.in.bund.de
cafm-tn2.cloud.bcsv.in.bund.de
ampvsp.cloud.bmf.in.bund.de
test.zbp.bund.de
ivbb.citrix.brh.intranet.bund.de
amp7.cloud.bmdv.in.bund.de
confzent.itz.cloud.intranet.bund.de
dwh-integration.goaml.fiu.in.bund.de
flufus.baf.bund.de
int.anwendungen-luzina.zd.in.bund.de
vm-test.bescha.bund.de
enstransv-entw.zoll.in.bund.de
test.sign.npa-gsd.bva.bund.de
dvtu-int.itz.in.bund.de
api.portal.atu.beihilfe.bva.bund.de
ibis.intranet.bund.de
hosting.dwd.de
bedeakte25-sm.bmjv.intranet.bund.de
accessp.itz.cloud.intranet.bund.de
collabmi.cloud.bcsv.in.bund.de
amd1.cloud.zoll.in.bund.de
eab306mi.cloud.bcsv.in.bund.de
monitoring-nachhaltigkeit.bkamt.intranet.bund.de
helpdesk-p1.pwservice.zd.in.bund.de
vlpb8at2ozfk.gwbmdv2a.cloud.bmdv.in.bund.de
amp1.cloud.bafa.in.bund.de
dit.bund.de
register.wreg.bkarta.intranet.bund.de
amp4.cloud.bmdv.in.bund.de
stage.grc.bva.intranet.bund.de
access.bpa.cloud.intranet.bund.de
gigis.bkg.bund.de
vlpx9e8vdvdq.bcmon1.cloud.base.in.bund.de
schulung5.eakte.zoll.in.bund.de
bamf.bund.de
ctx02.bmwi.bund.de
20220922.cloud.bcsv.in.bund.de
stu-extc.dvdv.bund.de
vlps7w4zstxe.petclin.cloud.itz.in.bund.de
cafm-tn1.cloud.bcsv.in.bund.de
promadmz.jki.bund.de
upload.prod.gsb.bmel.in.bund.de
schulung17.eakte.zoll.in.bund.de
access.bmjv.cloud.intranet.bund.de
bclogin3.bkamt.cloud.intranet.bund.de
artifactory.zssi.bva.in.bund.de
vlpvws2uyvwh.pvsplus1.cloud.zoll.in.bund.de
hosting.dwd.de
hosting.dwd.de
lernplattform.bund.de
www.normenkontrollrat.bund.de
vlpzrtfbavdp.bmigate1.cloud.bmi.in.bund.de
access.itz.cloud.intranet.bund.de
editor.egesetz.zd.in.bund.de
vlpu6xc8ixat.my1stsalone60.cloud.bcsv.in.bund.de
vlpxub43mocj.testentw.cloud.stba.in.bund.de
redconf.itz.cloud.intranet.bund.de
hashdb.mwscan.bund.de
int.bpm-extern.bzst.itzbund.net
forum.bfdi.bund.de
personalhaushalt.prod.bmf.in.bund.de
schulung.eakte.bsh.itz.res.bund.de
formularcenter.bvl.bund.de
bmfbox6.cloud.bmf.in.bund.de
gittest.bc-mgmt01.cloud.intranet.bund.de
travis.baw.res.bund.de
cafm-ti1.cloud.bcsv.in.bund.de
sicherheit.bund.de
formularcenter.bvl.bund.de
dzmgit05.bc-mgmt05.cloud.intranet.bund.de
redaktion.atu.gsb.bmi.in.bund.de
ref.xrechnung.bund.de
mob.bmz.bund.de
eakte-t.cloud.base.in.bund.de
vlpc092q2btk.btsapqp.cloud.zitis.in.bund.de
redaktion.atu.gsb.bmjv.in.bund.de
ivva-ref2.id-ref-bug.it.bund.de
list.sozialwerk.bund.de
accesst.cloud.itz.in.bund.de
gigis-s.bkg.bund.de
fis-vl.bvl.bund.de
amp1.cloud.zitis.in.bund.de
appladebaw2.front.test.adeba.wsv.itzbund.net
www.bamf.de
vlppaksi2niz.mr15pp10.cloud.bcsv.in.bund.de
www.kvb.bund.de
sso.bvl.bund.de
eservice2022.itz.res.bund.de
warnung.bund.de
webapp.staging.wire.zd.in.bund.de
cafm0322.cloud.bcsv.in.bund.de
vlpzw166d320.emakorv-cloud.cloud.itz.in.bund.de
vwpsl8qtdinb.bcwsus-05a.cloud.bcsv.in.bund.de
ilp03812.iamservice.iaas.itz.cloud.intranet.bund.de
sportal.bmi.in.bund.de
hosting.dwd.de
eakte-i.cloud.bkm.in.bund.de
bcadminjumphost.bc-mgmt05.cloud.intranet.bund.de
cafm1028.cloud.bcsv.in.bund.de
sibboxaa.cloud.bcsv.in.bund.de
cafm-tn2.cloud.bcsv.in.bund.de
ampvsp.cloud.bmf.in.bund.de
test.zbp.bund.de
ivbb.citrix.brh.intranet.bund.de
amp7.cloud.bmdv.in.bund.de
confzent.itz.cloud.intranet.bund.de
dwh-integration.goaml.fiu.in.bund.de
flufus.baf.bund.de
int.anwendungen-luzina.zd.in.bund.de
vm-test.bescha.bund.de
enstransv-entw.zoll.in.bund.de
test.sign.npa-gsd.bva.bund.de
dvtu-int.itz.in.bund.de
api.portal.atu.beihilfe.bva.bund.de
ibis.intranet.bund.de
hosting.dwd.de
bedeakte25-sm.bmjv.intranet.bund.de
accessp.itz.cloud.intranet.bund.de
collabmi.cloud.bcsv.in.bund.de
amd1.cloud.zoll.in.bund.de
eab306mi.cloud.bcsv.in.bund.de
monitoring-nachhaltigkeit.bkamt.intranet.bund.de
helpdesk-p1.pwservice.zd.in.bund.de
vlpb8at2ozfk.gwbmdv2a.cloud.bmdv.in.bund.de
amp1.cloud.bafa.in.bund.de
dit.bund.de
register.wreg.bkarta.intranet.bund.de
amp4.cloud.bmdv.in.bund.de
stage.grc.bva.intranet.bund.de
access.bpa.cloud.intranet.bund.de
gigis.bkg.bund.de
vlpx9e8vdvdq.bcmon1.cloud.base.in.bund.de
Certificate
The complete raw certificate details for gdi.ti.bund.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgIHF7owKHCNJTANBgkqhkiG9w0BAQsFADBqMQswCQYDVQQG EwJERTEZMBcGA1UEChMQVGh1ZW5lbi1JbnN0aXR1dDEiMCAGA1UEAxMZVGh1ZW5l bi1JbnN0aXR1dCBDQSAtIEcwMTEcMBoGCSqGSIb3DQEJARYNY2FAdGkuYnVuZC5k ZTAeFw0xNDA2MTMwODEzMTJaFw0xOTA2MTIwODEzMTJaMH0xCzAJBgNVBAYTAkRF MRYwFAYDVQQIEw1OaWVkZXJzYWNoc2VuMRUwEwYDVQQHEwxCcmF1bnNjaHdlaWcx GTAXBgNVBAoTEFRodWVuZW4tSW5zdGl0dXQxCzAJBgNVBAsTAldPMRcwFQYDVQQD Ew5nZGkudGkuYnVuZC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALef0T8PyMyONO5X4syZpSq8IwUI5A4fnuDwW9Fe92iQn642wVQ0EnuuXvjKNql5 X2NVqJWukQ7FFlqe0i8kqYAtfE8kIj3kIFNfoZ3G7SqFskxrBwlbnVzZI/qK9acl zUTGZo6yucYRbJMLZ2BEmyJgYLulFNt7516UQc/MILsYjX91ZpJnPSUH7DpKzYRO 3WQxpO6J8Rx55rbiAtJs1XL2X4b2pjLcNmuoy8c0Pp3FuIIWUAWFeAKJ789INXFH Z+S1davtk8dCOjdfIjxhk8zr41ID4Du0U6lIHFReAL2V9ci7FJ2Qe6yqjcCMVHc+ GIsFzrTC11rThjN1dHeEaJsCAwEAAaOCAkEwggI9MAkGA1UdEwQCMAAwCwYDVR0P BAQDAgTwMBMGA1UdJQQMMAoGCCsGAQUFBwMBMB0GA1UdDgQWBBSsj0XXGakSqu7B Rm8KiNJAnyDSjTAfBgNVHSMEGDAWgBTGfoKe14ryeTcPqBETlfyNE5KbNTAZBgNV HREEEjAQgg5nZGkudGkuYnVuZC5kZTCBkwYDVR0fBIGLMIGIMEKgQKA+hjxodHRw Oi8vY2RwMS5wY2EuZGZuLmRlL3RodWVuZW4taW5zdGl0dXQtY2EvcHViL2NybC9j YWNybC5jcmwwQqBAoD6GPGh0dHA6Ly9jZHAyLnBjYS5kZm4uZGUvdGh1ZW5lbi1p bnN0aXR1dC1jYS9wdWIvY3JsL2NhY3JsLmNybDCB4QYIKwYBBQUHAQEEgdQwgdEw MwYIKwYBBQUHMAGGJ2h0dHA6Ly9vY3NwLnBjYS5kZm4uZGUvT0NTUC1TZXJ2ZXIv T0NTUDBMBggrBgEFBQcwAoZAaHR0cDovL2NkcDEucGNhLmRmbi5kZS90aHVlbmVu LWluc3RpdHV0LWNhL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDBMBggrBgEFBQcwAoZA aHR0cDovL2NkcDIucGNhLmRmbi5kZS90aHVlbmVuLWluc3RpdHV0LWNhL3B1Yi9j YWNlcnQvY2FjZXJ0LmNydDA5BgNVHSAEMjAwMBEGDysGAQQBga0hgiwBAQQDATAR Bg8rBgEEAYGtIYIsAgEEAwEwCAYGZ4EMAQICMA0GCSqGSIb3DQEBCwUAA4IBAQBz 3PXcXVFngX+YjiwCmxL1kRRrJCQ+Q5F0JPijDRkks84UvTZJCLiAtijnnsflcS68 IN6yhlcDQUTYC3Re/MqbMwrBaPVYbqS2nWRDa6gR3hvouLB9NqyAmpwhPIk629gH joOZCrVJXwjdVJr11AOvKg8fJdj78mHx9VfjkZM7Wf7zihyLI8oI5Kt5WdmMXlpa l30RrKkoQhTpvjDikCawDjgzWbLbpeFZp6VEBTxZCkcrC6U1YAui4tgl0HeNrYmL zCJNjNUd+QNRlY7wAMR0PifBygs5VeFO/FRSrVJm5rxw2PtlDkGq6RjmvvTQNuX1 exxsKMMcqcMYRK9RTFbs -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5/RPw/IzI407lfizJml KrwjBQjkDh+e4PBb0V73aJCfrjbBVDQSe65e+Mo2qXlfY1Wola6RDsUWWp7SLySp gC18TyQiPeQgU1+hncbtKoWyTGsHCVudXNkj+or1pyXNRMZmjrK5xhFskwtnYESb ImBgu6UU23vnXpRBz8wguxiNf3Vmkmc9JQfsOkrNhE7dZDGk7onxHHnmtuIC0mzV cvZfhvamMtw2a6jLxzQ+ncW4ghZQBYV4Aonvz0g1cUdn5LV1q+2Tx0I6N18iPGGT zOvjUgPgO7RTqUgcVF4AvZX1yLsUnZB7rKqNwIxUdz4YiwXOtMLXWtOGM3V0d4Ro mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6678640464006437 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thuenen-Institut' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thuenen-Institut CA - G01' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-06-13 08:13:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-12 08:13:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Niedersachsen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Braunschweig' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thuenen-Institut' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gdi.ti.bund.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23180418690440625524503549303495954742056880325677698820657901670889951115510630259794901944262892850802749765848880663335593475425077182219087281491407815218049681485716583066605886879494357097825909155418493320188369944286728773048838562872016804337161448961415440981260538804893285999549578482895443354927426950857922211154844798823773295180968162075483908119064044496645108463108255331298827129489776056796450204745049065605966840687881177292727708869529979559565300335857576339983429422797654355931324849593993557249279066529322857546539742670372575627472625819530379540072827934875931610879362008570092962736283 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ac8f45d719a912aaeec1466f0a88d2409f20d28d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c67e829ed78af279370fa8111395fc8d13929b35 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gdi.ti.bund.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/thuenen-institut-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/thuenen-institut-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (212 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/thuenen-institut-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/thuenen-institut-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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