bcgba.wijchen.nl
- Gemeente Wijchen -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 1d:71:19:f8:12:52:d9:0c:a3:1e:e6:03:d1:29:fa:1c:25:86:0f:aa was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Gemeente Wijchen
Company registration number:
00000001001096874000
Organization: Gemeente Wijchen
Organization unit: ICT Rijk van Nijmegen
Organization: Gemeente Wijchen
Organization unit: ICT Rijk van Nijmegen
State / Province:
Gelderland
Locality: Wijchen
Country: NL
Locality: Wijchen
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 1d:71:19:f8:12:52:d9:0c:a3:1e:e6:03:d1:29:fa:1c:25:86:0f:aaSerial Number (int): 168082978782856871567293507886973812469418823594
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: d5:0f:f0:e8:37:23:ca:7b:49:30:a1:c0:fb:e8:df:a5:24:28:16:84
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 0b:27:f4:89:0c:1c:b1:f5:f4:2f:11:12:87:9d:8f:59:34:c0:3e:d7
Fingerprint (sha256): a9:d0:f9:33:f5:a4:de:dd:71:fc:b7:71:86:ac:4c:03:52:ab:d7:d8:80:d1:fa:02:ba:c0:b4:5d:36:05:73:97
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate bcgba.wijchen.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bcgba.wijchen.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bcgba.wijchen.nl
Other certificates including the domain name wijchen.nl
(limited to 100 certificates)
preproductie.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
Certificate
The complete raw certificate details for bcgba.wijchen.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIDjCCBfagAwIBAgIUHXEZ+BJS2QyjHuYD0Sn6HCWGD6owDQYJKoZIhvcNAQEL BQAwcTELMAkGA1UEBhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5O VFJOTC0yNzEyNDcwMTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2Fu aXNhdGllIFNlcnZlciBDQSAtIEczMB4XDTE5MTIwNjE1MjAwMloXDTIwMTIyOTE1 MjAwMlowgakxCzAJBgNVBAYTAk5MMRMwEQYDVQQIDApHZWxkZXJsYW5kMRAwDgYD VQQHDAdXaWpjaGVuMRkwFwYDVQQKDBBHZW1lZW50ZSBXaWpjaGVuMR4wHAYDVQQL DBVJQ1QgUmlqayB2YW4gTmlqbWVnZW4xHTAbBgNVBAUTFDAwMDAwMDAxMDAxMDk2 ODc0MDAwMRkwFwYDVQQDDBBiY2diYS53aWpjaGVuLm5sMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAjnGnFn5p2NNjLs9HAoH4Y6jpVicnkPIrMkPKt2SF s2OOZcqM1pVfYiejdksHxXrAy9XsGB3XKLOrSuHJPiuMovb+4psrMdf3is6UCG0J 1SjowLN7/3EpA+tNI6+pC+7DEW+sOzsV3qC77wZlVQJPtqxI/ZvLf3uWhkyxy2Op W69ckLG2aBPegk9Q56H+2YZb8AGAPWZCsftjCYaM9ulL1lVJhP00kN0EO55vBuMf q17Pn452ADL8MrdlhXe/fBIRasP+0f3X4qNiomVo19PMJP9Z26pVPufRW6/7brGn QFzUB/IRmZfPiksfK/flmV7xXvPqBKX7gUvy2vCZ6hoYVWShy3QB0aPzfrGinIjL FkN18bFbLhqDOEctWjwDkjlQIo3a1uTyWExOmYTX66WK8jcAniYlRbEyWcfycKGj KZ/eKzrsmYgYVKwigOEkggmlKFPfOSdwAFaPuaOxkG17Oxw/3ZpboHXgK6pMntAs s2xalOhTF6hn0LMgQCvdcKAlasZWTjIrwyKegY3h27B+4Zo+e2xl5ildfncUfJDv lYgopyP/VrFqvU8qJKeX5PcfrbY2jJtUXFnPtiYXSLPiVbxzKHO3WIc/B97c2wue LT1KnkYJrPYzAkwDQtg/4rJcuynkxx1w7hvfWoVw6IECCiidTSHePe6hkgaH0kfT TCMCAwEAAaOCAmMwggJfMIGZBggrBgEFBQcBAQSBjDCBiTBdBggrBgEFBQcwAoZR aHR0cDovL2NlcnQubWFuYWdlZHBraS5jb20vQ0FjZXJ0cy9LUE5CVlBLSW92ZXJo ZWlkT3JnYW5pc2F0aWVTZXJ2ZXJDQUczLTIwMTkuY2VyMCgGCCsGAQUFBzABhhxo dHRwOi8vZzNvY3NwLm1hbmFnZWRwa2kuY29tMB0GA1UdDgQWBBTVD/DoNyPKe0kw ocD76N+lJCgWhDAMBgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFMOapntedCuCtsZy /XROhdKXzf0YMIGxBgNVHSAEgakwgaYwgZkGCmCEEAGHawECBQYwgYowNwYIKwYB BQUHAgEWK2h0dHBzOi8vY2VydGlmaWNhYXQua3BuLmNvbS9wa2lvdmVyaGVpZC9j cHMwTwYIKwYBBQUHAgIwQwxBT3AgZGl0IGNlcnRpZmljYWF0IGlzIGhldCBDUFMg UEtJb3ZlcmhlaWQgdmFuIEtQTiB2YW4gdG9lcGFzc2luZy4wCAYGZ4EMAQICMF4G A1UdHwRXMFUwU6BRoE+GTWh0dHA6Ly9jcmwubWFuYWdlZHBraS5jb20vS1BOQlZQ S0lvdmVyaGVpZE9yZ2FuaXNhdGllU2VydmVyQ0FHMy9MYXRlc3RDUkwuY3JsMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwGwYD VR0RBBQwEoIQYmNnYmEud2lqY2hlbi5ubDATBgorBgEEAdZ5AgQDAQH/BAIFADAN BgkqhkiG9w0BAQsFAAOCAgEAN68dyuxxWWI287xU0+vtZpYEChanObu9w0Zm3gWf dvldEPx3K4V86s0fhYPZ/Rdv/JY/F0r8xJBAn3+HqgMOHWmfOd64q3+1P8BhjEK3 Cznb9mXSZP0EnfGgNBVpEYgDHZ/+123Htk9c5jHhwiegElkud+am88GC+wB5AjgL i5YYuh1KG8cHHTw+ljwRHy4X1T9AV3XNoARylfDhZ6VDW3qP0Uh3ysHjtUy+pPbI RfBSkGnY47jVLjygXBT24v8LViDSdkYV1xujpQeAtMbioaF0ZttDK1zCOv5UGpcc ZoWiaJMRJD9/cfxxhPSvXVvPZYcE6cQVH+K6HHCOIfJMjJtHIKajylFWQ++WOSpV c2K+WMd3Vc5FFSysutayiSz+onXTxc9s6JFQuHKNmuByRZ481+azCA9oz+fFowqv cIbbKR9rkJdoelIU2rPFPZ10hT66DZW3LeG/+pPDIpqkll0q/V55hwXYOpk8JzoK N6b995XVGpQShoE+qzKHV4yVnJptAAUss/0QBgL4GCDPljINiIEH4mLGw5QRJb4u iQg7ALJ6aH8LoKgj1KN7VcJRimP58zpLnv3Q4/AZLxXqEo3OkU/+4C8XZyX9eK5p 0N3/rGU8beCb0SSUSAWJ7yOCSZDwvOBzO/fXlQEtKBjncsAu6kfRTejWs9ZGOacr s3g= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAjnGnFn5p2NNjLs9HAoH4 Y6jpVicnkPIrMkPKt2SFs2OOZcqM1pVfYiejdksHxXrAy9XsGB3XKLOrSuHJPiuM ovb+4psrMdf3is6UCG0J1SjowLN7/3EpA+tNI6+pC+7DEW+sOzsV3qC77wZlVQJP tqxI/ZvLf3uWhkyxy2OpW69ckLG2aBPegk9Q56H+2YZb8AGAPWZCsftjCYaM9ulL 1lVJhP00kN0EO55vBuMfq17Pn452ADL8MrdlhXe/fBIRasP+0f3X4qNiomVo19PM JP9Z26pVPufRW6/7brGnQFzUB/IRmZfPiksfK/flmV7xXvPqBKX7gUvy2vCZ6hoY VWShy3QB0aPzfrGinIjLFkN18bFbLhqDOEctWjwDkjlQIo3a1uTyWExOmYTX66WK 8jcAniYlRbEyWcfycKGjKZ/eKzrsmYgYVKwigOEkggmlKFPfOSdwAFaPuaOxkG17 Oxw/3ZpboHXgK6pMntAss2xalOhTF6hn0LMgQCvdcKAlasZWTjIrwyKegY3h27B+ 4Zo+e2xl5ildfncUfJDvlYgopyP/VrFqvU8qJKeX5PcfrbY2jJtUXFnPtiYXSLPi VbxzKHO3WIc/B97c2wueLT1KnkYJrPYzAkwDQtg/4rJcuynkxx1w7hvfWoVw6IEC CiidTSHePe6hkgaH0kfTTCMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 168082978782856871567293507886973812469418823594 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-06 15:20:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-29 15:20:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gelderland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeente Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ICT Rijk van Nijmegen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001001096874000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'bcgba.wijchen.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 581120639339503020242828074283560557785294154743433020762057537679142035305523531397538533378984962080616492521824388135769442952685135153413762765660403296331648044173775077311020619993703149499023893972035289717855078202971627583517624638552371143441657535881185915836800066194966836459149548735094323424013380721618377851464480669910273871073225600169225493271155933425837795117134363467491221768835282005687396793719254968424020798037737106809054727795828500787009466201813721914094227146171392151027540574569741028943333071625898288190210317656125970068717276978955353520424563505566112275273606795831696548597201739531735202681991055512881084066693734104967081422251988470364563810120223175310192177824738182546090163841151769814292854700032038126415454634622204382456242370512306363932877574647040774327812653392717250955504468929485674769045355850855148311204954248245368624568352590526674096413034976567083494568018537661548929828214763920991692173242271644775203814023424119917840564587616502173568740685692836973939632117990961371266294744744863879426276527933983992993087779365112133506638153692959718999633626259250718338505588630152004245804416389703794923885846446542262891089518210592758744821310799386842886135041059 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (140 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3-2019.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d50ff0e83723ca7b4930a1c0fbe8dfa524281684 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bcgba.wijchen.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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