community.e-overheidvoorburgers.nl
- Stichting ICTU -
Issued by Getronics CSP Organisatie CA - G2
About this certificate
This digital certificate with serial number 5a:a5:93:e9:4d:d5:1b:78:f7:e4:53:86:7f:bb:1d:d4 was issued on by Getronics Nederland BV.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
Stichting ICTU
Organization:
Stichting ICTU
Organization unit: Automatisering
Organization unit: Automatisering
State / Province:
Zuid-Holland
Locality: Den Haag
Country: NL
Locality: Den Haag
Country: NL
Getronics Nederland BV
Organization:
Getronics Nederland BV
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 5a:a5:93:e9:4d:d5:1b:78:f7:e4:53:86:7f:bb:1d:d4Serial Number (int): 120490248600762254430381453352011242964
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 0f:52:32:ca:aa:52:a5:19:a0:75:ea:7c:e2:e3:17:d7:fc:bb:d2:81
AuthorityKeyId: 38:b2:85:e6:ad:f8:a6:d0:41:58:5b:78:6f:dc:d5:b8:44:76:c5:7b
Fingerprint (sha1): 40:b0:12:cc:7a:22:e9:33:45:47:bf:0a:83:4a:e8:5c:5a:ad:e7:9d
Fingerprint (sha256): b2:43:c0:ab:69:14:bc:37:8f:d4:33:b9:bb:71:52:a5:09:a5:e1:68:db:47:16:55:4a:8f:2f:fe:e4:1d:95:22
Revocation information
OCSP Server: http://ocsp2.managedpki.comCRL Distribution Point: http://cert.managedpki.com/pkioverheid/crl/GetronicsCSPOrganisatieCAG2/LatestCRL.crl
Check the revocation status for certificate community.e-overheidvoorburgers.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for community.e-overheidvoorburgers.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
community.e-overheidvoorburgers.nl
Other certificates including the domain name e-overheidvoorburgers.nl
(limited to 100 certificates)
informatie.e-overheidvoorburgers.nl
informatie2.e-overheidvoorburgers.nl
formulieren.e-overheidvoorburgers.nl
*.e-overheidvoorburgers.nl
community.e-overheidvoorburgers.nl
community.e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
informatie2.e-overheidvoorburgers.nl
formulieren.e-overheidvoorburgers.nl
*.e-overheidvoorburgers.nl
community.e-overheidvoorburgers.nl
community.e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
e-overheidvoorburgers.nl
Certificate
The complete raw certificate details for community.e-overheidvoorburgers.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGyjCCBLKgAwIBAgIQWqWT6U3VG3j35FOGf7sd1DANBgkqhkiG9w0BAQsFADBa MQswCQYDVQQGEwJOTDEfMB0GA1UECgwWR2V0cm9uaWNzIE5lZGVybGFuZCBCVjEq MCgGA1UEAwwhR2V0cm9uaWNzIENTUCBPcmdhbmlzYXRpZSBDQSAtIEcyMB4XDTEx MDkxNDAwMDAwMFoXDTE0MDkxMzIzNTk1OVowgZYxCzAJBgNVBAYTAk5MMRUwEwYD VQQIDAxadWlkLUhvbGxhbmQxETAPBgNVBAcMCERlbiBIYWFnMRcwFQYDVQQKDA5T dGljaHRpbmcgSUNUVTEXMBUGA1UECwwOQXV0b21hdGlzZXJpbmcxKzApBgNVBAMM ImNvbW11bml0eS5lLW92ZXJoZWlkdm9vcmJ1cmdlcnMubmwwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC9cVR6f0q7Bs2723ybJhUmixhBCfc1WGrJ6bJ7 lkviDaq0GdfWnnZFNzjxApKFOUDAnucsjimuZ/Kts55Gmtu2CcwZAQpHeGpUI6Fr zh3SQTHgH0enQX6dVO2gfur/Oqm70BCJqY9c4UK5FrsMlLstdF87qE9C0EI3WQP7 P5ti2nQfRU0JoLoXgR2id4BinIs9SW23VynPLot9JcMYpoNZ23TDQxqZGLLbPGTK h7ce9uL2rUpU6pcjXShQAtQWwcm4JK+PGYXhfpnv+0HodQ8Xo7n3d1B1uPVpxDCC DnBdLlUr3lhqGEjrYVeomF7He3FbRmQBpOBgTa/GW7ADOeNvAgMBAAGjggJNMIIC STAMBgNVHRMBAf8EAjAAMGUGA1UdHwReMFwwWqBYoFaGVGh0dHA6Ly9jZXJ0Lm1h bmFnZWRwa2kuY29tL3BraW92ZXJoZWlkL2NybC9HZXRyb25pY3NDU1BPcmdhbmlz YXRpZUNBRzIvTGF0ZXN0Q1JMLmNybDAOBgNVHQ8BAf8EBAMCA6gwga4GA1UdIASB pjCBozCBoAYKYIQQAYdrAQIFBjCBkTA4BggrBgEFBQcCARYsaHR0cHM6Ly93d3cu cGtpLmdldHJvbmljcy5ubC9wa2lvdmVyaGVpZC9jcHMwVQYIKwYBBQUHAgIwSRpH T3AgZGl0IGNlcnRpZmljYWF0IGlzIGhldCBDUFMgUEtJb3ZlcmhlaWQgdmFuIEdl dHJvbmljcyB2YW4gdG9lcGFzc2luZy4wHwYDVR0jBBgwFoAUOLKF5q34ptBBWFt4 b9zVuER2xXswHQYDVR0OBBYEFA9SMsqqUqUZoHXqfOLjF9f8u9KBMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjB5BgNVHREEcjBwgiJjb21tdW5pdHkuZS1v dmVyaGVpZHZvb3JidXJnZXJzLm5soEoGCisGAQQBgjcUAgOgPAw6Mi4xNi41Mjgu MS4xMDAzLjEuMy41LjQuMS43MjMxYWJlMThjMmE3NTJlOGFkNWYyNjhmNTM1MWYy ODA3BggrBgEFBQcBAQQrMCkwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vY3NwMi5tYW5h Z2VkcGtpLmNvbTANBgkqhkiG9w0BAQsFAAOCAgEAcRi7/7jDQKbuX2f8Je9uFFr3 ZUp5NziSr7ibf33M8w3clsf8cX5gtVsrmr7anjKF9tZg/JZuL2Y4vVjL7zv6UziX kTvLrAA/m2ICk/efDu78OIotzxO/mdgxmoTDHuciCvkYaZpwpzNHXVy/f+oCtD8X P+qTBPg29SAMtyHJn8K++kcenoGcCnplklSjjfgHHeajTxiRlY0AtWZKMI5TDYGl 9HmCCT+DvIYwnNNNqN57+BxqoXGbf//wDrtbkAwRfOhYT+dmEMbwRdcjtKJ9EhjZ 3tGG347/ldQmxQnRMDkJVz3UOcTo9+udfN/E9N9A1XLBJZj0DT7XkMxko9OmI+IO pSVf4vmrKz5gtndQRCFkbb4TEIZzHQUdE6lwGH205eB8Bs+iOCJoIrJuKZK+8yfG +RMF9X/SDgLY146aZ8PJpDJllG+doV5hWRqtj7TVbzfu+Pq6yIinMEbBx/QvHK+G v1pJORL2dLrFKmtoJYce2+K4KkgRcr2c8PlfRWH9cABwllHBbxWX1TEnk1ViQ0Yf oHzQcKAbCVy1rAScP9ixYDvNKZ033ndSgyizCREglzouujHk0x/BcViaSH6kRN5Y BwAqbzAJLPT4WEk++4Kg721QNa+HqJUh89zImcFdDRn988NG0lieTUNkYo3f9kyP /5sUDJ6TW5+5Lxe/EjQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXFUen9KuwbNu9t8myYV JosYQQn3NVhqyemye5ZL4g2qtBnX1p52RTc48QKShTlAwJ7nLI4prmfyrbOeRprb tgnMGQEKR3hqVCOha84d0kEx4B9Hp0F+nVTtoH7q/zqpu9AQiamPXOFCuRa7DJS7 LXRfO6hPQtBCN1kD+z+bYtp0H0VNCaC6F4EdoneAYpyLPUltt1cpzy6LfSXDGKaD Wdt0w0MamRiy2zxkyoe3Hvbi9q1KVOqXI10oUALUFsHJuCSvjxmF4X6Z7/tB6HUP F6O593dQdbj1acQwgg5wXS5VK95YahhI62FXqJhex3txW0ZkAaTgYE2vxluwAznj bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 120490248600762254430381453352011242964 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Getronics Nederland BV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Getronics CSP Organisatie CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-09-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Den Haag' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Stichting ICTU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Automatisering' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'community.e-overheidvoorburgers.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23914924741571419189705344498518660886055263918995231746906208433383011013101092095321455130015169162642784376552591575906709839113920218393072907812426604102687881990156950782586326165213178292894250898073890706648849272094464263278800250647229197837384110053018914025478473590502388251272312660515806459526928308863621107576981531918157357701626641876659232770072390694720630530251996776821086046743296822427972504199160140566623479461206375159241948402098135049355739888295592529663853391682193496169394373680769220765855416884804122044490227843266689817248759051944224870600647433942187664805989676347280798114671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/pkioverheid/crl/GetronicsCSPOrganisatieCAG2/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (166 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.pki.getronics.nl/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [79 112 32 100 105 116 32 99 101 114 116 105 102 105 99 97 97 116 32 105 115 32 104 101 116 32 67 80 83 32 80 75 73 111 118 101 114 104 101 105 100 32 118 97 110 32 71 101 116 114 111 110 105 99 115 32 118 97 110 32 116 111 101 112 97 115 115 105 110 103 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 38b285e6adf8a6d041585b786fdcd5b84476c57b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0f5232caaa52a519a075ea7ce2e317d7fcbbd281 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'community.e-overheidvoorburgers.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.3 (universalPrincipalName) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '2.16.528.1.1003.1.3.5.4.1.7231abe18c2a752e8ad5f268f5351f28' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.managedpki.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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