www.kiveld.nl
- Kiveld B.V. -
Issued by KPN BV PKIoverheid Organisatie Server CA - G3
About this certificate
This digital certificate with serial number 48:14:e8:3e:e8:72:39:9e was issued on by KPN B.V..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Kiveld B.V.
Company registration number:
00000003273045230000
Organization: Kiveld B.V.
Organization: Kiveld B.V.
State / Province:
Zuid-Holland
Locality: 's-Gravenhage
Country: NL
Locality: 's-Gravenhage
Country: NL
KPN B.V.
Organization:
KPN B.V.
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 48:14:e8:3e:e8:72:39:9eSerial Number (int): 5194031627150440862
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: 2f:74:77:88:d9:b6:55:fd:ef:33:69:2d:09:2d:e2:d1:b4:a2:be:ee
AuthorityKeyId: c3:9a:a6:7b:5e:74:2b:82:b6:c6:72:fd:74:4e:85:d2:97:cd:fd:18
Fingerprint (sha1): 9b:ba:85:4c:b2:50:36:79:ea:49:47:59:0d:30:07:c0:4a:fb:7d:76
Fingerprint (sha256): b3:97:96:9d:3a:c1:71:a6:09:db:ca:07:83:5d:f7:3b:c0:ca:28:ba:3e:f9:94:05:c4:4f:96:78:78:68:30:65
Issuing Certificate URL: http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer
Revocation information
OCSP Server: http://g3ocsp.managedpki.comCRL Distribution Point: http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl
Check the revocation status for certificate www.kiveld.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kiveld.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.kiveld.nl
Other certificates including the domain name kiveld.nl
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.kiveld.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIvjCCBqagAwIBAgIISBToPuhyOZ4wDQYJKoZIhvcNAQELBQAwcTELMAkGA1UE BhMCTkwxETAPBgNVBAoMCEtQTiBCLlYuMRcwFQYDVQRhDA5OVFJOTC0yNzEyNDcw MTE2MDQGA1UEAwwtS1BOIEJWIFBLSW92ZXJoZWlkIE9yZ2FuaXNhdGllIFNlcnZl ciBDQSAtIEczMB4XDTE4MTExMzA5NDAwMloXDTIwMTExMjA5NDAwMlowgYkxCzAJ BgNVBAYTAk5MMRUwEwYDVQQIDAxadWlkLUhvbGxhbmQxFjAUBgNVBAcMDSdzLUdy YXZlbmhhZ2UxFDASBgNVBAoMC0tpdmVsZCBCLlYuMR0wGwYDVQQFExQwMDAwMDAw MzI3MzA0NTIzMDAwMDEWMBQGA1UEAwwNd3d3LmtpdmVsZC5ubDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAIbLVy4Io7WLpIqqHqW3vvVAuuaUzzYZVA9t EC0arzFMDgQs4HKJZ+OqZmv3N3p4IWc3Vqssnq2YGLi3eKxUsl8q0hD0516r/jOe /zB126/QV5FiB0WfbmdvyjF1gHupl8rSqRKZvqfwo0Cifo2cwhmUBCHL1YQu7AbG miCXgNKF6LdWXOfN028XMadesDK33y7vE1rskmrT6yVndQiDaQEbtIPW4qykwd6x 0GjLAITNCsZ+xnzrYacgmxj2oPiqGhy1wzCGnzkr9tU2215lNYX05ECUUte5BOS7 2BrUDhZ2+N9po8hawuycgG8xQCy2dkTdJ5+/AdudmkYGhsLqU/sCAwEAAaOCBD8w ggQ7MIGUBggrBgEFBQcBAQSBhzCBhDBYBggrBgEFBQcwAoZMaHR0cDovL2NlcnQu bWFuYWdlZHBraS5jb20vQ0FjZXJ0cy9LUE5CVlBLSW92ZXJoZWlkT3JnYW5pc2F0 aWVTZXJ2ZXJDQUczLmNlcjAoBggrBgEFBQcwAYYcaHR0cDovL2czb2NzcC5tYW5h Z2VkcGtpLmNvbTAdBgNVHQ4EFgQUL3R3iNm2Vf3vM2ktCS3i0bSivu4wDAYDVR0T AQH/BAIwADAfBgNVHSMEGDAWgBTDmqZ7XnQrgrbGcv10ToXSl839GDCBsQYDVR0g BIGpMIGmMIGZBgpghBABh2sBAgUGMIGKMDcGCCsGAQUFBwIBFitodHRwczovL2Nl cnRpZmljYWF0Lmtwbi5jb20vcGtpb3ZlcmhlaWQvY3BzME8GCCsGAQUFBwICMEMM QU9wIGRpdCBjZXJ0aWZpY2FhdCBpcyBoZXQgQ1BTIFBLSW92ZXJoZWlkIHZhbiBL UE4gdmFuIHRvZXBhc3NpbmcuMAgGBmeBDAECAjBeBgNVHR8EVzBVMFOgUaBPhk1o dHRwOi8vY3JsLm1hbmFnZWRwa2kuY29tL0tQTkJWUEtJb3ZlcmhlaWRPcmdhbmlz YXRpZVNlcnZlckNBRzMvTGF0ZXN0Q1JMLmNybDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBgGA1UdEQQRMA+CDXd3dy5raXZl bGQubmwwggH1BgorBgEEAdZ5AgQCBIIB5QSCAeEB3wB2AO5Lvbd1zmC64UJpH6vh nmajD35fsHLYgwDEe4l6qP3LAAABZwxxMdwAAAQDAEcwRQIgPIeMk4HQljUedgx4 rM0LpzW7kw/k6glfKUNwuGWei2sCIQDQ4ybp775oJD9bg0nu1P7MnlOMbmXksLOz ryDY1Yt3OAB1AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABZwxx Mw4AAAQDAEYwRAIgMeff9errdm58VaLpRik9ZiLYFGwW/GGZBAYEmuXXZAUCICvG xOHw808WD98AvxEAtRREt7/lLRIlx7L99eqwpSFOAHYApLkJkLQYWBSHuxOizGdw Cjw1mAT5G9+443fNDsgN3BAAAAFnDHE0fQAABAMARzBFAiBK3+spkVuGgFafGE7K Dle+YUJZl9oofljEr+SbuQJtRgIhAO/R68mvAkYpKyL8W6ayO66XhpoUHbb0fhtA Fpky9V9dAHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFnDHE0 PQAABAMARzBFAiA42N+VySO4c95Ha2U1ZeLdrR1W9RsJHKKArXxpPp4a8gIhAPva 3uRgGGwkVvM/+ud0RPFk9sXo3++HD1RZ83H1vI5WMA0GCSqGSIb3DQEBCwUAA4IC AQBWOhjwXdsDc8ol9q5xZXl+UGZ152+5zuwq6eGNPPZIj5LEMny4gfsUz/opi9bq i+XuZ7xwJWarJtGmaeZ0mTR2zqEeuFiAjUN/4K+HGGS5UBCM5Nxnv5FtG93G2/yn Xsd9BEJav/Aq7CIZR0K0Ov5Kwzu0Xs4su4/xOO8m2xDg8dXV4oI7+Ot8hAwZ12A4 bheLZtnbF/vLt45cOiht4V2eAz6wkmM+GtFa9X+rreaZAEYgi+f9z/zNplaVe4TO cZkCN9BuLMiVEMSag/GH1yE3vdCHLZ8J8JIcJmtBeEBrcx94fUmFmE9a2o6UmkO0 yzjN/BNDgVKsLJFIlg3h8BpFcPfBqLrdvp4WXoZQYUTF7EHYgU7cN1QvEIbxnoji 9ArNn9g/GF1MGJMUHgIWajs20Ea3V8VI9X2OxrOStn1IQsk2pz5N7LNiOM2jB2Gn JTk8cHRc8QgG71JyKADvniScWcCZLdTIEKMsv59l78oxgjFDVAoVjvUwzHf61cc8 pTCX+rDevwUubmmXiJmDr9T8/9/fRgqXTPIqdrR1K0ySANYJoVP7MrwuxRdJaBbv vjRss8hrnj7NSDc/wlmNWDxcC2DvVbmQTS1ueIZg3dSu2TXv6ZQsCLp5a8mRwXLb Ix4VYARuL+XpNUWSo0bpfEcnN2u1b7BepgLurrqs1IjnIw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhstXLgijtYukiqoepbe+ 9UC65pTPNhlUD20QLRqvMUwOBCzgcoln46pma/c3enghZzdWqyyerZgYuLd4rFSy XyrSEPTnXqv+M57/MHXbr9BXkWIHRZ9uZ2/KMXWAe6mXytKpEpm+p/CjQKJ+jZzC GZQEIcvVhC7sBsaaIJeA0oXot1Zc583Tbxcxp16wMrffLu8TWuySatPrJWd1CINp ARu0g9birKTB3rHQaMsAhM0Kxn7GfOthpyCbGPag+KoaHLXDMIafOSv21TbbXmU1 hfTkQJRS17kE5LvYGtQOFnb432mjyFrC7JyAbzFALLZ2RN0nn78B252aRgaGwupT +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5194031627150440862 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.97 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'NTRNL-27124701' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'KPN BV PKIoverheid Organisatie Server CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-13 09:40:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-12 09:40:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuid-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String ''s-Gravenhage' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Kiveld B.V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000003273045230000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.kiveld.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17016203825917788092381961839033818222590379080473799376092533316445165182848441169933162886362219913074683470187098116756601442947321518812342441828067771137104668214221482195894550656645733807043188882199166150634348888411700916743493366437168196941363570048819361301348892156749441954389181107556756759492960294889609270717266378058299043421467576571945279147847926055370923251893447234759567468940207543729521302571876644327673703378656549573462680552984776431609753885631552909220952605057391063704584678678615066078824974469321429785425143440426196268945206944975205455998852073572149173492184890898627022181371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/CAcerts/KPNBVPKIoverheidOrganisatieServerCAG3.cer' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://g3ocsp.managedpki.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2f747788d9b655fdef33692d092de2d1b4a2beee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39aa67b5e742b82b6c672fd744e85d297cdfd18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (169 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://certificaat.kpn.com/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Op dit certificaat is het CPS PKIoverheid van KPN van toepassing.' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.managedpki.com/KPNBVPKIoverheidOrganisatieServerCAG3/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kiveld.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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