TestJMH.ibz.be
- FOD Binnenlandse Zaken -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 07:2c:2b:ff:dc:e9:a2:b3:ab:ae:bd:17:44:de:7d:bd was issued on by TERENA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
FOD Binnenlandse Zaken
Organization:
FOD Binnenlandse Zaken
Organization unit: FOD Binnenlandse Zaken
Organization unit: FOD Binnenlandse Zaken
Locality:
Brussel
Country: BE
Country: BE
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 07:2c:2b:ff:dc:e9:a2:b3:ab:ae:bd:17:44:de:7d:bdSerial Number (int): 9533949447433491899590878273724120509
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 13:5e:e0:54:ff:5a:a6:54:f7:7e:0b:26:60:77:d6:e1:c3:d4:c0:24
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 07:18:89:b8:28:f9:a1:ee:b5:c7:cd:0c:3e:4d:62:77:89:94:a5:25
Fingerprint (sha256): b6:ac:b9:f4:ca:69:23:cc:79:55:71:6d:49:08:82:96:4f:f5:5d:c5:eb:16:f2:fe:cd:02:f9:d2:06:77:e4:a4
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate TestJMH.ibz.be
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for TestJMH.ibz.be
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
TestJMH.ibz.be
Other certificates including the domain name ibz.be
(limited to 100 certificates)
PPT-AIR.IBZ.BE
ibz.be
ibz.be
icmsystem.be
ibz.be
ibz.be
box.ibz.be
box.ibz.be
PPT-AIR.IBZ.BE
ibz.be
2016.ibz.be
dofi.ibz.be
*.ibz.be
PPT-AIR.IBZ.BE
ibz.be
ibz.be
ibz.be
*.ibz.be
DVZRRNWS.IBZ.BE
*.ibz.be
arrivalcenterappointment.ibz.be
ibz.be
ibz.be
ibz.be
*.ibz.be
ibz.be
www.mariageblanc.be
ibz.be
icmsystemprod.ibz.be
ibz.be
ibz.be
*.ibz.be
evigilis-uat.ibz.be
dofi.ibz.be
ibz.be
binnenland.fgov.be
www.rampen.be
ibz.be
*.ibz.be
ibz.be
dofi.ibz.be
services-dvzoe.ibz.be
binnenland.fgov.be
pnr-navitaire-test.ibz.be
*.ibz.be
2016.ibz.be
PPT-AIR.cust1.IBZ.BE
ibz.be
TestJMH.ibz.be
encryption.services-acc-dvzoe.ibz.be
www.xn--calamits-h1a.be
dofi.ibz.be
sts.ibz.be
*.ibz.be
ibz.be
ibz.be
icmsystemacc.ibz.be
ibz.be
ibz.be
*.ibz.be
emm.ibz.be
2016.ibz.be
ibz.be
2016.ibz.be
ibz.be
evigilis.ibz.be
services-acc-dvzoe.ibz.be
2016.ibz.be
ibz.be
ibz.be
*.ibz.be
*.ibz.be
*.IBZ.BE
ibz.be
services-tst-dvzoe.ibz.be
ibz.fgov.be
ibz.be
ibz.be
ibz.be
icmsystem.be
ibz.be
ibz.be
box.ibz.be
box.ibz.be
PPT-AIR.IBZ.BE
ibz.be
2016.ibz.be
dofi.ibz.be
*.ibz.be
PPT-AIR.IBZ.BE
ibz.be
ibz.be
ibz.be
*.ibz.be
DVZRRNWS.IBZ.BE
*.ibz.be
arrivalcenterappointment.ibz.be
ibz.be
ibz.be
ibz.be
*.ibz.be
ibz.be
www.mariageblanc.be
ibz.be
icmsystemprod.ibz.be
ibz.be
ibz.be
*.ibz.be
evigilis-uat.ibz.be
dofi.ibz.be
ibz.be
binnenland.fgov.be
www.rampen.be
ibz.be
*.ibz.be
ibz.be
dofi.ibz.be
services-dvzoe.ibz.be
binnenland.fgov.be
pnr-navitaire-test.ibz.be
*.ibz.be
2016.ibz.be
PPT-AIR.cust1.IBZ.BE
ibz.be
TestJMH.ibz.be
encryption.services-acc-dvzoe.ibz.be
www.xn--calamits-h1a.be
dofi.ibz.be
sts.ibz.be
*.ibz.be
ibz.be
ibz.be
icmsystemacc.ibz.be
ibz.be
ibz.be
*.ibz.be
emm.ibz.be
2016.ibz.be
ibz.be
2016.ibz.be
ibz.be
evigilis.ibz.be
services-acc-dvzoe.ibz.be
2016.ibz.be
ibz.be
ibz.be
*.ibz.be
*.ibz.be
*.IBZ.BE
ibz.be
services-tst-dvzoe.ibz.be
ibz.fgov.be
ibz.be
Certificate
The complete raw certificate details for TestJMH.ibz.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRjCCBS6gAwIBAgIQBywr/9zporOrrr0XRN59vTANBgkqhkiG9w0BAQwFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xOTAxMTUwMDAwMDBaFw0yMTAxMTkxMjAwMDBaMHoxCzAJBgNVBAYT AkJFMRAwDgYDVQQHEwdCcnVzc2VsMR8wHQYDVQQKExZGT0QgQmlubmVubGFuZHNl IFpha2VuMR8wHQYDVQQLExZGT0QgQmlubmVubGFuZHNlIFpha2VuMRcwFQYDVQQD Ew5UZXN0Sk1ILmliei5iZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIB APZQBOiPlm/Tur17YKQI43y5hIDf6iOrIMHmtNCMewBLp1FvMGrBajgKBoBYklOK KjfuVEGoAH7zqZVOPoha45LUNpHWCUJfFGyJS2gBQJOK0ost6MWlKHgVtYJrlqq/ pN9cWdcNZS0+cHx6AuMVPSjPZcxXDqnmdiil4W8GlRHoXtp3xxQeNhPAVGEidT6x Dz+VVcQQxtJlcdkaRSaPmU2fPrRtICobvM7hx1av6NFx6ATBnTdTLUSH5OBHSzvt 8OMve1Yv9bsMTZeyoHqkgqfALdFkORcZLXHv6A0vrbT7HdQYpAvUExJx3CaOfCoW kHwnQpwoK62jnRteg+tYRD3yB381a6ao4Vw0Kawj5BXfwVBXnd3oXlFbwd+JUJEp 8HOjZkBaMBjagzKmGvk4L0f2aaHeqHYLGoIbDIY4aZJZMrCjdDQEXs+B0bDE3Yxy hRbiS/IlEUuMb/6uIDbJwfXrNv7mwl1CWJPNsLHSkI8OmIV3QkddxIaPelsXFelN RR6er6ehxNRwcAVwacRYYcu8i4J7wjVXXmUbmQ9CmcpISOciem6V8At9clLtRY92 ol86vHp9e3yMdV1TT3plZk38mK9WDc7JjfxnIRqCwVsiT9z/T1S7TlvMUQRMwKPG wDvgeESf1vBpGnfxpp7WAqCjSZ9dnU5X+z+jXpLDJYjxAgMBAAGjggHcMIIB2DAf BgNVHSMEGDAWgBRn/YggFCeYxwnSJRm76VERY3VQYjAdBgNVHQ4EFgQUE17gVP9a plT3fgsmYHfW4cPUwCQwGQYDVR0RBBIwEIIOVGVzdEpNSC5pYnouYmUwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8E ZDBiMC+gLaArhilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0Ez LmNybDAvoC2gK4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENB My5jcmwwTAYDVR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0 cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwbgYIKwYBBQUHAQEE YjBgMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wOAYIKwYB BQUHMAKGLGh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMu Y3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcN AQEMBQADggEBABIZTnHwSjEtz3v0lNq5ywnvK9g/Xs3Vri+y4J9ON+wpKHztAq3g +ZFrKDktt0xr97wnju7BrjK7cZ6p3eQOWBZBBNnKwLU+1sXZg7rTMgoCUz/6rc0n 8p4S68uY2p3TcnI0/OxTxR1jl99VZcKLQ4TtmYd1LOKEiP1zrx26ZRiaPpAwe2Pj kEhJgGsI4/J7s/JXW1+U20aeRIlRNSA2EZd9sUt+O8WvDuIULPNWd9oDRimH0sEE qKyHxdu8yD1PJ351hFxgE8Rd2iOKe8AkXL2cURff/S2xuqiT9cj8Y47Cxn3SBk3o V83OrO64ve8RSNaqlxtjM65TdzirtqzuETU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9lAE6I+Wb9O6vXtgpAjj fLmEgN/qI6sgwea00Ix7AEunUW8wasFqOAoGgFiSU4oqN+5UQagAfvOplU4+iFrj ktQ2kdYJQl8UbIlLaAFAk4rSiy3oxaUoeBW1gmuWqr+k31xZ1w1lLT5wfHoC4xU9 KM9lzFcOqeZ2KKXhbwaVEehe2nfHFB42E8BUYSJ1PrEPP5VVxBDG0mVx2RpFJo+Z TZ8+tG0gKhu8zuHHVq/o0XHoBMGdN1MtRIfk4EdLO+3w4y97Vi/1uwxNl7KgeqSC p8At0WQ5Fxktce/oDS+ttPsd1BikC9QTEnHcJo58KhaQfCdCnCgrraOdG16D61hE PfIHfzVrpqjhXDQprCPkFd/BUFed3eheUVvB34lQkSnwc6NmQFowGNqDMqYa+Tgv R/Zpod6odgsaghsMhjhpklkysKN0NARez4HRsMTdjHKFFuJL8iURS4xv/q4gNsnB 9es2/ubCXUJYk82wsdKQjw6YhXdCR13Eho96WxcV6U1FHp6vp6HE1HBwBXBpxFhh y7yLgnvCNVdeZRuZD0KZykhI5yJ6bpXwC31yUu1Fj3aiXzq8en17fIx1XVNPemVm TfyYr1YNzsmN/GchGoLBWyJP3P9PVLtOW8xRBEzAo8bAO+B4RJ/W8Gkad/GmntYC oKNJn12dTlf7P6NeksMliPECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9533949447433491899590878273724120509 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-19 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brussel' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FOD Binnenlandse Zaken' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FOD Binnenlandse Zaken' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TestJMH.ibz.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 1004867635056760338003307877520906412923273802216651144539548006162187138583793883878101748762007047684893458349077452674671382084083002922162945749063232899239945868234671235244439293871796874862720385138424739753572760292850024549367836303020706784165848748351280916675648778658697771601015208739175257124640191883399703104717696502411355076469093467383687886074533061307367709161630311055827271343361056436853105902827943267132087113086154879433189630760836722765905128244500011746722188492439219811862221192695991580922149807002637661049909949804402131713279701637871128514521607721305503946731397220687983997838239000787525739645266607750281617325653590933724214796450518626760842903216571874893520479233881787176035631175473499111161210744882254691369351703461032559806408531913314608571977070191670547335843149672192215308600628556214345620404078200064410962587578730680745678576316301471459871251311335761389092253868687086364508481461594246220577097933001845867120030454054043103005673135638014700382324097562500567786179018999788747175911207486353779633633280209364689032986420016006194976770128989747024376605320656547033332927210250942732890343385196785731311412572980607504026079423786129735088452409177984219602657577201 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 135ee054ff5aa654f77e0b266077d6e1c3d4c024 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'TestJMH.ibz.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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