ds11g-ds1.zmaw.de
- Max-Planck-Gesellschaft -
Issued by MPG CA - G02
About this certificate
This digital certificate with serial number 20:81:1f:44:7c:b6:28:bd:14:ba:8b:bb was issued on by Max-Planck-Gesellschaft.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Max-Planck-Gesellschaft
Organization:
Max-Planck-Gesellschaft
Organization unit: Max-Planck-Institut fuer Meteorologie
Organization unit: Max-Planck-Institut fuer Meteorologie
State / Province:
Hamburg
Locality: Hamburg
Country: DE
Locality: Hamburg
Country: DE
Max-Planck-Gesellschaft
Organization:
Max-Planck-Gesellschaft
State / Province:
Bayern
Locality: Muenchen
Country: DE
Locality: Muenchen
Country: DE
This certificate has expire since
Certificate Details
Serial Number (hex): 20:81:1f:44:7c:b6:28:bd:14:ba:8b:bbSerial Number (int): 10059619401739310233007328187
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 8a:b2:0b:50:e3:fe:fb:80:86:a1:d3:ec:b0:a2:06:28:45:3e:47:32
AuthorityKeyId: c4:88:a5:07:ee:b8:7b:aa:0c:13:bf:da:29:74:63:52:1b:49:70:16
Fingerprint (sha1): fd:7f:7b:31:8e:48:a6:c8:91:8c:2c:f6:40:54:f6:8c:05:45:5e:d2
Fingerprint (sha256): c5:42:75:b5:29:17:92:45:d4:58:0b:54:03:60:04:64:6f:45:76:6f:fd:e9:e5:4c:48:67:ce:ba:6b:87:dd:f3
Issuing Certificate URL: http://cdp1.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl
Check the revocation status for certificate ds11g-ds1.zmaw.de
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ds11g-ds1.zmaw.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ds11g-ds1.zmaw.de
ds11g-ds1.mpimet.mpg.de
ds11g-ds1.mpimet.mpg.de
Other certificates including the domain name zmaw.de
(limited to 100 certificates)
ds11g-dps2.zmaw.de
www.ifm.zmaw.de
nagios.mpimet.mpg.de
wts.mpimet.mpg.de
webgis.zmaw.de
dc-dev.adtest.zmaw.de
wera.ifm.zmaw.de
www.zmaw.de
ds4.zmaw.de
code.mpimet.mpg.de
t3projects.mpimet.mpg.de
dc4.zmaw.zmaw.de
lists.zmaw.de
vpngate.zmaw.de
cis.zmaw.de
ldapadmin.mpimet.mpg.de
www.mi.zmaw.de
ds6.zmaw.de
t3projects.zmaw.de
code.mpimet.mpg.de
mailer.zmaw.de
code.zmaw.de
calendar.zmaw.de
www.mi.zmaw.de
ds5.zmaw.de
svn-zmk.zmaw.de
mad-rt.zmaw.de
dps5.zmaw.de
wiki.zmaw.de
t3projects.mpimet.mpg.de
svn.zmaw.de
www.ifm.zmaw.de
lists.zmaw.de
ds11g-ds1.zmaw.de
mail2.zmaw.de
ftp-projects.mpimet.mpg.de
dc-dev2.adtest.zmaw.de
caldav.zmaw.de
webgis.zmaw.de
ftp.mpimet.mpg.de
dps5.zmaw.de
ftp-projects.mpimet.mpg.de
wiki.zmaw.de
www.geophysics.zmaw.de
t3projects.mpimet.mpg.de
t3projects.mpimet.mpg.de
mailer.zmaw.de
wera.ifm.zmaw.de
ds5.zmaw.de
cis.zmaw.de
buildbot.zmaw.de
wettermast-hamburg.zmaw.de
hwdb.mpimet.mpg.de
isw.zmaw.de
ds5-dmz.zmaw.de
ds11g-ds2.zmaw.de
wiki.zmaw.de
ds11g-ds2.zmaw.de
www.geophysics.zmaw.de
mailer.zmaw.de
calendar.zmaw.de
ds11g-ds3.zmaw.de
www.geophysics.zmaw.de
ds4.zmaw.de
t3projects.zmaw.de
lidargate.mpimet.mpg.de
hwdb.mpimet.mpg.de
ds11g-dps2.zmaw.de
barbados.mpimet.mpg.de
solaris-isw.zmaw.de
www.zmaw.de
isw.zmaw.de
ds7.zmaw.de
code.mpimet.mpg.de
www.geophysics.zmaw.de
ftp.mpimet.mpg.de
webstat.zmaw.de
icdc.zmaw.de
t3projects.mpimet.mpg.de
buildbot.mpimet.mpg.de
svn.mpimet.mpg.de
svn.mpimet.mpg.de
svn-zmk.zmaw.de
ds4-dmz.zmaw.de
svn.zmaw.de
code.zmaw.de
dc3.zmaw.zmaw.de
mail1.zmaw.de
dps4.zmaw.de
svn-mad.zmaw.de
code.mpimet.mpg.de
ds6.zmaw.de
www.zmaw.de
cumulus.zmaw.de
cis.zmaw.de
dc4.zmaw.zmaw.de
ds11g-ds1.zmaw.de
t3projects.mpimet.mpg.de
lists.zmaw.de
t3projects.mpimet.mpg.de
www.ifm.zmaw.de
nagios.mpimet.mpg.de
wts.mpimet.mpg.de
webgis.zmaw.de
dc-dev.adtest.zmaw.de
wera.ifm.zmaw.de
www.zmaw.de
ds4.zmaw.de
code.mpimet.mpg.de
t3projects.mpimet.mpg.de
dc4.zmaw.zmaw.de
lists.zmaw.de
vpngate.zmaw.de
cis.zmaw.de
ldapadmin.mpimet.mpg.de
www.mi.zmaw.de
ds6.zmaw.de
t3projects.zmaw.de
code.mpimet.mpg.de
mailer.zmaw.de
code.zmaw.de
calendar.zmaw.de
www.mi.zmaw.de
ds5.zmaw.de
svn-zmk.zmaw.de
mad-rt.zmaw.de
dps5.zmaw.de
wiki.zmaw.de
t3projects.mpimet.mpg.de
svn.zmaw.de
www.ifm.zmaw.de
lists.zmaw.de
ds11g-ds1.zmaw.de
mail2.zmaw.de
ftp-projects.mpimet.mpg.de
dc-dev2.adtest.zmaw.de
caldav.zmaw.de
webgis.zmaw.de
ftp.mpimet.mpg.de
dps5.zmaw.de
ftp-projects.mpimet.mpg.de
wiki.zmaw.de
www.geophysics.zmaw.de
t3projects.mpimet.mpg.de
t3projects.mpimet.mpg.de
mailer.zmaw.de
wera.ifm.zmaw.de
ds5.zmaw.de
cis.zmaw.de
buildbot.zmaw.de
wettermast-hamburg.zmaw.de
hwdb.mpimet.mpg.de
isw.zmaw.de
ds5-dmz.zmaw.de
ds11g-ds2.zmaw.de
wiki.zmaw.de
ds11g-ds2.zmaw.de
www.geophysics.zmaw.de
mailer.zmaw.de
calendar.zmaw.de
ds11g-ds3.zmaw.de
www.geophysics.zmaw.de
ds4.zmaw.de
t3projects.zmaw.de
lidargate.mpimet.mpg.de
hwdb.mpimet.mpg.de
ds11g-dps2.zmaw.de
barbados.mpimet.mpg.de
solaris-isw.zmaw.de
www.zmaw.de
isw.zmaw.de
ds7.zmaw.de
code.mpimet.mpg.de
www.geophysics.zmaw.de
ftp.mpimet.mpg.de
webstat.zmaw.de
icdc.zmaw.de
t3projects.mpimet.mpg.de
buildbot.mpimet.mpg.de
svn.mpimet.mpg.de
svn.mpimet.mpg.de
svn-zmk.zmaw.de
ds4-dmz.zmaw.de
svn.zmaw.de
code.zmaw.de
dc3.zmaw.zmaw.de
mail1.zmaw.de
dps4.zmaw.de
svn-mad.zmaw.de
code.mpimet.mpg.de
ds6.zmaw.de
www.zmaw.de
cumulus.zmaw.de
cis.zmaw.de
dc4.zmaw.zmaw.de
ds11g-ds1.zmaw.de
t3projects.mpimet.mpg.de
lists.zmaw.de
t3projects.mpimet.mpg.de
Certificate
The complete raw certificate details for ds11g-ds1.zmaw.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBjCCBO6gAwIBAgIMIIEfRHy2KL0Uuou7MA0GCSqGSIb3DQEBCwUAMGoxCzAJ BgNVBAYTAkRFMQ8wDQYDVQQIDAZCYXllcm4xETAPBgNVBAcMCE11ZW5jaGVuMSAw HgYDVQQKDBdNYXgtUGxhbmNrLUdlc2VsbHNjaGFmdDEVMBMGA1UEAwwMTVBHIENB IC0gRzAyMB4XDTE5MDIxMTE2MjQyMloXDTIxMDUxNTE2MjQyMlowgZ8xCzAJBgNV BAYTAkRFMRAwDgYDVQQIDAdIYW1idXJnMRAwDgYDVQQHDAdIYW1idXJnMSAwHgYD VQQKDBdNYXgtUGxhbmNrLUdlc2VsbHNjaGFmdDEuMCwGA1UECwwlTWF4LVBsYW5j ay1JbnN0aXR1dCBmdWVyIE1ldGVvcm9sb2dpZTEaMBgGA1UEAwwRZHMxMWctZHMx LnptYXcuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvcq5tki1v HuBF1qc2FF0PfgzfxpeFRl32QnN9ER3Z7O7kPLnyCJCIWm4JHxC8AF/fXypneoet UvLIom/oIVxZEWZMG+sdXAtir7tyGzUOMtfaVxPJmc46sGQzBd2x0kFXl9VWYP81 lOIeW0fPeDzMah89xvAZp8KtYZhnh6xke4qrFLH5OoyQ5OauqYpALJlL1S4/g2Rl hKNyopOgFomYw9bLPxMF7/Tl67ZljmUIBH4khHnketo/k+ZJo1HMMT5nHvbbhfKL gVGpAIkLxRr+pNfmzDvipAbXFj4F8C7tyd/unWKSBsFb82qepc5T0s9fGyMVPDQ7 02T39CrDGNDpAgMBAAGjggJ0MIICcDAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwHQYDVR0OBBYEFIqyC1Dj /vuAhqHT7LCiBihFPkcyMB8GA1UdIwQYMBaAFMSIpQfuuHuqDBO/2il0Y1IbSXAW MDUGA1UdEQQuMCyCEWRzMTFnLWRzMS56bWF3LmRlghdkczExZy1kczEubXBpbWV0 Lm1wZy5kZTB9BgNVHR8EdjB0MDigNqA0hjJodHRwOi8vY2RwMS5wY2EuZGZuLmRl L21wZy1nMi1jYS9wdWIvY3JsL2NhY3JsLmNybDA4oDagNIYyaHR0cDovL2NkcDIu cGNhLmRmbi5kZS9tcGctZzItY2EvcHViL2NybC9jYWNybC5jcmwwgc0GCCsGAQUF BwEBBIHAMIG9MDMGCCsGAQUFBzABhidodHRwOi8vb2NzcC5wY2EuZGZuLmRlL09D U1AtU2VydmVyL09DU1AwQgYIKwYBBQUHMAKGNmh0dHA6Ly9jZHAxLnBjYS5kZm4u ZGUvbXBnLWcyLWNhL3B1Yi9jYWNlcnQvY2FjZXJ0LmNydDBCBggrBgEFBQcwAoY2 aHR0cDovL2NkcDIucGNhLmRmbi5kZS9tcGctZzItY2EvcHViL2NhY2VydC9jYWNl cnQuY3J0MBMGCisGAQQB1nkCBAMBAf8EAgUAMFkGA1UdIARSMFAwCAYGZ4EMAQIC MA0GCysGAQQBga0hgiweMA8GDSsGAQQBga0hgiwBAQQwEQYPKwYBBAGBrSGCLAEB BAMIMBEGDysGAQQBga0hgiwCAQQDCDANBgkqhkiG9w0BAQsFAAOCAQEAc2DpraFu Up/roTZ6Jr8G9VFhLL2RmUfYhp5yiTTEgvgZvymXu8CRk0k090c8jwGdQ3J5r2BE 7WxYO964bxB+4ggZ2tB2zDBJ0MNb3Qw6nmME8pBXdNSsVc7soRdkHPmnQ8K9I7VZ 1ZujbgxSmwfST2M4aKD3EFZ86vVkHMCzqb3UA9HJ/S2Ojd9TwOByYSb802p8c39x bsYHcf2KozTgFAhm2OlfNTrjNs7ElBYXTMnPLdU/rZBIvkmD0Lcur7yRKQ3ENb2t SIA1lWOODdfmP/nFH6nErle2PW1LRQBuXTV34iwB0e/4QEgFxK5bGvQiS1+0IXHw 7CHyMJ1nEqntFw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3KubZItbx7gRdanNhRd D34M38aXhUZd9kJzfREd2ezu5Dy58giQiFpuCR8QvABf318qZ3qHrVLyyKJv6CFc WRFmTBvrHVwLYq+7chs1DjLX2lcTyZnOOrBkMwXdsdJBV5fVVmD/NZTiHltHz3g8 zGofPcbwGafCrWGYZ4esZHuKqxSx+TqMkOTmrqmKQCyZS9UuP4NkZYSjcqKToBaJ mMPWyz8TBe/05eu2ZY5lCAR+JIR55HraP5PmSaNRzDE+Zx7224Xyi4FRqQCJC8Ua /qTX5sw74qQG1xY+BfAu7cnf7p1ikgbBW/NqnqXOU9LPXxsjFTw0O9Nk9/QqwxjQ 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10059619401739310233007328187 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bayern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Muenchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'MPG CA - G02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-11 16:24:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-15 16:24:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Hamburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Gesellschaft' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Max-Planck-Institut fuer Meteorologie' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ds11g-ds1.zmaw.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22148254855093435690633413626910661784618747982316072098859715707773619880372531600534836165873406552972633442864341157727494997259652240107465125281563820531674011869327447163100138441076138220279643194872852411116768601347900048854783309590559484721981212910065239269392012865319066077152275712884269704717644041432382588348295797725792866571240518960944137744929684601903347765941570279217749986438444968208583366010717580867690681506833585906512244672031421764992737725476503068272977168423122781083902053695787867617839361139196015761309142854194188065821378410579212400571757337030646789148127598386276327805161 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8ab20b50e3fefb8086a1d3ecb0a20628453e4732 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c488a507eeb87baa0c13bfda297463521b497016 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ds11g-ds1.zmaw.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ds11g-ds1.mpimet.mpg.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (118 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/mpg-g2-ca/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/mpg-g2-ca/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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