appprd.riziv.fgov.be
- RIZIV-INAMI-LIKIV-NIHDI -
Issued by Government CA
About this certificate
This digital certificate with serial number 01:00:00:00:00:01:46:5d:0f:27:1c:2c:08:dd was issued on byGovernment CA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
RIZIV-INAMI-LIKIV-NIHDI
Organization:
RIZIV-INAMI-LIKIV-NIHDI
Organization unit: ICT
Organization unit: ICT
State / Province:
Brussels
Locality: Brussels
Country: BE
Locality: Brussels
Country: BE
Government CA
Company registration number: 2010
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 01:00:00:00:00:01:46:5d:0f:27:1c:2c:08:ddSerial Number (int): 20282409603675187393437100673245
Serial Number lenght: 105 bits, 14 octets
SubjectKeyId: 77:9d:0c:d6:f9:d1:08:fa:69:6a:03:dd:eb:44:eb:68:06:03:86:9b
AuthorityKeyId: 41:96:ce:85:a7:e5:5e:e8:16:59:3d:0a:f1:84:dd:f3:f2:bb:4e:89
Fingerprint (sha1): c2:4c:51:c0:39:96:fb:e5:e0:2f:8a:a7:65:b5:2c:e4:23:82:f4:10
Fingerprint (sha256): e1:a5:f8:8d:c3:30:72:52:c4:01:77:d2:3b:8b:d9:5d:76:39:66:59:f0:84:f0:5b:93:e1:e5:9a:ca:3c:ea:0e
Issuing Certificate URL: http://certs.pki.belgium.be/belgiumrs2.crt
Revocation information
OCSP Server: http://ocsp.pki.belgium.beCRL Distribution Point: http://crl.pki.belgium.be/government2010.crl
Check the revocation status for certificate appprd.riziv.fgov.be
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for appprd.riziv.fgov.be
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Extended Key Usages
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name fgov.be
(limited to 100 certificates)
kruispuntbank.fgov.be
eservices.minfin.fgov.be
dabs-acc.ext.wss.just.fgov.be
bpp.economie.fgov.be
www.business.belgium.be
minfin.be
eolf.economie.fgov.be
cap.mobilit.fgov.be
wwwacc.capac-hvw.fgov.be
ilite.wss.just.fgov.be
air.mobilit.fgov.be
justsignal-acc.client.just.fgov.be
www.rsvz.fgov.be
webdwtc01.rrn.fgov.be
jft-acc.wss.just.fgov.be
www.capac-hvw.fgov.be
www.incc.fgov.be
sdvampf001.intra.just.fgov.be
spvwebtpi001.intra.just.fgov.be
webdwtc01.rrn.fgov.be
portal.health.fgov.be
HVB-Liege.just.fgov.be
apptst.riziv.fgov.be
moncomptedevacances.be
*.ehealth-09.paas.cloud.ehealth.fgov.be
www.ehealth.fgov.be
natgw-eessi.ksz-bcss.fgov.be
wahlen.fgov.be
c-b2b.SPFETCS-FODWASO.fgov.be
www.likiv.fgov.be
www.capac-hvw.fgov.be
appsoc.caami-hziv.fgov.be
bibforum.fgov.be
*.statbel.fgov.be
appsoc.caami-hziv.fgov.be
ccff02.minfin.fgov.be
handicap.belgium.be
news.sfpd.fgov.be
ede.onssrszlss.fgov.be
hbca.client.just.fgov.be
savdiv000.intra.just.fgov.be
eucertificates.economie.fgov.be
handicap.belgium.be
residencepalace.be
archi.ccecrb.fgov.be
auth-signing.sigedis.fgov.be
premier.be
www.mybenefits.fgov.be
auth.minfin.fgov.be
www.rsvz.be
vsp.smals.be
forfaitdebase.economie.fgov.be
login.dev.mobilit.fgov.be
mailings.ibz.fgov.be
FODJ-STS-Token-Signing-2018.just.fgov.be
bel1fedlaeaacc01.fed.oncsfm.com
meldpunt.belgie.be
ibz.be
telework.just.fgov.be
circa.health.fgov.be
PAUTH.riziv.fgov.be
e.koba.be
accreditation-new.belgium.be
b2b-tst.rsvz-inasti.fgov.be
stvjira000.intra.just.fgov.be
spvnpsradius001.intra.just.fgov.be
auth.meta.fgov.be
ede.onssrszlss.fgov.be
emm.rrn.fgov.be
*.vpn2.fanc.fgov.be
kce.fgov.be
savelasticb000.intra.just.fgov.be
appsoc.caami-hziv.fgov.be
rsvz-inasti.fgov.be
adldsacc.integration.just.fgov.be
spvxwiki000.intra.just.fgov.be
bgcturn.intra.just.fgov.be
biblio.intra.just.fgov.be
arttiepe.intra.just.fgov.be
www.sigedis.fgov.be
fgov.be
www.riziv.fgov.be
savsdstatbe000.intra.just.fgov.be
viewportal.integration.just.fgov.be
www.decroo.belgie.be
bel1fedlaeaacc01.fed.oncsfm.com
www.capac-hvw.fgov.be
HVB-Mons-test.just.fgov.be
nrmobility.mobilit.fgov.be
infradocs.just.fgov.be
ccff02.minfin.fgov.be
test.ehealthplatform.info
www.caami-hziv.fgov.be
ibz.be
acc-cjcsr.just.fgov.be
www.webapp.rrn.fgov.be
*.apps-acc.mobilit.fgov.be
casfactory-dev.intra.just.fgov.be
enigloket.acc.mobilit.fgov.be
DAC-X3.rsvz-inasti.fgov.be
eservices.minfin.fgov.be
dabs-acc.ext.wss.just.fgov.be
bpp.economie.fgov.be
www.business.belgium.be
minfin.be
eolf.economie.fgov.be
cap.mobilit.fgov.be
wwwacc.capac-hvw.fgov.be
ilite.wss.just.fgov.be
air.mobilit.fgov.be
justsignal-acc.client.just.fgov.be
www.rsvz.fgov.be
webdwtc01.rrn.fgov.be
jft-acc.wss.just.fgov.be
www.capac-hvw.fgov.be
www.incc.fgov.be
sdvampf001.intra.just.fgov.be
spvwebtpi001.intra.just.fgov.be
webdwtc01.rrn.fgov.be
portal.health.fgov.be
HVB-Liege.just.fgov.be
apptst.riziv.fgov.be
moncomptedevacances.be
*.ehealth-09.paas.cloud.ehealth.fgov.be
www.ehealth.fgov.be
natgw-eessi.ksz-bcss.fgov.be
wahlen.fgov.be
c-b2b.SPFETCS-FODWASO.fgov.be
www.likiv.fgov.be
www.capac-hvw.fgov.be
appsoc.caami-hziv.fgov.be
bibforum.fgov.be
*.statbel.fgov.be
appsoc.caami-hziv.fgov.be
ccff02.minfin.fgov.be
handicap.belgium.be
news.sfpd.fgov.be
ede.onssrszlss.fgov.be
hbca.client.just.fgov.be
savdiv000.intra.just.fgov.be
eucertificates.economie.fgov.be
handicap.belgium.be
residencepalace.be
archi.ccecrb.fgov.be
auth-signing.sigedis.fgov.be
premier.be
www.mybenefits.fgov.be
auth.minfin.fgov.be
www.rsvz.be
vsp.smals.be
forfaitdebase.economie.fgov.be
login.dev.mobilit.fgov.be
mailings.ibz.fgov.be
FODJ-STS-Token-Signing-2018.just.fgov.be
bel1fedlaeaacc01.fed.oncsfm.com
meldpunt.belgie.be
ibz.be
telework.just.fgov.be
circa.health.fgov.be
PAUTH.riziv.fgov.be
e.koba.be
accreditation-new.belgium.be
b2b-tst.rsvz-inasti.fgov.be
stvjira000.intra.just.fgov.be
spvnpsradius001.intra.just.fgov.be
auth.meta.fgov.be
ede.onssrszlss.fgov.be
emm.rrn.fgov.be
*.vpn2.fanc.fgov.be
kce.fgov.be
savelasticb000.intra.just.fgov.be
appsoc.caami-hziv.fgov.be
rsvz-inasti.fgov.be
adldsacc.integration.just.fgov.be
spvxwiki000.intra.just.fgov.be
bgcturn.intra.just.fgov.be
biblio.intra.just.fgov.be
arttiepe.intra.just.fgov.be
www.sigedis.fgov.be
fgov.be
www.riziv.fgov.be
savsdstatbe000.intra.just.fgov.be
viewportal.integration.just.fgov.be
www.decroo.belgie.be
bel1fedlaeaacc01.fed.oncsfm.com
www.capac-hvw.fgov.be
HVB-Mons-test.just.fgov.be
nrmobility.mobilit.fgov.be
infradocs.just.fgov.be
ccff02.minfin.fgov.be
test.ehealthplatform.info
www.caami-hziv.fgov.be
ibz.be
acc-cjcsr.just.fgov.be
www.webapp.rrn.fgov.be
*.apps-acc.mobilit.fgov.be
casfactory-dev.intra.just.fgov.be
enigloket.acc.mobilit.fgov.be
DAC-X3.rsvz-inasti.fgov.be
Certificate
The complete raw certificate details for appprd.riziv.fgov.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgIOAQAAAAABRl0PJxwsCN0wDQYJKoZIhvcNAQEFBQAwNDEL MAkGA1UEBhMCQkUxFjAUBgNVBAMTDUdvdmVybm1lbnQgQ0ExDTALBgNVBAUTBDIw MTAwHhcNMTQwNjAyMTQ1MDEyWhcNMTUwOTAyMTQ1MDEyWjCBtDEdMBsGA1UEAxMU YXBwcHJkLnJpeml2LmZnb3YuYmUxCzAJBgNVBAYTAkJFMTAwLgYJKoZIhvcNAQkB FiFTZXJ2ZXJzJlN0b3JhZ2UuSUNUQHJpeml2LmZnb3YuYmUxETAPBgNVBAcTCEJy dXNzZWxzMREwDwYDVQQIEwhCcnVzc2VsczEMMAoGA1UECxMDSUNUMSAwHgYDVQQK ExdSSVpJVi1JTkFNSS1MSUtJVi1OSUhESTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN+6DyN3JA6b+UJaw+/yvvGKNFB2VitTAZfUOOjulNosL9LRqH/D nGWORMHc8rGpXJQH7Hbmsv+d3YbBNV49x4WCeCwOiUMRsy51b/TTFSO6gbYOQT+0 UbQ/dKUWLvK3z735VEXvnezVUfyNBsZhsF4SLZkSpBT3HVc9m3DzzihQzaw1e0/l Cmja59D0x+Wood9v6CRWjLLrg3KtqSQxst7W377z2jq0NTZQCl+dFwRkNBUcQxks g+xuJ0byo6VOayf14ZGj/Yni6tzuKhnp9Ikxo2Su8afZC3pZ/N9I5ivawVomuMlA IyaPOLlDC0tdO0hKYdOiHln8gDbQO/gE1xMCAwEAAaOCAWcwggFjMB8GA1UdIwQY MBaAFEGWzoWn5V7oFlk9CvGE3fPyu06JMG4GCCsGAQUFBwEBBGIwYDA2BggrBgEF BQcwAoYqaHR0cDovL2NlcnRzLnBraS5iZWxnaXVtLmJlL2JlbGdpdW1yczIuY3J0 MCYGCCsGAQUFBzABhhpodHRwOi8vb2NzcC5wa2kuYmVsZ2l1bS5iZTAJBgNVHRME AjAAMEQGA1UdIAQ9MDswOQYHYDgJAQEDAjAuMCwGCCsGAQUFBwIBFiBodHRwOi8v cmVwb3NpdG9yeS5wa2kuYmVsZ2l1bS5iZTA9BgNVHR8ENjA0MDKgMKAuhixodHRw Oi8vY3JsLnBraS5iZWxnaXVtLmJlL2dvdmVybm1lbnQyMDEwLmNybDAOBgNVHQ8B Af8EBAMCBPAwEQYJYIZIAYb4QgEBBAQDAgVgMB0GA1UdDgQWBBR3nQzW+dEI+mlq A93rROtoBgOGmzANBgkqhkiG9w0BAQUFAAOCAQEAY59DFOwtuyFC9YWcFalUA2M/ T7PPJvDuVZTJCodUqKRHCDKRVoJDUXtckAw8RLANS92Aev9cQEFfmvK6qI11xqm8 vluLdDf++6X5U9NOvscUo6wkB28bK5ytsz5TH9cppLB3EbBgYpubbO3CFdvYAra1 sOOflJFDVEdkvYQmLMeWJspGo64qgbYlNu7bAxUZmQ85P+EiOrzB84/gQmCj5JxX Kf1jdxd+/RSGgccMUwKXJBWw8tkrvNMMtBkAUYuBhIa9HTppHeX+Dn++CPFrHI3s G13Y+hU9q4rkOilq0N9OsweP+Uum+K4eL01aCNT3V54fGqslGF7cQdQCizrsIA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA37oPI3ckDpv5QlrD7/K+ 8Yo0UHZWK1MBl9Q46O6U2iwv0tGof8OcZY5EwdzysalclAfsduay/53dhsE1Xj3H hYJ4LA6JQxGzLnVv9NMVI7qBtg5BP7RRtD90pRYu8rfPvflURe+d7NVR/I0GxmGw XhItmRKkFPcdVz2bcPPOKFDNrDV7T+UKaNrn0PTH5aih32/oJFaMsuuDcq2pJDGy 3tbfvvPaOrQ1NlAKX50XBGQ0FRxDGSyD7G4nRvKjpU5rJ/XhkaP9ieLq3O4qGen0 iTGjZK7xp9kLeln830jmK9rBWia4yUAjJo84uUMLS107SEph06IeWfyANtA7+ATX EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 20282409603675187393437100673245 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2010' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-06-02 14:50:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-02 14:50:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'appprd.riziv.fgov.be' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'Servers&[email protected]' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brussels' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brussels' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RIZIV-INAMI-LIKIV-NIHDI' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28242891186393412535025288505770787819027011878275699967647497972365327193131357887567331231340284248596413907817426506135883946040921221001908839061859221724096437665505993766888450152363758119248840968748764810938144554962969463475936040565021085610133113488285240869418903344167621976854300452815262291996834663950403950488086668762193259610080984431906377724709160844871849275050043055883087827123863463287478702860256232521846768243254825073269215432593517840825527719564563537950086585085425568251622045411632524528201387211013981562480380252832317732513516897410922787374812492590405810723563410278628509144851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4196ce85a7e55ee816593d0af184ddf3f2bb4e89 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certs.pki.belgium.be/belgiumrs2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.belgium.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.56.9.1.1.3.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.pki.belgium.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.belgium.be/government2010.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.1.1 (netscape-cert-type) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 0560 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 779d0cd6f9d108fa696a03ddeb44eb680603869b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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