lb-dc-1.net.uva.nl
- Universiteit van Amsterdam -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number ea:db:b2:c3:d5:c1:fd:0f:2e:49:60:6a:3f:27:79:81 was issued on by GEANT Vereniging.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Universiteit van Amsterdam
Organization:
Universiteit van Amsterdam
Organization unit: ICT Services
Organization unit: ICT Services
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): ea:db:b2:c3:d5:c1:fd:0f:2e:49:60:6a:3f:27:79:81Serial Number (int): 312180089810245406602909077356964968833
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 09:f4:bf:6d:f7:ff:ff:41:d1:68:00:e7:b5:5a:3e:9a:5f:8a:fc:80
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): 9a:13:a8:49:02:da:49:97:c5:55:02:52:8d:dc:cb:97:e0:e2:32:af
Fingerprint (sha256): e5:34:80:27:76:6e:52:00:92:65:f1:ac:0b:2e:58:82:2b:5b:b9:cc:37:95:1f:b9:d9:12:83:7c:cc:12:43:a8
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate lb-dc-1.net.uva.nl
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lb-dc-1.net.uva.nl
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lb-dc-1.net.uva.nl
lb-dc-1.net.uha.nl
lb-fmb-dc-4.net.uha.nl
lb-fmb-dc-4.net.uva.nl
lb-sp-dc-3.net.uha.nl
lb-sp-dc-3.net.uva.nl
lb-dc-1.net.uha.nl
lb-fmb-dc-4.net.uha.nl
lb-fmb-dc-4.net.uva.nl
lb-sp-dc-3.net.uha.nl
lb-sp-dc-3.net.uva.nl
Other certificates including the domain name uva.nl
(limited to 100 certificates)
elrond.ic.uva.nl
spin.spinnet.eu
parijs-deeltijd2016.humanities.uva.nl
sap-dev-rudx.ic.uva.nl
fullfabric.com
mobiusportal.uva.dev.icts.education
medewerker.uva.nl
schoolmuseum.uba.uva.nl
filmstudies.nl
amsterdam1544.humanities.uva.nl
www.fon.hum.uva.nl
studiegids.beheer.uva.nl
agile099.science.uva.nl
smdmmstreamprd.ic.uva.nl
idm-beheer.ic.uva.nl
academy.socsci.uva.nl
humanities.uva.nl
blendedlearning.socsci.uva.nl
sap-acc-ruax.ic.uva.nl
transparency.humanities.uva.nl
dutchcycling.socsci.uva.nl
educsys.uva.nl
slpl.science.uva.nl
ahmpostcolonialmemory.humanities.uva.nl
publichistory.humanities.uva.nl
zaken.test.uva.nl
roosterportal-tst.uva.nl
humanities.uva.nl
onderzoekmobw.socsci.uva.nl
cas-acc.ic.uva.nl
content-dev.sap.uva.nl
analytics.ic.uva.nl
agile042.science.uva.nl
smdmmstreamprd.ic.uva.nl
antondekom.humanities.uva.nl
digitaal.uba.uva.nl
mijn.usc.uva.nl
id-dev.ic.uva.nl
cas5-acc.lb.uva.nl
www.fnwi.uva.nl
nra-tst.sis.uva.nl
peoplexs.humanities.uva.nl
www.startmedewerker.uva.nl
docentenkamer.humanities.uva.nl
seop.illc.uva.nl
dom-prd1.ic.uva.nl
gbs-prd-kb2.gbs.uva.nl
antondekom.humanities.uva.nl
cleverdon.hum.uva.nl
acc.sis.uva.nl
feeding-the-city.create.humanities.uva.nl
learninglab.uva.nl
secure-apis.hva.nl
spin.spinnet.eu
webformulieren.uva.nl
smdmm3sb-prd.lb.uva.nl
corpnet.uva.nl
usc.uva.nl
readers.uva.nl
blackboard.uva.nl
gartnerportal.uva.prd.icts.education
agile117.science.uva.nl
paying-dev.uva.nl
agile152.science.uva.nl
www.gbs-prd-kb2.gbs.uva.nl
evasys.uva.nl
dpc.uba.uva.nl
100yearsofenglish.humanities.uva.nl
tlc.uva.nl
sils-fairspace.science.uva.nl
comtesttool.humanities.uva.nl
secure.uva.nl
smdmmstreamprd.ic.uva.nl
maven.ic.uva.nl
filmstudies.nl
cities.humanities.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
agile235.science.uva.nl
axiom.humanities.uva.nl
studiegids.beheer.uva.nl
gitlab.ic.uva.nl
datanose.science.uva.nl
ldapad.uva.nl
educsys.uva.nl
vanmensending.humanities.uva.nl
agile123.science.uva.nl
appstore.uva.nl
reader.humanities.uva.nl
archives.uba.uva.nl
ex2016-prd-hva.lb.uva.nl
cf.humanities.uva.nl
cms-prd-www.lb.uva.nl
api.paying.uva.nl
*.proxy.uba.uva.nl
medina.ic.uva.nl
publicintervention.humanities.uva.nl
www.usc.uva.nl
parola.humanities.uva.nl
agile201.science.uva.nl
spin.spinnet.eu
parijs-deeltijd2016.humanities.uva.nl
sap-dev-rudx.ic.uva.nl
fullfabric.com
mobiusportal.uva.dev.icts.education
medewerker.uva.nl
schoolmuseum.uba.uva.nl
filmstudies.nl
amsterdam1544.humanities.uva.nl
www.fon.hum.uva.nl
studiegids.beheer.uva.nl
agile099.science.uva.nl
smdmmstreamprd.ic.uva.nl
idm-beheer.ic.uva.nl
academy.socsci.uva.nl
humanities.uva.nl
blendedlearning.socsci.uva.nl
sap-acc-ruax.ic.uva.nl
transparency.humanities.uva.nl
dutchcycling.socsci.uva.nl
educsys.uva.nl
slpl.science.uva.nl
ahmpostcolonialmemory.humanities.uva.nl
publichistory.humanities.uva.nl
zaken.test.uva.nl
roosterportal-tst.uva.nl
humanities.uva.nl
onderzoekmobw.socsci.uva.nl
cas-acc.ic.uva.nl
content-dev.sap.uva.nl
analytics.ic.uva.nl
agile042.science.uva.nl
smdmmstreamprd.ic.uva.nl
antondekom.humanities.uva.nl
digitaal.uba.uva.nl
mijn.usc.uva.nl
id-dev.ic.uva.nl
cas5-acc.lb.uva.nl
www.fnwi.uva.nl
nra-tst.sis.uva.nl
peoplexs.humanities.uva.nl
www.startmedewerker.uva.nl
docentenkamer.humanities.uva.nl
seop.illc.uva.nl
dom-prd1.ic.uva.nl
gbs-prd-kb2.gbs.uva.nl
antondekom.humanities.uva.nl
cleverdon.hum.uva.nl
acc.sis.uva.nl
feeding-the-city.create.humanities.uva.nl
learninglab.uva.nl
secure-apis.hva.nl
spin.spinnet.eu
webformulieren.uva.nl
smdmm3sb-prd.lb.uva.nl
corpnet.uva.nl
usc.uva.nl
readers.uva.nl
blackboard.uva.nl
gartnerportal.uva.prd.icts.education
agile117.science.uva.nl
paying-dev.uva.nl
agile152.science.uva.nl
www.gbs-prd-kb2.gbs.uva.nl
evasys.uva.nl
dpc.uba.uva.nl
100yearsofenglish.humanities.uva.nl
tlc.uva.nl
sils-fairspace.science.uva.nl
comtesttool.humanities.uva.nl
secure.uva.nl
smdmmstreamprd.ic.uva.nl
maven.ic.uva.nl
filmstudies.nl
cities.humanities.uva.nl
netbox.forux.nl
diensten.uba.uva.nl
agile235.science.uva.nl
axiom.humanities.uva.nl
studiegids.beheer.uva.nl
gitlab.ic.uva.nl
datanose.science.uva.nl
ldapad.uva.nl
educsys.uva.nl
vanmensending.humanities.uva.nl
agile123.science.uva.nl
appstore.uva.nl
reader.humanities.uva.nl
archives.uba.uva.nl
ex2016-prd-hva.lb.uva.nl
cf.humanities.uva.nl
cms-prd-www.lb.uva.nl
api.paying.uva.nl
*.proxy.uba.uva.nl
medina.ic.uva.nl
publicintervention.humanities.uva.nl
www.usc.uva.nl
parola.humanities.uva.nl
agile201.science.uva.nl
Certificate
The complete raw certificate details for lb-dc-1.net.uva.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIII/TCCBuWgAwIBAgIRAOrbssPVwf0PLklgaj8neYEwDQYJKoZIhvcNAQEMBQAw RDELMAkGA1UEBhMCTkwxGTAXBgNVBAoTEEdFQU5UIFZlcmVuaWdpbmcxGjAYBgNV BAMTEUdFQU5UIE9WIFJTQSBDQSA0MB4XDTIyMDIxNDAwMDAwMFoXDTIzMDIxNDIz NTk1OVowgZIxCzAJBgNVBAYTAk5MMRYwFAYDVQQIEw1Ob29yZC1Ib2xsYW5kMRIw EAYDVQQHEwlBbXN0ZXJkYW0xIzAhBgNVBAoTGlVuaXZlcnNpdGVpdCB2YW4gQW1z dGVyZGFtMRUwEwYDVQQLEwxJQ1QgU2VydmljZXMxGzAZBgNVBAMTEmxiLWRjLTEu bmV0LnV2YS5ubDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANPRh/Bb esISGgOiVTZHjcKUTJjybovhvocI7kPvHmAk8MQCxqCqav4pjLTzhownlNg9O64k +InbO9IyPd6qD6pakVwp+kaOwdJMfqxieM2pQhlXrKs0D9zd8HZops4qSNOdk6q4 RSTyu6Vbr5ijc4SGkKfl4n7ulI8qlP9D4GDsXKctEZ6osPGy2Et9pHIt0VpjgPHC IvApI2xsd+dI7KMzhId3d+rqbbGlQWU+8v1Vjv+rlWB3tdEbp0gAFNOKJWO+GTnU /bJ3BSCgpWrQIZBuiUN1Ep7L1BRBo4fDMs+YKP23Hv/a7w42Ib8DGQ8R0+5Z703w tLVl7iy3nUvKZxPE5MjIcRcNRJZek2cKeapJMWyoxggrKwfik5xSz21jFsXrBJ7M tcqQcEIXxkBGmuubWCi2K2L5u2TGZXj3JbsqgbfiNNdFmM2uL/3OLV+fdPn4Km4A WF+5YATNyfkvKFoGhY7Qas4K6pC/ZqwG0L9BabENqEHHjiQuY4B5/uJpqZ1l3Cyl PFi18E1C0LAGeXpniAEtg31UmUwiTubQWDG2hRJnB7jDU9HRcxUOXY4javpSX+rx 687Ccdw51P7UI0ewhTJa0jl/bjFyMWkha+HlRJzws0JMhcRs7s4peKWstD01qOjm ch6v+d98P7f+961SzJvaRAFraqgeWNNyEUZvAgMBAAGjggOZMIIDlTAfBgNVHSME GDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAdBgNVHQ4EFgQUCfS/bff//0HRaADn tVo+ml+K/IAwDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAk8w JTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQIC MD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9HRUFOVC5jcmwuc2VjdGlnby5jb20v R0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUHAQEEaTBnMDoGCCsGAQUFBzAChi5o dHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29tL0dFQU5UT1ZSU0FDQTQuY3J0MCkG CCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2NzcC5zZWN0aWdvLmNvbTCCAX0GCisG AQQB1nkCBAIEggFtBIIBaQFnAHUArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWG NOvcgooAAAF+9Z4tRwAABAMARjBEAiA2zkHJU0oMT5tSD9yK3k84SOqE9/5SF8jD ePZJdcD00AIgY6Gb7x+TD/Lt5QCe8iVVIyhFIbWRvDX72iFofjYYHoAAdwB6MoxU 2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAX71ni0JAAAEAwBIMEYCIQCb qOhKHedtzI4IMB/y4JjAETh8CcJxOkgu1DoNUw6PtwIhAJ4kKkgpLNIvf/X4fF0C Ux9S75oORh7ypt9jMHZDB22PAHUA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3 fW0GvW4AAAF+9Z4s4QAABAMARjBEAiBp7DmoIQiCkYSJDkZkK8W+VqUJ0RjvHPJF alK0vr3i8QIgca0LQJ65NmhTT0Y076ZRxC6EcIjlGmd3u7Bb4XV9YNswgZEGA1Ud EQSBiTCBhoISbGItZGMtMS5uZXQudXZhLm5sghJsYi1kYy0xLm5ldC51aGEubmyC FmxiLWZtYi1kYy00Lm5ldC51aGEubmyCFmxiLWZtYi1kYy00Lm5ldC51dmEubmyC FWxiLXNwLWRjLTMubmV0LnVoYS5ubIIVbGItc3AtZGMtMy5uZXQudXZhLm5sMA0G CSqGSIb3DQEBDAUAA4ICAQB2kL5xgD5P4A2+jLeNJ6+kmiqFEw2liSRyAI7vLq6W IiiT5fPjIOZ0l2nxrDJUdCW7uRDo4sS8L9kHVzIes4/9VtyIaMLjZhu3/FhTtbir UEBFg7c/trieYPZpz5E9btjaydZPgRSY0dAPyt5kkVAG3gp36VleI7ofZ8csoWza JKaUTLTl7KXfS9T7s5aLA3T5zBhnqsLfG6EuG0DwX5t+gJEDy1eQ7GVrPeSJDakz 3rDgm8jUIjyVe76kdsbcfR4nblQfytCXHuzg/KAt4Q3gAzXQ4IFbfledrB1Q/MzI oyTqI+S7vEJHo7Zc9EGWuo/8tpnMhMBQAuDaMcdw+JzauPsMJP2SMLZghysyVVAS HGbK1iidTh2ryICNMQGmVOOairYYCWYAEBwecwpXWLH68GZ3uChV1EqkHPJybMHF FGVpYa5+ZRpOLW9zGSo+f7e4v+dVBJK+AyC1UgOhxCtc6zAPzw8fW9b29EEWxF42 yIQ14xtYXZhduui1sWbmV7U7WM4oFNgioYGyprwd4ysOnvmmKDwQyW2kBknuKKRY zOx08f4GDoDfFhak+LGuz1JFQ2JZBZdE36OC+zibaCiho8piVtvWlu7IywLm40ph Lj7wqXoRRh6io4Kqvw1I3jdhn6U5hpTTL6qdHo5gx8UAtrVVH/9t6ftZ0urrw/PY Bg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA09GH8Ft6whIaA6JVNkeN wpRMmPJui+G+hwjuQ+8eYCTwxALGoKpq/imMtPOGjCeU2D07riT4ids70jI93qoP qlqRXCn6Ro7B0kx+rGJ4zalCGVesqzQP3N3wdmimzipI052TqrhFJPK7pVuvmKNz hIaQp+Xifu6UjyqU/0PgYOxcpy0Rnqiw8bLYS32kci3RWmOA8cIi8CkjbGx350js ozOEh3d36uptsaVBZT7y/VWO/6uVYHe10RunSAAU04olY74ZOdT9sncFIKClatAh kG6JQ3USnsvUFEGjh8Myz5go/bce/9rvDjYhvwMZDxHT7lnvTfC0tWXuLLedS8pn E8TkyMhxFw1Ell6TZwp5qkkxbKjGCCsrB+KTnFLPbWMWxesEnsy1ypBwQhfGQEaa 65tYKLYrYvm7ZMZlePcluyqBt+I010WYza4v/c4tX590+fgqbgBYX7lgBM3J+S8o WgaFjtBqzgrqkL9mrAbQv0FpsQ2oQceOJC5jgHn+4mmpnWXcLKU8WLXwTULQsAZ5 emeIAS2DfVSZTCJO5tBYMbaFEmcHuMNT0dFzFQ5djiNq+lJf6vHrzsJx3DnU/tQj R7CFMlrSOX9uMXIxaSFr4eVEnPCzQkyFxGzuzil4pay0PTWo6OZyHq/533w/t/73 rVLMm9pEAWtqqB5Y03IRRm8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 312180089810245406602909077356964968833 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Universiteit van Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lb-dc-1.net.uva.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 864144007521642008913313649181090680211910581167816048074456089769223480178430214651888577697360046003828029260567631967484916443743180504261927156717406675324464443578992339092297130340120402113288446287082809580097868513643360351410425373300196710597805864128391183696058653283702756281614912818447439936916737388686931857673646390803859568895418635309398395221432118555264247879091921337285499988788255463252972102323311630123156729029458769231942437214516940773060698454170539449341798528966109101150418213180376522680745111861043791898394897947263825220116576676397490527284638786498014263341495919565126850113513721644055086286144526517640551049598329422030235921530501941171209390422690301598194062272516520746512812826702065652440325466030354666747037358046754236201247224597867499947782396743199570969234144646041613762180161297557450883449713785847448190279968891630362565086796121062107636888236879830824471139696635266855905147860356788854587353951519481624937365865974177892499253272682836093488266322258925049152651519015544488970134199847486494376418206020665038459717649304227274336015836301274882747567889661888856938868950474919728566490124629454220567122740604155364140878151835489049848446004805513850640458139247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 09f4bf6df7ffff41d16800e7b55a3e9a5f8afc80 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007500adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000017ef59e2d470000040300463044022036ce41c9534a0c4f9b520fdc8ade4f3848ea84f7fe5217c8c378f64975c0f4d0022063a19bef1f930ff2ede5009ef2255523284521b591bc35fbda21687e36181e800077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000017ef59e2d0900000403004830460221009ba8e84a1de76dcc8e08301ff2e098c011387c09c2713a482ed43a0d530e8fb70221009e242a48292cd22f7ff5f87c5d02531f52ef9a0e461ef2a6df63307643076d8f007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000017ef59e2ce10000040300463044022069ec39a82108829184890e46642bc5be56a509d118ef1cf2456a52b4bebde2f1022071ad0b409eb93668534f4634efa651c42e847088e51a6777bbb05be1757d60db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (137 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lb-dc-1.net.uva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lb-dc-1.net.uha.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lb-fmb-dc-4.net.uha.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lb-fmb-dc-4.net.uva.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lb-sp-dc-3.net.uha.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lb-sp-dc-3.net.uva.nl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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