dc3.dai-lab.de
- Technische Universitaet Berlin -
Issued by DFN-Verein Global Issuing CA
About this certificate
This digital certificate with serial number 20:6f:96:ca:af:a2:f6:da:ac:a3:06:16 was issued on by Verein zur Foerderung eines Deutschen Forschungsnetzes e. V..
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
Technische Universitaet Berlin
Organization:
Technische Universitaet Berlin
Organization unit: DAI-Labor
Organization unit: DAI-Labor
State / Province:
Berlin
Locality: Berlin
Country: DE
Locality: Berlin
Country: DE
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization:
Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.
Organization unit: DFN-PKI
Organization unit: DFN-PKI
Country:
DE
This certificate has expire since
Certificate Details
Serial Number (hex): 20:6f:96:ca:af:a2:f6:da:ac:a3:06:16Serial Number (int): 10038423174130948695621043734
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 2e:f3:6e:df:83:4a:e5:2d:6b:fb:42:9e:5a:f1:00:8a:f1:e8:96:ab
AuthorityKeyId: 6b:3a:98:8b:f9:f2:53:89:da:e0:ad:b2:32:1e:09:1f:e8:aa:3b:74
Fingerprint (sha1): 82:bf:ba:9d:68:16:46:16:9e:04:e1:d5:30:19:1e:20:81:21:88:fc
Fingerprint (sha256): ec:96:a5:04:1e:ce:ff:71:5d:88:8a:62:50:01:b4:a0:bd:2f:63:02:e7:46:1b:a2:93:68:bc:e3:d6:7c:ff:a4
Issuing Certificate URL: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Issuing Certificate URL: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt
Revocation information
OCSP Server: http://ocsp.pca.dfn.de/OCSP-Server/OCSPCRL Distribution Point: http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
CRL Distribution Point: http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl
Check the revocation status for certificate dc3.dai-lab.de
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dc3.dai-lab.de
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
daibasi.aot.tu-berlin.de
daibasi.dai-lab.de
daibasi.dai-labor.de
daneser.aot.tu-berlin.de
daneser.dai-lab.de
daneser.dai-labor.de
dc3.aot.tu-berlin.de
dc3.dai-lab.de
dc3.dai-labor.de
daibasi.dai-lab.de
daibasi.dai-labor.de
daneser.aot.tu-berlin.de
daneser.dai-lab.de
daneser.dai-labor.de
dc3.aot.tu-berlin.de
dc3.dai-lab.de
dc3.dai-labor.de
Other certificates including the domain name dai-lab.de
(limited to 100 certificates)
www.dai-labor.de
dai-labor.de
winterser.dai-lab.de
jenkins.dai-labor.de
edu.dai-labor.de
gitlab-edu.dai-labor.de
aot2018.aot.tu-berlin.de
115bot.irml.dai-labor.de
dai-labor.de
intern.dai-labor.de
cucm-pub-ms.cm.dai-lab.de
vcenter.dai-lab.de
cucm-pub-ms.cm.dai-lab.de
ia.dailab.de
daiccm1.dai-lab.de
imp-pub-ms.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
cvs.dai-labor.de
imp-pub.cm.dai-lab.de
intern.dai-labor.de
flexnet.dai-labor.de
www.dai-labor.de
daitool.dai-labor.de
dai-labor.de
mail.dai-labor.de
diginet-ps.dai-lab.de
dainas.dai-labor.de
mail.dai-labor.de
old-diginet-ps.dai-lab.de
dai-lab.de
daiwordpress-neu.dai-lab.de
imp-sub.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
daibasi.dai-lab.de
imp-pub-ms.cm.dai-lab.de
daibasi.dai-lab.de
registry.gitlab.dai-labor.de
ssds2.aot.tu-berlin.de
repositories.dai-labor.de
wlc-5508.mgmt.dai-lab.de
exp-c-2.cm.dai-lab.de
diginetdataint.dai-labor.de
cms.cm.dai-lab.de
www.dai-labor.de
mail.dai-labor.de
www.redmine.dai-labor.de
www.dai-labor.de
dainet-guest-gw.dai-lab.de
registry.gitlab.dai-labor.de
repositories.dai-labor.de
mail.dai-labor.de
tuleap.dai-labor.de
cuc-pub-ms.cm.dai-lab.de
www.dai-lab.de
gitlab-edu.dai-labor.de
newsreel-edu.aot.tu-berlin.de
mail.dai-labor.de
dainas.dai-labor.de
dc3.dai-lab.de
dai-labor.de
cvs.dai-labor.de
daneser.dai-lab.de
cluster.gc.dai-lab.de
diginet-services.aot.tu-berlin.de
teampass.dai-labor.de
daneser.dai-lab.de
www.dai-labor.de
scb-erp.aot.tu-berlin.de
dc3.dai-lab.de
windnode.aot.tu-berlin.de
cucm-pub-ms.cm.dai-lab.de
jenkins.dai-labor.de
cms.cm.dai-lab.de
dai-labor.de
dai-labor.de
winterser.dai-lab.de
jenkins.dai-labor.de
edu.dai-labor.de
gitlab-edu.dai-labor.de
aot2018.aot.tu-berlin.de
115bot.irml.dai-labor.de
dai-labor.de
intern.dai-labor.de
cucm-pub-ms.cm.dai-lab.de
vcenter.dai-lab.de
cucm-pub-ms.cm.dai-lab.de
ia.dailab.de
daiccm1.dai-lab.de
imp-pub-ms.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
cvs.dai-labor.de
imp-pub.cm.dai-lab.de
intern.dai-labor.de
flexnet.dai-labor.de
www.dai-labor.de
daitool.dai-labor.de
dai-labor.de
mail.dai-labor.de
diginet-ps.dai-lab.de
dainas.dai-labor.de
mail.dai-labor.de
old-diginet-ps.dai-lab.de
dai-lab.de
daiwordpress-neu.dai-lab.de
imp-sub.cm.dai-lab.de
exp-c-1.cm.dai-lab.de
daibasi.dai-lab.de
imp-pub-ms.cm.dai-lab.de
daibasi.dai-lab.de
registry.gitlab.dai-labor.de
ssds2.aot.tu-berlin.de
repositories.dai-labor.de
wlc-5508.mgmt.dai-lab.de
exp-c-2.cm.dai-lab.de
diginetdataint.dai-labor.de
cms.cm.dai-lab.de
www.dai-labor.de
mail.dai-labor.de
www.redmine.dai-labor.de
www.dai-labor.de
dainet-guest-gw.dai-lab.de
registry.gitlab.dai-labor.de
repositories.dai-labor.de
mail.dai-labor.de
tuleap.dai-labor.de
cuc-pub-ms.cm.dai-lab.de
www.dai-lab.de
gitlab-edu.dai-labor.de
newsreel-edu.aot.tu-berlin.de
mail.dai-labor.de
dainas.dai-labor.de
dc3.dai-lab.de
dai-labor.de
cvs.dai-labor.de
daneser.dai-lab.de
cluster.gc.dai-lab.de
diginet-services.aot.tu-berlin.de
teampass.dai-labor.de
daneser.dai-lab.de
www.dai-labor.de
scb-erp.aot.tu-berlin.de
dc3.dai-lab.de
windnode.aot.tu-berlin.de
cucm-pub-ms.cm.dai-lab.de
jenkins.dai-labor.de
cms.cm.dai-lab.de
dai-labor.de
Certificate
The complete raw certificate details for dc3.dai-lab.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIDDCCBvSgAwIBAgIMIG+Wyq+i9tqsowYWMA0GCSqGSIb3DQEBCwUAMIGNMQsw CQYDVQQGEwJERTFFMEMGA1UECgw8VmVyZWluIHp1ciBGb2VyZGVydW5nIGVpbmVz IERldXRzY2hlbiBGb3JzY2h1bmdzbmV0emVzIGUuIFYuMRAwDgYDVQQLDAdERk4t UEtJMSUwIwYDVQQDDBxERk4tVmVyZWluIEdsb2JhbCBJc3N1aW5nIENBMB4XDTE5 MDEyOTA5MTMzNFoXDTIxMDUwMjA5MTMzNFowgYUxCzAJBgNVBAYTAkRFMQ8wDQYD VQQIDAZCZXJsaW4xDzANBgNVBAcMBkJlcmxpbjEnMCUGA1UECgweVGVjaG5pc2No ZSBVbml2ZXJzaXRhZXQgQmVybGluMRIwEAYDVQQLDAlEQUktTGFib3IxFzAVBgNV BAMMDmRjMy5kYWktbGFiLmRlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAzKXR/LYZKw0VlQrwv9z+XFB2lHA2b692mP8EBdKEzq897TiWQpIqKbso5U6+ YmHcFResqP0txaaZnLtP+92zwwnKnWheUAiQ2l36QZNoHGuq8Cjwh+aWw5DaCb+e b9/rGMjJ/j8/+GCuTNnajg9UBg814d7rf+dhpqpkP5LUwx4Cj4lumX1xzml+Mlbq eF5QFjSKP0oZMhcIQ7wqu7GZlMMtOMlfsO6wvJ8fx4QGNK71/hzgFKWhT0DK4BLJ 8wBkTejw/c+P/Xro51zbUPnNZhHPgGkvmS0VQJXgkusP+DnEPBINMASHUJbrxurd s/XcK0uD/7MrvJ9XErIp7yy16a3mvy5L/wp10Y8fHp7SRbxCqNVA/06D4GS3Ar6L DRyHec1pa/qrgIaPRBKzcufKOHlCFY9pCe1oprSwYt9Fr2fvsSAWtPtgOFgSvkEv TJChrsLBDz6csS3d6kON71EfoehkiHelSsRbKHOnSAZeCTeuhm4J2pEd9rzfe/OA bxLz4YjKW1n+RVzXcxm77ZguCnnozydbpyto6Dwq+j+7H3MePF3VhSxf5SsIqPUw K3jjW2x8/dxWH3F0pYwGIl28JL84FE86TkYuSQ6nDAgiXEiKWNJx+21eCkFcc/wi dycmH8mqrfAmSYZkqFu7Ks4lnaK50p/1Wr8UdFeCdpNBnQMCAwEAAaOCA3AwggNs MFkGA1UdIARSMFAwCAYGZ4EMAQICMA0GCysGAQQBga0hgiweMA8GDSsGAQQBga0h giwBAQQwEQYPKwYBBAGBrSGCLAEBBAMIMBEGDysGAQQBga0hgiwCAQQDCDAJBgNV HRMEAjAAMA4GA1UdDwEB/wQEAwIFoDAyBgNVHSUEKzApBggrBgEFBQcDAgYIKwYB BQUHAwEGCisGAQQBgjcUAgIGBysGAQUCAwUwLwYJKwYBBAGCNxQCBCIeIABEAG8A bQBhAGkAbgBDAG8AbgB0AHIAbwBsAGwAZQByMB0GA1UdDgQWBBQu827fg0rlLWv7 Qp5a8QCK8eiWqzAfBgNVHSMEGDAWgBRrOpiL+fJTidrgrbIyHgkf6Ko7dDCBywYD VR0RBIHDMIHAghhkYWliYXNpLmFvdC50dS1iZXJsaW4uZGWCEmRhaWJhc2kuZGFp LWxhYi5kZYIUZGFpYmFzaS5kYWktbGFib3IuZGWCGGRhbmVzZXIuYW90LnR1LWJl cmxpbi5kZYISZGFuZXNlci5kYWktbGFiLmRlghRkYW5lc2VyLmRhaS1sYWJvci5k ZYIUZGMzLmFvdC50dS1iZXJsaW4uZGWCDmRjMy5kYWktbGFiLmRlghBkYzMuZGFp LWxhYm9yLmRlMIGNBgNVHR8EgYUwgYIwP6A9oDuGOWh0dHA6Ly9jZHAxLnBjYS5k Zm4uZGUvZGZuLWNhLWdsb2JhbC1nMi9wdWIvY3JsL2NhY3JsLmNybDA/oD2gO4Y5 aHR0cDovL2NkcDIucGNhLmRmbi5kZS9kZm4tY2EtZ2xvYmFsLWcyL3B1Yi9jcmwv Y2FjcmwuY3JsMIHbBggrBgEFBQcBAQSBzjCByzAzBggrBgEFBQcwAYYnaHR0cDov L29jc3AucGNhLmRmbi5kZS9PQ1NQLVNlcnZlci9PQ1NQMEkGCCsGAQUFBzAChj1o dHRwOi8vY2RwMS5wY2EuZGZuLmRlL2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NhY2Vy dC9jYWNlcnQuY3J0MEkGCCsGAQUFBzAChj1odHRwOi8vY2RwMi5wY2EuZGZuLmRl L2Rmbi1jYS1nbG9iYWwtZzIvcHViL2NhY2VydC9jYWNlcnQuY3J0MBMGCisGAQQB 1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCY42PstOuhS8Ow/FYIve0P G6MlCVwa8InCIkMh5dgHZtCgUXkujtwt8/Uf474sdLcK9nIiR6gNDQAjra8ui9eN ezzbwUG3ZEHNbht5dxSF6KXqmflnx4yaw1fYtJ8lA/6Y4G8Ny/t8ktIEyy2bRgr7 bJ6RVEODyoEL3kp6POrvGJGB7jiAFoMbUYaBr391yoO2hi15My8BB3nOgYaQ9IRO YPeYVbwa2Aoci5PIwKb2yf4S2G6FJ4eNRzmIXG+/WHThotolTrJtdLjp4yK6chVX knmM2tJopzMYGKd4o8VePuiourZ+jNMJtat2aljxS/t62nIlqb1kBwvgmDJF/x4P -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzKXR/LYZKw0VlQrwv9z+ XFB2lHA2b692mP8EBdKEzq897TiWQpIqKbso5U6+YmHcFResqP0txaaZnLtP+92z wwnKnWheUAiQ2l36QZNoHGuq8Cjwh+aWw5DaCb+eb9/rGMjJ/j8/+GCuTNnajg9U Bg814d7rf+dhpqpkP5LUwx4Cj4lumX1xzml+MlbqeF5QFjSKP0oZMhcIQ7wqu7GZ lMMtOMlfsO6wvJ8fx4QGNK71/hzgFKWhT0DK4BLJ8wBkTejw/c+P/Xro51zbUPnN ZhHPgGkvmS0VQJXgkusP+DnEPBINMASHUJbrxurds/XcK0uD/7MrvJ9XErIp7yy1 6a3mvy5L/wp10Y8fHp7SRbxCqNVA/06D4GS3Ar6LDRyHec1pa/qrgIaPRBKzcufK OHlCFY9pCe1oprSwYt9Fr2fvsSAWtPtgOFgSvkEvTJChrsLBDz6csS3d6kON71Ef oehkiHelSsRbKHOnSAZeCTeuhm4J2pEd9rzfe/OAbxLz4YjKW1n+RVzXcxm77Zgu Cnnozydbpyto6Dwq+j+7H3MePF3VhSxf5SsIqPUwK3jjW2x8/dxWH3F0pYwGIl28 JL84FE86TkYuSQ6nDAgiXEiKWNJx+21eCkFcc/widycmH8mqrfAmSYZkqFu7Ks4l naK50p/1Wr8UdFeCdpNBnQMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10038423174130948695621043734 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Verein zur Foerderung eines Deutschen Forschungsnetzes e. V.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DFN-Verein Global Issuing CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-29 09:13:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-02 09:13:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Technische Universitaet Berlin' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'DAI-Labor' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'dc3.dai-lab.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 834889919757067723400773087914283181386952373436542188520760915027189210509636620807611367791027592196961900595940816565338539263956258881734427570032648580361943867880305518772908089347230023698918275189262939789547017943432161375321612526305686762810859787962138915321908736727150982969861837264167336357434946741019758126188235474030863081425848840413034190023513429894420889875746111429332855439169787989968931452360905124670094379041126848573874669692066771105594933375467318143844672183508131720243863095560263121473030472413640691052391854442793013323578490522855041324509180732922317533463854470087404548220874529109379740733252461150744826404530082403431341409336120830030814563157696265568889674886270983447690953948577999943704227150277767477172514369455924263422682300744371515013089669891447175621105847654101216524092306551847830675636205203556144696351957963096841550533659243255254847277529005171952902050616010030243735761898600947453954779662462161076230440906936329388195343764474213909082479929528554506742366523421466396795820260428820977042096779499730921741015245139796213854136867163414919936403073909536701899310903465992537986651274193254975303859063106409949837106305303816172471250744274682571653141077251 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.30 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.1.1.4.3.8 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.22177.300.2.1.4.3.8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.2 (smartcardLogon) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.2.3.5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2 (enrollCerttypeExtension) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [0 68 0 111 0 109 0 97 0 105 0 110 0 67 0 111 0 110 0 116 0 114 0 111 0 108 0 108 0 101 0 114] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2ef36edf834ae52d6bfb429e5af1008af1e896ab . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b3a988bf9f25389dae0adb2321e091fe8aa3b74 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (195 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daibasi.aot.tu-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daibasi.dai-lab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daibasi.dai-labor.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daneser.aot.tu-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daneser.dai-lab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'daneser.dai-labor.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dc3.aot.tu-berlin.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dc3.dai-lab.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dc3.dai-labor.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/crl/cacrl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (206 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pca.dfn.de/OCSP-Server/OCSP' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp1.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp2.pca.dfn.de/dfn-ca-global-g2/pub/cacert/cacert.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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