www.wijchen.nl
- Gemeente Wijchen -
Issued by Getronics CSP Organisatie CA - G2
About this certificate
This digital certificate with serial number 11:3f:bd:07:e7:17:df:19:bd:fb:f5:31:fb:8b:ea:c0 was issued on by Getronics Nederland BV.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
Gemeente Wijchen
Company registration number:
00000001001096874000
Organization: Gemeente Wijchen
Organization: Gemeente Wijchen
Locality:
Wijchen
Country: NL
Country: NL
Getronics Nederland BV
Organization:
Getronics Nederland BV
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 11:3f:bd:07:e7:17:df:19:bd:fb:f5:31:fb:8b:ea:c0Serial Number (int): 22927824631963387870688564686216751808
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 28:97:03:d6:6a:8a:8a:e7:47:73:a7:84:7a:d8:3b:d3:55:bb:ea:95
AuthorityKeyId: 38:b2:85:e6:ad:f8:a6:d0:41:58:5b:78:6f:dc:d5:b8:44:76:c5:7b
Fingerprint (sha1): 2f:f0:fb:0a:f5:77:69:ff:e1:ca:8d:75:bd:42:7e:8a:ef:5e:c1:ee
Fingerprint (sha256): ee:b4:8c:92:7a:25:2c:5b:5f:62:71:da:ab:a4:31:3f:5b:a9:9d:ad:67:ad:02:f4:3d:fe:30:d8:c9:47:c2:d3
Revocation information
OCSP Server: http://ocsp2.managedpki.comCRL Distribution Point: http://cert.managedpki.com/pkioverheid/crl/GetronicsCSPOrganisatieCAG2/LatestCRL.crl
Check the revocation status for certificate www.wijchen.nl
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.wijchen.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.wijchen.nl
Other certificates including the domain name wijchen.nl
(limited to 100 certificates)
preproductie.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
afspraak.wijchen.nl
simsite.wijchen.nl
simsite.wijchen.nl
digikoppelingtest.wijchen.nl
www.wijchen.nl
formulieren.wijchen.nl
www.wijchen.nl
lv.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
waarmerk.wijchen.nl
digikoppeling.wijchen.nl
formulieren.wijchen.nl
telewerken.wijchen.nl
afspraak.wijchen.nl
telewerken.wijchen.nl
sslvpn.wijchen.nl
autodiscover.irvn.nl
afspraak.wijchen.nl
autodiscover.irvn.nl
simsite.wijchen.nl
afspraak.wijchen.nl
telewerkportaal.wijchen.nl
bcgba.wijchen.nl
simcms.wijchen.nl
simsite.wijchen.nl
secure.wijchen.nl
www.wijchen.nl
www.wijchen.nl
autodiscover.irvn.nl
formulieren.wijchen.nl
mail.wijchen.nl
*.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
www.wijchen.nl
waarmerk.wijchen.nl
probeer.wijchen.nl
raadsnet.wijchen.nl
simcms.wijchen.nl
publieksbalie.wijchen.nl
www.wijchen.nl
qmanage.wijchen.nl
autodiscover.irvn.nl
bcgba.wijchen.nl
simsite.wijchen.nl
raadsnet.wijchen.nl
telewerken.wijchen.nl
autodiscover.irvn.nl
webmail.wijchen.nl
telewerken.wijchen.nl
probeer.wijchen.nl
simsite.wijchen.nl
lv.wijchen.nl
www.wijchen.nl
afspraak.wijchen.nl
*.wijchen.nl
webmail.wijchen.nl
Certificate
The complete raw certificate details for www.wijchen.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGkTCCBHmgAwIBAgIQET+9B+cX3xm9+/Ux+4vqwDANBgkqhkiG9w0BAQsFADBa MQswCQYDVQQGEwJOTDEfMB0GA1UECgwWR2V0cm9uaWNzIE5lZGVybGFuZCBCVjEq MCgGA1UEAwwhR2V0cm9uaWNzIENTUCBPcmdhbmlzYXRpZSBDQSAtIEcyMB4XDTEx MDkwOTAwMDAwMFoXDTE0MDkwODIzNTk1OVowcjELMAkGA1UEBhMCTkwxEDAOBgNV BAcMB1dpamNoZW4xGTAXBgNVBAoMEEdlbWVlbnRlIFdpamNoZW4xHTAbBgNVBAUT FDAwMDAwMDAxMDAxMDk2ODc0MDAwMRcwFQYDVQQDDA53d3cud2lqY2hlbi5ubDCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKuiTL6thokbGgi/GU8Iyxyc SqNLbOiO4WstRO2itmroGIUi6tKhnkb+SnNzqpuNEFmanDMDItJPiKcpqlVj+G3n 0ibnZ6BBRusea7icoPKSTCCtZTg0rNaoA5LUl5mAlgAyYBhQA3QHQOaTQ0A9sgDD daxOaQR0+yLg/Gra4MDOR3n1ad43BGH0Zg2ClGoOKVFDNz2MUMSFpt8I0jZaaqQv KEM85EFtUASsyOpqqJtXGu32CSKvYbvbtFnpIujdr17VB8SLtOyeXzge1TCMN+J6 grj6I2wsfM64O2MSRrFHOV8ufdZyVvfOAYn3BHeDt7i2HzixrQji4lZv6kqJg+cC AwEAAaOCAjkwggI1MAwGA1UdEwEB/wQCMAAwZQYDVR0fBF4wXDBaoFigVoZUaHR0 cDovL2NlcnQubWFuYWdlZHBraS5jb20vcGtpb3ZlcmhlaWQvY3JsL0dldHJvbmlj c0NTUE9yZ2FuaXNhdGllQ0FHMi9MYXRlc3RDUkwuY3JsMA4GA1UdDwEB/wQEAwID qDCBrgYDVR0gBIGmMIGjMIGgBgpghBABh2sBAgUGMIGRMDgGCCsGAQUFBwIBFixo dHRwczovL3d3dy5wa2kuZ2V0cm9uaWNzLm5sL3BraW92ZXJoZWlkL2NwczBVBggr BgEFBQcCAjBJGkdPcCBkaXQgY2VydGlmaWNhYXQgaXMgaGV0IENQUyBQS0lvdmVy aGVpZCB2YW4gR2V0cm9uaWNzIHZhbiB0b2VwYXNzaW5nLjAfBgNVHSMEGDAWgBQ4 soXmrfim0EFYW3hv3NW4RHbFezAdBgNVHQ4EFgQUKJcD1mqKiudHc6eEetg701W7 6pUwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGUGA1UdEQReMFyCDnd3 dy53aWpjaGVuLm5soEoGCisGAQQBgjcUAgOgPAw6Mi4xNi41MjguMS4xMDAzLjEu My41LjQuMS5hNTAyMDQ2MjNmZGMxMjFhOTJiOWZlYTViYTY0ZDY1ZDA3BggrBgEF BQcBAQQrMCkwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vY3NwMi5tYW5hZ2VkcGtpLmNv bTANBgkqhkiG9w0BAQsFAAOCAgEArojy+DK4fowMzxmJfBIAhAE0GlWF510LRW99 Kzd66bcA11atQrUDNBtPPiOxCvUKidCOT6Bpyc96fyYKFrF9/gotjvc2ghqPPi/h +0k0gIulRnrVgBqTjZK0hsvv8OEKwCv2uvdH/brFK7BVcZU+BvmSa5Nw1bqSG0s2 UNarhUGwzugduRbYVzz5I5mxymhoWIc1jsrsnGnqdu38orwWtYhxsIvcNgDtyNXK BH8n1HSwj09Gu+z8G9NYg+S9ddroZrL35wRE1T71edWxi4PgIbT/ITtzA2wqo8Ud CQNDDqsnOhbfHeatYmkO/gADypZ7pBVegNH87cTvkcnAGcmcDgq3IGjR902zscoc 6z2F2QfRnQUv61/0IPzycd+lrJeVLn/fBf6FkcFjZND4OD64JuLlkoKx6SXtjuDa kXADHMBP1PTixrrlqzUAWUaWhnV1no9doSAPbuRmRB5LcZMpMIKmJ7aRpaou+0Sa D9cHKGmXH03++xGnuiv2e3XH5fB4YZ8KMeYwIv+LC7zv7iGvX4u3grIv9D+jwpsz RW9fgCSC7qSbz2s1bo31q3EbJFA0fz9obu+qdTOKIwGqqoNzau5YaTooj5DiA4kh wjsES0TJYxW63vkbUyQQR7BCqmFQpCYLLlEaa3/hTyL0LZpuKms1iw8PURKi6jJo hHc9rXM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6JMvq2GiRsaCL8ZTwjL HJxKo0ts6I7hay1E7aK2augYhSLq0qGeRv5Kc3Oqm40QWZqcMwMi0k+IpymqVWP4 befSJudnoEFG6x5ruJyg8pJMIK1lODSs1qgDktSXmYCWADJgGFADdAdA5pNDQD2y AMN1rE5pBHT7IuD8atrgwM5HefVp3jcEYfRmDYKUag4pUUM3PYxQxIWm3wjSNlpq pC8oQzzkQW1QBKzI6mqom1ca7fYJIq9hu9u0Weki6N2vXtUHxIu07J5fOB7VMIw3 4nqCuPojbCx8zrg7YxJGsUc5Xy591nJW984BifcEd4O3uLYfOLGtCOLiVm/qSomD 5wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 22927824631963387870688564686216751808 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Getronics Nederland BV' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Getronics CSP Organisatie CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-09-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-08 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Gemeente Wijchen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00000001001096874000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.wijchen.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21666783155810316141379869970808793518643044457898829881004484233920796203535620991471638396999370782886115034539580420576454101920435726476073297700307993538891221870192578472896075713151926845462426670540321848534384998666154778000982173497276689676460094443456303769555533678447247048759771154822613679499221312577506633038982815739111500675068017553753527947534502708048915235793673578270624487221158240246210611654204171684911584172253941383641179219859007604775177323075819211603803225902222746021046920457381936822017292808321025802632424644897033280018005024364712127985566059574156027813367444689104631596007 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.managedpki.com/pkioverheid/crl/GetronicsCSPOrganisatieCAG2/LatestCRL.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (166 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.528.1.1003.1.2.5.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.pki.getronics.nl/pkioverheid/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [79 112 32 100 105 116 32 99 101 114 116 105 102 105 99 97 97 116 32 105 115 32 104 101 116 32 67 80 83 32 80 75 73 111 118 101 114 104 101 105 100 32 118 97 110 32 71 101 116 114 111 110 105 99 115 32 118 97 110 32 116 111 101 112 97 115 115 105 110 103 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 38b285e6adf8a6d041585b786fdcd5b84476c57b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 289703d66a8a8ae74773a7847ad83bd355bbea95 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wijchen.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.20.2.3 (universalPrincipalName) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '2.16.528.1.1003.1.3.5.4.1.a50204623fdc121a92b9fea5ba64d65d' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.managedpki.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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