*.proxy.bnl.lu
- Bibliothèque nationale de Luxembourg -
Issued by TERENA SSL CA 3
About this certificate
This digital certificate with serial number 0c:52:52:d2:65:57:87:e6:40:5d:59:9d:5a:8f:d1:fc was issued on by TERENA.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Bibliothèque nationale de Luxembourg
Organization:
Bibliothèque nationale de Luxembourg
Locality:
Luxembourg
Country: LU
Country: LU
TERENA
Organization:
TERENA
State / Province:
Noord-Holland
Locality: Amsterdam
Country: NL
Locality: Amsterdam
Country: NL
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:52:52:d2:65:57:87:e6:40:5d:59:9d:5a:8f:d1:fcSerial Number (int): 16378184118684278077997454499523842556
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: cc:57:52:6d:a6:db:21:b5:47:fd:7a:88:7e:61:0c:6a:90:9d:a8:85
AuthorityKeyId: 67:fd:88:20:14:27:98:c7:09:d2:25:19:bb:e9:51:11:63:75:50:62
Fingerprint (sha1): 83:1d:11:3e:7a:1b:44:14:e8:67:64:1a:4a:88:6a:e2:06:0b:5c:1f
Fingerprint (sha256): f9:c6:4d:0f:cb:80:db:42:ff:36:25:a6:66:58:6d:b9:da:1b:f9:64:f5:3c:3d:60:cf:60:ff:5c:c3:b1:0a:bd
Issuing Certificate URL: http://cacerts.digicert.com/TERENASSLCA3.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/TERENASSLCA3.crl
CRL Distribution Point: http://crl4.digicert.com/TERENASSLCA3.crl
Check the revocation status for certificate *.proxy.bnl.lu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.proxy.bnl.lu
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.proxy.bnl.lu
proxy.bnl.lu
proxy.bnl.lu
Other certificates including the domain name bnl.lu
(limited to 100 certificates)
*.proxy02.bnl.lu
*.proxy.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
bnl.lu
auth.bnl.lu
*.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
auth.bnl.lu
*.proxy04.bnl.lu
bnl.lu
*.proxy04.bnl.lu
auth3.bnl.lu
bnl.lu
luxemburgensia.bnl.lu
*.proxy.bnl.lu
analytics.bnl.lu
bnl.lu
windbook.bnl.lu
bnl.lu
bnl.lu
wifiportal-1.bnl.lu
auth-dev.bnl.lu
*.bnl.lu
*.proxy03.bnl.lu
auth1.bnl.lu
bnl.lu
auth1.bnl.lu
bnl.lu
analytics.bnl.lu
*.proxy03.bnl.lu
bnl.lu
windbook.bnl.lu
mia.bnl.lu
*.proxy03.bnl.lu
*.proxy.bnl.lu
bnl.lu
auth.bnl.lu
auth3.bnl.lu
lida.bnl.lu
bnl.lu
*.proxy04.bnl.lu
*.proxy.bnl.lu
luxemburgensia.bnl.lu
bnl.lu
*.proxy.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
bnl.lu
auth.bnl.lu
*.bnl.lu
*.proxy02.bnl.lu
*.proxy03.bnl.lu
auth.bnl.lu
auth.bnl.lu
*.proxy04.bnl.lu
bnl.lu
*.proxy04.bnl.lu
auth3.bnl.lu
bnl.lu
luxemburgensia.bnl.lu
*.proxy.bnl.lu
analytics.bnl.lu
bnl.lu
windbook.bnl.lu
bnl.lu
bnl.lu
wifiportal-1.bnl.lu
auth-dev.bnl.lu
*.bnl.lu
*.proxy03.bnl.lu
auth1.bnl.lu
bnl.lu
auth1.bnl.lu
bnl.lu
analytics.bnl.lu
*.proxy03.bnl.lu
bnl.lu
windbook.bnl.lu
mia.bnl.lu
*.proxy03.bnl.lu
*.proxy.bnl.lu
bnl.lu
auth.bnl.lu
auth3.bnl.lu
lida.bnl.lu
bnl.lu
*.proxy04.bnl.lu
*.proxy.bnl.lu
luxemburgensia.bnl.lu
bnl.lu
Certificate
The complete raw certificate details for *.proxy.bnl.lu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHsjCCBpqgAwIBAgIQDFJS0mVXh+ZAXVmdWo/R/DANBgkqhkiG9w0BAQsFADBk MQswCQYDVQQGEwJOTDEWMBQGA1UECBMNTm9vcmQtSG9sbGFuZDESMBAGA1UEBxMJ QW1zdGVyZGFtMQ8wDQYDVQQKEwZURVJFTkExGDAWBgNVBAMTD1RFUkVOQSBTU0wg Q0EgMzAeFw0xODExMTkwMDAwMDBaFw0yMDExMjMxMjAwMDBaMGsxCzAJBgNVBAYT AkxVMRMwEQYDVQQHEwpMdXhlbWJvdXJnMS4wLAYDVQQKDCVCaWJsaW90aMOocXVl IG5hdGlvbmFsZSBkZSBMdXhlbWJvdXJnMRcwFQYDVQQDDA4qLnByb3h5LmJubC5s dTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOVo8eewTY9E1WPQS39x XFM1Cn0UMvyYxXID75m+2Qa7CHNNjPJdzOalEifOwqN3ryK6vHSS9fdYPHPaKh+1 EegXEVVnHjGgFacIeKHrlu4iT4wF9acsrkgzWh/tXlJoXOCXC1/8kUzfQhaPRJvO bzVZLsDK1tcFRrEmd/iFMYYQreWBPffjCCYmdInV5bRRIMoosUWoeOtdNR7ea/vE pZLKqtoUmIzAahzV0VNAzwdK6cKAhE8PAsyG/030jNYXeSsnphzLkguE/jvknzoe R2fXXlh3STwWKK63/IGpjQMCG1IBmtMMFrehGFtmfxh/7dLm+Vb78EHIgza2hiNw 9raqwSiKjduXwCXRfLl42GXJyM+FFSCaSAXVdHHG4sRu0oGNiedBH8JWhp7mCiK6 AtFNO7ea87FMV6Uko2I1gRfTtGUFXnN5lFhFaKQa0JPmO8zAcBslT+ndVSQIxQel KpbTbRfD2GdKev9Lmp0ARcq9IXcfgtQuR3oKraNCihnikGPcF9It8wRHR/Fb3ycT bVglZ5fhzWVoIARmruhbco2xPQ+a6YLoOyFJU/U9/49mDJXTrMNciJk0paDqgMWe CIr2ZXJWo11ATzpf9XEwCRD+Bm6BeenBffJV5EoPkNVU/IjypRBAsbLhTfV0hKej 0OFmzDp8C9f/bQ2RuOBP/BIHAgMBAAGjggNXMIIDUzAfBgNVHSMEGDAWgBRn/Ygg FCeYxwnSJRm76VERY3VQYjAdBgNVHQ4EFgQUzFdSbabbIbVH/XqIfmEMapCdqIUw JwYDVR0RBCAwHoIOKi5wcm94eS5ibmwubHWCDHByb3h5LmJubC5sdTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGsGA1UdHwRk MGIwL6AtoCuGKWh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9URVJFTkFTU0xDQTMu Y3JsMC+gLaArhilodHRwOi8vY3JsNC5kaWdpY2VydC5jb20vVEVSRU5BU1NMQ0Ez LmNybDBMBgNVHSAERTBDMDcGCWCGSAGG/WwBATAqMCgGCCsGAQUFBwIBFhxodHRw czovL3d3dy5kaWdpY2VydC5jb20vQ1BTMAgGBmeBDAECAjBuBggrBgEFBQcBAQRi MGAwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTA4BggrBgEF BQcwAoYsaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL1RFUkVOQVNTTENBMy5j cnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHUApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFnKwBZWQAABAMARjBEAiA8 bZf8ic2yftXdUs4OLpaAITruYT/g2A/sB/pyu1akQQIgYUfXxRi62Dg0koxIDFQz KDS66388PPt3aq9HJhMIFGMAdwCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/ XqCDDwAAAWcrAFlgAAAEAwBIMEYCIQCAYftcwc7owKOS2cn4JTsBBLKUXnSt/Nf5 eTv7xcfqxgIhAI9QajxqnJw3brKGLGbLajAzswoEqIKg4W3i/8t+yt4+AHYAu9nf vB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFnKwBZmQAABAMARzBFAiAo uo72yb/5a70fLh/Aj6kYBIWkgj4y7Ujo8aFZkz9xGQIhAM8IqR/YBQULrsTnHmSF AhicvLV+hlvvIIrR+O/kPfLXMA0GCSqGSIb3DQEBCwUAA4IBAQAHJRKC5xbVjXf2 SdC3MlSESDirRuQ1OCS70vETyWHUt4p6mmru1zt3eVssupm3U01dD2FBaOi/GlTI q+owKEA2VCoZF7N1cEdPM6dCgNuINsuYuyJiAUQnp5nflLCPcBNaWjNJlKxqpyqo 2JMCpIMIb1IJKJtVvD670V4PM0N7OOQl8ZJ2tpSxegdMT0HBUvJE9nIDb3ZnUwtt TIg1HpvXn27s7ZgoTxE4pb9WNZjVu9LgWJd+ewkSr0/0ot2F+hMSDINYqGv6/6xI gvUWd2UM15Jp0OG21f904PtUIY1hBbuS8s3lBrzEEaV1W1AS7tOVG7dQ4Yj7On4R WQNka8nR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5Wjx57BNj0TVY9BLf3Fc UzUKfRQy/JjFcgPvmb7ZBrsIc02M8l3M5qUSJ87Co3evIrq8dJL191g8c9oqH7UR 6BcRVWceMaAVpwh4oeuW7iJPjAX1pyyuSDNaH+1eUmhc4JcLX/yRTN9CFo9Em85v NVkuwMrW1wVGsSZ3+IUxhhCt5YE99+MIJiZ0idXltFEgyiixRah46101Ht5r+8Sl ksqq2hSYjMBqHNXRU0DPB0rpwoCETw8CzIb/TfSM1hd5KyemHMuSC4T+O+SfOh5H Z9deWHdJPBYorrf8gamNAwIbUgGa0wwWt6EYW2Z/GH/t0ub5VvvwQciDNraGI3D2 tqrBKIqN25fAJdF8uXjYZcnIz4UVIJpIBdV0ccbixG7SgY2J50EfwlaGnuYKIroC 0U07t5rzsUxXpSSjYjWBF9O0ZQVec3mUWEVopBrQk+Y7zMBwGyVP6d1VJAjFB6Uq ltNtF8PYZ0p6/0uanQBFyr0hdx+C1C5Hegqto0KKGeKQY9wX0i3zBEdH8VvfJxNt WCVnl+HNZWggBGau6FtyjbE9D5rpgug7IUlT9T3/j2YMldOsw1yImTSloOqAxZ4I ivZlclajXUBPOl/1cTAJEP4GboF56cF98lXkSg+Q1VT8iPKlEECxsuFN9XSEp6PQ 4WbMOnwL1/9tDZG44E/8EgcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16378184118684278077997454499523842556 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-23 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'LU' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Luxembourg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bibliothèque nationale de Luxembourg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.proxy.bnl.lu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 935910905671207816955701153338832550699799509527748051454412151709083191232215942137935999058678298089088149939581225420133583459534481882386057419118554333610400845606566002360937426518915374987006838489621061227182932350004715448197825066996356817422553346910142459217784341297203427602179207086020817756653184124650444845062023891934405131481058484549105600570630593018579309808923079839635417298370289736969895340762674025107323913086858070981663308515923320973372869476848759699671915862368547384399566866840307860574448166882726270594278443272697578247348641599728633862064737928863739999183530231915898023818911225073051082538321400317335547708914152472222130295625567256309036527739798262868486058821980156196574314890474388896193149181039357929370616317648307021282156114855726792694730154026832733350027445862175188811265521796164765976569125305975155772005415687512603197220929404049722197938311236867812515652895888076317349042643478373638565638278435434908263211973865974808786267912779797545197756623195036261992580336925000399448397621276722997356760331673108664951562782490107755102363344796817191461981705253040296090916737996540403758060684550133223437472612316587345823608457129601318884991035160177596766200009223 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 67fd8820142798c709d22519bbe9511163755062 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cc57526da6db21b547fd7a887e610c6a909da885 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.proxy.bnl.lu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proxy.bnl.lu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/TERENASSLCA3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/TERENASSLCA3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007500a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001672b005959000004030046304402203c6d97fc89cdb27ed5dd52ce0e2e9680213aee613fe0d80fec07fa72bb56a44102206147d7c518bad83834928c480c54332834baeb7f3c3cfb776aaf4726130814630077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001672b00596000000403004830460221008061fb5cc1cee8c0a392d9c9f8253b0104b2945e74adfcd7f9793bfbc5c7eac60221008f506a3c6a9c9c376eb2862c66cb6a3033b30a04a882a0e16de2ffcb7ecade3e007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001672b0059990000040300473045022028ba8ef6c9bff96bbd1f2e1fc08fa9180485a4823e32ed48e8f1a159933f7119022100cf08a91fd805050baec4e71e648502189cbcb57e865bef208ad1f8efe43df2d7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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