PKIoverheid Certificate Revocation Lists

This is the Certificate Revocation Lists (CRLs) page of the Public Key Infrastructure of the Dutch government, known as PKIoverheid (PKIo). Using this page, you can verify the status of domain, intermediate, and issuance certificates of the Trust Service Providers (TSP) that have been issued under the Root certificates of PKIo. New certificates can be issued under all these certificates, which is why they are referred to as Certification Authorities (CA) of PKIoverheid. The status of each of these certificates can be verified by consulting the respective CRLs.

For more information about PKIoverheid, please visit the Logius website.

Publicly trusted CAs

PKIoverheid has four publicly trusted root certificates of which three have expired:

  • Staat der Nederlanden Root CA (expired in 2015)
  • Staat der Nederlanden Root CA - G2 (expired in 2020)
  • Staat der Nederlanden Root CA - G3 (valid until November 13th, 2028)
  • Staat der Nederlanden EV Root CA (expired in 2022)
Staat der Nederlanden CA CRLs CRL Publication date
List of revoked domain certificates 28 September 2015
List of revoked TSP certificates for domain “Overheid” 31 March 2015
List of revoked TSP certificates for domain “Burger” 31 March 2015

Private CAs

The CAs listed below are intended for use in machine-to-machine environments (Private Root) or test environments (TRIAL). These certificates are NOT trusted in browsers by default.

The G2 TEST/TRIAL root certificate expired in 2020 and is listed here for historical reasons only.

Exported on: 2023-11-03.