mova.post.ch
- Post CH AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 6e:57:c0:fe:79:ad:56:38:bf:1f:87:23:ae:e8:6b:b8:bc:12:d1:47 was issued on by SwissSign AG.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Post CH AG
Organization:
Post CH AG
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 6e:57:c0:fe:79:ad:56:38:bf:1f:87:23:ae:e8:6b:b8:bc:12:d1:47Serial Number (int): 629945961775251211394339417930908469871789658439
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: e3:db:29:5b:80:d9:d1:14:32:a5:f5:8c:c7:80:68:4e:71:54:a2:02
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 7e:15:30:f5:61:b8:d5:4c:ec:46:31:8c:a0:98:68:9c:ce:35:57:1e
Fingerprint (sha256): 00:2c:0b:dc:de:34:ed:fa:e6:4a:c3:e9:07:51:50:d7:e4:10:e1:b9:30:de:be:11:94:ec:ae:81:cd:46:37:33
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate mova.post.ch
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mova.post.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mova.post.ch
mova1.post.ch
mova2.post.ch
mova1.post.ch
mova2.post.ch
Other certificates including the domain name post.ch
(limited to 100 certificates)
fakeext.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
cockpitint2.post.ch
apitest.post.ch
mp24hub.apis.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch
96749.post.ch
juravote-int.post.ch
sventest.post.ch
sventest.post.ch
e-mobilityint.post.ch
sapmsint.post.ch
gollum.apis-dev.post.ch
www.post.ch
service.post.ch
opera.apis-test.post.ch
address.apis-test.post.ch
news-intern.post.ch
awsegpf.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
cockpitint2.post.ch
apitest.post.ch
mp24hub.apis.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch
96749.post.ch
juravote-int.post.ch
sventest.post.ch
sventest.post.ch
e-mobilityint.post.ch
sapmsint.post.ch
gollum.apis-dev.post.ch
www.post.ch
service.post.ch
opera.apis-test.post.ch
address.apis-test.post.ch
news-intern.post.ch
awsegpf.post.ch
Certificate
The complete raw certificate details for mova.post.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIILBzCCCO+gAwIBAgIUblfA/nmtVji/H4cjruhruLwS0UcwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMDUxMDA3 MDkxMVoXDTIzMDUxMDA3MDkxMVowVTELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAkJF MQ0wCwYDVQQHEwRCZXJuMRMwEQYDVQQKEwpQb3N0IENIIEFHMRUwEwYDVQQDEwxt b3ZhLnBvc3QuY2gwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCqkhvm 3MLkec8ru2qLEEkMw0S5PN25kh4bEACe/QCO+R9/Xyjpjr4uXLIrsVqMrY4cD5Rj ru3sTShhEih6ZX8OVe7eh4+2y+BO0plW/chEDXhA+zw/0NTmTHymvKFtYVcjgp7u +g3KI1D4f0IS+ntj8n9d2tnCa3J2I5ig4apAvh1QCJAiKW2RyCfqGGqi2sd9nalO ulU0695yIwOTadEbdPCs3o094reDeLwU0s1tlkvSdpL2ATVTDVyxFeIB8yD1p2QM qg7Jwb5cc4MBmFrnAWhxN0cgVt+FXQysBKkO9g0GlcuypHfkcorQWc9/R21PAW+I 4TayipxLTK7riJ29XAhxPqkFy6Y5gOkR6TWgqtZCgFQdCAKBexXV4o6Iindlhq1P PD4bJKGicupjzeB638uH0mjIsvg1n36ueoNqduYlWrBimYD7pzdvYq3CDby1PQUV qx0iZlWYwJQVdeUEkka7qU4GjtS9NtCryEu1pk4Lc3leLZxgXwSyNPovJYgfWZkl ka/STBeOimvyFeoRaemhM/UvEGhQMEJT5jmjjea0YeAX/r8dogV3wc1mAdBqhCLw ou7jrJ5KzHRESLKNlgWToa1IDBWhysMfoPf2mvOlrqr4/E+7NxGRzdI3njtT8jxt YerG//qZHlVcnJucgX6rUT85+uvHYEiiYmZBPQIDAQABo4IF0jCCBc4wNQYDVR0R BC4wLIIMbW92YS5wb3N0LmNogg1tb3ZhMS5wb3N0LmNogg1tb3ZhMi5wb3N0LmNo MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw HQYDVR0OBBYEFOPbKVuA2dEUMqX1jMeAaE5xVKICMB8GA1UdIwQYMBaAFKzQOsLC V1WRaRHMcGpZOIqMrJw9MIH/BgNVHR8EgfcwgfQwR6BFoEOGQWh0dHA6Ly9jcmwu c3dpc3NzaWduLm5ldC9BQ0QwM0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThD QUM5QzNEMIGooIGloIGihoGfbGRhcDovL2RpcmVjdG9yeS5zd2lzc3NpZ24ubmV0 L0NOPUFDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0QlMkNP PVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNl P29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MG8GA1UdIARoMGYwUAYI YIV0AVkCAQIwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNz c2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMAgGBgQAj3oBBzAIBgZngQwB AgIwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsGAQUFBzAChlhodHRwOi8vc3dpc3Nz aWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC9BQ0QwM0FDMkMyNTc1 NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEME4GCCsGAQUFBzABhkJodHRwOi8v b2NzcC5zd2lzc3NpZ24ubmV0L0FDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkz ODhBOENBQzlDM0QwggLoBgorBgEEAdZ5AgQCBIIC2ASCAtQC0gB2AFWB1MIWkDYB SuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABgKzM6+AAAAQDAEcwRQIhAM/swcrZ qouCnsru4emLmxR50vmsghwOijDUKRiMcWiiAiAWrK2uEldsZm7TRRShRHiww/63 aTcKAks3ztY/tb+v/gB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kT AAABgKzM6c8AAAQDAEcwRQIge/eH1pgHDcqSLUUeQt8p4fSxmvTqQgi4zhOA8g4d d0QCIQCoBZ/h6mCHEzdXBzSMw+N5Wo6has98Xy9tJdJu7RWPcwB2AHoyjFTYty22 IOo44FIe6YQWcDIThU070ivBOlejUutSAAABgKzM6e8AAAQDAEcwRQIgKWEWZDxI UoczfMsdO405UuUkWijYsoW15JLL6WfBqrgCIQCA7jj1fpjJ96cFx2qZp+x94vN2 ivZKmkWN1TwHhyVZ0gB3AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKK AAABgKzM6XcAAAQDAEgwRgIhAKvGmsrxezY79sAPbYYX5b2uZDTTLs15oo7Zo/j/ JeEmAiEAwkNwBzDyEEh0hlPhk7aug7K7Ot+xExEeqxW2i4IYp6oAdwCzc3cH4YRQ +GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAYCszOpuAAAEAwBIMEYCIQD7ocI6 72K2rVw2IbyaziqLKoKkyVqADd74C4i92rV8SwIhAIuELLRlH6gGSKFjlS6PMjeM 7csTCVHxS9eeyJ1jFDZiAHYA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3fW0G vW4AAAGArMzrTQAABAMARzBFAiA6Cgquk47AkUudZSD/LOt5t5+TpWV14Wen6IGk uWVleQIhAJQ0tNDwWkQl/hBmaFmyaGpXha3thSjjUS4BDYnKc3X+MA0GCSqGSIb3 DQEBCwUAA4ICAQC65Bc/zf1+lIxjLrCXk45qbnvKaEHcp2EiIHYWkyNAoMjsnTHC gWnWdLzg60NCRndIBALQB/axfYfmuiMKGcGPvJNqfhbCBsTVu8OC6PMT8Ou42AUG l4Nv+b/NY2h/7vZEdPiGc9FiDAreXVnGohaAio9KiajQ/9G/VBcomwvi+q5cV2ik 3afnGp+agnh/cCnoK4prGZwOYCO/FaTYpg8c7aukxTjyNRGQM10xtjrRz1KJyMl5 rPwQBNa9rmGcPWVSoaeiMHsFDLXqesY5AcMfjRCrs0FLGumwqn7+Gb9guea2vYTs JFZ/vmMejTJ8s526R00LiYoVS3QwLF+19bEksLXtoIGbSBaZ7jzcxCjMMnjjkpPa X0FipQBEm+ovHmmuknm9VmbhfWH1tCDvv92f6Z2GNKt80NG8Y2nu4lWJr7ybrPUi KTjL4TPnisK67ho/ca4XrgnPX3TocRKcu4IqzljHbbCYf1DCl1HKfn8REhieQNEK +6JNPYgraXQdjfrXGaJgmy/66kg+0OJqLZ2XBJ3zEsEWZVZNEtl+Y/Y6r/sJnXvc K4BMmY53gpveuZd8wv2SkP8gQR8JJ4drlT+0qgUx2PB9iYqf1icQkLeJVoK+O02k Fm/nUbmmmyEyoIGMQlEvw8mnxfgfhGm3f5cUkWYPUif+f31dHac9i9bdeg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqpIb5tzC5HnPK7tqixBJ DMNEuTzduZIeGxAAnv0Ajvkff18o6Y6+LlyyK7FajK2OHA+UY67t7E0oYRIoemV/ DlXu3oePtsvgTtKZVv3IRA14QPs8P9DU5kx8pryhbWFXI4Ke7voNyiNQ+H9CEvp7 Y/J/XdrZwmtydiOYoOGqQL4dUAiQIiltkcgn6hhqotrHfZ2pTrpVNOveciMDk2nR G3TwrN6NPeK3g3i8FNLNbZZL0naS9gE1Uw1csRXiAfMg9adkDKoOycG+XHODAZha 5wFocTdHIFbfhV0MrASpDvYNBpXLsqR35HKK0FnPf0dtTwFviOE2soqcS0yu64id vVwIcT6pBcumOYDpEek1oKrWQoBUHQgCgXsV1eKOiIp3ZYatTzw+GyShonLqY83g et/Lh9JoyLL4NZ9+rnqDanbmJVqwYpmA+6c3b2Ktwg28tT0FFasdImZVmMCUFXXl BJJGu6lOBo7UvTbQq8hLtaZOC3N5Xi2cYF8EsjT6LyWIH1mZJZGv0kwXjopr8hXq EWnpoTP1LxBoUDBCU+Y5o43mtGHgF/6/HaIFd8HNZgHQaoQi8KLu46yeSsx0REiy jZYFk6GtSAwVocrDH6D39przpa6q+PxPuzcRkc3SN547U/I8bWHqxv/6mR5VXJyb nIF+q1E/Ofrrx2BIomJmQT0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 629945961775251211394339417930908469871789658439 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-10 07:09:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-10 07:09:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Post CH AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mova.post.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 695867900470340830369156237390663455274128059058269352419360801919611474731184190068035967512052375923534636747483868172581883647318329889779018852967170731728530466462795729546434320145693882534116834208687273091376668438914570891652920865027050331559758325474402697966690159578710818846929798428691300612150874948151201081088473451053937619016834335156147982810543664324656987690835199747277657389986061261061039975923136243896305972072662261639118214625153324750605986708139347789894041406349513474576719056985148298172467222269595105858784006277639164839504507333226322726486135813563621866660537343505759050342920877385607536421628939107821692640173625399183622109984840623716755955537122275888238749354932832123358631783075759095186315599858379744650532287890552152293955537100074945623985799368310650006663840927033563289539982471083676171064201465329041319147156111529420231140004394432903023790379044714827981913934845002294483262896606222395861360474066203534256040829137994570986269419105224702995915159210114732124946328190274637467751822383039810319274361845476681182745103896931221817156593426171779305790448102972312520056478340069786518891081966623256472502099322159479133771961510136939900501477765378365053334864189 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mova.post.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mova1.post.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mova2.post.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e3db295b80d9d11432a5f58cc780684e7154a202 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (728 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (724 bytes) 02d20076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000180acccebe00000040300473045022100cfecc1cad9aa8b829ecaeee1e98b9b1479d2f9ac821c0e8a30d429188c7168a2022016acadae12576c666ed34514a14478b0c3feb769370a024b37ced63fb5bfaffe0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000180accce9cf000004030047304502207bf787d698070dca922d451e42df29e1f4b19af4ea4208b8ce1380f20e1d7744022100a8059fe1ea608713375707348cc3e3795a8ea16acf7c5f2f6d25d26eed158f730076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000180accce9ef00000403004730450220296116643c485287337ccb1d3b8d3952e5245a28d8b285b5e492cbe967c1aab802210080ee38f57e98c9f7a705c76a99a7ec7de2f3768af64a9a458dd53c07872559d2007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a00000180accce9770000040300483046022100abc69acaf17b363bf6c00f6d8617e5bdae6434d32ecd79a28ed9a3f8ff25e126022100c243700730f21048748653e193b6ae83b2bb3adfb113111eab15b68b8218a7aa007700b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a00000180acccea6e0000040300483046022100fba1c23aef62b6ad5c3621bc9ace2a8b2a82a4c95a800ddef80b88bddab57c4b0221008b842cb4651fa80648a163952e8f32378cedcb130951f14bd79ec89d63143662007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000180accceb4d000004030047304502203a0a0aae938ec0914b9d6520ff2ceb79b79f93a56575e167a7e881a4b96565790221009434b4d0f05a4425fe10666859b2686a5785aded8528e3512e010d89ca7375fe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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