mova.post.ch

- Post CH AG -

Issued by SwissSign RSA TLS OV ICA 2021 - 1

About this certificate

This digital certificate with serial number 6e:57:c0:fe:79:ad:56:38:bf:1f:87:23:ae:e8:6b:b8:bc:12:d1:47 was issued on by SwissSign AG.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Post CH AG

Organization: Post CH AG
State / Province: BE
Locality: Bern
Country: CH

SwissSign AG

Organization: SwissSign AG
Country: CH

This certificate has expire since

Certificate Details

Serial Number (hex): 6e:57:c0:fe:79:ad:56:38:bf:1f:87:23:ae:e8:6b:b8:bc:12:d1:47
Serial Number (int): 629945961775251211394339417930908469871789658439
Serial Number lenght: 159 bits, 20 octets

SubjectKeyId: e3:db:29:5b:80:d9:d1:14:32:a5:f5:8c:c7:80:68:4e:71:54:a2:02
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d

Fingerprint (sha1): 7e:15:30:f5:61:b8:d5:4c:ec:46:31:8c:a0:98:68:9c:ce:35:57:1e
Fingerprint (sha256): 00:2c:0b:dc:de:34:ed:fa:e6:4a:c3:e9:07:51:50:d7:e4:10:e1:b9:30:de:be:11:94:ec:ae:81:cd:46:37:33

Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D

Revocation information

OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint

Check the revocation status for certificate mova.post.ch

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mova.post.ch

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mova.post.ch
mova1.post.ch
mova2.post.ch

Other certificates including the domain name post.ch

(limited to 100 certificates)
fakeext.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
cockpitint2.post.ch
apitest.post.ch
mp24hub.apis.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch
96749.post.ch
juravote-int.post.ch
sventest.post.ch
sventest.post.ch
e-mobilityint.post.ch
sapmsint.post.ch
gollum.apis-dev.post.ch
www.post.ch
service.post.ch
opera.apis-test.post.ch
address.apis-test.post.ch
news-intern.post.ch
awsegpf.post.ch

Certificate

The complete raw certificate details for mova.post.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 629945961775251211394339417930908469871789658439
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-10 07:09:11 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-10 07:09:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Post CH AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mova.post.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 695867900470340830369156237390663455274128059058269352419360801919611474731184190068035967512052375923534636747483868172581883647318329889779018852967170731728530466462795729546434320145693882534116834208687273091376668438914570891652920865027050331559758325474402697966690159578710818846929798428691300612150874948151201081088473451053937619016834335156147982810543664324656987690835199747277657389986061261061039975923136243896305972072662261639118214625153324750605986708139347789894041406349513474576719056985148298172467222269595105858784006277639164839504507333226322726486135813563621866660537343505759050342920877385607536421628939107821692640173625399183622109984840623716755955537122275888238749354932832123358631783075759095186315599858379744650532287890552152293955537100074945623985799368310650006663840927033563289539982471083676171064201465329041319147156111529420231140004394432903023790379044714827981913934845002294483262896606222395861360474066203534256040829137994570986269419105224702995915159210114732124946328190274637467751822383039810319274361845476681182745103896931221817156593426171779305790448102972312520056478340069786518891081966623256472502099322159479133771961510136939900501477765378365053334864189
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mova.post.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mova1.post.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mova2.post.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e3db295b80d9d11432a5f58cc780684e7154a202
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (728 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (724 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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