key-recovery.a-pki.admin.ch
- Bundesamt fuer Informatik und Telekommunikation -
Issued by Swiss Government Public Trust Standard CA 02
About this certificate
This digital certificate with serial number 76:9d:67:e8:2f:c2:7f:83:6d:f8:26:d2:ac:9a:70:db was issued on by Swiss Government PKI.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
Bundesamt fuer Informatik und Telekommunikation
Organization:
Bundesamt fuer Informatik und Telekommunikation
Organization unit: Swiss Government PKI
Organization unit: Swiss Government PKI
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
Swiss Government PKI
Organization:
Swiss Government PKI
Organization unit: Services
Organization unit: Certification Authorities
Organization unit: Services
Organization unit: Certification Authorities
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 76:9d:67:e8:2f:c2:7f:83:6d:f8:26:d2:ac:9a:70:dbSerial Number (int): 157666201593313849607307889927337439451
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: b8:9b:40:02:4a:c4:e1:fe:50:90:8f:eb:29:3e:67:49:9e:f5:bb:c0
AuthorityKeyId: 84:58:4e:87:2d:a5:b0:4e:49:85:bb:bc:01:71:e6:b4:c7:55:ff:10
Fingerprint (sha1): ff:df:c5:c5:72:05:ee:8d:7d:3e:ad:a7:4a:9a:d9:d0:01:41:de:5a
Fingerprint (sha256): 00:dd:e3:93:44:32:c2:20:62:7a:9f:e5:72:2c:e8:18:3f:9a:e5:b3:c6:33:df:32:eb:7b:56:d0:10:47:4a:7d
Issuing Certificate URL: http://www.pki.admin.ch/aia/PTSTCA02BC.crt
Revocation information
OCSP Server: http://www.pki.admin.ch/aia/bcocspCRL Distribution Point: http://www.pki.admin.ch/crl/PTSTCA02.crl
CRL Distribution Point: ldap://admindir.admin.ch:389/cn=Swiss Government Public Trust Standard CA 02, ou=Certification Authorities,ou=Services,o=Admin,c=CH
Check the revocation status for certificate key-recovery.a-pki.admin.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for key-recovery.a-pki.admin.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
key-recovery.a-pki.admin.ch
Other certificates including the domain name admin.ch
(limited to 100 certificates)
www.blw.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
Certificate
The complete raw certificate details for key-recovery.a-pki.admin.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIH2jCCBcKgAwIBAgIQdp1n6C/Cf4Nt+CbSrJpw2zANBgkqhkiG9w0BAQsFADCB mjELMAkGA1UEBhMCQ0gxHTAbBgNVBAoMFFN3aXNzIEdvdmVybm1lbnQgUEtJMREw DwYDVQQLDAhTZXJ2aWNlczEiMCAGA1UECwwZQ2VydGlmaWNhdGlvbiBBdXRob3Jp dGllczE1MDMGA1UEAwwsU3dpc3MgR292ZXJubWVudCBQdWJsaWMgVHJ1c3QgU3Rh bmRhcmQgQ0EgMDIwHhcNMTcwOTAxMTkyOTM2WhcNMTkwOTAxMTkyOTM2WjCBqDEL MAkGA1UEBhMCQ0gxCzAJBgNVBAgMAkJFMQ0wCwYDVQQHDARCZXJuMTgwNgYDVQQK DC9CdW5kZXNhbXQgZnVlciBJbmZvcm1hdGlrIHVuZCBUZWxla29tbXVuaWthdGlv bjEdMBsGA1UECwwUU3dpc3MgR292ZXJubWVudCBQS0kxJDAiBgNVBAMMG2tleS1y ZWNvdmVyeS5hLXBraS5hZG1pbi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALJjJCmahfnWy7Z7KTQPS6K5bwq2WK0vkkxxdBkC8+t8E5qpDV7e+ztp gR4gCu+Hmfo/pQTPfIRe5rC627i0JJN5ggBkzQreKkdw8pDEW1v8bOcvcBulcuqD WOf7hwq3Mr1LHu675OA5TVKoZKAORwo07fasfPVd4oDAQLhGOz0yHM5TVVk/iZNJ Mr3B5ipMbGy0xwWbkqGg28jS9811bxiKECVNw8I7AYCbuIK6cJ6TxBUjkxDZfwd5 P9yxq7ETbpJ1frFPac+mEXukTpUaToNtXs+x2f/bQORG8BX77fvoioRyXHACzqPD 9y5+XAlDnUy0mMDWRJBjgR1GSYwgDH8CAwEAAaOCAwowggMGMA4GA1UdDwEB/wQE AwIFoDCCARgGA1UdIASCAQ8wggELMIIBBwYIYIV0AREDPg4wgfowRAYIKwYBBQUH AgEWOGh0dHA6Ly93d3cucGtpLmFkbWluLmNoL2Nwcy9DUFNfMl8xNl83NTZfMV8x N18zXzYxXzAucGRmMIGxBggrBgEFBQcCAjCBpBqBoVJlbGlhbmNlIG9uIHRoZSBT RyBSb290IENBIElJSSBDZXJ0aWZpY2F0ZSBieSBhbnkgcGFydHkgYXNzdW1lcyBh Y2NlcHRhbmNlIG9mIHRoZSB0aGVuIGFwcGxpY2FibGUgc3RhbmRhcmQgdGVybXMg YW5kIGNvbmRpdGlvbnMgb2YgdXNlIGFuZCB0aGUgU0cgUm9vdCBDQSBJSUkgQ1BT MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAmBgNVHREEHzAdghtrZXkt cmVjb3ZlcnkuYS1wa2kuYWRtaW4uY2gwdgYIKwYBBQUHAQEEajBoMDYGCCsGAQUF BzAChipodHRwOi8vd3d3LnBraS5hZG1pbi5jaC9haWEvUFRTVENBMDJCQy5jcnQw LgYIKwYBBQUHMAGGImh0dHA6Ly93d3cucGtpLmFkbWluLmNoL2FpYS9iY29jc3Aw gcoGA1UdHwSBwjCBvzAuoCygKoYoaHR0cDovL3d3dy5wa2kuYWRtaW4uY2gvY3Js L1BUU1RDQTAyLmNybDCBjKCBiaCBhoaBg2xkYXA6Ly9hZG1pbmRpci5hZG1pbi5j aDozODkvY249U3dpc3MgR292ZXJubWVudCBQdWJsaWMgVHJ1c3QgU3RhbmRhcmQg Q0EgMDIsIG91PUNlcnRpZmljYXRpb24gQXV0aG9yaXRpZXMsb3U9U2VydmljZXMs bz1BZG1pbixjPUNIMB8GA1UdIwQYMBaAFIRYToctpbBOSYW7vAFx5rTHVf8QMB0G A1UdDgQWBBS4m0ACSsTh/lCQj+spPmdJnvW7wDAMBgNVHRMBAf8EAjAAMA0GCSqG SIb3DQEBCwUAA4ICAQBwdUfSMMbjLJWy3IXB/iLpZfyGvgTWQM0jW8AJlUC0rIir 0KqmgV02Okx4V7YIYZ/vzHBcPH749cunDcPAxbgnqv8MTcLeqoddkSEJoVjzPVKM xXKml9WMRiA/8HiMLOwQaqjfEMTEJ1sMlvPnIqiPyp1+5tq6VAMsOBuK6W+KMAKU E0/D082lN7EJ5X3VaCL4iu/WflCguhL1vIiko/7UjG70awqXCdpw5CLBres0l/wJ 895IWEESgJSMt2TcHQjI3gTnxORDMUVieSC/Hg9OmoZkEr1qL6ZuR14XNebT8FUX xtl8VJNQS9ZCYS8V85xXtk9zWVlITGWSAlWmqQK2xWuAqIOtYjZI4QFr9Qkjvtm5 8cF90Vjt7wVFyChHUG0lFzd0K8cYzAFmfn1zF/clCz5KdMcyKAYEiI1FAG5pcem/ WAUqYEK6h0YRHX9tgMnf4ySMRos1kzdI8NasyQ9uibSNfjaPWPZgQR3dO1lDbh4e VwSQOoaX/KXQQg5a67oUjRaKfWmqvY6Zlvumsdj4NBVhQujKgVNnBWRE9wG7cLVx FcxvoKiM3wBAiI06Ys3LiWR3phi5d8TfxPiXxnO7C7+EtvBNiDiGvbsAsN3V2m60 Xro8neps6x9EESsC23dYzDKNLFrWpKUXcyLqgVL1pSl9aqWWQzjOufUg7TBlNw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmMkKZqF+dbLtnspNA9L orlvCrZYrS+STHF0GQLz63wTmqkNXt77O2mBHiAK74eZ+j+lBM98hF7msLrbuLQk k3mCAGTNCt4qR3DykMRbW/xs5y9wG6Vy6oNY5/uHCrcyvUse7rvk4DlNUqhkoA5H CjTt9qx89V3igMBAuEY7PTIczlNVWT+Jk0kyvcHmKkxsbLTHBZuSoaDbyNL3zXVv GIoQJU3DwjsBgJu4grpwnpPEFSOTENl/B3k/3LGrsRNuknV+sU9pz6YRe6ROlRpO g21ez7HZ/9tA5EbwFfvt++iKhHJccALOo8P3Ln5cCUOdTLSYwNZEkGOBHUZJjCAM fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 157666201593313849607307889927337439451 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Certification Authorities' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government Public Trust Standard CA 02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-01 19:29:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-01 19:29:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bundesamt fuer Informatik und Telekommunikation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'key-recovery.a-pki.admin.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22519306661270777741231333540337203038684633333603469833317926326160728654352151362942240173870307052645536678082721710051492429854081403067987439214748785813552090231798839113003728434766601483448371408604596887528275781329673962470097956779222753417709679474650219700727335538618203536721898296709070239230209599032217357928329287020129836576901822276199990310589890307172597734089798931400551765764711313408214589474640430861738638765569026052434153732316587977121577250254527429335204660421582506059145579467064788516067512584186425355277026469397234520651174913839502170861600973495386338990329964502235765279871 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (271 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.17.3.62.14 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.pki.admin.ch/cps/CPS_2_16_756_1_17_3_61_0.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [82 101 108 105 97 110 99 101 32 111 110 32 116 104 101 32 83 71 32 82 111 111 116 32 67 65 32 73 73 73 32 67 101 114 116 105 102 105 99 97 116 101 32 98 121 32 97 110 121 32 112 97 114 116 121 32 97 115 115 117 109 101 115 32 97 99 99 101 112 116 97 110 99 101 32 111 102 32 116 104 101 32 116 104 101 110 32 97 112 112 108 105 99 97 98 108 101 32 115 116 97 110 100 97 114 100 32 116 101 114 109 115 32 97 110 100 32 99 111 110 100 105 116 105 111 110 115 32 111 102 32 117 115 101 32 97 110 100 32 116 104 101 32 83 71 32 82 111 111 116 32 67 65 32 73 73 73 32 67 80 83] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'key-recovery.a-pki.admin.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/aia/PTSTCA02BC.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/aia/bcocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (194 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/crl/PTSTCA02.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://admindir.admin.ch:389/cn=Swiss Government Public Trust Standard CA 02, ou=Certification Authorities,ou=Services,o=Admin,c=CH' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 84584e872da5b04e4985bbbc0171e6b4c755ff10 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b89b40024ac4e1fe50908feb293e67499ef5bbc0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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