www.cmsp8-a.admin.ch
- Bundesamt fuer Informatik und Telekommunikation -
Issued by Swiss Government Public Trust Standard CA 02
About this certificate
This digital certificate with serial number 3a:b9:5d:da:41:50:a7:86:0f:2e:79:1d:aa:d7:41:2f was issued on by Swiss Government PKI.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
Bundesamt fuer Informatik und Telekommunikation
Organization:
Bundesamt fuer Informatik und Telekommunikation
Organization unit: Swiss Government PKI
Organization unit: Swiss Government PKI
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
Swiss Government PKI
Organization:
Swiss Government PKI
Organization unit: Services
Organization unit: Certification Authorities
Organization unit: Services
Organization unit: Certification Authorities
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 3a:b9:5d:da:41:50:a7:86:0f:2e:79:1d:aa:d7:41:2fSerial Number (int): 78057702230400662266790863640859197743
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 5f:92:0a:59:ab:34:8b:ab:58:a3:9e:50:fc:d4:66:9d:3d:65:11:f9
AuthorityKeyId: 84:58:4e:87:2d:a5:b0:4e:49:85:bb:bc:01:71:e6:b4:c7:55:ff:10
Fingerprint (sha1): 61:31:52:dd:0b:84:dd:01:5c:eb:94:b8:6c:71:12:b2:73:ba:c0:8e
Fingerprint (sha256): 01:80:df:34:71:1f:be:21:a5:45:9e:1f:ad:29:46:bd:df:3f:cb:00:37:3c:27:07:99:b2:4b:e1:e1:54:ff:fc
Issuing Certificate URL: http://www.pki.admin.ch/aia/PTSTCA02BC.crt
Revocation information
OCSP Server: http://www.pki.admin.ch/aia/bcocspCRL Distribution Point: http://www.pki.admin.ch/crl/PTSTCA02.crl
CRL Distribution Point: ldap://admindir.admin.ch:389/cn=Swiss Government Public Trust Standard CA 02, ou=Certification Authorities,ou=Services,o=Admin,c=CH
Check the revocation status for certificate www.cmsp8-a.admin.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.cmsp8-a.admin.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.cmsp8-a.admin.ch
Other certificates including the domain name admin.ch
(limited to 100 certificates)
www.blw.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
Certificate
The complete raw certificate details for www.cmsp8-a.admin.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHzDCCBbSgAwIBAgIQOrld2kFQp4YPLnkdqtdBLzANBgkqhkiG9w0BAQsFADCB mjELMAkGA1UEBhMCQ0gxHTAbBgNVBAoMFFN3aXNzIEdvdmVybm1lbnQgUEtJMREw DwYDVQQLDAhTZXJ2aWNlczEiMCAGA1UECwwZQ2VydGlmaWNhdGlvbiBBdXRob3Jp dGllczE1MDMGA1UEAwwsU3dpc3MgR292ZXJubWVudCBQdWJsaWMgVHJ1c3QgU3Rh bmRhcmQgQ0EgMDIwHhcNMTcwOTAxMTk1NjIwWhcNMTkwOTAxMTk1NjIwWjCBoTEL MAkGA1UEBhMCQ0gxCzAJBgNVBAgMAkJFMQ0wCwYDVQQHDARCZXJuMTgwNgYDVQQK DC9CdW5kZXNhbXQgZnVlciBJbmZvcm1hdGlrIHVuZCBUZWxla29tbXVuaWthdGlv bjEdMBsGA1UECwwUU3dpc3MgR292ZXJubWVudCBQS0kxHTAbBgNVBAMMFHd3dy5j bXNwOC1hLmFkbWluLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 57U0MAHOnFHEnW0yekBjwa03gEGZ01ncM3O0rlHeENttnsE2P+jGo/nPxt+mJ6fM bugRXSCE3k+HpcaQILq9dPOC8HkMVw4yXB7rG/RmmQ9LAKNPBFVJ8Ed9U+ZO7Eo8 mQXW6r/FOvnZtHl8T+FA6SwwZKIIdagPolNQoh658cbvTnsY8+Qm3xyjA2YVjzro OZOFPp2UvcVYFkuJ9KfeIpiLmQv4GBX1Tzu8A5eKop8EYiNSZETfeKFL4glsoIFO kCM76GA3cZMEaLqcbvRKTKEALlZRrGLRbNwesHzPpR+mKZVBhTLyW28iFv18CuFM d/V46RdYKVGspfBxVRVhHwIDAQABo4IDAzCCAv8wDgYDVR0PAQH/BAQDAgWgMIIB GAYDVR0gBIIBDzCCAQswggEHBghghXQBEQM+DjCB+jBEBggrBgEFBQcCARY4aHR0 cDovL3d3dy5wa2kuYWRtaW4uY2gvY3BzL0NQU18yXzE2Xzc1Nl8xXzE3XzNfNjFf MC5wZGYwgbEGCCsGAQUFBwICMIGkGoGhUmVsaWFuY2Ugb24gdGhlIFNHIFJvb3Qg Q0EgSUlJIENlcnRpZmljYXRlIGJ5IGFueSBwYXJ0eSBhc3N1bWVzIGFjY2VwdGFu Y2Ugb2YgdGhlIHRoZW4gYXBwbGljYWJsZSBzdGFuZGFyZCB0ZXJtcyBhbmQgY29u ZGl0aW9ucyBvZiB1c2UgYW5kIHRoZSBTRyBSb290IENBIElJSSBDUFMwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdEQQYMBaCFHd3dy5jbXNwOC1h LmFkbWluLmNoMHYGCCsGAQUFBwEBBGowaDA2BggrBgEFBQcwAoYqaHR0cDovL3d3 dy5wa2kuYWRtaW4uY2gvYWlhL1BUU1RDQTAyQkMuY3J0MC4GCCsGAQUFBzABhiJo dHRwOi8vd3d3LnBraS5hZG1pbi5jaC9haWEvYmNvY3NwMIHKBgNVHR8EgcIwgb8w LqAsoCqGKGh0dHA6Ly93d3cucGtpLmFkbWluLmNoL2NybC9QVFNUQ0EwMi5jcmww gYyggYmggYaGgYNsZGFwOi8vYWRtaW5kaXIuYWRtaW4uY2g6Mzg5L2NuPVN3aXNz IEdvdmVybm1lbnQgUHVibGljIFRydXN0IFN0YW5kYXJkIENBIDAyLCBvdT1DZXJ0 aWZpY2F0aW9uIEF1dGhvcml0aWVzLG91PVNlcnZpY2VzLG89QWRtaW4sYz1DSDAf BgNVHSMEGDAWgBSEWE6HLaWwTkmFu7wBcea0x1X/EDAdBgNVHQ4EFgQUX5IKWas0 i6tYo55Q/NRmnT1lEfkwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOCAgEA e5WEkfhgibVPBHer7q9wfAbrkCF+oGuae3zhX7dvjDu0EW1pq1ZXqiwRJpgOm33L ybq5a3bevL0Lzl+Wm7G9anNxf6N8sXS2eftbBQDv5ogS5lQ5UA7tyuPt8igro6EF Hlw6QNkVDbRnXdF4DOn3xt6QAurFe9SCP+eAFE2/7KDGI41ScwFgTR/2iXCOO3GX fNVSjKMdb6S4Lnmc+FCbO3HMy4nvhJAuxNRbDKgQNhmNO41in7mVxaVbtGFTcnax 0uVJKew/rxVoKSBbQExqpKx+OwNFPpNIbYrt3VPKVlepF66mcRxpR6tvuBrM41l1 583abT5hk6Z78Uj7cZ3WRjM/Mg8JKYk3j8gooT6zGD9uMAmJbMC/BGpI9RqiKhwz gy71Kg9DavyMSqQxSioJk6fYtUeOifBCqUy3k1STVPlyb5uPe/4uFeQ5qgtSIsex E+FEF/Xt/B4kcXMobZ76VNk6sixjYiHzMqo9lyRHFLAZd+C9ebOvhuYGdYPdiZZD eejrj3fsNRvo/CRhh1BQD6yhTHXOGpqkcz0Mh70N9FOtkZyYnyp88yastx4CH1vM Eah3Pr0cKKJrNPDgAhykZngvG5PXXlUgXdsUJTxZnKVQvMJZLrr6DMnH/yd2ic6h 8TWVkDbdMP9nSKg6Nl0SbLsrG5M/Yc0ctads5pT+Cts= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA57U0MAHOnFHEnW0yekBj wa03gEGZ01ncM3O0rlHeENttnsE2P+jGo/nPxt+mJ6fMbugRXSCE3k+HpcaQILq9 dPOC8HkMVw4yXB7rG/RmmQ9LAKNPBFVJ8Ed9U+ZO7Eo8mQXW6r/FOvnZtHl8T+FA 6SwwZKIIdagPolNQoh658cbvTnsY8+Qm3xyjA2YVjzroOZOFPp2UvcVYFkuJ9Kfe IpiLmQv4GBX1Tzu8A5eKop8EYiNSZETfeKFL4glsoIFOkCM76GA3cZMEaLqcbvRK TKEALlZRrGLRbNwesHzPpR+mKZVBhTLyW28iFv18CuFMd/V46RdYKVGspfBxVRVh HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 78057702230400662266790863640859197743 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Certification Authorities' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government Public Trust Standard CA 02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-01 19:56:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-01 19:56:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bundesamt fuer Informatik und Telekommunikation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.cmsp8-a.admin.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29250403399612065104241616936890072200550467868859325459148239103772507035783757299048262567978749392795292394259301774740954563420812678666983635397697242016574012402932439396967628677219219889315537945087805137959670586082949518086890950558701284053074760514316465086655665755017706281910121324808837958478323661721051892793095312124140066384503836225804229057095512797538317731484685727769756020746138456970285372409294741658671151347629232245969911836108389240945703957728649890309846961852001332513790313601322938945890982715798607056278927521365403214878008509064091220046930015088371631481757273284937946325279 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (271 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.17.3.62.14 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.pki.admin.ch/cps/CPS_2_16_756_1_17_3_61_0.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [82 101 108 105 97 110 99 101 32 111 110 32 116 104 101 32 83 71 32 82 111 111 116 32 67 65 32 73 73 73 32 67 101 114 116 105 102 105 99 97 116 101 32 98 121 32 97 110 121 32 112 97 114 116 121 32 97 115 115 117 109 101 115 32 97 99 99 101 112 116 97 110 99 101 32 111 102 32 116 104 101 32 116 104 101 110 32 97 112 112 108 105 99 97 98 108 101 32 115 116 97 110 100 97 114 100 32 116 101 114 109 115 32 97 110 100 32 99 111 110 100 105 116 105 111 110 115 32 111 102 32 117 115 101 32 97 110 100 32 116 104 101 32 83 71 32 82 111 111 116 32 67 65 32 73 73 73 32 67 80 83] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cmsp8-a.admin.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/aia/PTSTCA02BC.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/aia/bcocsp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (194 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/crl/PTSTCA02.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://admindir.admin.ch:389/cn=Swiss Government Public Trust Standard CA 02, ou=Certification Authorities,ou=Services,o=Admin,c=CH' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 84584e872da5b04e4985bbbc0171e6b4c755ff10 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5f920a59ab348bab58a39e50fcd4669d3d6511f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 007b958491f86089b54f0477abeeaf707c06eb90217ea06b9a7b7ce15fb76f8c3bb4116d69ab5657aa2c1126980e9b7dcbc9bab96b76debcbd0bce5f969bb1bd6a73717fa37cb174b679fb5b0500efe68812e65439500eedcae3edf2282ba3a1051e5c3a40d9150db4675dd1780ce9f7c6de9002eac57bd4823fe780144dbfeca0c6238d527301604d1ff689708e3b71977cd5528ca31d6fa4b82e799cf8509b3b71cccb89ef84902ec4d45b0ca81036198d3b8d629fb995c5a55bb461537276b1d2e54929ec3faf156829205b404c6aa4ac7e3b03453e93486d8aeddd53ca5657a917aea6711c6947ab6fb81acce35975e7cdda6d3e6193a67bf148fb719dd646333f320f092989378fc828a13eb3183f6e3009896cc0bf046a48f51aa22a1c33832ef52a0f436afc8c4aa4314a2a0993a7d8b5478e89f042a94cb793549354f9726f9b8f7bfe2e15e439aa0b5222c7b113e14417f5edfc1e247173286d9efa54d93ab22c636221f332aa3d97244714b01977e0bd79b3af86e6067583dd89964379e8eb8f77ec351be8fc24618750500faca14c75ce1a9aa4733d0c87bd0df453ad919c989f2a7cf326acb71e021f5bcc11a8773ebd1c28a26b34f0e0021ca466782f1b93d75e55205ddb14253c599ca550bcc2592ebafa0cc9c7ff277689cea1f135959036dd30ff6748a83a365d126cbb2b1b933f61cd1cb5a76ce694fe0adb