uaasapp3rsa.post.ch
- Die Schweizerische Post AG -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 41:0e:d3:25:17:a6:eb:4d:f9:a1:70:79:c3:2e:86:a7:b9:87:69:d2 was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Die Schweizerische Post AG
Organization:
Die Schweizerische Post AG
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 41:0e:d3:25:17:a6:eb:4d:f9:a1:70:79:c3:2e:86:a7:b9:87:69:d2Serial Number (int): 371415003850547113011553591758007887441739344338
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 06:e3:f2:56:ef:55:6a:8f:fb:c6:65:ee:01:f7:f1:ad:38:20:ef:17
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): 3d:36:3b:b4:54:31:6d:9b:04:a2:42:5f:93:0a:b4:99:ed:01:05:d3
Fingerprint (sha256): 01:b0:5b:76:a5:bc:a0:6e:a8:7c:4e:87:ab:8e:36:b4:5c:c3:36:47:2f:29:0b:97:13:a5:26:56:ed:22:4e:ba
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate uaasapp3rsa.post.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for uaasapp3rsa.post.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
uaasapp3rsa.post.ch
Other certificates including the domain name post.ch
(limited to 100 certificates)
fakeext.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
digitaler-posteingang.post.ch
swisspostmobile.apis-int.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
ddstest.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
crypto-stamp.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
vgk.apis-test.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
uaasapp3rsa.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
uaasapp3rsadev2.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
salt-aboint.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
kurepo.apis-test.post.ch
cockpitint2.post.ch
dev.post.ch
apitest.post.ch
mp24hub.apis.post.ch
servicetest.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
spimr1.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
aaw.apis-test.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
digitaler-posteingang.post.ch
swisspostmobile.apis-int.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
ddstest.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
crypto-stamp.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
vgk.apis-test.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
uaasapp3rsa.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
uaasapp3rsadev2.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
salt-aboint.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
kurepo.apis-test.post.ch
cockpitint2.post.ch
dev.post.ch
apitest.post.ch
mp24hub.apis.post.ch
servicetest.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
spimr1.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
aaw.apis-test.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch
Certificate
The complete raw certificate details for uaasapp3rsa.post.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJyDCCB7CgAwIBAgIUQQ7TJRem6035oXB5wy6Gp7mHadIwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTI0MDIyODA4 NTgyMFoXDTI1MDIyODA4NTgyMFowbDELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAkJF MQ0wCwYDVQQHDARCZXJuMSMwIQYDVQQKDBpEaWUgU2Nod2VpemVyaXNjaGUgUG9z dCBBRzEcMBoGA1UEAxMTdWFhc2FwcDNyc2EucG9zdC5jaDCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAOvW9suEmVJJmTVCO3v5V4mISwyD6zHN7hqGUcVq V/O/stgE4BgA751WFtocaxl6Xvw/k8mBNq8ypyf+uaFHROOpCWWkdpKnAY2fR9oL 7fGTRRrNkAOokh90UWlkniyL9oWSuybpJoJo/U51RjtxhsOhCQ/JQh/q9+ATMr+g t5S3Z1RlKY7G8MBi6O13M2xkd85yG6aHcBPKzBrjKvZM2O7fHaN1BeKQnVfakI9Q CbTJoa+vlJF/M2scHucXFQ563wXaoNt8I4x9SSd1A8DzobSKBUFEgTaaoxx/540g DVB1alWvqwOib4e9BYdNrmUOs/NH3JAdIsjZAD5R8FqFwDXd72Du59T26AWDtOwt 0cxs1YMofetwfQli6GXfVOKTeeikKHM1paPXur0jfQlOgOXJxMsHTMuzM6eBhia+ xg3ov949YvCNLFXAEET29oKz93MtLuzN6BrLFSzdxGjULMSJ7awRB6Vr0lNPALK/ UzhblcodawhDJoE1HAdJhTIzQiCVpN9zN3szHuUJlJ+O/4TUEVvFc4MpA9JbaBOy gLSTeKbwo4k4h1CqTEX1jgCN1HyfpFupLyQgdby/V9XMmYGpVhnuBFXdR26nXhUN vQYlIHdE/5kuepQAQScS8l1Bec/74TvNBKJmWoXqxuIjCB6YxiqlL2LpJLHZ6iLM yO8FAgMBAAGjggR8MIIEeDCBsgYIKwYBBQUHAQEEgaUwgaIwTAYIKwYBBQUHMAKG QGh0dHA6Ly9haWEuc3dpc3NzaWduLmNoL2Fpci0wZjJiZjlhNS1kZDM3LTQ4Yzkt YTg1Yi0xMmFjZGNiOGJlNDUwUgYIKwYBBQUHMAGGRmh0dHA6Ly9vY3NwLnN3aXNz c2lnbi5jaC9zaWduL29jcy1hYWNjY2VkNS02NmU4LTQwNjktOWIxYi1mZDI5YWI3 M2VmZWMwbwYDVR0gBGgwZjAIBgZngQwBAgIwCAYGBACPegEHMFAGCGCFdAFZAgEC MEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29t L1N3aXNzU2lnbl9DUFNfVExTLnBkZjBRBgNVHR8ESjBIMEagRKBChkBodHRwOi8v Y3JsLnN3aXNzc2lnbi5jaC9jZHAtOTZiNjJmNWEtNmI3My00ZGE0LTg3ZjctY2U0 MDAyYzFjZDM0MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8B Af8EBAMCBaAwHgYDVR0RBBcwFYITdWFhc2FwcDNyc2EucG9zdC5jaDAdBgNVHQ4E FgQUBuPyVu9Vao/7xmXuAffxrTgg7xcwHwYDVR0jBBgwFoAUfG8KbxMP2YwkbyY0 81xrQ223I7YwggJsBgorBgEEAdZ5AgQCBIICXASCAlgCVgB3AFWB1MIWkDYBSuoL m1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABje7vrCoAAAQDAEgwRgIhAOkGFwdUyhq6 SFB5SxjOw+KF8VLBSHsJfduMz5xe/l3WAiEAqbvAq/YCx8nhTfKAzNa8QW73VSmt 3ma1sYZdcV+l4mUAdQAo4oE4/YMhRemp1qp1N22Dd6iFErPAf3JBSCHcvemMZgAA AY3u764sAAAEAwBGMEQCIAVxdDaV+4wMfdQRF+ymouDLzKtMdzcEsgnXDK7qi0Y+ AiB4BiKk9vW+q09ZKX6IT7n1kopEzIJw/WeI6GayEvbhxAB1AM8RVu7VLnyv84db 2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABje7vqwcAAAQDAEYwRAIgWKFmMEEwC/LX wXrAWVskVHGGzBg/xacqZGY/m1/tiZYCIEoYk1Pc/HHFkFV5z9UP+zI8ZkcVmApy SjcQhorBvTXMAHUAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGN 7u+rTwAABAMARjBEAiB59SpXoTm9zhlByW7cRKKuz8d3iWPvVH3btGCJMsIGMgIg d1I0Hpw07IAq6tmvXcT/yXRjnL2v+06WPcIGFwIHwh0AdgBOdaMnXJoQwzhbbNTf P1LrHfDgjhuNacCx+mSxYpo53wAAAY3u760tAAAEAwBHMEUCIBzVbxEqXs+iWBG4 JMalEBugHUOI6mZ/zwRzPKZ7HGzbAiEA3V6TnzEWchjEMyexVWXpIpF2lTxOexiI zRcCKycQ9+cwDQYJKoZIhvcNAQELBQADggIBABmS26VGQr2fENB4l7nhCtK8fFxp HoTNXiROmhBgy8336chRFaC/gh+k8OkLLJw2Y9CgBNh4zaaH2jr+E9t9VUYST4LF RG0SJJ2NdZJFak9f9ken1VN+RfE9Xx1TFgnR6VhR7EgmbGFDRNanfAkJs+18VRWV kWNV2+gPwjeK3CjvSti/Dz92T/yVi8LE82ai0bBWXo7eEBqRALiN+tuBjW0UXCmP DJRpXEofQQfitOCME6UNIVdJnDs/oIOIOPpznm51xnNqIxWzqG8UB7ccxWhx3VI7 UuLjaiDgnB80UOB2FzhdcHM6KdF5rSDF0IL26eF5mQD6NbALtT0osIDn+gXlqHTT jV3DegTYpRJSemw0nzwwG34oy39enOthgCmPG+YrJ/iMZ6UINHuNOlpXVrp1TXCN NCnVFRHfa1LuwvyS44fHJYFSoEOasiIgF0NroYADm31mEXTGwC5WYpZ5w460BgF0 JMI4fsoex2UUBge4MoYUUAhOQQJSGstOgulDOmhxCqzSB12GpK8sgyIKB6vtVnt3 GvTqxYMuPaqkyUFeHquq1c/kXs1iEOrvbrNfWkV/D+YrfzNC7kTJsE8eXLS6x2El TuwzHM6R4wO+rEs1+b0+GQT3bvJxcmzJ/RcnDMXsQLvIZ2icRyzdM1AEcIk9SQMV 4TusjBRdaCeEt6zW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA69b2y4SZUkmZNUI7e/lX iYhLDIPrMc3uGoZRxWpX87+y2ATgGADvnVYW2hxrGXpe/D+TyYE2rzKnJ/65oUdE 46kJZaR2kqcBjZ9H2gvt8ZNFGs2QA6iSH3RRaWSeLIv2hZK7Jukmgmj9TnVGO3GG w6EJD8lCH+r34BMyv6C3lLdnVGUpjsbwwGLo7XczbGR3znIbpodwE8rMGuMq9kzY 7t8do3UF4pCdV9qQj1AJtMmhr6+UkX8zaxwe5xcVDnrfBdqg23wjjH1JJ3UDwPOh tIoFQUSBNpqjHH/njSANUHVqVa+rA6Jvh70Fh02uZQ6z80fckB0iyNkAPlHwWoXA Nd3vYO7n1PboBYO07C3RzGzVgyh963B9CWLoZd9U4pN56KQoczWlo9e6vSN9CU6A 5cnEywdMy7Mzp4GGJr7GDei/3j1i8I0sVcAQRPb2grP3cy0u7M3oGssVLN3EaNQs xIntrBEHpWvSU08Asr9TOFuVyh1rCEMmgTUcB0mFMjNCIJWk33M3ezMe5QmUn47/ hNQRW8VzgykD0ltoE7KAtJN4pvCjiTiHUKpMRfWOAI3UfJ+kW6kvJCB1vL9X1cyZ galWGe4EVd1HbqdeFQ29BiUgd0T/mS56lABBJxLyXUF5z/vhO80EomZaherG4iMI HpjGKqUvYukksdnqIszI7wUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 371415003850547113011553591758007887441739344338 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 08:58:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-28 08:58:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Die Schweizerische Post AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uaasapp3rsa.post.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 962142046541793800448642603163316714891575126586837548802509274516766982020903269054460623396128425301707695725229477478263445889764733275235862601052079142524578222355858226362409129711419584955846883968339654987429491343612256250261780150209612372405157684543060378073107691082173634021274297611066519991909232885057137412587846855070102473252264673082710709330532102091513786407823351151718145433920492027770483983308621230903188022247586384546474739886593975566232711499528269159805362154197868046461178381662364782074247825888591228033798986534584056536084839567496687404565076117454549897766478123114513503585089206023577540928864123181048318032193779368959627322746539935844282094923631009293816910042542321381755630254243382871729983898433951123843369169450678260250172338213093023310022479555358362885644778480139519883395135586925691653681114039896505963914023983073806211319060395530978228926405962522181372723818332330615241657122922429755434020518209245565447497345116012907605982110613694681626816694979901347589393231151339387731086739993707677221554155011708259629420058318787338476414315844349931487610313562013033699931652798366185248704264267349228849273097872351502272997018637138131684834321938325015423223394053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uaasapp3rsa.post.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 06e3f256ef556a8ffbc665ee01f7f1ad3820ef17 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (600 bytes) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER asn1: structure error: integer not minimally-encoded <nil> . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 76772601583043008926366886761560953535458191658630696940637149574526379876965 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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