www.cms-t2.admin.ch
- Swiss Government PKI -
Issued by Swiss Government SSL CA 01
About this certificate
This digital certificate with serial number 1d:92:d3:6d:fd:55:ba:45:61:5a:1c:7a:59:91:c9:e4 was issued on by Swiss Government PKI.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
Swiss Government PKI
Organization:
Swiss Government PKI
Organization unit: Servers
Organization unit: SSL
Organization unit: Servers
Organization unit: SSL
Locality:
Bern
Country: CH
Country: CH
Swiss Government PKI
Organization:
Swiss Government PKI
Organization unit: Services
Organization unit: Certification Authorities
Organization unit: Services
Organization unit: Certification Authorities
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 1d:92:d3:6d:fd:55:ba:45:61:5a:1c:7a:59:91:c9:e4Serial Number (int): 39309975521808075524721759167093787108
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 2f:c9:4e:ab:3a:65:38:0d:c8:95:f0:5c:1e:a9:87:3d:4c:e0:7b:1d
AuthorityKeyId: fc:35:5e:58:1d:f8:52:e0:2b:e8:ac:ab:b9:82:ad:15:11:d6:e6:cd
Fingerprint (sha1): 0e:0f:1c:60:ea:f9:bd:7c:de:7c:cb:48:29:c1:59:a0:ec:8a:45:72
Fingerprint (sha256): 02:3c:75:d1:73:94:02:78:63:c3:5e:fe:72:13:3d:06:ae:66:1d:4b:1a:0a:09:84:f9:38:75:79:df:ad:80:39
Issuing Certificate URL: http://www.pki.admin.ch/aia/SSLCA01.crt
Revocation information
OCSP Server: http://www.pki.admin.ch/aia/ocspCRL Distribution Point: http://www.pki.admin.ch/crl/SSLCA01.crl
CRL Distribution Point: ldap://admindir.admin.ch:389/cn=Swiss%20Government%20SSL%20CA%2001,ou=Certification%20Authorities,ou=Services,o=Admin,c=CH
Check the revocation status for certificate www.cms-t2.admin.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.cms-t2.admin.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.cms-t2.admin.ch
Other certificates including the domain name admin.ch
(limited to 100 certificates)
www.blw.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
Certificate
The complete raw certificate details for www.cms-t2.admin.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHITCCBQmgAwIBAgIQHZLTbf1VukVhWhx6WZHJ5DANBgkqhkiG9w0BAQsFADCB iDELMAkGA1UEBhMCQ0gxHTAbBgNVBAoTFFN3aXNzIEdvdmVybm1lbnQgUEtJMREw DwYDVQQLEwhTZXJ2aWNlczEiMCAGA1UECxMZQ2VydGlmaWNhdGlvbiBBdXRob3Jp dGllczEjMCEGA1UEAxMaU3dpc3MgR292ZXJubWVudCBTU0wgQ0EgMDEwHhcNMTYw NTE5MTQxNzAyWhcNMTkwNTE5MTQxNzAyWjB5MQswCQYDVQQGEwJDSDENMAsGA1UE BwwEQmVybjEdMBsGA1UECgwUU3dpc3MgR292ZXJubWVudCBQS0kxEDAOBgNVBAsM B1NlcnZlcnMxDDAKBgNVBAsMA1NTTDEcMBoGA1UEAwwTd3d3LmNtcy10Mi5hZG1p bi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALFAD43yucaMR2vd AGDQpBaN4xdrYbtYmAJ7tYLKOHzeb7WXHaPWED5Zn90YHc80rEpsg7QnauNKajv6 jdcF8awPt4jnOzC+u2sCw7yYmw+dSg+4N67HZfRjAPAjUHVt0ycmIcA1o2bVvtfU F1o1/r7NFg/voKRGppL/jTHpVxnmMX8tx9f5EUvRUh80foWvrdePr1pnJmH1Zh5l JJfiSJUG7e+2hSI1z5Opzn8LzuKw4YvJx+jkL9Q/M1mWXanEN3qT87vsi4ZHlsgF LHhVpV1AKLeOlxBsdLGdKDYNeZq58UDhMUleR/xM9s1xIAEoJG2JAvEyGzgwMO5r SoTnbEMCAwEAAaOCApMwggKPMB8GA1UdIwQYMBaAFPw1Xlgd+FLgK+isq7mCrRUR 1ubNMB0GA1UdDgQWBBQvyU6rOmU4DciV8FweqYc9TOB7HTAMBgNVHRMBAf8EAjAA MIHGBgNVHSAEgb4wgbswgbgGCGCFdAERAxYaMIGrMEQGCCsGAQUFBwIBFjhodHRw Oi8vd3d3LnBraS5hZG1pbi5jaC9jcHMvQ1BTXzJfMTZfNzU2XzFfMTdfM18yMV8x LnBkZjBjBggrBgEFBQcCAjBXGlVUaGUgcHVycG9zZSBvZiB0aGlzIGNlcnRpZmlj YXRlIGlzIHNvbGVseSBpbnRlbmRlZCBmb3IgU1NMIHdlYiBzZXJ2ZXIgYXV0aGVu dGljYXRpb24uMIG9BgNVHR8EgbUwgbIwLaAroCmGJ2h0dHA6Ly93d3cucGtpLmFk bWluLmNoL2NybC9TU0xDQTAxLmNybDCBgKB+oHyGemxkYXA6Ly9hZG1pbmRpci5h ZG1pbi5jaDozODkvY249U3dpc3MlMjBHb3Zlcm5tZW50JTIwU1NMJTIwQ0ElMjAw MSxvdT1DZXJ0aWZpY2F0aW9uJTIwQXV0aG9yaXRpZXMsb3U9U2VydmljZXMsbz1B ZG1pbixjPUNIMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAe BgNVHREEFzAVghN3d3cuY21zLXQyLmFkbWluLmNoMHEGCCsGAQUFBwEBBGUwYzAz BggrBgEFBQcwAoYnaHR0cDovL3d3dy5wa2kuYWRtaW4uY2gvYWlhL1NTTENBMDEu Y3J0MCwGCCsGAQUFBzABhiBodHRwOi8vd3d3LnBraS5hZG1pbi5jaC9haWEvb2Nz cDANBgkqhkiG9w0BAQsFAAOCAgEAzaBPEbBB8GndDYK8wse5rLFzgOkCBi0xZ4vn sutBc/7zZ8XCFfReh0+fOShGMPBfrgUz7hu2Ox2iJlk1EhaIakRTK3W3K28G1es7 Oir58fGrJy8LLkQKpFgcHOmpsrAhhGspNyeHz4AchT5DkQX+p6ufJxU8Duh1oHw8 k+D1uP2y+w+CrL4U4ejkNllq6+6e1n77JyJkr4kDb5izVOAsFB8pTnFPhAATfq3w G1CCx08mc2WlYSAod/MJYTdwNK+l4EjgsseZkj9sXoHlw2xIvIbWAYrejxUZd4ur ZpeFqKRAWCl6eIGdwuuwTu4t2SHwPdOe1uXf6+dQt3ESqcXlH+gav8W1K8/zX3S4 TL3xCklnuTI6hT2sBCFaKmZ+d3hi8s1zrODn/BuGTlDytLbd0rHgjzHQXcd99ViG j7rwPM9JbyJNJ8311ZFWM6C0t2tQfPLRIh/tn3f01kTSl2MjJInIEREEfkEeUdqt HJOWIbsfIPBhQhoWnny4Kf1J3GS58wcJwj3PmEVEMVOHU7gjWjjsRGKmKtGIKRUI NIuovTbRMBxh6GmVd9nEzTSCN6/d0+Ss9e/tulpLGVibIfynR6pHDcS2ZE7Z9G4N gSnrdtwyJcXc5ms9wjFE8PhVfqbtPB9D2Hp/zS421JRtZ+5KPdkRzmNIjJaQL480 1XCXPWk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUAPjfK5xoxHa90AYNCk Fo3jF2thu1iYAnu1gso4fN5vtZcdo9YQPlmf3RgdzzSsSmyDtCdq40pqO/qN1wXx rA+3iOc7ML67awLDvJibD51KD7g3rsdl9GMA8CNQdW3TJyYhwDWjZtW+19QXWjX+ vs0WD++gpEamkv+NMelXGeYxfy3H1/kRS9FSHzR+ha+t14+vWmcmYfVmHmUkl+JI lQbt77aFIjXPk6nOfwvO4rDhi8nH6OQv1D8zWZZdqcQ3epPzu+yLhkeWyAUseFWl XUAot46XEGx0sZ0oNg15mrnxQOExSV5H/Ez2zXEgASgkbYkC8TIbODAw7mtKhOds QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 39309975521808075524721759167093787108 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swiss Government PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certification Authorities' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swiss Government SSL CA 01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-19 14:17:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-19 14:17:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swiss Government PKI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Servers' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.cms-t2.admin.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22375769516962020575772104621229266390886688471933309062908918338574425571622094324955705159598241911371977791808259382823418599212965943776108710322141315182601757420126616248354419975683239934156652571431290364481397804677978070843046172176392017432847679342019748237636487536756101783156041406648994425193183625439073197780650937210782351384647489819334691723209935265426943900725425603799909130402057674653067602351299481308446602865291878522723939415704874028893732923183869105766273073498889281101958136970198870679650507112320449738243774657929433961854177170561315681499769117822352795968469955200699026861123 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName fc355e581df852e02be8acabb982ad1511d6e6cd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2fc94eab3a65380dc895f05c1ea9873d4ce07b1d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (190 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.17.3.22.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.pki.admin.ch/cps/CPS_2_16_756_1_17_3_21_1.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [84 104 101 32 112 117 114 112 111 115 101 32 111 102 32 116 104 105 115 32 99 101 114 116 105 102 105 99 97 116 101 32 105 115 32 115 111 108 101 108 121 32 105 110 116 101 110 100 101 100 32 102 111 114 32 83 83 76 32 119 101 98 32 115 101 114 118 101 114 32 97 117 116 104 101 110 116 105 99 97 116 105 111 110 46] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (181 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/crl/SSLCA01.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://admindir.admin.ch:389/cn=Swiss%20Government%20SSL%20CA%2001,ou=Certification%20Authorities,ou=Services,o=Admin,c=CH' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cms-t2.admin.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/aia/SSLCA01.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.pki.admin.ch/aia/ocsp' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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