pin-reset.a-pki.admin.ch
- Bundesamt für Informatik und Telekommunikation BIT -
Issued by QuoVadis Global SSL ICA G3
About this certificate
This digital certificate with serial number 46:80:52:63:d8:01:15:16:3d:85:fc:e6:d5:6b:25:7b:94:39:54:31 was issued on by QuoVadis Limited.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Bundesamt für Informatik und Telekommunikation BIT
Organization:
Bundesamt für Informatik und Telekommunikation BIT
State / Province:
Bern
Locality: Bern
Country: CH
Locality: Bern
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate will expire on
Certificate Details
Serial Number (hex): 46:80:52:63:d8:01:15:16:3d:85:fc:e6:d5:6b:25:7b:94:39:54:31Serial Number (int): 402491026525600283050631731819942198891932898353
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 85:d1:56:42:2b:68:c5:cd:83:55:66:ba:6b:56:f4:a5:bd:98:0b:49
AuthorityKeyId: b3:12:89:b5:a9:4b:35:bc:15:00:f0:80:e9:d8:78:87:f1:13:7c:76
Fingerprint (sha1): 95:c9:fe:f7:54:8a:02:64:44:60:6b:cf:60:4b:b2:34:dd:09:92:bf
Fingerprint (sha256): 02:59:d4:4b:10:95:c3:82:76:0a:29:99:e9:bc:a6:8b:34:02:14:e9:e6:1c:44:35:d4:71:b3:6f:ec:75:c1:5b
Issuing Certificate URL: http://trust.quovadisglobal.com/qvsslg3.crt
Revocation information
OCSP Server: http://ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvsslg3.crl
Check the revocation status for certificate pin-reset.a-pki.admin.ch
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pin-reset.a-pki.admin.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pin-reset.a-pki.admin.ch
token-unseal.a-pki.admin.ch
certificate-renewal.a-pki.admin.ch
key-recovery.a-pki.admin.ch
pending-authorizations.a-pki.admin.ch
token-unseal.a-pki.admin.ch
certificate-renewal.a-pki.admin.ch
key-recovery.a-pki.admin.ch
pending-authorizations.a-pki.admin.ch
Other certificates including the domain name admin.ch
(limited to 100 certificates)
www.blw.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
www.gate.bav.admin.ch
www.jira-a.estv.admin.ch
sts0032.sts.eiam.admin.ch
www.cmsp4-a.admin.ch
appint.naz.admin.ch
www.staatskalender.admin.ch
*.geo.admin.ch
www.code.admin.ch
www.bundespublikationen.admin.ch
www.suissetax-r.estv.admin.ch
help.geo.admin.ch
int.translation.eda.admin.ch
www.portal.bsv.admin.ch
viaduc.sfa-laboratory.ch
www.tacho-en.admin.ch
e-dec-web-a.ezv.admin.ch
ncts-formular.ezv.admin.ch
trifid-lindas.int.cluster.ldbar.ch
ws.inar-r.zas.admin.ch
rp-eda01.eda.admin.ch
apis.sem.admin.ch
ws.seodor.zas.admin.ch
www.sust.admin.ch
www.edb.admin.ch
www.sib.admin.ch
www.apistore.estv.admin.ch
www.xmlns.bfs.admin.ch
www.logixs.eda.admin.ch
www.esti.admin.ch
nd8.li.admin.ch
www.bar.admin.ch
sts003-r.gever.admin.ch
www-tmp-a.ekf.admin.ch
www.cfig.admin.ch
adonis.ezv.admin.ch
www.bag.admin.ch
key-recovery.a-pki.admin.ch
Int.ex4.lmsvbs.admin.ch
toolchain-selfservice.bit.admin.ch
s001047a.adr.admin.ch
ws.dds.bakom.admin.ch
rio-a.ssl.admin.ch
www.portal-a.eiam.admin.ch
www.ekff.admin.ch
www.cms-a1.admin.ch
ws.lsvastammdaten-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
www.sonderbewilligungen.admin.ch
intranet.sibad.vbs.admin.ch
storme-r.bafu.admin.ch
intranet.gate-r.bar.admin.ch
idp-base.gate-r.eiam.admin.ch
tokenunseal.a-pki.admin.ch
www.e-cites-a2.admin.ch
www.regress.admin.ch
intranet.vbs.admin.ch
www.oscitv-gw-a.admin.ch
epo.ejpd.admin.ch
test2.gate-a.bit.admin.ch
www.etv.blv.admin.ch
www.bestellung-k.admin.ch
www.pxweb-admin-a.bfs.admin.ch
www.widget.e-portal.admin.ch
www.ausbildung.eur-med.bazg.admin.ch
ebd.abn.ezv.admin.ch
www.cmsp8-a.admin.ch
www.b2cshop-i.admin.ch
idp-egov-federal.gate-d.eiam.admin.ch
flrt.bazl.admin.ch
ca-sbpp.seco.admin.ch
www.b2cshop.admin.ch
www.coff-ekff.admin.ch
sanadress.vbs.admin.ch
www.medregom-r.admin.ch
transfer-pr.wbf.admin.ch
cmc.a-pki.admin.ch
www.g2020-info.admin.ch
www.eofcom-r.admin.ch
ekkj.admin.ch
www.astra.admin.ch
ww2.elic-en.admin.ch
ws.quattrop-r.admin.ch
www.bbl.admin.ch
wwwt.interruptio-ges.bfs.admin.ch
www-tmp.roemerholz.admin.ch
www.aramis.admin.ch
survey.efk.admin.ch
uat-publish-internet-vbs.vbs.admin.ch
www.infoafam-a.zas.admin.ch
www.sust.admin.ch
www.plugins.aramis-a.admin.ch
www.pxweb-a.bfs.admin.ch
www.openegov.admin.ch
www.cms-t2.admin.ch
www.psyreg-k.admin.ch
www.cfej.admin.ch
www.cfig.admin.ch
pin-reset.a-pki.admin.ch
Certificate
The complete raw certificate details for pin-reset.a-pki.admin.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIoTCCBomgAwIBAgIURoBSY9gBFRY9hfzm1Wsle5Q5VDEwDQYJKoZIhvcNAQEL BQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxIzAh BgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBIEczMB4XDTIzMTAyNDA3NDMz MloXDTI0MTAyNDA3MzgwMFowgYwxCzAJBgNVBAYTAkNIMQ0wCwYDVQQIDARCZXJu MQ0wCwYDVQQHDARCZXJuMTwwOgYDVQQKDDNCdW5kZXNhbXQgZsO8ciBJbmZvcm1h dGlrIHVuZCBUZWxla29tbXVuaWthdGlvbiBCSVQxITAfBgNVBAMMGHBpbi1yZXNl dC5hLXBraS5hZG1pbi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AN+UGVTmIhAAo4asj3UnHRTlqYsmeeftOYz9GPi7RtJtQQZeUX7tIxlPAAFid5O4 iYEwkP6AxabCDo1/haGpc+lT3HRTG7+COsjEurzFgwdxNF6num2yxSEG1LvMeMiq tunL5UGcE+iaVZMjWhSHDMXbep8Xu+p9OlKlQF5tw0IEFDaAPwRbfv9YPLyIySkT Oj3iSfg4CJDzxb8IWDqjq2UxxzmqSHotRWb6DiDIHOz6dO5CC3n94tpD7QGXgBon PvCDRwBMu09Qfcglj6NDdK8MqEB43gtJnWLNnDNnTa/VtVj/jZoseRBQWOujPQym jUELhy98BnyUkFxNhlrRKlkCAwEAAaOCBDcwggQzMAwGA1UdEwEB/wQCMAAwHwYD VR0jBBgwFoAUsxKJtalLNbwVAPCA6dh4h/ETfHYwcwYIKwYBBQUHAQEEZzBlMDcG CCsGAQUFBzAChitodHRwOi8vdHJ1c3QucXVvdmFkaXNnbG9iYWwuY29tL3F2c3Ns ZzMuY3J0MCoGCCsGAQUFBzABhh5odHRwOi8vb2NzcC5xdW92YWRpc2dsb2JhbC5j b20wgaoGA1UdEQSBojCBn4IYcGluLXJlc2V0LmEtcGtpLmFkbWluLmNoght0b2tl bi11bnNlYWwuYS1wa2kuYWRtaW4uY2iCImNlcnRpZmljYXRlLXJlbmV3YWwuYS1w a2kuYWRtaW4uY2iCG2tleS1yZWNvdmVyeS5hLXBraS5hZG1pbi5jaIIlcGVuZGlu Zy1hdXRob3JpemF0aW9ucy5hLXBraS5hZG1pbi5jaDBbBgNVHSAEVDBSMEYGDCsG AQQBvlgAAmQBATA2MDQGCCsGAQUFBwIBFihodHRwOi8vd3d3LnF1b3ZhZGlzZ2xv YmFsLmNvbS9yZXBvc2l0b3J5MAgGBmeBDAECAjAdBgNVHSUEFjAUBggrBgEFBQcD AgYIKwYBBQUHAwEwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybC5xdW92YWRp c2dsb2JhbC5jb20vcXZzc2xnMy5jcmwwHQYDVR0OBBYEFIXRVkIraMXNg1VmumtW 9KW9mAtJMA4GA1UdDwEB/wQEAwIFoDCCAfcGCisGAQQB1nkCBAIEggHnBIIB4wHh AHcA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGLYKxJIwAABAMA SDBGAiEA6Kl0XTipZE82rNR6+8C6esfYHhj11zj+3BH/JpHOd6ICIQCj15A5gTc0 mWZGfB2gj/qJI0VUe2C3P6dlSDRRvFvaPQB2AHb/iD8KtvuVUcJhzPWHujS0pM27 KdxoQgqf5mdMWjp0AAABi2CsSLwAAAQDAEcwRQIgbLnsjvyin3XfH6EyLFMDo3D8 kPzCOuUUB804n0tslocCIQD+F8z+ms/VX1STUo0CEM2YhRLjte/yzoa464j0rato uwB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABi2CsSaoAAAQD AEcwRQIhAO/kbz9ddZHOX0OMIXuGszoPrnjainEwzxrKqOikPLStAiByNvBl4clM MU8syG3wxL+eXL5qaq+vG3NWT5U8ZGLFdwB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8 vOzew1FIWUZxH7WbAAABi2CsSOUAAAQDAEcwRQIgf+phw3kvuXefvDfjAJ1/Kaou k9aZLfN2UqLqU4kP/AICIQDUsy0Q01T0kzV6C7JsuMm0DkblYMXOPQfMZVtReG3T MDANBgkqhkiG9w0BAQsFAAOCAgEAwelfGleB9gbEW00Lv2vlEhZQJF7rCgTt6Q8i D7ARvUbA7xv+N3ueiqCZnUA622pAz4TyT9PNPAlKLRpIh/ytoeewM6XNt9cOEYZP lOHNQSFbLNmZcNvGuhfng1uU0z/pVQRN4LHE2zivQIhn58vFtnDJex4RLzpA/Uoe kFGK1/P7C3nQr5LBI/XdpvHxbVJjIBeMW75Mvz8h2ms9VIoi6CUFCYnYBmZXt8N8 pgFnxYQAkhEXDJzIKQzBvgYoJTZzsWRIXWS/KrSz/NJgj1JPJwhnuloTb7gnkieM H3eAVBcflYzo1u6MRytHUQV+/ZDka2tRlLwaitnybkGkh/7qBbB/OOZChUgqNPjx iKX3/jg+BxRbZJf7HnhrjCQ0fYgI4x6oZEfnIuPW027mG2RQ+pg2cD42kK/dmbI7 G6Fr4Lo8/6R6qa7Za7awB2et2Q3Q0ViUs7kB5dY/69/SPDbnEhefaHaBv9788Xat bnbdATxNlJkgeQ+CincgKcdZLKiR3vXTV1QzYjRXm3aCfgzULPlKgJuNCvVvWEsY qcP1TQk1MBcZ+P2+3qGY9rUlZU60skUZhU+pDpn2o87eW9Kh3lRVXfgGkFfF43fp KESxQKtcZ2vndKb6e4piUiFVz7vps0TFxfkOVCOjskMjbsu7p5rkya/nJISdnxqS lHFfXx4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA35QZVOYiEACjhqyPdScd FOWpiyZ55+05jP0Y+LtG0m1BBl5Rfu0jGU8AAWJ3k7iJgTCQ/oDFpsIOjX+Foalz 6VPcdFMbv4I6yMS6vMWDB3E0Xqe6bbLFIQbUu8x4yKq26cvlQZwT6JpVkyNaFIcM xdt6nxe76n06UqVAXm3DQgQUNoA/BFt+/1g8vIjJKRM6PeJJ+DgIkPPFvwhYOqOr ZTHHOapIei1FZvoOIMgc7Pp07kILef3i2kPtAZeAGic+8INHAEy7T1B9yCWPo0N0 rwyoQHjeC0mdYs2cM2dNr9W1WP+Nmix5EFBY66M9DKaNQQuHL3wGfJSQXE2GWtEq WQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 402491026525600283050631731819942198891932898353 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Global SSL ICA G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-24 07:43:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-24 07:38:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bundesamt für Informatik und Telekommunikation BIT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'pin-reset.a-pki.admin.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28224172322394060139944943962943587526465909648293734602821233921698034674182117876507581771202481189440335643230182087713675808862569316172612812412726808598659944262541956786857968342693588277352520826779405527491033187369737418759737796431835486596897633885158959062245233263849761111826076233008474952647064104326176009040042038374767576507272656219778032427442933812475234633562302492535468722024988621697794305484241446822939125683012593200350040510571261753768728137826968161261034807391778913674153382355677633202106248069968638988502280448358906498880499101131048570808749976057870706175590304096108571339353 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b31289b5a94b35bc1500f080e9d87887f1137c76 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvsslg3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (162 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pin-reset.a-pki.admin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'token-unseal.a-pki.admin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certificate-renewal.a-pki.admin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'key-recovery.a-pki.admin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pending-authorizations.a-pki.admin.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvsslg3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 85d156422b68c5cd835566ba6b56f4a5bd980b49 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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