michel.lucorp.ch
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 34:76:f0:8a:b1:d1:39:ba:96:93:46:71:80:4b:91:6b:dd:f5:61:dd was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=michel.lucorp.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 34:76:f0:8a:b1:d1:39:ba:96:93:46:71:80:4b:91:6b:dd:f5:61:ddSerial Number (int): 299519962160216242517278164588027243797490786781
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: ae:86:53:72:ac:6e:28:0f:3e:07:16:17:91:d6:68:c2:24:17:33:d9
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): 40:c8:81:4b:14:6d:78:67:c7:a3:2e:27:0d:8e:19:e6:7f:8f:83:a7
Fingerprint (sha256): 02:f0:a7:92:63:9c:f7:b7:35:80:50:75:ec:10:bc:b7:a4:3f:57:45:8a:32:75:dc:62:1c:1f:9c:aa:eb:0b:b3
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate michel.lucorp.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for michel.lucorp.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
michel.lucorp.ch
Other certificates including the domain name lucorp.ch
(limited to 100 certificates)
int-opus.lucorp.ch
dev-zertifikate.lucorp.ch
sb009425.lucorp.ch
lu311003.lucorp.ch
contractx.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
michel.lucorp.ch
caml.lucorp.ch
zertifikate.lucorp.ch
dlp-admin.lucorp.ch
norma4040046.lucorp.ch
int-caml.lucorp.ch
dev-zertifikate.lucorp.ch
uci-lukh-nc-002.ucc.lucorp.ch
lu326003.lucorp.ch
int-ecm-trans.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
*.ops.lucorp.ch
tst-opus.lucorp.ch
vm-prd-iacmvp-gitlabserver-chn-001.gitlab.azure.lucorp.ch
int-ecm-trans.lucorp.ch
lu317003.lucorp.ch
amx1.lucorp.ch
paedi.lucorp.ch
tst-opus.lucorp.ch
dev-admin-anlegen.lucorp.ch
old-opus.lucorp.ch
zertifikate.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
rechner.lucorp.ch
norma4040315.lucorp.ch
uci-lukh-nc-003.ucc.lucorp.ch
uci-lukh-nwe-002.lukb.ch
*.lucorp.ch
norma4040044.lucorp.ch
old-opus.lucorp.ch
lu380003.lucorp.ch
tst-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
ecm-act1.lucorp.ch
old-opus.lucorp.ch
int-intra.lucorp.ch
dev-zertifikate.lucorp.ch
int-admin.lucorp.ch
dev-opus.lucorp.ch
test-dlp.lucorp.ch
int-opus.lucorp.ch
zertifikate.lucorp.ch
quote-push1.lucorp.ch
norma4040045.lucorp.ch
tst-opus.lucorp.ch
lu326001.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
int-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
tst-opus.lucorp.ch
int-opus.lucorp.ch
old-opus.lucorp.ch
tst-opus.lucorp.ch
ecm-act4.lucorp.ch
norma4040045.lucorp.ch
keycloak.test-dlp.lucorp.ch
int-datrading.lucorp.ch
dacs.lucorp.ch
int-datrading.lucorp.ch
dev-opus.lucorp.ch
int-opus.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
dev-opus.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
lu311003.lucorp.ch
opus.lucorp.ch
zertifikate.lucorp.ch
datrading.lucorp.ch
old-opus.lucorp.ch
lu312004.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
sb001904.lucorp.ch
dev-opus.lucorp.ch
norma4040250.lucorp.ch
dev-opus.lucorp.ch
opus.lucorp.ch
old-opus.lucorp.ch
test-dlp.lucorp.ch
sursee-safepro.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
lu15388.lucorp.ch
vm-prd-iacmvp-gitlabrunner-chn-001.gitlab.azure.lucorp.ch
michel1.lucorp.ch
dev-zertifikate.lucorp.ch
arbeitszeugnis.lucorp.ch
old-opus.lucorp.ch
lu305003.lucorp.ch
dev-zertifikate.lucorp.ch
sb009425.lucorp.ch
lu311003.lucorp.ch
contractx.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
michel.lucorp.ch
caml.lucorp.ch
zertifikate.lucorp.ch
dlp-admin.lucorp.ch
norma4040046.lucorp.ch
int-caml.lucorp.ch
dev-zertifikate.lucorp.ch
uci-lukh-nc-002.ucc.lucorp.ch
lu326003.lucorp.ch
int-ecm-trans.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
*.ops.lucorp.ch
tst-opus.lucorp.ch
vm-prd-iacmvp-gitlabserver-chn-001.gitlab.azure.lucorp.ch
int-ecm-trans.lucorp.ch
lu317003.lucorp.ch
amx1.lucorp.ch
paedi.lucorp.ch
tst-opus.lucorp.ch
dev-admin-anlegen.lucorp.ch
old-opus.lucorp.ch
zertifikate.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
rechner.lucorp.ch
norma4040315.lucorp.ch
uci-lukh-nc-003.ucc.lucorp.ch
uci-lukh-nwe-002.lukb.ch
*.lucorp.ch
norma4040044.lucorp.ch
old-opus.lucorp.ch
lu380003.lucorp.ch
tst-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
ecm-act1.lucorp.ch
old-opus.lucorp.ch
int-intra.lucorp.ch
dev-zertifikate.lucorp.ch
int-admin.lucorp.ch
dev-opus.lucorp.ch
test-dlp.lucorp.ch
int-opus.lucorp.ch
zertifikate.lucorp.ch
quote-push1.lucorp.ch
norma4040045.lucorp.ch
tst-opus.lucorp.ch
lu326001.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
int-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
tst-opus.lucorp.ch
int-opus.lucorp.ch
old-opus.lucorp.ch
tst-opus.lucorp.ch
ecm-act4.lucorp.ch
norma4040045.lucorp.ch
keycloak.test-dlp.lucorp.ch
int-datrading.lucorp.ch
dacs.lucorp.ch
int-datrading.lucorp.ch
dev-opus.lucorp.ch
int-opus.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
dev-opus.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
lu311003.lucorp.ch
opus.lucorp.ch
zertifikate.lucorp.ch
datrading.lucorp.ch
old-opus.lucorp.ch
lu312004.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
sb001904.lucorp.ch
dev-opus.lucorp.ch
norma4040250.lucorp.ch
dev-opus.lucorp.ch
opus.lucorp.ch
old-opus.lucorp.ch
test-dlp.lucorp.ch
sursee-safepro.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
lu15388.lucorp.ch
vm-prd-iacmvp-gitlabrunner-chn-001.gitlab.azure.lucorp.ch
michel1.lucorp.ch
dev-zertifikate.lucorp.ch
arbeitszeugnis.lucorp.ch
old-opus.lucorp.ch
lu305003.lucorp.ch
Certificate
The complete raw certificate details for michel.lucorp.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJdjCCB16gAwIBAgIUNHbwirHRObqWk0ZxgEuRa931Yd0wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTI0MDIyNzA3 NDgyMloXDTI1MDIyNzA3NDgyMlowGzEZMBcGA1UEAxMQbWljaGVsLmx1Y29ycC5j aDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAO9YXOnbl6zrodcBQxNE +dfDWF29AbAUjdzWxhZ4sXQ+8QTfeSIwd331HMsk9FlN5b7UcN2TwTONb2xIFTck gN1LSVMyZilsJQvNPFWXEPvV0w8fryTLMxQp4yq/s9+/lAk/EgdQ2XiLVepPTT9r wahGjzq06qX3gB4BBsnAzvGttHf0cplemkMs4uKNSw2Bw4F6mwn2UKaV7Np6/I/+ JZncoShHEehvVEPPz3N6MFw1hYcW7VJ+rKwdzKo/l7z7hZ23MxnqOKifrWcrwQyr RWDWiXnNCJ1fjORTqHk6hvJzr7kM/zrQHGpI3lHBdm2SY7T4/S8rUelK3spTY7yx ZW71VMBGtbNYDCJzXJrXBVxLwnbwzEuH1yiivkDj+wmYDEHIAbHOuNnjIkSRhhIB 1TznImdka/ApP60D+7HPRR53a0K2LapeabjxL2DFsyE7RWfKGKoTFM3hgKwl39fz X7C16Gr9CZG8yP/6dviTA2s0Dha1G1LBR/vQGH3h6RXKMYsg1RRNP83As1vDIw9Y QiSin4DICLXmdAbY75pakfgBP0IQ/vPvO37BSCJpiy0G4uYXm5IAHowQMd0bYO9B 3viGJCMJVH4/IZnId3pPypRloMHoYr7e3A2a++z0ZdtY0zPPWA8xojqqgWR4UR4c pueQsN+j8mOp6QZuQ+AphrD1AgMBAAGjggR7MIIEdzCBsgYIKwYBBQUHAQEEgaUw gaIwTAYIKwYBBQUHMAKGQGh0dHA6Ly9haWEuc3dpc3NzaWduLmNoL2Fpci0xYjg2 MzM4NS1mNGE5LTQ3ZmEtODhhNS0yYTVhYmZkNGExNjcwUgYIKwYBBQUHMAGGRmh0 dHA6Ly9vY3NwLnN3aXNzc2lnbi5jaC9zaWduL29jcy1hYWNjY2VkNS02NmU4LTQw NjktOWIxYi1mZDI5YWI3M2VmZWMwbwYDVR0gBGgwZjAIBgZngQwBAgEwCAYGBACP egEGMFAGCGCFdAFZAgEBMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9y eS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjBRBgNVHR8ESjBI MEagRKBChkBodHRwOi8vY3JsLnN3aXNzc2lnbi5jaC9jZHAtNjc5NzIzYjItODY0 MS00NjQyLTg1MDAtZjZkMmZmMzdlNmJhMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwGwYDVR0RBBQwEoIQbWljaGVsLmx1Y29y cC5jaDAdBgNVHQ4EFgQUroZTcqxuKA8+BxYXkdZowiQXM9kwHwYDVR0jBBgwFoAU 671/SZOMye7sorr3HNJn8IOx6t4wggJuBgorBgEEAdZ5AgQCBIICXgSCAloCWAB2 AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABjemJQCoAAAQDAEcw RQIhALF/A8r2/GDvRfAxijP4EHfJWQpmluTsm+FgsDk0uOKAAiAcNM1ekfG8t9Om EMrOdZfJTisJgndsocxwJ+cY/6kQiwB2ACjigTj9gyFF6anWqnU3bYN3qIUSs8B/ ckFIIdy96YxmAAABjemJRRwAAAQDAEcwRQIgZ6NE10NGE2RtZLtpTS+FDZOf31QW kPdvHky3JaMsJU8CIQDmugNeGb89nAZvbCo2OwNnDg9rxZ6AEOMXJaGgkWzf0wB3 AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjemJP28AAAQDAEgw RgIhANLqvw0v4apTvqF6+7CmI2iRqf134AkiXvZ8RdlKY4opAiEAkyn3CmhAOItj baum9iScmqLijt93ZM1aHULsOjw4LkoAdQDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2X jbapflTA/kwNsAAAAY3piT9ZAAAEAwBGMEQCIHQ5ysAAlcUi3LF316ExxvCw1q8l wfhdYUBLihJ6R/LyAiAnKd/aVrBN1+NqqJjdLmjRdMW7igI3RrWGf6vEW+HmpAB2 AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjemJP3oAAAQDAEcw RQIgJjY8uuTdd7Fe1ry5R2AsynRst7S9gfJL1e+py2ldYHsCIQDdh+R43B1IdbV9 QnothJ463GCS7PwTOJebE/jV0OMewDANBgkqhkiG9w0BAQsFAAOCAgEAA3LEhWqq UdOJv7YTheY5WvrDk5HQmjV/c+OyigdboRkRsW4bHbIvI4zNCTpqv4Xbcsg297Qe rG0Hrp/E04+TJuOE1IR7mc0uOwNyeaHQeMDMt3H1AvFvD001YSWwqiBOX+IWFtN9 cjbbbPJoZ/HXv5Uk6ZFDl6/xUSZ2eFB7Hl1ys/0tmbPkUMiXNr8eX7Y1ALeHhefT nBT6MVc2zGBFqZtQj4wj8ldBVV5ip/VDYScwxQHa67bBhqVyGp3Qbxo5Hx5fimuB wcLh/nO0JNHavOxQ9x5O3Y+ADMKd+SGkV9lOQYq4ByJuj12zl+FPISIG9F0gib86 dv5xfXHjLiJYxW94MHs0mCHmtkCMXznQCMW1ywfyWQaOZLEzGpjr1j/lbToDAVM3 7Giw62dk6DqlNh7WG3pExFDl4Q1GgxwNWV0kVjqVG5nH2Di2KHOuluMT+M0bWBhP bsZcsS8dvJlPTp+8aFMgXKiyQbNw6HeG4dQQtukXO6fVOKSiGuHq0nTOIbHTgDdG QTAQCOj+mdf9iJYBReEOxgEnRbxIp8nsOXlr5MtKSx8ZdRYGK5lMqTvZrvLl9LNL d0JxCet6xVemuOIyhkMOTp5xxgdZ3OfO8KQI5AbKRDZLLHVSD5eqnxX/8grzZAoD 8IdTrJSNVUEzggzMGY3FvWurio2tgZns95M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA71hc6duXrOuh1wFDE0T5 18NYXb0BsBSN3NbGFnixdD7xBN95IjB3ffUcyyT0WU3lvtRw3ZPBM41vbEgVNySA 3UtJUzJmKWwlC808VZcQ+9XTDx+vJMszFCnjKr+z37+UCT8SB1DZeItV6k9NP2vB qEaPOrTqpfeAHgEGycDO8a20d/RymV6aQyzi4o1LDYHDgXqbCfZQppXs2nr8j/4l mdyhKEcR6G9UQ8/Pc3owXDWFhxbtUn6srB3Mqj+XvPuFnbczGeo4qJ+tZyvBDKtF YNaJec0InV+M5FOoeTqG8nOvuQz/OtAcakjeUcF2bZJjtPj9LytR6UreylNjvLFl bvVUwEa1s1gMInNcmtcFXEvCdvDMS4fXKKK+QOP7CZgMQcgBsc642eMiRJGGEgHV POciZ2Rr8Ck/rQP7sc9FHndrQrYtql5puPEvYMWzITtFZ8oYqhMUzeGArCXf1/Nf sLXoav0JkbzI//p2+JMDazQOFrUbUsFH+9AYfeHpFcoxiyDVFE0/zcCzW8MjD1hC JKKfgMgIteZ0BtjvmlqR+AE/QhD+8+87fsFIImmLLQbi5hebkgAejBAx3Rtg70He +IYkIwlUfj8hmch3ek/KlGWgwehivt7cDZr77PRl21jTM89YDzGiOqqBZHhRHhym 55Cw36PyY6npBm5D4CmGsPUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299519962160216242517278164588027243797490786781 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 07:48:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-27 07:48:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'michel.lucorp.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 976443093810794229082768654910900987433953377339101782731501996319279958755427765658133522887025895509020142525251729191686114336619683948529790564083002390218994677069609502305440264703211043677515529680224733134178278050196967349400000915288170440293071510293851004380846944904674241080537691143035785926604144268120089712665375503096404119771715235825116354528507556930656978675618230466020467412121647905524434514264817837117843401411211178885072301342280647794505263007937001674992380801774513091144133370227449682491461618432956532195944816067273588251478752335628307447666095150845746613293371619108079255476634289943645517720544845996879911761990956472976621846425822426880007237679954817673278985212227604308650445597886034590029238728635153145640227286228109374485411259349308921170001238547735556551610682789992866440554243748872731481630578608959607652895419862679372377329674665874044794959391727030510810504081705114575061742535511128484198958793520980777482499008566567955918710278118870254969027389885661767443994619470747409137909523633436103371667728449592870534825517587884686739771564883658051539219079322057561488824831161422534103732099839069064597345457872159335040155560871720590876228900280088205303755485429 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michel.lucorp.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ae865372ac6e280f3e07161791d668c2241733d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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