srv04795.int.bkw.ch.exotrack.swisscom.ch
- Swisscom (Schweiz) AG -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 6d:9a:72:3b:d6:bf:7e:11:13:2b:3f:29:10:df:8d:ac:3d:f8:35:03 was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Swisscom (Schweiz) AG
Organization:
Swisscom (Schweiz) AG
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 6d:9a:72:3b:d6:bf:7e:11:13:2b:3f:29:10:df:8d:ac:3d:f8:35:03Serial Number (int): 625724259943077169843069711752513805840740267267
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 59:1b:07:22:4f:0a:40:92:11:6b:08:12:15:c7:0e:7e:99:37:f2:e3
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): e0:23:19:fd:ad:2c:78:e7:2e:ca:cf:26:a6:91:6a:a8:cf:a6:8d:36
Fingerprint (sha256): 03:04:74:05:a7:aa:04:57:ea:6b:3e:91:cb:77:ac:b8:b6:4c:fc:d0:92:a8:6e:42:1f:7b:ff:ce:5d:a8:6c:35
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate srv04795.int.bkw.ch.exotrack.swisscom.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for srv04795.int.bkw.ch.exotrack.swisscom.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
srv04795.int.bkw.ch.exotrack.swisscom.ch
Other certificates including the domain name swisscom.ch
(limited to 100 certificates)
olr-stag.swisscom.ch
twint-prd.swisscom.ch
cms.staging.entertainment.swisscom.ch
email.swisscom.ch
cp.cspp.swisscom.ch
spscms4linux02.exotrack.swisscom.ch
tvnow.swisscom.ch
internetbox-nas.staging.swisscom.ch
issue.swisscom.ch
secure04.stage.lithium.com
blockchain.swisscom.ch
partner-authz-staging.swisscom.ch
netzausbaukarte.swisscom.ch
magazin.swisscom.ch
i.swisscom.ch
docsafe-beta.swisscom.com
twint-prd.swisscom.ch
cusmsp-phoenix.swisscom.ch
ssc1.imst.swisscom.ch
octane.swisscom.ch
*.portal.bankinghub.swisscom.ch
gaia-gateway.vega.m6s.swisscom.ch
iot.vodafone.swisscom.ch
sbc1-emea-che-zhh.teamsa.swisscom.ch
ccs.join.swisscom.ch
*.tcsbc02.teamsa.swisscom.ch
multi.swisscom.ch
l2.shared.global.fastly.net
bcs.join.swisscom.ch
secure05.lithium.com
wast.swisscom.ch
sdx.swisscom.ch
identity.phoenix.m6s.swisscom.ch
ccs.join.swisscom.ch
partner-authz.swisscom.ch
l2.shared.global.fastly.net
global-portal-dev.swisscom.ch
l2.shared.global.fastly.net
btbcs.swisscom.ch
tools.swisscom.ch
l2.shared.global.fastly.net
ssc1.ims.swisscom.ch
internetbox-nas.staging.swisscom.ch
lite.m2m.swisscom.ch
vimaphet-dasbc1.joind.swisscom.ch
extranet-acc.swisscom.ch
extranet-int.swisscom.ch
shop.swisscom.ch
secure05.stage.lithium.com
internetbox-nas.swisscom.ch
media.oid.swisscom.ch
5670976570261504-fe4.pantheonsite.io
acs.joind.swisscom.ch
secure04.stage.lithium.com
dis.swisscom.ch
wrc.joind.swisscom.ch
*.iotcloud.swisscom.com
*.tasbc01.teamsd.swisscom.ch
sensu-backend-8.exotrack.swisscom.ch
simple2.swisscom.ch
secure04.stage.lithium.com
srv04795.int.bkw.ch.exotrack.swisscom.ch
5754818358411264-fe2.pantheonsite.io
issue-int.swisscom.ch
l2.shared.global.fastly.net
wmt5443.conferencing.swisscom.ch
check.swisscom.ch
clientrvk.testweb38.swisscom.ch
tpe-staging.swisscom.ch
marketplace.bankinghub.swisscom.ch
inone-game.swisscom.ch
check.swisscom.ch
dns-vetting1e.map.fastly.net
handyhilfe.swisscom.ch
secure04.stage.lithium.com
hpalm-app-prd.swisscom.ch
cockpit.dev1.swisscom.ch
secure05.stage.lithium.com
rtc-dis.swisscom.ch
het-cds.swisscom.ch
mds01.swisscom.ch
www.survey.swisscom.ch
b2b-events.swisscom.ch
wfmweb.swisscom.ch
tv-thankyou.swisscom.ch
inone.swisscom.ch
buyback.swisscom.ch
secure04.stage.lithium.com
stag-messagingproxy.swisscom.ch
secure05.lithium.com
oms-tst.omsaas.swisscom.ch
cockpit.swisscom.ch
vergleich-server-cloud.swisscom.ch
buyback.swisscom.ch
hipchat.swisscom.ch
regapi-1olb.swisscom.ch
stream.swisscom.ch
repairmanager.swisscom.ch
robotics.swisscom.ch
zhheapp-sasbc01.joineapp.swisscom.ch
twint-prd.swisscom.ch
cms.staging.entertainment.swisscom.ch
email.swisscom.ch
cp.cspp.swisscom.ch
spscms4linux02.exotrack.swisscom.ch
tvnow.swisscom.ch
internetbox-nas.staging.swisscom.ch
issue.swisscom.ch
secure04.stage.lithium.com
blockchain.swisscom.ch
partner-authz-staging.swisscom.ch
netzausbaukarte.swisscom.ch
magazin.swisscom.ch
i.swisscom.ch
docsafe-beta.swisscom.com
twint-prd.swisscom.ch
cusmsp-phoenix.swisscom.ch
ssc1.imst.swisscom.ch
octane.swisscom.ch
*.portal.bankinghub.swisscom.ch
gaia-gateway.vega.m6s.swisscom.ch
iot.vodafone.swisscom.ch
sbc1-emea-che-zhh.teamsa.swisscom.ch
ccs.join.swisscom.ch
*.tcsbc02.teamsa.swisscom.ch
multi.swisscom.ch
l2.shared.global.fastly.net
bcs.join.swisscom.ch
secure05.lithium.com
wast.swisscom.ch
sdx.swisscom.ch
identity.phoenix.m6s.swisscom.ch
ccs.join.swisscom.ch
partner-authz.swisscom.ch
l2.shared.global.fastly.net
global-portal-dev.swisscom.ch
l2.shared.global.fastly.net
btbcs.swisscom.ch
tools.swisscom.ch
l2.shared.global.fastly.net
ssc1.ims.swisscom.ch
internetbox-nas.staging.swisscom.ch
lite.m2m.swisscom.ch
vimaphet-dasbc1.joind.swisscom.ch
extranet-acc.swisscom.ch
extranet-int.swisscom.ch
shop.swisscom.ch
secure05.stage.lithium.com
internetbox-nas.swisscom.ch
media.oid.swisscom.ch
5670976570261504-fe4.pantheonsite.io
acs.joind.swisscom.ch
secure04.stage.lithium.com
dis.swisscom.ch
wrc.joind.swisscom.ch
*.iotcloud.swisscom.com
*.tasbc01.teamsd.swisscom.ch
sensu-backend-8.exotrack.swisscom.ch
simple2.swisscom.ch
secure04.stage.lithium.com
srv04795.int.bkw.ch.exotrack.swisscom.ch
5754818358411264-fe2.pantheonsite.io
issue-int.swisscom.ch
l2.shared.global.fastly.net
wmt5443.conferencing.swisscom.ch
check.swisscom.ch
clientrvk.testweb38.swisscom.ch
tpe-staging.swisscom.ch
marketplace.bankinghub.swisscom.ch
inone-game.swisscom.ch
check.swisscom.ch
dns-vetting1e.map.fastly.net
handyhilfe.swisscom.ch
secure04.stage.lithium.com
hpalm-app-prd.swisscom.ch
cockpit.dev1.swisscom.ch
secure05.stage.lithium.com
rtc-dis.swisscom.ch
het-cds.swisscom.ch
mds01.swisscom.ch
www.survey.swisscom.ch
b2b-events.swisscom.ch
wfmweb.swisscom.ch
tv-thankyou.swisscom.ch
inone.swisscom.ch
buyback.swisscom.ch
secure04.stage.lithium.com
stag-messagingproxy.swisscom.ch
secure05.lithium.com
oms-tst.omsaas.swisscom.ch
cockpit.swisscom.ch
vergleich-server-cloud.swisscom.ch
buyback.swisscom.ch
hipchat.swisscom.ch
regapi-1olb.swisscom.ch
stream.swisscom.ch
repairmanager.swisscom.ch
robotics.swisscom.ch
zhheapp-sasbc01.joineapp.swisscom.ch
Certificate
The complete raw certificate details for srv04795.int.bkw.ch.exotrack.swisscom.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHkjCCBXqgAwIBAgIUbZpyO9a/fhETKz8pEN+NrD34NQMwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTI0MDMxOTA3 NDQ1OFoXDTI1MDMxOTA3NDQ1OFowfDELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAkJF MQ0wCwYDVQQHDARCZXJuMR4wHAYDVQQKDBVTd2lzc2NvbSAoU2Nod2VpeikgQUcx MTAvBgNVBAMTKHNydjA0Nzk1LmludC5ia3cuY2guZXhvdHJhY2suc3dpc3Njb20u Y2gwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCp4fcSLjoICxgrtWGN 5anLN3nZGKf0dmG/XWwbxXMYrO4ORCZXkh3kmP6mOqU03rxopQ+hc/vr9ELHUnZY edIYdj+jvTgCERtxHnoMGWqa9BvEKeZ+410ZjhuKtvJ749isDkXwp/6tMthk46Xi wH+33n5aJpj0i9FSpp8Oi0V/xl73+50U52ZU9tXklTcqLHlDU7kfsZW9UpwatO4O wKfJ4Znpa5TiIqk8l3zpMB+2ekq/cMWc2HflcPGHHFic/l2tEpQ1MgYJEd82Rdb0 Dt/z1TfZEtFtYpnmlQay+CnNVA3Wuq88gF3k7FVYlu8TUS+IwuY2Jsbhn9qqiWpm 6c5HUm3W1uFajP87YQ/gNGWwTr+82mZk1l+YuC//QLmwEj1b/rEhgceCCmVwKH2H XfzBBz3qhWl5PwF2UnBFSL09+hVARNE/Um0QcqQn1WmkPRq8jiFqly3RwGMm0yul m2ixU9XN84pPGL6BVlnMW6SSzUIYcWbUYQEsYXN/Pf/uhfFOBmJectIsUOYG9Rho jdPjdsNlBarw32+y3vxQX9vatOg0XpBmwQMaooV6VpV3mOOVRxi8coseRlWXeF5G 045uK7gDdbrAZQs92Su/Zm+r3tUhwKetAi2QOu8BsW4OIdaQaQ5MNKtAgO0bKPI+ OOv1jW+iN29E34lbkofie4ibaQIDAQABo4ICNjCCAjIwgbIGCCsGAQUFBwEBBIGl MIGiMEwGCCsGAQUFBzAChkBodHRwOi8vYWlhLnN3aXNzc2lnbi5jaC9haXItMGYy YmY5YTUtZGQzNy00OGM5LWE4NWItMTJhY2RjYjhiZTQ1MFIGCCsGAQUFBzABhkZo dHRwOi8vb2NzcC5zd2lzc3NpZ24uY2gvc2lnbi9vY3MtYWFjY2NlZDUtNjZlOC00 MDY5LTliMWItZmQyOWFiNzNlZmVjMG8GA1UdIARoMGYwCAYGZ4EMAQICMAgGBgQA j3oBBzBQBghghXQBWQIBAjBEMEIGCCsGAQUFBwIBFjZodHRwczovL3JlcG9zaXRv cnkuc3dpc3NzaWduLmNvbS9Td2lzc1NpZ25fQ1BTX1RMUy5wZGYwUQYDVR0fBEow SDBGoESgQoZAaHR0cDovL2NybC5zd2lzc3NpZ24uY2gvY2RwLTk2YjYyZjVhLTZi NzMtNGRhNC04N2Y3LWNlNDAwMmMxY2QzNDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMDMGA1UdEQQsMCqCKHNydjA0Nzk1Lmlu dC5ia3cuY2guZXhvdHJhY2suc3dpc3Njb20uY2gwHQYDVR0OBBYEFFkbByJPCkCS EWsIEhXHDn6ZN/LjMB8GA1UdIwQYMBaAFHxvCm8TD9mMJG8mNPNca0NttyO2MBMG CisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4ICAQAkZf2fNvsx7y3J BSdrBV0GHv7YTki1HzsbRPDpMt6hMqqhOMilGb+enVKeZbBrIk7GYKF2BbX7mXBy lWDo2a3WdQl/WNJceuCUtPUl08resjh+fEFvtVkmpcxSNNoFoLvOhVeVRYUZ89XT zCOc88CLAWjLO4mpkYrN9SXu0leadIdMQJXRtES88Ifj9dP8bG/c4agGRJzgFbBK U9j3MSdb4hUjKgfhMDy9KNEo5XTDUe950XbEiejR6FYYQo5kWp+70IKvrrIbrc5W HFEWOJFXr8y659wDN6vFP3TOEGSFaeAGiy7SnjJuhXWNPjS8XBHawMb0QvQGeHhU Ashaygxcuy0UkQnIKLTiPcasSRgAWa3JwR4cL8T4f+LADHaOmJ1kd1tnFkwyE2CC NQAp6RerQWH5AQlvMX3Wkqo9fORQSvoOgB6p5Hqmdq0OV1o6LiUY+enJPK/e/epo g0QI6yA4SV1kiUps4uFoIatiESKELjADu5prv0LRSOY4Iz0e7hMB6j+OQlSDIvni w7IIkMpmVbkwoMHW0ROySfqaINlC09gWD3CRwPVmJGp1zjL5N5VTIa8GLoPQPdFi WtqI1Y6yqJr1rLLm3k/umL3HIqUWxwOH4yHNTJxO2gr3BsLHFnjsAqRDedh6BboU nxoj36bFkMtD92OC9JChhgk2yQwkfA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqeH3Ei46CAsYK7VhjeWp yzd52Rin9HZhv11sG8VzGKzuDkQmV5Id5Jj+pjqlNN68aKUPoXP76/RCx1J2WHnS GHY/o704AhEbcR56DBlqmvQbxCnmfuNdGY4birbye+PYrA5F8Kf+rTLYZOOl4sB/ t95+WiaY9IvRUqafDotFf8Ze9/udFOdmVPbV5JU3Kix5Q1O5H7GVvVKcGrTuDsCn yeGZ6WuU4iKpPJd86TAftnpKv3DFnNh35XDxhxxYnP5drRKUNTIGCRHfNkXW9A7f 89U32RLRbWKZ5pUGsvgpzVQN1rqvPIBd5OxVWJbvE1EviMLmNibG4Z/aqolqZunO R1Jt1tbhWoz/O2EP4DRlsE6/vNpmZNZfmLgv/0C5sBI9W/6xIYHHggplcCh9h138 wQc96oVpeT8BdlJwRUi9PfoVQETRP1JtEHKkJ9VppD0avI4hapct0cBjJtMrpZto sVPVzfOKTxi+gVZZzFukks1CGHFm1GEBLGFzfz3/7oXxTgZiXnLSLFDmBvUYaI3T 43bDZQWq8N9vst78UF/b2rToNF6QZsEDGqKFelaVd5jjlUcYvHKLHkZVl3heRtOO biu4A3W6wGULPdkrv2Zvq97VIcCnrQItkDrvAbFuDiHWkGkOTDSrQIDtGyjyPjjr 9Y1vojdvRN+JW5KH4nuIm2kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 625724259943077169843069711752513805840740267267 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-19 07:44:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-19 07:44:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Swisscom (Schweiz) AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'srv04795.int.bkw.ch.exotrack.swisscom.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 693060852441238324300580394725970148159152815213000543952716263526497590394928131584501722400283568858308011426847323969852614698577948847807988076125039085093743931025650689112180524793766654783002991137938458747429584871628703804787655502561182990227796999077515403769833382043084866496986427678116723309935197761488633840110918268627998908089474259081922611601603522161907675074100838532119587750986395279898988414633735051760500846512390193620494104163400283433908135713856839858729421464520292915006124822663469055676178729480287283890477744285490390090271433234697009447719464283981072188334661649507048511553240321243571487043797766433550898895042395206848440037794970429144364127098269344762130286410235283474224594664788769741794509230359468529567292017805126266169556678426264654005216605058916731251109520168479417153314190366192686215802323648224773134935499863108467054183222586537638939816494301972847212778490581658573032105202456733520434524880691162634231704068809879695091645281263751019364443907748143886222859407943497431703174616487799000593244046125160888655031763433530918159054735030533451738273664329481759221948642902545655074362775378322780064171902035543283115323219127248505440865942128693817270174522217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'srv04795.int.bkw.ch.exotrack.swisscom.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 591b07224f0a4092116b081215c70e7e9937f2e3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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