hpalm-app-prd.swisscom.ch
- Swisscom (Schweiz) AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 1b:76:2e:33:f8:9a:8c:f4:a6:f8:15:37:80:5a:d7:35:1f:fd:8b:57 was issued on by SwissSign AG.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Swisscom (Schweiz) AG
Organization:
Swisscom (Schweiz) AG
State / Province:
BE
Locality: Worblaufen
Country: CH
Locality: Worblaufen
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 1b:76:2e:33:f8:9a:8c:f4:a6:f8:15:37:80:5a:d7:35:1f:fd:8b:57Serial Number (int): 156778263595674870215767570864619364901952785239
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: 56:33:cd:ce:fb:10:50:e1:59:c5:78:44:43:b2:ad:8c:a2:8d:f5:6a
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 49:aa:a8:c9:3b:14:bd:ba:56:b8:83:82:55:b6:b1:07:76:eb:27:99
Fingerprint (sha256): 03:b8:eb:46:1d:8d:85:fb:c9:6e:ef:a9:3d:02:15:f6:72:6a:94:f5:67:f9:18:04:71:95:38:6f:6d:c8:8b:6b
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate hpalm-app-prd.swisscom.ch
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hpalm-app-prd.swisscom.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hpalm-app-prd.swisscom.ch
alm.swisscom.ch
hpalm.swisscom.ch
itsalm1.swisscom.ch
itsqc.swisscom.ch
scalm.swisscom.ch
alm.swisscom.ch
hpalm.swisscom.ch
itsalm1.swisscom.ch
itsqc.swisscom.ch
scalm.swisscom.ch
Other certificates including the domain name swisscom.ch
(limited to 100 certificates)
olr-stag.swisscom.ch
cms.staging.entertainment.swisscom.ch
email.swisscom.ch
cp.cspp.swisscom.ch
spscms4linux02.exotrack.swisscom.ch
tvnow.swisscom.ch
internetbox-nas.staging.swisscom.ch
issue.swisscom.ch
secure04.stage.lithium.com
blockchain.swisscom.ch
partner-authz-staging.swisscom.ch
netzausbaukarte.swisscom.ch
magazin.swisscom.ch
i.swisscom.ch
docsafe-beta.swisscom.com
twint-prd.swisscom.ch
ssc1.imst.swisscom.ch
octane.swisscom.ch
*.portal.bankinghub.swisscom.ch
gaia-gateway.vega.m6s.swisscom.ch
iot.vodafone.swisscom.ch
sbc1-emea-che-zhh.teamsa.swisscom.ch
ccs.join.swisscom.ch
*.tcsbc02.teamsa.swisscom.ch
multi.swisscom.ch
l2.shared.global.fastly.net
bcs.join.swisscom.ch
secure05.lithium.com
wast.swisscom.ch
sdx.swisscom.ch
identity.phoenix.m6s.swisscom.ch
ccs.join.swisscom.ch
l2.shared.global.fastly.net
global-portal-dev.swisscom.ch
l2.shared.global.fastly.net
btbcs.swisscom.ch
tools.swisscom.ch
l2.shared.global.fastly.net
ssc1.ims.swisscom.ch
internetbox-nas.staging.swisscom.ch
lite.m2m.swisscom.ch
vimaphet-dasbc1.joind.swisscom.ch
extranet-acc.swisscom.ch
extranet-int.swisscom.ch
shop.swisscom.ch
secure05.stage.lithium.com
internetbox-nas.swisscom.ch
media.oid.swisscom.ch
5670976570261504-fe4.pantheonsite.io
acs.joind.swisscom.ch
secure04.stage.lithium.com
dis.swisscom.ch
wrc.joind.swisscom.ch
*.tasbc01.teamsd.swisscom.ch
sensu-backend-8.exotrack.swisscom.ch
simple2.swisscom.ch
secure04.stage.lithium.com
5754818358411264-fe2.pantheonsite.io
issue-int.swisscom.ch
l2.shared.global.fastly.net
wmt5443.conferencing.swisscom.ch
check.swisscom.ch
clientrvk.testweb38.swisscom.ch
tpe-staging.swisscom.ch
marketplace.bankinghub.swisscom.ch
inone-game.swisscom.ch
check.swisscom.ch
dns-vetting1e.map.fastly.net
handyhilfe.swisscom.ch
secure04.stage.lithium.com
hpalm-app-prd.swisscom.ch
cockpit.dev1.swisscom.ch
secure05.stage.lithium.com
rtc-dis.swisscom.ch
het-cds.swisscom.ch
mds01.swisscom.ch
www.survey.swisscom.ch
wfmweb.swisscom.ch
tv-thankyou.swisscom.ch
inone.swisscom.ch
buyback.swisscom.ch
secure04.stage.lithium.com
stag-messagingproxy.swisscom.ch
secure05.lithium.com
oms-tst.omsaas.swisscom.ch
cockpit.swisscom.ch
vergleich-server-cloud.swisscom.ch
buyback.swisscom.ch
hipchat.swisscom.ch
regapi-1olb.swisscom.ch
stream.swisscom.ch
repairmanager.swisscom.ch
robotics.swisscom.ch
zhheapp-sasbc01.joineapp.swisscom.ch
git-test.swisscom.ch
5754818358411264-fe2.pantheonsite.io
acs.gated.swisscom.ch
www.lawe-network.lime.novu.ch
chat.projuventute.swisscom.ch
cw000130.exotrack.swisscom.ch
cms.staging.entertainment.swisscom.ch
email.swisscom.ch
cp.cspp.swisscom.ch
spscms4linux02.exotrack.swisscom.ch
tvnow.swisscom.ch
internetbox-nas.staging.swisscom.ch
issue.swisscom.ch
secure04.stage.lithium.com
blockchain.swisscom.ch
partner-authz-staging.swisscom.ch
netzausbaukarte.swisscom.ch
magazin.swisscom.ch
i.swisscom.ch
docsafe-beta.swisscom.com
twint-prd.swisscom.ch
ssc1.imst.swisscom.ch
octane.swisscom.ch
*.portal.bankinghub.swisscom.ch
gaia-gateway.vega.m6s.swisscom.ch
iot.vodafone.swisscom.ch
sbc1-emea-che-zhh.teamsa.swisscom.ch
ccs.join.swisscom.ch
*.tcsbc02.teamsa.swisscom.ch
multi.swisscom.ch
l2.shared.global.fastly.net
bcs.join.swisscom.ch
secure05.lithium.com
wast.swisscom.ch
sdx.swisscom.ch
identity.phoenix.m6s.swisscom.ch
ccs.join.swisscom.ch
l2.shared.global.fastly.net
global-portal-dev.swisscom.ch
l2.shared.global.fastly.net
btbcs.swisscom.ch
tools.swisscom.ch
l2.shared.global.fastly.net
ssc1.ims.swisscom.ch
internetbox-nas.staging.swisscom.ch
lite.m2m.swisscom.ch
vimaphet-dasbc1.joind.swisscom.ch
extranet-acc.swisscom.ch
extranet-int.swisscom.ch
shop.swisscom.ch
secure05.stage.lithium.com
internetbox-nas.swisscom.ch
media.oid.swisscom.ch
5670976570261504-fe4.pantheonsite.io
acs.joind.swisscom.ch
secure04.stage.lithium.com
dis.swisscom.ch
wrc.joind.swisscom.ch
*.tasbc01.teamsd.swisscom.ch
sensu-backend-8.exotrack.swisscom.ch
simple2.swisscom.ch
secure04.stage.lithium.com
5754818358411264-fe2.pantheonsite.io
issue-int.swisscom.ch
l2.shared.global.fastly.net
wmt5443.conferencing.swisscom.ch
check.swisscom.ch
clientrvk.testweb38.swisscom.ch
tpe-staging.swisscom.ch
marketplace.bankinghub.swisscom.ch
inone-game.swisscom.ch
check.swisscom.ch
dns-vetting1e.map.fastly.net
handyhilfe.swisscom.ch
secure04.stage.lithium.com
hpalm-app-prd.swisscom.ch
cockpit.dev1.swisscom.ch
secure05.stage.lithium.com
rtc-dis.swisscom.ch
het-cds.swisscom.ch
mds01.swisscom.ch
www.survey.swisscom.ch
wfmweb.swisscom.ch
tv-thankyou.swisscom.ch
inone.swisscom.ch
buyback.swisscom.ch
secure04.stage.lithium.com
stag-messagingproxy.swisscom.ch
secure05.lithium.com
oms-tst.omsaas.swisscom.ch
cockpit.swisscom.ch
vergleich-server-cloud.swisscom.ch
buyback.swisscom.ch
hipchat.swisscom.ch
regapi-1olb.swisscom.ch
stream.swisscom.ch
repairmanager.swisscom.ch
robotics.swisscom.ch
zhheapp-sasbc01.joineapp.swisscom.ch
git-test.swisscom.ch
5754818358411264-fe2.pantheonsite.io
acs.gated.swisscom.ch
www.lawe-network.lime.novu.ch
chat.projuventute.swisscom.ch
cw000130.exotrack.swisscom.ch
Certificate
The complete raw certificate details for hpalm-app-prd.swisscom.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIInTCCBoWgAwIBAgIUG3YuM/iajPSm+BU3gFrXNR/9i1cwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMDkwNTEw NTg0NloXDTIzMDkwNTEwNTg0NlowczELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAkJF MRMwEQYDVQQHEwpXb3JibGF1ZmVuMR4wHAYDVQQKExVTd2lzc2NvbSAoU2Nod2Vp eikgQUcxIjAgBgNVBAMTGWhwYWxtLWFwcC1wcmQuc3dpc3Njb20uY2gwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDA0uXqVEXgSq+i6WAMhMUXci9JD48y EY7m8Q9otaO3J7MTgDffHdWLzNM83W23NWJTqC85KX7OqsAyjfDoWighjxlZlFlH PlRkLqBX2ymRLauu3gCwNdjPla0ILsSWXNUusG6Va/yPxevkM0Mo3UaYisac1VSY 8ULKGkuk7gOyspcAZj2LhzZt2jAp4WlSC6a79hTsO3BUjcVOiGbRr6/C9URCNDom rm3fguqdFrgQ0CdEMgrBS2+F/McT9CckFcd+MpTJzAuWT+gM5AGGHJ4lElPMsV6f 8K441yM5dHfXL0da3OnWqSXlrw0VTIFIcPj7pusxfs8JCGv1QbmLTBYHYh9ZatNj 9SY9IIu9C3nY+C6NHRndFE4aGazJzTdas/ad8HLYA9jhvdEoXe01CSAbLThI4+cN 4KAYZkftkSQHkPn4eHdsF0q3Qu4uU1OWh5P0nxbPZBph0ouKBLaAR5Mz2WcUXbwf wXXYdDf2Ksx1Nkh4Go0aRL6YFV9EJkqEdxH5kcXxhwUEBzNZxz11ManKOYW4VDmR 4kXjUea/JHMIE2waERtXVU3sg+9gwmy5aiOpOddF+4Pf9vm7hZRwHjA75WcKpcq0 Uf2CZeuo9UY0vGnZMv8Ee/F0CRz3cYEuuuQQ45y+rZb9lmAAnYDo0P+dd2rIL8Nj wl3pDV3Xpd1szwIDAQABo4IDSjCCA0YwgYMGA1UdEQR8MHqCGWhwYWxtLWFwcC1w cmQuc3dpc3Njb20uY2iCD2FsbS5zd2lzc2NvbS5jaIIRaHBhbG0uc3dpc3Njb20u Y2iCE2l0c2FsbTEuc3dpc3Njb20uY2iCEWl0c3FjLnN3aXNzY29tLmNoghFzY2Fs bS5zd2lzc2NvbS5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMB0GA1UdDgQWBBRWM83O+xBQ4VnFeERDsq2Moo31ajAfBgNV HSMEGDAWgBSs0DrCwldVkWkRzHBqWTiKjKycPTCB/wYDVR0fBIH3MIH0MEegRaBD hkFodHRwOi8vY3JsLnN3aXNzc2lnbi5uZXQvQUNEMDNBQzJDMjU3NTU5MTY5MTFD QzcwNkE1OTM4OEE4Q0FDOUMzRDCBqKCBpaCBooaBn2xkYXA6Ly9kaXJlY3Rvcnku c3dpc3NzaWduLm5ldC9DTj1BQ0QwM0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4 QThDQUM5QzNEJTJDTz1Td2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRlUmV2b2Nh dGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2ludDBv BgNVHSAEaDBmMFAGCGCFdAFZAgECMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVw b3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjAIBgYE AI96AQcwCAYGZ4EMAQICMIHGBggrBgEFBQcBAQSBuTCBtjBkBggrBgEFBQcwAoZY aHR0cDovL3N3aXNzc2lnbi5uZXQvY2dpLWJpbi9hdXRob3JpdHkvZG93bmxvYWQv QUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMzRDBOBggrBgEF BQcwAYZCaHR0cDovL29jc3Auc3dpc3NzaWduLm5ldC9BQ0QwM0FDMkMyNTc1NTkx NjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0G CSqGSIb3DQEBCwUAA4ICAQB6RjE+b/Jok/348PC609ZQzt8ajt8tjjqmic+47We5 QWqLbRnvIWaXfZvd8w3F+BXUzAxjA/KIFFnJi9yRoMmtp8/FL6KeMz2QetlvRUPV 6bwS/CNUP3/F76X3nqmBiILEiLuAQVpsf9ErwdU+7KSzQqpzlUcFQbXeC2SBrahz A9ShqIxMnQD+MN4254k6z9emYuBAmz74iA/WDDSqP7100vKRfekM5t+DlToA/zwP furTvuL0MlDSpW1harP3hBJzarSAnczQeBwd5EbFVpIrAFtspZqWC/riCJR83BW9 /79j8JTsr+3VHe7jWiDE9Gp2fJdFNPWk0VLG3zhqE6hoD/1LuiVo8HqhR4vWqED4 3sMUOJXEZPHHhkKjSmU3kzgLHWIWYiHVhWSp9/ue03euP8+HBdbqOnAzCWcbnrSd fN6JFijzDgLqhPGH3Mlr13X6aDXjBD4KplR0VqzS3pQBZQ5pTGPVVUCfP95dDgMP lM7MTxKd47Fwn6/Wm9CsJ2pkJjMruSjdjLpdJK9eTozs2K+ZJ+crMnBnA02qg/A5 cYzyuRL3oLuiAQ937JR5QpoLK1JH0gWxiFYuFtp0TnmeX5IPrq1fFikB7XBniOUf W+QRwFJLbaKL+efM9PHbvPI5n7f/j+zuFuKyEMkqd6MATmVHo19p+dEdtNfC+SDR zw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwNLl6lRF4EqvoulgDITF F3IvSQ+PMhGO5vEPaLWjtyezE4A33x3Vi8zTPN1ttzViU6gvOSl+zqrAMo3w6Foo IY8ZWZRZRz5UZC6gV9spkS2rrt4AsDXYz5WtCC7EllzVLrBulWv8j8Xr5DNDKN1G mIrGnNVUmPFCyhpLpO4DsrKXAGY9i4c2bdowKeFpUgumu/YU7DtwVI3FTohm0a+v wvVEQjQ6Jq5t34LqnRa4ENAnRDIKwUtvhfzHE/QnJBXHfjKUycwLlk/oDOQBhhye JRJTzLFen/CuONcjOXR31y9HWtzp1qkl5a8NFUyBSHD4+6brMX7PCQhr9UG5i0wW B2IfWWrTY/UmPSCLvQt52PgujR0Z3RROGhmsyc03WrP2nfBy2APY4b3RKF3tNQkg Gy04SOPnDeCgGGZH7ZEkB5D5+Hh3bBdKt0LuLlNTloeT9J8Wz2QaYdKLigS2gEeT M9lnFF28H8F12HQ39irMdTZIeBqNGkS+mBVfRCZKhHcR+ZHF8YcFBAczWcc9dTGp yjmFuFQ5keJF41HmvyRzCBNsGhEbV1VN7IPvYMJsuWojqTnXRfuD3/b5u4WUcB4w O+VnCqXKtFH9gmXrqPVGNLxp2TL/BHvxdAkc93GBLrrkEOOcvq2W/ZZgAJ2A6ND/ nXdqyC/DY8Jd6Q1d16XdbM8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 156778263595674870215767570864619364901952785239 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-05 10:58:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-05 10:58:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Worblaufen' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Swisscom (Schweiz) AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hpalm-app-prd.swisscom.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 786652556413319305843857373049190271881343045126901424503237800501259485287552237008370591192217719651847825870739746034301373027410339444064269996470114107136911342501029055853426304525055917891480007380356926246290712915290004329519681067668350372007390249205818736634162093335169985751200394780501976415612843337069284174192609951636259751010674689303503728147111467708798018728328947336582215795534953326532925995983874438655917007808082093537258205439336186497947421659357331693691671050684454543295318067374956118775875431120331400691727748083711864608901756821438305458914604233240063921049767935655488772825043478023977574143769368627502797615538921140039528496168863548058966903465713609376834372832295063005320791904671972549912531004381087126394599429456974014704827678089300513768028144461005713216077381417583488891142219472312457565152288425537239226712837186298775273021652638485982992684100297210114297239434442391610260965648669057637797177584778856158554711384489726665975022196678729037013309345975379068049363405516960984025049557852913540870938053176487557444006508031366396818515436252894538709193536257133867836780557543751236848328162915770714798042969603719822486700267242380807950173610222126832022896602319 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hpalm-app-prd.swisscom.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alm.swisscom.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hpalm.swisscom.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itsalm1.swisscom.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'itsqc.swisscom.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scalm.swisscom.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5633cdcefb1050e159c5784443b2ad8ca28df56a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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