*.gmaare.migros.ch
- Genossenschaft Migros Aare -
Issued by DigiCert SHA2 Secure Server CA
About this certificate
This digital certificate with serial number 0a:dc:1d:42:a6:3b:1a:64:5c:27:26:09:1e:9e:da:b7 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Genossenschaft Migros Aare
Organization:
Genossenschaft Migros Aare
Organization unit: IT
Organization unit: IT
Locality:
Schönbühl
Country: CH
Country: CH
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0a:dc:1d:42:a6:3b:1a:64:5c:27:26:09:1e:9e:da:b7Serial Number (int): 14435178737110015533747179946963294903
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b5:04:3f:19:ad:c3:bf:04:06:7b:70:3b:2c:ff:c2:9e:80:92:49:4c
AuthorityKeyId: 0f:80:61:1c:82:31:61:d5:2f:28:e7:8d:46:38:b4:2c:e1:c6:d9:e2
Fingerprint (sha1): c8:ee:07:4d:f0:f7:28:a2:22:fc:38:6d:0f:1e:da:c8:62:95:2a:09
Fingerprint (sha256): 05:0d:39:73:00:29:45:09:74:66:5b:62:ce:f3:0f:10:7f:82:6a:ee:67:3d:64:8d:a8:54:b4:78:4b:e0:2e:e2
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/ssca-sha2-g6.crl
CRL Distribution Point: http://crl4.digicert.com/ssca-sha2-g6.crl
Check the revocation status for certificate *.gmaare.migros.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.gmaare.migros.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.gmaare.migros.ch
gmaare.migros.ch
gmaare.migros.ch
Other certificates including the domain name migros.ch
(limited to 100 certificates)
secure03.stage.lithium.com
commentmatch.m-budget.migros.ch
secure06.lithium.com
mitarbeiteranlass.events.migros.ch
rsc.migros.ch
staging.prod.pema-coupons.mdb.migros.net
test-basel.migros.ch
secure06.lithium.com
photoset.widgets.migros.ch
secure03.stage.lithium.com
migusto.migros.ch
aus-der-region.migros.ch
test-mgo-api.migros.ch
secure03.stage.lithium.com
gmaare.elearning.migros.ch
meineidee-ext-s.gmsap.migros.ch
famigros.migros.ch
perimeter-dmz1-meineip.migros.ch
api.migros.ch
cadismobile.migros.ch
test-hybrid-app.migros.ch
pos-coupons-api.migros.ch
storybox.migros.ch
dev-basel.migros.ch
support.migros.ch
test-web-api.migros.ch
inveco-s.gmsap.migros.ch
konsumententagung.migros.ch
test-mom.migros.ch
portal.migroszh.ch
login.migros.ch
m-learning.migros.ch
secure03.stage.lithium.com
ca.status.clio.com
e3mobilege-test.gmge.migros.ch
photoset.widgets.migros.ch
staging.qual.mam.mdb.migros.net
admin.operations.migros.ch
mymigros.ch
m-learning-t.migros.ch
yellowworldtest.migros.ch
test-mobile-app-api.migros.ch
corporate.migros.ch
recipeapi-t.gmsap.migros.ch
mcrm.migros.ch
test-socialmedia.migros.ch
meineidee.gmsap.migros.ch
connect.gmz.migros.ch
mcds.migros.net
ucb10testews.migros.ch
live.qual.kms-portal.mdb.aws.migros.ch
dev-migipedia-backend.migros.ch
bb2status.mambu.com
storybox.migros.ch
test-help.migros.ch
*.gmaare.migros.ch
quiz-adr.migros.ch
secure06.lithium.com
tiptoimania.migros.ch
secure.clubs.migros.ch
terrasuisse.migros.ch
retitest-ews.migros.ch
ins-staging.migros.ch
jobs.migros.ch
test-winwin-vonuns-vonhier.migros.ch
mein.m-budget.migros.ch
sni.cloudflaressl.com
thehost.widgets.migros.ch
allowlist.sterda.com
report-download.migros.ch
proxy-mdb.migros.ch
test-corporate.migros.ch
ca.status.clio.com
test-auth.magnolia.migros.ch
meineidee-ext-t.gmsap.migros.ch
lyncaccess.datacenter-migros.ch
dev-vaud.migros.ch
dev-cdn.migros.ch
api.migros.ch
admin.logistikplattform.migros.ch
live.prod.image-upload.mdb.aws.migros.ch
image-upload.mdb.migros.net
secure03.stage.lithium.com
cert-test.migros.ch
rc-mobile-app.migros.ch
mylogin.migros.ch
test-hybrid-app.migros.ch
p99.migros.ch
proxy-mdb.migros.ch
auth.migros.ch
ca.status.clio.com
wartung.migros.ch
staging.prod.pema-coupons.mdb.aws.migros.ch
natro.gmaare.migros.ch
impuls.migros.ch
allowlist.sterda.com
recipeapi-s.gmsap.migros.ch
m-payment.pos.migros.ch
fragments.migros.ch
ostern.migros.ch
commentmatch.m-budget.migros.ch
secure06.lithium.com
mitarbeiteranlass.events.migros.ch
rsc.migros.ch
staging.prod.pema-coupons.mdb.migros.net
test-basel.migros.ch
secure06.lithium.com
photoset.widgets.migros.ch
secure03.stage.lithium.com
migusto.migros.ch
aus-der-region.migros.ch
test-mgo-api.migros.ch
secure03.stage.lithium.com
gmaare.elearning.migros.ch
meineidee-ext-s.gmsap.migros.ch
famigros.migros.ch
perimeter-dmz1-meineip.migros.ch
api.migros.ch
cadismobile.migros.ch
test-hybrid-app.migros.ch
pos-coupons-api.migros.ch
storybox.migros.ch
dev-basel.migros.ch
support.migros.ch
test-web-api.migros.ch
inveco-s.gmsap.migros.ch
konsumententagung.migros.ch
test-mom.migros.ch
portal.migroszh.ch
login.migros.ch
m-learning.migros.ch
secure03.stage.lithium.com
ca.status.clio.com
e3mobilege-test.gmge.migros.ch
photoset.widgets.migros.ch
staging.qual.mam.mdb.migros.net
admin.operations.migros.ch
mymigros.ch
m-learning-t.migros.ch
yellowworldtest.migros.ch
test-mobile-app-api.migros.ch
corporate.migros.ch
recipeapi-t.gmsap.migros.ch
mcrm.migros.ch
test-socialmedia.migros.ch
meineidee.gmsap.migros.ch
connect.gmz.migros.ch
mcds.migros.net
ucb10testews.migros.ch
live.qual.kms-portal.mdb.aws.migros.ch
dev-migipedia-backend.migros.ch
bb2status.mambu.com
storybox.migros.ch
test-help.migros.ch
*.gmaare.migros.ch
quiz-adr.migros.ch
secure06.lithium.com
tiptoimania.migros.ch
secure.clubs.migros.ch
terrasuisse.migros.ch
retitest-ews.migros.ch
ins-staging.migros.ch
jobs.migros.ch
test-winwin-vonuns-vonhier.migros.ch
mein.m-budget.migros.ch
sni.cloudflaressl.com
thehost.widgets.migros.ch
allowlist.sterda.com
report-download.migros.ch
proxy-mdb.migros.ch
test-corporate.migros.ch
ca.status.clio.com
test-auth.magnolia.migros.ch
meineidee-ext-t.gmsap.migros.ch
lyncaccess.datacenter-migros.ch
dev-vaud.migros.ch
dev-cdn.migros.ch
api.migros.ch
admin.logistikplattform.migros.ch
live.prod.image-upload.mdb.aws.migros.ch
image-upload.mdb.migros.net
secure03.stage.lithium.com
cert-test.migros.ch
rc-mobile-app.migros.ch
mylogin.migros.ch
test-hybrid-app.migros.ch
p99.migros.ch
proxy-mdb.migros.ch
auth.migros.ch
ca.status.clio.com
wartung.migros.ch
staging.prod.pema-coupons.mdb.aws.migros.ch
natro.gmaare.migros.ch
impuls.migros.ch
allowlist.sterda.com
recipeapi-s.gmsap.migros.ch
m-payment.pos.migros.ch
fragments.migros.ch
ostern.migros.ch
Certificate
The complete raw certificate details for *.gmaare.migros.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHuTCCBqGgAwIBAgIQCtwdQqY7GmRcJyYJHp7atzANBgkqhkiG9w0BAQsFADBN MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMScwJQYDVQQDEx5E aWdpQ2VydCBTSEEyIFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTkwMTE0MDAwMDAwWhcN MjEwMzEwMTIwMDAwWjByMQswCQYDVQQGEwJDSDEUMBIGA1UEBwwLU2Now7ZuYsO8 aGwxIzAhBgNVBAoTGkdlbm9zc2Vuc2NoYWZ0IE1pZ3JvcyBBYXJlMQswCQYDVQQL EwJJVDEbMBkGA1UEAwwSKi5nbWFhcmUubWlncm9zLmNoMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAjQbzOuYEgkER3PmY5PG0KdBwTrRgs4KVodh1yEJU WbKNM/JLAnHFVJt0fi4ZY8RKUEKLeXpucpCsWmnjPWKJTbe3FWwHMAsiuWttqEXX pF2yCI5q6qu4UH0tcEocNsKahEvKKYxp0zvDcA2uChjgE5MJnZHUpji3rBlAguLE Hxd7yk3Z0vAGPpPQ6IVog3BIJA9vI4Zufs0cJY0tD77ZfblDNPd1R5AyyJcFHWGo Ae2eUWysF2sCOAFJGb+yko/YF+fhaj4rAPWqbX255iL91SerTibHgnL/iWG5I1Se qs9JwV3YmOck4qo/kRiQTTHqe0Ggx135U20f1eRaTNmnItBpy3s/0wNxzPFMOgfK XK/bG5ijKZwHYhCwocvOLUmpda2CBshPEXrETmb9dOXN7mjMmN2Vop/1IQU4zXyQ DYNgEl3jeHnE4vJgv6NM5x147vvzyfEi79Jnjqsm7uLqduHyT/G8TeoTDo3MMgCu 4XJiuPBGDhBNWjJGrEnYDMSowD3O1YoVu3zjcDRKA7U+KKs3WFNYYo6Ol8P+x6wI +xgBWBvKUbOyI1adnZd6smwkLUPfPe6NO8tGhmgxSGxWOWCm45gytEgiJmLNXLm8 Sn58qSVS+5c2WoK+gM+GVw5dfXrMVW/Z8nyOtRjse+gTvgocpUNfqFBGudizq8Zp vRkCAwEAAaOCA24wggNqMB8GA1UdIwQYMBaAFA+AYRyCMWHVLyjnjUY4tCzhxtni MB0GA1UdDgQWBBS1BD8ZrcO/BAZ7cDss/8KegJJJTDAvBgNVHREEKDAmghIqLmdt YWFyZS5taWdyb3MuY2iCEGdtYWFyZS5taWdyb3MuY2gwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBrBgNVHR8EZDBiMC+gLaAr hilodHRwOi8vY3JsMy5kaWdpY2VydC5jb20vc3NjYS1zaGEyLWc2LmNybDAvoC2g K4YpaHR0cDovL2NybDQuZGlnaWNlcnQuY29tL3NzY2Etc2hhMi1nNi5jcmwwTAYD VR0gBEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cu ZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgIwfAYIKwYBBQUHAQEEcDBuMCQGCCsG AQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRgYIKwYBBQUHMAKGOmh0 dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydFNIQTJTZWN1cmVTZXJ2 ZXJDQS5jcnQwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFp AHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFoTHceHwAABAMA RzBFAiEAmOcUPdvN8PX2+lowKQ4iCxoIqu58xzWHy0M3CBQyD7oCIC0P1ZT4kYtI vhEpI69PvVg+I3EE4mzukaO3qz9PdRzSAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/ SrVgwbTq/16ggw8AAAFoTHce6QAABAMARzBFAiAeKE7cr+cozmJF5+H6I2SE1QCk OBH78VAvFDYhWFveCAIhAKOBWX04ElULzfIgYYLVLAzbJo5bQeoXJkR34u1poGdb AHcAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFoTHcf6gAABAMA SDBGAiEAogFPs5PDkYv/+bOyy25UFlzDxIdb3CmSFKXQkZqxhLcCIQDQAuZYdt6A zdKf0N0lto8DUvEb9QLt8Car281E6kfHNzANBgkqhkiG9w0BAQsFAAOCAQEAvvXT kxxBuPIdCCOdUZKJWNalaU6kiuFZkiR7c42AqTnvrNb54LGUZmaqwqCHw6/x+VhL F2h9B+OlEyNOmADAWmi09MIga9i3l3oQP0H1hhn4GgCVAtXTnlUC4oAiL5BEPItR luHqtllaM2VlNhqjzDOH1mQLU+I2OpPZ3GaieCBz9/bOg4c5w4Qy3d84vGoZjydH 3s14/Fd/cqAGF6QKAekfZSQuOg+RnOEIfR0qoPF2RRYLgfNRS1yDgfLoptry2UBE 7hY0L44Dx9U1qmPDDiUzcinAvg8tLRzCmeFxkFK6ZX13A+sd7DoOGXBXjwWwgJKg 7IcxtCYo0RrScZlarw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAjQbzOuYEgkER3PmY5PG0 KdBwTrRgs4KVodh1yEJUWbKNM/JLAnHFVJt0fi4ZY8RKUEKLeXpucpCsWmnjPWKJ Tbe3FWwHMAsiuWttqEXXpF2yCI5q6qu4UH0tcEocNsKahEvKKYxp0zvDcA2uChjg E5MJnZHUpji3rBlAguLEHxd7yk3Z0vAGPpPQ6IVog3BIJA9vI4Zufs0cJY0tD77Z fblDNPd1R5AyyJcFHWGoAe2eUWysF2sCOAFJGb+yko/YF+fhaj4rAPWqbX255iL9 1SerTibHgnL/iWG5I1Seqs9JwV3YmOck4qo/kRiQTTHqe0Ggx135U20f1eRaTNmn ItBpy3s/0wNxzPFMOgfKXK/bG5ijKZwHYhCwocvOLUmpda2CBshPEXrETmb9dOXN 7mjMmN2Vop/1IQU4zXyQDYNgEl3jeHnE4vJgv6NM5x147vvzyfEi79Jnjqsm7uLq duHyT/G8TeoTDo3MMgCu4XJiuPBGDhBNWjJGrEnYDMSowD3O1YoVu3zjcDRKA7U+ KKs3WFNYYo6Ol8P+x6wI+xgBWBvKUbOyI1adnZd6smwkLUPfPe6NO8tGhmgxSGxW OWCm45gytEgiJmLNXLm8Sn58qSVS+5c2WoK+gM+GVw5dfXrMVW/Z8nyOtRjse+gT vgocpUNfqFBGudizq8ZpvRkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14435178737110015533747179946963294903 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-10 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Schönbühl' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Genossenschaft Migros Aare' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.gmaare.migros.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 575340571424853740547930035624313973509757785550775664639258370555161456948829989297984658375307521449551869492670908031809182210732398499423678014022768229105447231308488344374047957976161151675858682722504049774068711272356073779006818328644439208755674432660036193263123390618487617131526688775103997309326842676835052833210109124407106280045988961547432110922372475619557657193039763696839063914546228336162658291825491261789401590104110518174266179747553940633439877550252995584777487893724913364222655263313460354639171056688885968337972259747250442487606753581865601478644013237852508483993984530826183641065753222923391710026913146673648944119638183975793094907027473193374762101979885101605561886626417683192701256184664618232666121105071274200423309179088746683725241979291788240824165496180403163956732795719432496141936144849826809045655381976655987030288829101694668525573080022449748262674373635615192384762481047673613058816932308943867050803198582847545683120408658561942732891140760954910285121991528327375390026138531596545619936883816936776732885348546484116389206128618513274045770347144056658220105077745007957553612304622597557832198285434482468983879712436127102418545918989967139709236536157928120503822302489 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0f80611c823161d52f28e78d4638b42ce1c6d9e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b5043f19adc3bf04067b703b2cffc29e8092494c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gmaare.migros.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gmaare.migros.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/ssca-sha2-g6.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.1 (digiCertOVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2SecureServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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