api-qa.sartorius.com
Issued by SwissSign RSA TLS DV ICA 2021 - 1
About this certificate
This digital certificate with serial number 5d:d2:61:f4:5d:18:5c:ed:1e:6a:e4:4c:d8:e5:0b:d2:3f:1e:2f:9e was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=api-qa.sartorius.com
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 5d:d2:61:f4:5d:18:5c:ed:1e:6a:e4:4c:d8:e5:0b:d2:3f:1e:2f:9eSerial Number (int): 535627831222686119567088527480249164720102059934
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: eb:72:2e:a0:2c:8f:c8:5b:08:a4:dd:f9:1a:df:98:4b:4b:09:8a:2c
AuthorityKeyId: 3c:9e:52:79:03:63:6f:4f:9c:81:1b:d3:28:70:0c:24:5a:ea:a5:87
Fingerprint (sha1): da:88:e9:09:8c:24:63:77:b5:a7:00:16:26:35:7e:45:5e:b7:4c:d2
Fingerprint (sha256): 05:25:13:a8:34:84:49:25:f0:e5:94:a3:f0:e2:ba:88:8a:b4:77:d6:cd:04:47:d9:f0:19:d3:53:e8:11:93:8b
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587
Revocation information
OCSP Server: http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587CRL Distribution Point: http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587
CRL Distribution Point: ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate api-qa.sartorius.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api-qa.sartorius.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api-qa.sartorius.com
Other certificates including the domain name sartorius.com
(limited to 100 certificates)
cert00068-azurecdn.akamaized.net
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
eshop.sartorius.com
api-qa.sartorius.com
*.scp.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
eshop-qa.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
ir-berichte.sartorius.de
btconfigurator-dev2.sartorius.com
su-adp-presentation.sartorius.com
*.portal.sartorius.com
cert00068-azurecdn.akamaized.net
jira.sartorius.com
am.vpn.sartorius.com
cert00068-azurecdn.akamaized.net
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
www.sartorius.com
sfpi-test.sartorius.com
go.sartorius.com
bioprocess-sandbox.sartorius.com
configurator-presentation.sartorius.com
serviceshop.sartorius.de
login.sartorius.com
click.sartorius.com
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
eshop.sartorius.com
api-qa.sartorius.com
*.scp.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
eshop-qa.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
ir-berichte.sartorius.de
btconfigurator-dev2.sartorius.com
su-adp-presentation.sartorius.com
*.portal.sartorius.com
cert00068-azurecdn.akamaized.net
jira.sartorius.com
am.vpn.sartorius.com
cert00068-azurecdn.akamaized.net
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
www.sartorius.com
sfpi-test.sartorius.com
go.sartorius.com
bioprocess-sandbox.sartorius.com
configurator-presentation.sartorius.com
serviceshop.sartorius.de
login.sartorius.com
click.sartorius.com
Certificate
The complete raw certificate details for api-qa.sartorius.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG5DCCBMygAwIBAgIUXdJh9F0YXO0eauRM2OUL0j8eL54wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjEgLSAxMB4XDTIyMDcyNjA2 MTIyNloXDTIzMDcyNjA2MTIyNlowHzEdMBsGA1UEAxMUYXBpLXFhLnNhcnRvcml1 cy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoK6mG6dBtIUEq GVLRpiaa1KFy3xFX0gvb0p7xSJNrpZ+hJ6f1PeFnN/737CfJe7ryQNbSVIs78jIP n/w+/G9ufBascKSJrDsc6raQVZJ91xsWowFMUW7yWsnoKZnxrTJYV+Fx+xoyQdlu MJwIhiUKc/RhBPOGIVDWXqt1DpHYjB3Bm3J6E1/ta9lSfjqkO9iVITOYSLgXc76E fHD8N5Bsyi8WwPonS5RBAD70+cSy2lgEmiLPlRbDzY6+d3sGR8Nw/cH9dmYkqGbi fakyTvrV5NlZAzMcsUhYM0QrJo65j7+41f4f95IwInDQDxuMADmDB1LcOZSI4k59 8BA5iLRJAgMBAAGjggLlMIIC4TAfBgNVHREEGDAWghRhcGktcWEuc2FydG9yaXVz LmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMB0GA1UdDgQWBBTrci6gLI/IWwik3fka35hLSwmKLDAfBgNVHSMEGDAWgBQ8 nlJ5A2NvT5yBG9MocAwkWuqlhzCB/wYDVR0fBIH3MIH0MEegRaBDhkFodHRwOi8v Y3JsLnN3aXNzc2lnbi5uZXQvM0M5RTUyNzkwMzYzNkY0RjlDODExQkQzMjg3MDBD MjQ1QUVBQTU4NzCBqKCBpaCBooaBn2xkYXA6Ly9kaXJlY3Rvcnkuc3dpc3NzaWdu Lm5ldC9DTj0zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3 JTJDTz1Td2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/ YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2ludDBvBgNVHSAEaDBm MFAGCGCFdAFZAgEBMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5z d2lzc3NpZ24uY29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjAIBgYEAI96AQYwCAYG Z4EMAQIBMIHGBggrBgEFBQcBAQSBuTCBtjBkBggrBgEFBQcwAoZYaHR0cDovL3N3 aXNzc2lnbi5uZXQvY2dpLWJpbi9hdXRob3JpdHkvZG93bmxvYWQvM0M5RTUyNzkw MzYzNkY0RjlDODExQkQzMjg3MDBDMjQ1QUVBQTU4NzBOBggrBgEFBQcwAYZCaHR0 cDovL29jc3Auc3dpc3NzaWduLm5ldC8zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMy ODcwMEMyNDVBRUFBNTg3MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4ICAQBI7A370ob1HZD+TBWizAlEmv/3cXFy9Ep5qNV0+g+neqK3PpZy2XQB zVUq9GjKubHXnX21w82z5uKZgzc3XdKYfpEA4r7spxumlzXLovUtmZikvCRLJrkS NRsjCiXhuine/fnQXUANojO/fZ60mr5nGG7OVQ1IsynklTmRlYtoKEJSRG7r8x9z 1mD3OaCwLsGP9wG44yRPWtl25ZWWVf2P4iBVDk/iU2ESqxR/z5u9RLPEC9dqyudU KFjoJ3sGGf48xRNW3oULr44UM6xiVEsJop2QpYa8FeAwEpZeVGtlcPEY8MYeaWAP o7XRhCfDrz66vZsHVB6CwDrhG9g2Gg9zK+MX/U1uOopRVsTR16/SH6EKe8KaWov8 8vMA80lmB+MrjOn6f+xFh1jSkGBwrohGGg7fSz+ke8Vz9nHaCLovtJLSE2PcG4J0 WRMbZqZpB6grRhQWMrS7GV/zCWQl7Ku8H2GV6Y5uX/DN67AYA2nygU9LUIve0KQe V+UOwk8ImNjZ8Kqh1LDK2m+e8n18F6W/S6ytr2nRvupBXIje/aexkubf4r6SCasH 283tn+M9R3v5Pp4qA8iDdBWQiuQpk0ggyBnoKL3J9iABhZBG4g4Jf8DeBEJti6W9 HYTuQSaHRFZhXDO6dKiCn33E9qFBkZzAMXwVh+EI7YNUCzAwP6RNBQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6CuphunQbSFBKhlS0aYm mtShct8RV9IL29Ke8UiTa6WfoSen9T3hZzf+9+wnyXu68kDW0lSLO/IyD5/8Pvxv bnwWrHCkiaw7HOq2kFWSfdcbFqMBTFFu8lrJ6CmZ8a0yWFfhcfsaMkHZbjCcCIYl CnP0YQTzhiFQ1l6rdQ6R2IwdwZtyehNf7WvZUn46pDvYlSEzmEi4F3O+hHxw/DeQ bMovFsD6J0uUQQA+9PnEstpYBJoiz5UWw82Ovnd7BkfDcP3B/XZmJKhm4n2pMk76 1eTZWQMzHLFIWDNEKyaOuY+/uNX+H/eSMCJw0A8bjAA5gwdS3DmUiOJOffAQOYi0 SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 535627831222686119567088527480249164720102059934 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-26 06:12:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-26 06:12:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-qa.sartorius.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29308817392733074851511187884561330692048763675361814051525149243645438813787208538673128748388767685370191536495408794504661343480011595443094219355907246296319212701497397757953828095332781025343461430753831259152338539310911298993247445111712976438876799522584955157885757978214685427409507307401490411965174922130813372864327962838957889927504930735821364142897651189011342857853346133743964458946802362025589069019452085523138344000188168205402380305984238365808128242529569736901185836548089308038635565342945392788706197808141704591729458715272415028148775895242183263416525653637763839493267701805204757853257 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-qa.sartorius.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eb722ea02c8fc85b08a4ddf91adf984b4b098a2c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3c9e527903636f4f9c811bd328700c245aeaa587 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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