open-access.sartorius.com
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 35:c1:0f:d1:c6:92:b6:96:19:a7:92:c3:fc:a3:13:3f:ab:c7:03:8e was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=open-access.sartorius.com
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 35:c1:0f:d1:c6:92:b6:96:19:a7:92:c3:fc:a3:13:3f:ab:c7:03:8eSerial Number (int): 306881932744232489727982960704321920158992368526
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 75:aa:72:32:98:cc:86:a4:1e:dd:84:63:5f:81:1d:fb:8f:7c:fe:48
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): fe:88:49:a8:49:05:4a:51:c4:6d:00:70:b9:78:8e:80:2a:93:49:57
Fingerprint (sha256): 06:a2:f6:d7:57:44:ba:e0:d3:91:8f:f1:3c:12:c9:49:a5:08:f5:7c:4d:8c:dd:8a:40:01:88:39:93:a6:62:90
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate open-access.sartorius.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for open-access.sartorius.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
open-access.sartorius.com
Other certificates including the domain name sartorius.com
(limited to 100 certificates)
cert00068-azurecdn.akamaized.net
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
btconfigurator-dev.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
dam-qa.sartorius.com
api-internal.sartorius.com
eshop.sartorius.com
api-qa.sartorius.com
owa.sartorius.com
de05bwinterfacetest.sartorius.com
*.scp.sartorius.com
open-access.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
dam-test.sartorius.com
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
developerqa.sartorius.com
remote-access-dev.sartorius.com
eshop-qa.sartorius.com
sip-mobile.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
sce-experlogix.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
brm.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
gonsap68.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
config-data-downloads.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
dex.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
open-access.sartorius.com
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
delivery.wcms.qa.sartorius.com
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
developer.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
btconfigurator-dev.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
dam-qa.sartorius.com
api-internal.sartorius.com
eshop.sartorius.com
api-qa.sartorius.com
owa.sartorius.com
de05bwinterfacetest.sartorius.com
*.scp.sartorius.com
open-access.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
dam-test.sartorius.com
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
developerqa.sartorius.com
remote-access-dev.sartorius.com
eshop-qa.sartorius.com
sip-mobile.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
sce-experlogix.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
brm.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
gonsap68.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
config-data-downloads.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
dex.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
open-access.sartorius.com
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
delivery.wcms.qa.sartorius.com
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
developer.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
Certificate
The complete raw certificate details for open-access.sartorius.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIhzCCBm+gAwIBAgIUNcEP0caStpYZp5LD/KMTP6vHA44wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTIzMDgwNzA4 MzgxMloXDTI0MDgwNzA4MzgxMlowJDEiMCAGA1UEAxMZb3Blbi1hY2Nlc3Muc2Fy dG9yaXVzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOA8HyaC 7aQY4dyYzpwhdiJTJ0aIR5WTVuhejVfGcb3TEV5nUqE6JiyHytn1nJjb3PseFDET usW2RWx1zoDGZKNVg9IfzOrZ4E8AYySuV+9HCwjNqxrsxvVqLn8kw0Kd8UItEvkC L0TYsdRvlqPp219XjqNLKJK68OAUQ+j4Ie/horHRLCM0GDkQrXcSWr/YXLVWrcjm 4122JOLrAp9z3kxmRyeW3YzY53paq/epUYCdb/O9+nN5ssIb+GPJBWSKB8RhKdu3 vcX2xLoWkUNAwpxVYCsibj7GyRy4ukf5Qzf3sb6nc3Pq2sCftbBFEefWL3/h08JG zD9drVSWKwsA4msCAwEAAaOCBIMwggR/MIGyBggrBgEFBQcBAQSBpTCBojBMBggr BgEFBQcwAoZAaHR0cDovL2FpYS5zd2lzc3NpZ24uY2gvYWlyLTFiODYzMzg1LWY0 YTktNDdmYS04OGE1LTJhNWFiZmQ0YTE2NzBSBggrBgEFBQcwAYZGaHR0cDovL29j c3Auc3dpc3NzaWduLmNoL3NpZ24vb2NzLWFhY2NjZWQ1LTY2ZTgtNDA2OS05YjFi LWZkMjlhYjczZWZlYzBvBgNVHSAEaDBmMAgGBmeBDAECATAIBgYEAI96AQYwUAYI YIV0AVkCAQEwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNz c2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMFEGA1UdHwRKMEgwRqBEoEKG QGh0dHA6Ly9jcmwuc3dpc3NzaWduLmNoL2NkcC02Nzk3MjNiMi04NjQxLTQ2NDIt ODUwMC1mNmQyZmYzN2U2YmEwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MA4GA1UdDwEB/wQEAwIFoDAkBgNVHREEHTAbghlvcGVuLWFjY2Vzcy5zYXJ0b3Jp dXMuY29tMB0GA1UdDgQWBBR1qnIymMyGpB7dhGNfgR37j3z+SDAfBgNVHSMEGDAW gBTrvX9Jk4zJ7uyiuvcc0mfwg7Hq3jCCAm0GCisGAQQB1nkCBAIEggJdBIICWQJX AHcAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAGJzyWU6QAABAMA SDBGAiEA0YfB/N9rsxrZSh+dcFfMUr10BFwdF+IX1nFvdHbYMWQCIQCTi3CPm+w+ 4HCB4osRkb3dPv4i6vA5Ev0rzZFpVRw5KgB1ANq2v2s/tbYin5vCu1xr6HCRcWy7 UYSFNL2kPTBI1/urAAABic8ll8oAAAQDAEYwRAIgHhYUAeFFmf5XyJNfg9+2ztsx 0kfyWJVlAm9CZt84moICIBqxxctd23DQQKlU8J/YCWy6v5Cjm/oaAdeHslYIuyfP AHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGJzyWYrgAABAMA RjBEAiARP3NdTqn5njPjYARZ4O2wIAEsdLHeCt9QVUitn6ZMjQIgb//AsgYRc3AK C4+vCzdM0cKMG33F6bjjSnORFBXHGZQAdgDuzdBk1dsazsVct520zROiModGfLzs 3sNRSFlGcR+1mwAAAYnPJZt/AAAEAwBHMEUCIF7ptEofh4D6Lvj5NpMF/fLuaset YTgZotikeWYy4kTIAiEA9V6CwHMZWneU+h9jALRIt+ygc4V6IUZkSci37xFa/H8A dgCHT7UNwCnZkx3lc+nyiZ6ORTOzktOLCkYldL8P7rL8HgAAAYnPJaDbAAAEAwBH MEUCIHQYihkikZ0TXbQTE76X9Th/SFf1nVWEvxoAMfOHh+3MAiEA58fBQIQT4AnP 16xmxGnf1qhr5U8MIYkVB0GSXQs1g7MwDQYJKoZIhvcNAQELBQADggIBAIaUrc0w 5YapDokrVpUPhRKM/Tblt7u3sSjBf6TykKl1iQ8xJuL2wSakgqECV+3TDEX2eKCb cP3CTW25OQUFeJL+M2Lxiq65YhRCCPL1vy56Ag+5iAi8SBORqdKox7RyHUKlYuWB 2UWT5CDMMPcNzuFCE096koF6RDsOrvRJbad6b56e4FL+I8NV8Z5ZWlEW+pqTvwjg XlHH8FtwbtLjxILlyGtp6+X4+zzaVorrIFnXxXdvpkO9kLXE4GxoGX0vsx8/AuDM vWaO3/EuESWWDiCGdnpPfGJeUI25m/FisgUZZR0ROyqpvhT0PXX9vEuAf0MloHxa b+zrso8c9FTJaxYAx41cnyI6QFIB+yQHVy9uIOd4MRuKoP+5XmWdeLHArkKzP8w8 3ayO77PXcJOZpdQKaakx+6Cq6sa1rnzZw3GkU2/3w6cFnc4f4g6UKsXxBsMrBxoK JckdPqzHkPpWU0s8hSw9M+qgu+VHsYtEvegmpml0/pEmLNgrkzv5kcgRcVzaK8eW 1Lb82NL5y/PH69zp6rVDWbA1NW3KgcvaqgVaQajzyrJUyKfKajG+La3aOw6WkMd3 VCtj5GkZJ7oDaMiKzzdXK77mprOo81LlUTN48h7Uo+MoAu1K5Lhc4WDSSpa3lWH9 xCCLHoyDePsv+68d6SQR09LManhSpa8hIjh9 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4DwfJoLtpBjh3JjOnCF2 IlMnRohHlZNW6F6NV8ZxvdMRXmdSoTomLIfK2fWcmNvc+x4UMRO6xbZFbHXOgMZk o1WD0h/M6tngTwBjJK5X70cLCM2rGuzG9WoufyTDQp3xQi0S+QIvRNix1G+Wo+nb X1eOo0sokrrw4BRD6Pgh7+GisdEsIzQYORCtdxJav9hctVatyObjXbYk4usCn3Pe TGZHJ5bdjNjnelqr96lRgJ1v8736c3mywhv4Y8kFZIoHxGEp27e9xfbEuhaRQ0DC nFVgKyJuPsbJHLi6R/lDN/exvqdzc+rawJ+1sEUR59Yvf+HTwkbMP12tVJYrCwDi awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306881932744232489727982960704321920158992368526 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-07 08:38:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-07 08:38:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'open-access.sartorius.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28307027418452288581336908821019713428726899966852126189097942486085127190712451114804945526561861663246788691371746644789482100668206953368470923740706702617910481261877668818518853638845904861901675742588758872270797402229255915294685767429480606547185686583603418312777341208872516733309944862132554855059742703612298656395195293987800012269663243890134429182785991312125307740619052837668187167485042496641570033735615825930910782865776199263840263423163719038770807811620597294637046536714893567808252494257704920339859960224604109952296159757235615749305850317168906996904935212290114349553558558974110691549803 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'open-access.sartorius.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75aa723298cc86a41edd84635f811dfb8f7cfe48 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (605 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (601 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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