versicherungen.postfinance.ch
- PostFinance AG -
Issued by SwissSign EV Gold CA 2014 - G22
About this certificate
This digital certificate with serial number 48:1c:df:53:b9:a0:c5:03:79:5b:6d:98:f0:89:71:32:8a:bf:5f:72 was issued on by SwissSign AG.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PostFinance AG
Company registration number:
CHE-114.583.749
Organization: PostFinance AG
Organization unit: PostFinance AG
Organization: PostFinance AG
Organization unit: PostFinance AG
State / Province:
Bern
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 48:1c:df:53:b9:a0:c5:03:79:5b:6d:98:f0:89:71:32:8a:bf:5f:72Serial Number (int): 411691210894816482793153655729557876643068862322
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 85:c2:06:ef:c9:74:b3:f3:7b:d4:8a:8f:ad:6e:37:76:85:c6:64:fb
AuthorityKeyId: ee:fd:46:ca:f7:27:5e:91:bc:5a:b6:e7:87:cd:0a:fa:55:0a:26:42
Fingerprint (sha1): 9a:99:6e:55:9c:ac:4d:24:7f:f5:82:2a:56:41:12:9f:f1:c0:56:1a
Fingerprint (sha256): 08:4a:9b:94:f9:45:0c:e6:e5:c7:3a:0e:4e:93:ca:43:d9:33:86:d8:34:65:f6:52:98:f0:0d:a4:09:df:b2:a2
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642
Revocation information
OCSP Server: http://gold-ev-g2.ocsp.swisssign.net/EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642CRL Distribution Point: http://crl.swisssign.net/EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642
CRL Distribution Point: ldap://directory.swisssign.net/CN=EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate versicherungen.postfinance.ch
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for versicherungen.postfinance.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
versicherungen.postfinance.ch
service.versicherungen.postfinance.ch
assurances.postfinance.ch
service.assurances.postfinance.ch
assicurazioni.postfinance.ch
servizi.assicurazioni.postfinance.ch
insurance.postfinance.ch
service.insurance.postfinance.ch
backoffice.insurance.postfinance.ch
versicherungen-tracker.postfinance.ch
service.versicherungen.postfinance.ch
assurances.postfinance.ch
service.assurances.postfinance.ch
assicurazioni.postfinance.ch
servizi.assicurazioni.postfinance.ch
insurance.postfinance.ch
service.insurance.postfinance.ch
backoffice.insurance.postfinance.ch
versicherungen-tracker.postfinance.ch
Other certificates including the domain name postfinance.ch
(limited to 100 certificates)
www.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
Certificate
The complete raw certificate details for versicherungen.postfinance.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKWTCCCUGgAwIBAgIUSBzfU7mgxQN5W22Y8IlxMoq/X3IwDQYJKoZIhvcNAQEL BQAwTjELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEoMCYGA1UE AxMfU3dpc3NTaWduIEVWIEdvbGQgQ0EgMjAxNCAtIEcyMjAeFw0yMDA0MDcxMTAx MDJaFw0yMjA0MDcxMTAxMDJaMIHqMRMwEQYLKwYBBAGCNzwCAQMTAkNIMRUwEwYL KwYBBAGCNzwCAQITBEJlcm4xGDAWBgNVBAUTD0NIRS0xMTQuNTgzLjc0OTEdMBsG A1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xCzAJBgNVBAYTAkNIMQ0wCwYDVQQI EwRCZXJuMQ0wCwYDVQQHEwRCZXJuMRcwFQYDVQQKEw5Qb3N0RmluYW5jZSBBRzEX MBUGA1UECxMOUG9zdEZpbmFuY2UgQUcxJjAkBgNVBAMTHXZlcnNpY2hlcnVuZ2Vu LnBvc3RmaW5hbmNlLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA wpcE5WKFQSP/pFFDPMEh7KPza2ALGOWD52kFLUh4uEAwYPVP+LlBOH6kStkghTS4 LnnJ5pm8qwrzoB5druiptHrDWY3dT/+CZC6rM1eZQ/CYwuq65DWZaUvTmjFow/W6 ljFq3IiI9J8Xd5Ee5c5bbpUacGzJ3MbJ4+ro22UxClnPIhoPQyIxWcg9mCaWplsz MET73PReDssqpK7qwltFbvBretO4oXh4zHqOh1/sfkISZW8WF2fFxWb329FxP31W i0bUOrPGzKaimcNwxmoJU5P8YnT4PggvbR6g9NBhZkgvFIYWU1AgkeahgK2hlO5u GiaO4wH1KwfDXFnP0YyiTQIDAQABo4IGkDCCBowwggFdBgNVHREEggFUMIIBUIId dmVyc2ljaGVydW5nZW4ucG9zdGZpbmFuY2UuY2iCJXNlcnZpY2UudmVyc2ljaGVy dW5nZW4ucG9zdGZpbmFuY2UuY2iCGWFzc3VyYW5jZXMucG9zdGZpbmFuY2UuY2iC IXNlcnZpY2UuYXNzdXJhbmNlcy5wb3N0ZmluYW5jZS5jaIIcYXNzaWN1cmF6aW9u aS5wb3N0ZmluYW5jZS5jaIIkc2Vydml6aS5hc3NpY3VyYXppb25pLnBvc3RmaW5h bmNlLmNoghhpbnN1cmFuY2UucG9zdGZpbmFuY2UuY2iCIHNlcnZpY2UuaW5zdXJh bmNlLnBvc3RmaW5hbmNlLmNogiNiYWNrb2ZmaWNlLmluc3VyYW5jZS5wb3N0Zmlu YW5jZS5jaIIldmVyc2ljaGVydW5nZW4tdHJhY2tlci5wb3N0ZmluYW5jZS5jaDAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0G A1UdDgQWBBSFwgbvyXSz83vUio+tbjd2hcZk+zAfBgNVHSMEGDAWgBTu/UbK9yde kbxatueHzQr6VQomQjCB/wYDVR0fBIH3MIH0MEegRaBDhkFodHRwOi8vY3JsLnN3 aXNzc2lnbi5uZXQvRUVGRDQ2Q0FGNzI3NUU5MUJDNUFCNkU3ODdDRDBBRkE1NTBB MjY0MjCBqKCBpaCBooaBn2xkYXA6Ly9kaXJlY3Rvcnkuc3dpc3NzaWduLm5ldC9D Tj1FRUZENDZDQUY3Mjc1RTkxQkM1QUI2RTc4N0NEMEFGQTU1MEEyNjQyJTJDTz1T d2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9v YmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2ludDByBgNVHSAEazBpMFQGCWCF dAFZAQIBATBHMEUGCCsGAQUFBwIBFjlodHRwOi8vcmVwb3NpdG9yeS5zd2lzc3Np Z24uY29tL1N3aXNzU2lnbi1Hb2xkLUNQLUNQUy5wZGYwBwYFZ4EMAQEwCAYGBACP egEEMIHRBggrBgEFBQcBAQSBxDCBwTBkBggrBgEFBQcwAoZYaHR0cDovL3N3aXNz c2lnbi5uZXQvY2dpLWJpbi9hdXRob3JpdHkvZG93bmxvYWQvRUVGRDQ2Q0FGNzI3 NUU5MUJDNUFCNkU3ODdDRDBBRkE1NTBBMjY0MjBZBggrBgEFBQcwAYZNaHR0cDov L2dvbGQtZXYtZzIub2NzcC5zd2lzc3NpZ24ubmV0L0VFRkQ0NkNBRjcyNzVFOTFC QzVBQjZFNzg3Q0QwQUZBNTUwQTI2NDIwggJuBgorBgEEAdZ5AgQCBIICXgSCAloC WAB2ACJFRQdZVSRWlj+hL/H3bYbgIyZjrcBLf13Gg1xu4g8CAAABcVRNBPkAAAQD AEcwRQIhAPIyetiwIf3T7kauxOTviOBye8T3qSVZPBoudKr9gYpxAiB6A0A9QIjY MYmoOWk/LYPsCVsOz8PD9xHunhG14h0KoAB3AEHIyrHfIkZKEMahOglCh15OMYsb A+vrS8do8JBilgb2AAABcVRNAtgAAAQDAEgwRgIhAOF2E9Gq8WpXUWs9YjQ3DI0o AqJekFMdUC96JgIKsPQhAiEA0180bUeEpmucirVI6+RQ9BY+PyruZPlJ4Do1D20/ pM4AdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAXFUTQNiAAAE AwBHMEUCIQCbyaD/1YbtC5yne2oyZRrn9ySIZsgnE/NuJPgmrUZnGQIgHBEOhhsH 28+JmT0Ix8pW/SQCgfueoNck1LnW60bi124AdQC72d+8H4pxtZOUI5eqkntHOFeV CqtS6BqQlmQ2jh7RhQAAAXFUTQPQAAAEAwBGMEQCIHelyuy79gaqGzpPbAlmoKKl 0+LqrlpuquiwhiZFIb7IAiAzHgry7XNmnOyFduj55K0VsTBJ4sZvUt1Cczs2bJdF PgB2AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABcVRNAl8AAAQD AEcwRQIhAJrKjUke16XXVWV/EzdAJU9y5iJCNdLQscvAIpwAo/fCAiBeSrXGb7xo bhmtp5VMSONS0Id7N8yUgBDrPMhZAyv8ujANBgkqhkiG9w0BAQsFAAOCAQEAHWAX yfFD85sG0+ZgaALOcyHwLaTjH18yGWQ0y0mLyM4sW0sQA1iozinpzCdGIg5r93iV hLTiyS9WsxuQpccfFX4uM49gIBwPukfXIqA8sAv+BgvWPIeF52b8EhpkoKECu+jG WQUiPWse50zpTU9gAsCuRP8FfQmhQO0sHHqF0TMBYAJbSf1mD73JQOVQ27D9bCkN hvL9C1wFsbDDs5/SZ4UBz3j8x+AW6xr2zPSOWn9b+Dh/RlEa/xkndXDzU4hZ7tP7 2jMN78hNHEU6BzQv5k9ANN7Cm9X+TI0nQHiaoYC+/M7nzhlyx9U2E5zh19BrZpQ9 J5qHQrw84dXRqetccA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwpcE5WKFQSP/pFFDPMEh 7KPza2ALGOWD52kFLUh4uEAwYPVP+LlBOH6kStkghTS4LnnJ5pm8qwrzoB5druip tHrDWY3dT/+CZC6rM1eZQ/CYwuq65DWZaUvTmjFow/W6ljFq3IiI9J8Xd5Ee5c5b bpUacGzJ3MbJ4+ro22UxClnPIhoPQyIxWcg9mCaWplszMET73PReDssqpK7qwltF bvBretO4oXh4zHqOh1/sfkISZW8WF2fFxWb329FxP31Wi0bUOrPGzKaimcNwxmoJ U5P8YnT4PggvbR6g9NBhZkgvFIYWU1AgkeahgK2hlO5uGiaO4wH1KwfDXFnP0Yyi TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 411691210894816482793153655729557876643068862322 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign EV Gold CA 2014 - G22' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-07 11:01:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-07 11:01:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CHE-114.583.749' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PostFinance AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PostFinance AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'versicherungen.postfinance.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24564701469565749662266139151465725741372301798581368634985501434465232447583205896418236260442630359747755458565270406457303516309170012555739835391413047508202037736291235954233710937490359835314963773867164715197938061746030641088678946734740480911306207762767365487146486575116773861646711973864761770894462607030840216308710155439893874601073214618088626474383883907975369271858361024338192620056599106449626235762285397060545378410351777856386122846682262380121292788627903952974580944781342723554755734058669625844108585632135820824644104774230051500825974978809936741597808323904057033277223931537268052632141 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (340 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'versicherungen.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'service.versicherungen.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assurances.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'service.assurances.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assicurazioni.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servizi.assicurazioni.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insurance.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'service.insurance.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backoffice.insurance.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'versicherungen-tracker.postfinance.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 85c206efc974b3f37bd48a8fad6e377685c664fb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName eefd46caf7275e91bc5ab6e787cd0afa550a2642 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.2.1.1 (SwissSign EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Gold-CP-CPS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (196 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gold-ev-g2.ocsp.swisssign.net/EEFD46CAF7275E91BC5AB6E787CD0AFA550A2642' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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