www.etat.ge.ch
- République et Canton de Genève -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 45:03:86:63:72:9e:db:8b:75:99:5a:97:ae:c3:6c:cf:b4:2f:c4:b0 was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
République et Canton de Genève
Organization:
République et Canton de Genève
State / Province:
GE
Locality: Geneve
Country: CH
Locality: Geneve
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 45:03:86:63:72:9e:db:8b:75:99:5a:97:ae:c3:6c:cf:b4:2f:c4:b0Serial Number (int): 393998972309066527407411906284938924415687574704
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: db:77:43:3f:9d:f8:7d:bf:9e:ce:a0:ae:3b:e1:cb:4d:2a:3f:4a:f3
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): 78:a5:37:28:d8:18:46:49:7b:63:8d:01:e2:e4:66:3a:1c:3c:05:35
Fingerprint (sha256): 08:62:c1:d5:cb:8c:b4:a1:89:ae:ff:a8:6e:aa:3c:45:f4:4c:e8:97:1e:04:b1:72:b5:ad:df:62:0c:0b:0e:df
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate www.etat.ge.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.etat.ge.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.etat.ge.ch
Other certificates including the domain name ge.ch
(limited to 100 certificates)
impuserlabo000-ms.ceti.etat-ge.ch
gc.ge.ch
contacts.ge.ch
testeaspolb2b.ge.ch
ge.ch
vcscgv2-1.ceti.etat-ge.ch
pol.b2b.ge.ch
cucmuser000-ms.ceti.etat-ge.ch
vcscnhp-1.ceti.etat-ge.ch
justice.ge.ch
test.b2b.ge.ch
testmobilepol.ge.ch
portailadmin.ge.ch
portail.ge.ch
survey.cdc.ge.ch
*.ge.ch
testservices.b2b.ge.ch
vpntest.ge.ch
www.etat.ge.ch
REPUBLIQUE ET CANTON DE GENEVE
epi.ge.ch
testservices.b2b.ge.ch
test.b2b.ge.ch
mobilepol.ge.ch
securebox.epi.ge.ch
imap.gc.ge.ch
appconpol02.ge.ch
ge.ch
pexip.ge.ch
recensement.app.ge.ch
vcsclabo-2.ceti.etat-ge.ch
jabberguest.ge.ch
vcselabo-1.ge.ch
epi.ge.ch
impuser000-ms.ceti.etat-ge.ch
padbleu.ge.ch
idp.ge.ch
dgsiemmensrec.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
padpolice.ge.ch
ssl829352.cloudflaressl.com
testeasadmb2b.ge.ch
ge.ch
pexipedge.ge.ch
vcsenhp-1.ge.ch
pol.b2b.ge.ch
jabberguest.ge.ch
ge.ch
test.b2b.ge.ch
justice-doc-ext.ge.ch
eas.gc.ge.ch
pjdeploy01.ceti.etat-ge.ch
vcselabo-2.ge.ch
webmail.gc.ge.ch
test.b2b.ge.ch
jabbergexpe002.ge.ch
testeasadmb2b.ge.ch
vcscnhp-1.ceti.etat-ge.ch
polmi.b2b.ge.ch
epi.ge.ch
appconsae01.ge.ch
epi.ge.ch
vcselabo-2.ge.ch
www.etat.ge.ch
easpolb2b.ge.ch
padjustice.ge.ch
sni.cloudflaressl.com
www.ge.ch
ssl829350.cloudflaressl.com
securebox.epi.ge.ch
annuaire.ge.ch
epi.ge.ch
*.ge.ch
epi.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
cucmuser000-ms.ceti.etat-ge.ch
survey.cdc.ge.ch
*.ge.ch
portailwifiedu.ge.ch
pocdme.etat.ge.ch
amendes.ge.ch
vcsclabo-2.ceti.etat-ge.ch
videogw.ge.ch
amendes.ge.ch
vpn.ge.ch
test.b2b.ge.ch
portail.ge.ch
vcselabo-1.ge.ch
*.app4.ge.ch
etoile.ge.ch
outlook.ge.ch
amendes-rec.ge.ch
testpolmi.b2b.ge.ch
mdmacore01.ge.ch
ge.ch
ldapedu.ge.ch
testmobilepol.ge.ch
*.epi.ge.ch
participer-rec.ge.ch
*.ge.ch
gc.ge.ch
contacts.ge.ch
testeaspolb2b.ge.ch
ge.ch
vcscgv2-1.ceti.etat-ge.ch
pol.b2b.ge.ch
cucmuser000-ms.ceti.etat-ge.ch
vcscnhp-1.ceti.etat-ge.ch
justice.ge.ch
test.b2b.ge.ch
testmobilepol.ge.ch
portailadmin.ge.ch
portail.ge.ch
survey.cdc.ge.ch
*.ge.ch
testservices.b2b.ge.ch
vpntest.ge.ch
www.etat.ge.ch
REPUBLIQUE ET CANTON DE GENEVE
epi.ge.ch
testservices.b2b.ge.ch
test.b2b.ge.ch
mobilepol.ge.ch
securebox.epi.ge.ch
imap.gc.ge.ch
appconpol02.ge.ch
ge.ch
pexip.ge.ch
recensement.app.ge.ch
vcsclabo-2.ceti.etat-ge.ch
jabberguest.ge.ch
vcselabo-1.ge.ch
epi.ge.ch
impuser000-ms.ceti.etat-ge.ch
padbleu.ge.ch
idp.ge.ch
dgsiemmensrec.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
padpolice.ge.ch
ssl829352.cloudflaressl.com
testeasadmb2b.ge.ch
ge.ch
pexipedge.ge.ch
vcsenhp-1.ge.ch
pol.b2b.ge.ch
jabberguest.ge.ch
ge.ch
test.b2b.ge.ch
justice-doc-ext.ge.ch
eas.gc.ge.ch
pjdeploy01.ceti.etat-ge.ch
vcselabo-2.ge.ch
webmail.gc.ge.ch
test.b2b.ge.ch
jabbergexpe002.ge.ch
testeasadmb2b.ge.ch
vcscnhp-1.ceti.etat-ge.ch
polmi.b2b.ge.ch
epi.ge.ch
appconsae01.ge.ch
epi.ge.ch
vcselabo-2.ge.ch
www.etat.ge.ch
easpolb2b.ge.ch
padjustice.ge.ch
sni.cloudflaressl.com
www.ge.ch
ssl829350.cloudflaressl.com
securebox.epi.ge.ch
annuaire.ge.ch
epi.ge.ch
*.ge.ch
epi.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
cucmuser000-ms.ceti.etat-ge.ch
survey.cdc.ge.ch
*.ge.ch
portailwifiedu.ge.ch
pocdme.etat.ge.ch
amendes.ge.ch
vcsclabo-2.ceti.etat-ge.ch
videogw.ge.ch
amendes.ge.ch
vpn.ge.ch
test.b2b.ge.ch
portail.ge.ch
vcselabo-1.ge.ch
*.app4.ge.ch
etoile.ge.ch
outlook.ge.ch
amendes-rec.ge.ch
testpolmi.b2b.ge.ch
mdmacore01.ge.ch
ge.ch
ldapedu.ge.ch
testmobilepol.ge.ch
*.epi.ge.ch
participer-rec.ge.ch
*.ge.ch
Certificate
The complete raw certificate details for www.etat.ge.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJyjCCB7KgAwIBAgIURQOGY3Ke24t1mVqXrsNsz7QvxLAwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTI0MDMyMjE1 MTMwNVoXDTI1MDMyMjE1MTMwNVowbzELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAkdF MQ8wDQYDVQQHDAZHZW5ldmUxKTAnBgNVBAoMIFLDqXB1YmxpcXVlIGV0IENhbnRv biBkZSBHZW7DqHZlMRcwFQYDVQQDEw53d3cuZXRhdC5nZS5jaDCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAJfiT0k0e5AxznVehcvAw1vJ9Woga0zTtweS I2b4PUHd46aVbjiqoCXRncGOjMRhr30F+/s0YC8oSfcYAHlWzMz9nxRylWoUGwzw S3IZu2zTEM3p+B4z6KuMDUAbggy7XpItT+lvpDl7Y0qxjbfEF4iLHlHoYFcLVdIm hdl8XDQOonvgUq449KxXvqJjy5gghouGJcOfDNMhR23cJAmrFc5Rc+CruTGduG0Z 0V+0yZx/ohB/e/DX1YFBadkxo40oc0irt2DAGlElI3FOPrc9LthJ1wIGHj7IujT8 7o3J4PAWIF+Z74GH5L0IQkW2oJGE6EIcGkpv64pWIUOz4J6fXgd0ePZ2aW14yAlN 0G1FYwbFiGWdIbTmOITN4+yTRjY22oqgzUgxGzy7GaF9r1FIP+nfydv7CdCWnR6A RF2dZTEOAI6emfBnqPQL/Rd/WXdQSQlp+Ol+cDBKMOhopbZJAHucGCuXljGBIRrL nL146nw/OeXZFGdC99nauUKMDjoLPLNWyM5GpQQKDCrV2WeHyVeU2tsR9D+Umrl2 BNmSMVuBZzO9VnpbtbIw+h46BUQA1dPiQKdFkYjVQ4MkFWhE4mPaHHfQlwX/YjML GIokwqXKXLqVO+qnQkuIorbGa6YY/eEC56tDuTBrApj//rkrxRW8ASUhmAHr5fGl CESebgcfAgMBAAGjggR7MIIEdzCBsgYIKwYBBQUHAQEEgaUwgaIwTAYIKwYBBQUH MAKGQGh0dHA6Ly9haWEuc3dpc3NzaWduLmNoL2Fpci0wZjJiZjlhNS1kZDM3LTQ4 YzktYTg1Yi0xMmFjZGNiOGJlNDUwUgYIKwYBBQUHMAGGRmh0dHA6Ly9vY3NwLnN3 aXNzc2lnbi5jaC9zaWduL29jcy1hYWNjY2VkNS02NmU4LTQwNjktOWIxYi1mZDI5 YWI3M2VmZWMwbwYDVR0gBGgwZjAIBgZngQwBAgIwCAYGBACPegEHMFAGCGCFdAFZ AgECMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24u Y29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjBRBgNVHR8ESjBIMEagRKBChkBodHRw Oi8vY3JsLnN3aXNzc2lnbi5jaC9jZHAtOTZiNjJmNWEtNmI3My00ZGE0LTg3Zjct Y2U0MDAyYzFjZDM0MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNV HQ8BAf8EBAMCBaAwGQYDVR0RBBIwEIIOd3d3LmV0YXQuZ2UuY2gwHQYDVR0OBBYE FNt3Qz+d+H2/ns6grjvhy00qP0rzMB8GA1UdIwQYMBaAFHxvCm8TD9mMJG8mNPNc a0NttyO2MIICcAYKKwYBBAHWeQIEAgSCAmAEggJcAloAdgBVgdTCFpA2AUrqC5tX PFPwwOQ4eHAlCBcvo6odBxPTDAAAAY5muQbEAAAEAwBHMEUCIA4o9qDZuo2jykol CX1JtWEcSSRhfnG3m2WC6G7cJIOxAiEA+PCuTPF8RezRpWQLOv4ZwOlrB3IRJ6pX blej2nvf7rQAdwAo4oE4/YMhRemp1qp1N22Dd6iFErPAf3JBSCHcvemMZgAAAY5m uQxaAAAEAwBIMEYCIQDyeCDq7HVYW4Rpf/CuSWk75CuX6vp55BG9zdOWAUYnsgIh AK1tyD8f7w0yc4qeFqF3uZEOHpIJUMjgZepojVHSL73hAHcAzxFW7tUufK/zh1vZ aS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGOZrkFGgAABAMASDBGAiEAkwWpEMy8FZbK Kuqup/y0rpL8P50P0QtYLTeMnKDOQ3YCIQDWbweDfaB5dOAoBvQJuYPzw3dgCtkl CErmhI2Nk/1DgAB2AMz7D2qFcQll/pWbU87psnwi6YVcDZeNtql+VMD+TA2wAAAB jma5BYEAAAQDAEcwRQIgb+D8PLAuM3S/SfcAK6RbnZIe0H6ztGyX9nZ7SBW9JPQC IQCBaFBBqxag5Ex8oWb2LuJECiJqCty0NZHmMqmoK8l9OwB2AE51oydcmhDDOFts 1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjma5B0UAAAQDAEcwRQIgIwxTdeRVOht3 OdNr8PNdWZDOiNQ6ScRYCQ0nWyy7lDUCIQD7ZW+PD9ELs1GBW9W4FZgj5NsETc4c 9HqztD42ls+nKzANBgkqhkiG9w0BAQsFAAOCAgEAH3eMTqlJI6M6t5rHc2KBMRx4 NlJlnV0/rdFG82PHOGTZxmrTyOU1v6uqfwUTROLQqX4Q8HOJB12U5JfC4upPkTgg 1wvlhen0MeetOFoekFOQoj1JAwAjHpJHglo2DssYKMKsePIFOlmIbLFVozqaKCNz lQXAUQkcmuaHBJyG/HwZXRG1KyI0UmeFKTON5BTeoviC5SxPxYgVr1Wpdscr4+LO QRrTLH03tEsLV45QwCSPRuix2Vcrc+F3lLOrNP+F6ZRUuXhM32YrJ6KGJjwzBfQY FK9ikTOBvveN7U5SDPO8yr43ThOxGrk0dMoGRPXXfp4zjfzpL7ONqr/92kZXGy1z Gltzm+CEbrKpXd7LUJKBKkqfnWdbWw2ZLF3saONeZ7n06qFNmRWTRxK2tS2Srf/2 A0eBiA7VCIEPT8D+w9FyFn+j1jFf0U3ngZuXo/LaDFqIr8oLu+xA19r1FN4Jiwv8 vo+iMsuqWsNkqWa1AwI3ZCrm8/NyBA2lsL7sxTBkbXFqJmmSANxfq/D4gEWlHXGw GjPNEzjfq3EcxRiVz29xqsZIGorZdoQMTEaIpQ9h/jC206qv5kiu+jFfEI3l+QuM M2n3rMlsZGLfIqfns1MQ1YFiHFnjJLM5cB1MPlvk7KDWpbad/gQPQvSm9ARuuu4M 3G+uaWJdFrcn3qvGCdY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAl+JPSTR7kDHOdV6Fy8DD W8n1aiBrTNO3B5IjZvg9Qd3jppVuOKqgJdGdwY6MxGGvfQX7+zRgLyhJ9xgAeVbM zP2fFHKVahQbDPBLchm7bNMQzen4HjPoq4wNQBuCDLteki1P6W+kOXtjSrGNt8QX iIseUehgVwtV0iaF2XxcNA6ie+BSrjj0rFe+omPLmCCGi4Ylw58M0yFHbdwkCasV zlFz4Ku5MZ24bRnRX7TJnH+iEH978NfVgUFp2TGjjShzSKu3YMAaUSUjcU4+tz0u 2EnXAgYePsi6NPzujcng8BYgX5nvgYfkvQhCRbagkYToQhwaSm/rilYhQ7Pgnp9e B3R49nZpbXjICU3QbUVjBsWIZZ0htOY4hM3j7JNGNjbaiqDNSDEbPLsZoX2vUUg/ 6d/J2/sJ0JadHoBEXZ1lMQ4Ajp6Z8Geo9Av9F39Zd1BJCWn46X5wMEow6GiltkkA e5wYK5eWMYEhGsucvXjqfD855dkUZ0L32dq5QowOOgs8s1bIzkalBAoMKtXZZ4fJ V5Ta2xH0P5SauXYE2ZIxW4FnM71Welu1sjD6HjoFRADV0+JAp0WRiNVDgyQVaETi Y9ocd9CXBf9iMwsYiiTCpcpcupU76qdCS4iitsZrphj94QLnq0O5MGsCmP/+uSvF FbwBJSGYAevl8aUIRJ5uBx8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 393998972309066527407411906284938924415687574704 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-22 15:13:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-22 15:13:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Geneve' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'République et Canton de Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.etat.ge.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 619632750634622829412015122053712705098367791597274000402486577707395697490952929853586586991487975695815037884239071041826394439779905797681825797161497925495325716912313436045991671848849357197167316654067643462598402021348623241029205237512825533165879011654224407590540419386297094578143278813012421113142020132882707139994959441679813444860877532319003036998296509553552578263090775024018074399980721111234617853772911506934928892789981046589404997614181313164901839812078598043024505420066242956869311777588839886731920781154273800549617500871211947133463656896428883056905971076391061229762173856219649833715526491705509991584245243602225642683141085579562467930413393850758887396160499906237408766024452827618485896787130581177125209669224536861199108027331833027777441419027154855629553280433131130398792189420625670707237392031663758414089329388998143369360495581475889228052204413459119190231939265816213309766511927971910329966702364123901927063032135567857025178546950105415014221156321083486295710807377374510051628990179917886376312085779295541170764657435951791357135742795320999564217414819020370011308950547690677183588791275647305145593576363200793904841155518302135663114090645263428988982780150869795397585209119 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.etat.ge.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) db77433f9df87dbf9ecea0ae3be1cb4d2a3f4af3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (608 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes) 025a0076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000018e66b906c4000004030047304502200e28f6a0d9ba8da3ca4a25097d49b5611c4924617e71b79b6582e86edc2483b1022100f8f0ae4cf17c45ecd1a5640b3afe19c0e96b07721127aa576e57a3da7bdfeeb400770028e28138fd832145e9a9d6aa75376d8377a88512b3c07f72414821dcbde98c660000018e66b90c5a0000040300483046022100f27820eaec75585b84697ff0ae49693be42b97eafa79e411bdcdd396014627b2022100ad6dc83f1fef0d32738a9e16a177b9910e1e920950c8e065ea688d51d22fbde1007700cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018e66b9051a00000403004830460221009305a910ccbc1596ca2aeaaea7fcb4ae92fc3f9d0fd10b582d378c9ca0ce4376022100d66f07837da07974e02806f409b983f3c377600ad925084ae6848d8d93fd4380007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db00000018e66b90581000004030047304502206fe0fc3cb02e3374bf49f7002ba45b9d921ed07eb3b46c97f6767b4815bd24f402210081685041ab16a0e44c7ca166f62ee2440a226a0adcb43591e632a9a82bc97d3b0076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018e66b9074500000403004730450220230c5375e4553a1b7739d36bf0f35d5990ce88d43a49c458090d275b2cbb9435022100fb656f8f0fd10bb351815bd5b8159823e4db044dce1cf47ab3b43e3696cfa72b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 001f778c4ea94923a33ab79ac7736281311c783652659d5d3fadd146f363c73864d9c66ad3c8e535bfabaa7f051344e2d0a97e10f07389075d94e497c2e2ea4f913820d70be585e9f431e7ad385a1e905390a23d490300231e9247825a360ecb1828c2ac78f2053a59886cb155a33a9a2823739505c051091c9ae687049c86fc7c195d11b52b223452678529338de414dea2f882e52c4fc58815af55a976c72be3e2ce411ad32c7d37b44b0b578e50c0248f46e8b1d9572b73e17794b3ab34ff85e99454b9784cdf662b27a286263c3305f41814af62913381bef78ded4e520cf3bccabe374e13b11ab93474ca0644f5d77e9e338dfce92fb38daabffdda46571b2d731a5b739be0846eb2a95ddecb5092812a4a9f9d675b5b0d992c5dec68e35e67b9f4eaa14d9915934712b6b52d92adfff6034781880ed508810f4fc0fec3d172167fa3d6315fd14de7819b97a3f2da0c5a88afca0bbbec40d7daf514de098b0bfcbe8fa232cbaa5ac364a966b5030237642ae6f3f372040da5b0beecc530646d716a26699200dc5fabf0f88045a51d71b01a33cd1338dfab711cc51895cf6f71aac6481a8ad976840c4c4688a50f61fe30b6d3aaafe648aefa315f108de5f90b8c3369f7acc96c6462df22a7e7b35310d581621c59e324b339701d4c3e5be4eca0d6a5b69dfe040f42f4a6f4046ebaee0cdc6fae69625d16b727deabc609d6