bqztyw.postfinance.ch
- PostFinance AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 3f:de:a5:32:8b:40:11:88:4b:6c:46:7d:a2:d5:24:31:41:99:6c:f0 was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PostFinance AG
Organization:
PostFinance AG
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 3f:de:a5:32:8b:40:11:88:4b:6c:46:7d:a2:d5:24:31:41:99:6c:f0Serial Number (int): 364631574722368128864114031798500647461971389680
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 07:33:54:8f:42:7c:8b:da:9e:c2:36:6d:9b:e7:ec:4a:a0:4c:34:4a
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 1c:23:e6:6a:93:90:71:3a:b6:32:c7:78:a1:5e:0a:86:f1:6d:92:46
Fingerprint (sha256): 08:a8:88:16:90:c0:3b:2a:2e:50:a7:ec:47:aa:0f:76:62:3b:39:a7:fa:c9:be:b6:72:9e:95:41:07:f8:9b:8a
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate bqztyw.postfinance.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bqztyw.postfinance.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bqztyw.postfinance.ch
Other certificates including the domain name postfinance.ch
(limited to 100 certificates)
www.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
pfsb-admin-test.postfinance.ch
sventest.postfinance.ch
claims.versicherungen.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
partnerteststatus.postfinance.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
ok-api-test.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
bqztyw.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
partnerteststatus.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
ep2test2.postfinance.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
survalyzer.postfinance.ch
pizzaportfolio.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
tlmobile.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
universal.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
ep2test.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
universal.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-test.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
pfsb-admin-test.postfinance.ch
sventest.postfinance.ch
claims.versicherungen.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
partnerteststatus.postfinance.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
ok-api-test.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
bqztyw.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
partnerteststatus.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
ep2test2.postfinance.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
survalyzer.postfinance.ch
pizzaportfolio.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
tlmobile.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
universal.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
ep2test.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
universal.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-test.postfinance.ch
Certificate
The complete raw certificate details for bqztyw.postfinance.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIlTCCBn2gAwIBAgIUP96lMotAEYhLbEZ9otUkMUGZbPAwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIzMDYxMjA4 NDAwMFoXDTI0MDYxMjA4NDAwMFowYjELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAkJF MQ0wCwYDVQQHEwRCZXJuMRcwFQYDVQQKEw5Qb3N0RmluYW5jZSBBRzEeMBwGA1UE AxMVYnF6dHl3LnBvc3RmaW5hbmNlLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA0tKGxABsLIdVzpLaoL2cU62AGKCXW+qwoWyJkb0IN8ZCntjYi2Bm PzHfgXOtN5M9se6xnK8QCK+o9OzCqi/YaMH+nLu+Wimv5EcOQEsGPFffvQ34W4lV UYOG+gmdx5DpcKdbHdh0s6HfFXwkHB6F/QGifQNHm63Cn+lb6BOgrNhpLM8ApIJw o1goqiu+TpH/Vf6IOoy4+Ovmi6lByztCU99gEm/Cffu3/KTpu5BV0QmKd4QKxAdU 4EynCo0wHcSZpvNcWWeMyN++UWvQJs9PCcQRcXJII1LCCM83UAq9F6+2b9jm/Vst A5ftqieZJDEityxcvObU++YU48zkC1tgAQIDAQABo4IEUzCCBE8wIAYDVR0RBBkw F4IVYnF6dHl3LnBvc3RmaW5hbmNlLmNoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFAczVI9CfIvansI2bZvn 7EqgTDRKMB8GA1UdIwQYMBaAFKzQOsLCV1WRaRHMcGpZOIqMrJw9MIH/BgNVHR8E gfcwgfQwR6BFoEOGQWh0dHA6Ly9jcmwuc3dpc3NzaWduLm5ldC9BQ0QwM0FDMkMy NTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEMIGooIGloIGihoGfbGRhcDov L2RpcmVjdG9yeS5zd2lzc3NpZ24ubmV0L0NOPUFDRDAzQUMyQzI1NzU1OTE2OTEx Q0M3MDZBNTkzODhBOENBQzlDM0QlMkNPPVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlm aWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1 dGlvblBvaW50MG8GA1UdIARoMGYwUAYIYIV0AVkCAQIwRDBCBggrBgEFBQcCARY2 aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19U TFMucGRmMAgGBgQAj3oBBzAIBgZngQwBAgIwgcYGCCsGAQUFBwEBBIG5MIG2MGQG CCsGAQUFBzAChlhodHRwOi8vc3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0 eS9kb3dubG9hZC9BQ0QwM0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5 QzNEME4GCCsGAQUFBzABhkJodHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0L0FDRDAz QUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0QwggF+BgorBgEEAdZ5 AgQCBIIBbgSCAWoBaAB3AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MM AAABiK7DF3gAAAQDAEgwRgIhAMpPP0M6mLlMWOa2HKUo3ixh19pAeJ+P2rU9x2/z m+u3AiEAtlq01U1ij3ti00yi7YPDDB3YfisgmiYw9hS2goDdQ88AdQDatr9rP7W2 Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYiuwxhsAAAEAwBGMEQCIB0vfTDS HYWlNkzkdHZyqfr5YdjV//C4Ee7ECxl2vwx7AiBUh7c/s/+Q8KC2Jkv2vJ4OUyUv 1c1Yh1z9SEufCQFi1QB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7Wb AAABiK7DGHAAAAQDAEcwRQIhALr+lcPK66gLYi7YAcoNNUSAtZLBhse1S4KhRdTi Zz0pAiBTYHVbNv3aNN7mrGON9Npi7MGBlzsyPAqwJKchbav6yjANBgkqhkiG9w0B AQsFAAOCAgEAxyJiQ70XaI36jF7JIRepE1RTzjBmpCjcPDlEqfF5vpei6ZD94q8P cmW8BQbdVWlJNGfaIfU33mIAK4eF1v6RPfU2jN0tWpv7ckd5ClahUbsEhNoRirMD 5QiNJhYAsEwz7HaNPElOY+MryQIb3HsEygVZ0WJ83mcWJo1jN6gvimPgJ3JrqpfN gFxzsysZVTvz5TnvE/FzmU7jerhi6zI+p0My1qREUaVb1V7YuaSOSPu3Dd0jEeFD YcqLe0TorMMdErkdOK6hiRurBng0RHlQf6u6ZBdo+DIWOpU4R97BkECyNMB/AEYH rCIFH1HJN9VNI4Oz+NrYHqP6VSO6yhDY1/xeCpyZg7qO/BFVnbRg42aQi/7IrfIB Kl3dgqJVFYz8lq0BouI+fHE4gq5rdZrn0IB5LOdvt86+vDUsUlCUDcRT5suFGBLJ +qSzn06luPjo6Jbm0fJ6C2q6SJFb/M/Dm7FdLj0uGqku5bYMQEi5fc7IWDlkaitE 5d94q4gaArFQsNQFgyhbDQgjJF4tM5dcvphThMG/nN057yzw1VHaZwfuDWKO8diz 8Rn9LFkYY9xnt/qn5e0C5/tltOz3kiYSx84sPQoukiO0D9zY+cu4kldCiZ0i+nuQ fwnSb02F2fW/LffwZnrR8V5pPDK+bIaHFytv2npAALVFATEjPmukpDc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tKGxABsLIdVzpLaoL2c U62AGKCXW+qwoWyJkb0IN8ZCntjYi2BmPzHfgXOtN5M9se6xnK8QCK+o9OzCqi/Y aMH+nLu+Wimv5EcOQEsGPFffvQ34W4lVUYOG+gmdx5DpcKdbHdh0s6HfFXwkHB6F /QGifQNHm63Cn+lb6BOgrNhpLM8ApIJwo1goqiu+TpH/Vf6IOoy4+Ovmi6lByztC U99gEm/Cffu3/KTpu5BV0QmKd4QKxAdU4EynCo0wHcSZpvNcWWeMyN++UWvQJs9P CcQRcXJII1LCCM83UAq9F6+2b9jm/VstA5ftqieZJDEityxcvObU++YU48zkC1tg AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 364631574722368128864114031798500647461971389680 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-12 08:40:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-12 08:40:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PostFinance AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bqztyw.postfinance.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26613858493858897374775891656414406545770482804498122355104388232765853015368941436060619281334484733951645046095888159739136875132905372344880318713389383238265511502891693609955424533650323092491654971917044249949767382936271599101527737114745943430455624205389616223271380845047507506697702240132570628585390950377744422131190479196998856979006405437975282000740278762294324912227461132681221986545004002604492168781832442685193011361686020100011622637084300530850677900291231780043423924330654715199398195024761972941550846509932552909491799356758344041473545846083441766421828158772750279938967508824319810297857 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bqztyw.postfinance.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0733548f427c8bda9ec2366d9be7ec4aa04c344a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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