api.commit.migros.net
- Migros -
Issued by Migros CA Class1
About this certificate
This digital certificate with serial number 14:51:bc:3c:00:00:00:00:d0:7a was issued on by Migros.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
- Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
- Subscriber certificate cRLDistributionPoints extension must contain the HTTP URL of the CA’s CRL service (BRs: 7.1.2.3)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
- Subscriber Certificate: extKeyUsage values other than id-kp-serverAuth, id-kp-clientAuth, and id-kp-emailProtection SHOULD NOT be present. (BRs: 7.1.2.3)
Migros
Organization:
Migros
Organization unit: SERVER
Organization unit: SERVER
Country:
CH
Migros
Organization:
Migros
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 14:51:bc:3c:00:00:00:00:d0:7aSerial Number (int): 95955079643541111099514
Serial Number lenght: 77 bits, 10 octets
SubjectKeyId: da:fc:75:f7:b4:44:bc:52:3a:89:86:1e:7a:04:6c:9a:d9:d9:0d:56
AuthorityKeyId:
Fingerprint (sha1): db:8d:8d:d7:e4:19:94:90:45:c7:8a:89:2c:61:3c:62:81:c4:0d:9a
Fingerprint (sha256): 09:b8:72:66:53:52:e8:b3:35:54:cd:fa:35:f4:f2:a2:a0:b6:66:dd:06:2e:89:35:fd:4c:9d:10:82:24:6f:43
Revocation information
CRL Distribution Point: ldap://metadir.migros.ch:389/cn=migros_ca_class1,o=migros,c=chCheck the revocation status for certificate api.commit.migros.net
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.commit.migros.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Time Stamping
Email Protection
IPSEC User
IPSEC Tunnel
IPSEC End System
Code Signing
Client Authentication
Server Authentication
Extensions
5 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name migros.net
(limited to 100 certificates)
ts.mobile.migros.net
ukasolutions-migrosindustrie.migros.net
live.dev.image-upload.mdb.migros.net
idm-qual.migros.net
parkcontrol.migros.net
ext-pi.migros.net
sfd.migros.net
kuva-test.migros.net
staging.prod.pema-coupons.mdb.migros.net
awds.migros.net
qim-appl-supp.migros.net
wsdwh.migros.net
qual.sfd.migros.net
svn.cwi.migros.net
jira.migros.net
artikelstamm.migros.net
d21.mindustry-test.migros.net
q-bw.migros.net
sts.migros.net
m-packaging-bw06.migros.net
wp2.migros.net
test-bivrost.migros.net
staging.qual.mam.mdb.migros.net
neops.migros.net
pim-supp-qual.migros.net
m-packaging-bw04.migros.net
zeugnis.migros.net
zeugnis-sts.migros.net
streaming.migros.net
mcds.migros.net
mlsplus-s.migros.net
mlsplus-t.migros.net
dsapbemignept.migros.net
ltopex-supplier-test.migros.net
sim-report.migros.net
owa.migros.net
intranet.migros.net
smslogin.migros.net
accountant-mpay.migros.net
d-onemindsolman.migros.net
api.idm.migros.net
sso-maps.migros.net
industry-test.migros.net
qual.ts.mobile.migros.net
assets.migros.net
image-upload.mdb.migros.net
finanzarchiv-test.migros.net
epass.migros.net
p99.migros.ch
sapp22.migros.net
sfd.migros.net
p58.mindustry.migros.net
mls-connect.migros.net
ra-sense-test.migros.net
outlook.migros.net
mobilemaps-q.migros.net
ewf.migros.net
d-hr-portal-d30.migros.net
lb-service-url.migros.net
pim.migros.net
hr-portal-p30.migros.net
q-mepcis.migros.net
voucher.migros.net
staging.dev.pema-coupons.mdb.migros.net
login-corp.migros.net
api.commit.migros.net
tagetik.migros.net
parkcontrol.migros.net
octane-uboot.migros.net
cumulus.migros.net
assets.migros.net
helpline.prod.migros.net
obsonis.migros.net
pos-upload-test.migros.net
staging.prod.kms-portal.mdb.migros.net
srm.migros.net
pim-q.migros.net
ctx.migros.net
mura.migros.net
boe.q-bw.migros.net
oas-con.migros.net
login-azure.migros.net
dataintegrationhub.migros.net
d-hr-portal-d30.migros.net
qim-q.migros.net
migros.net
transfer.migros.net
pmls.migros.net
group.m-mobile.migros.net
test-mlsplus-help.migros.net
d-rechnungswesen.migros.net
idm.migros.net
sim.migros.net
ltopex-supplier.migros.net
login-schadenportal.migros.net
ra-sense-test.migros.net
suppliernet.migros.net
migrosticino.migros.net
integ.migros.net
login-schadenportal.migros.net
ukasolutions-migrosindustrie.migros.net
live.dev.image-upload.mdb.migros.net
idm-qual.migros.net
parkcontrol.migros.net
ext-pi.migros.net
sfd.migros.net
kuva-test.migros.net
staging.prod.pema-coupons.mdb.migros.net
awds.migros.net
qim-appl-supp.migros.net
wsdwh.migros.net
qual.sfd.migros.net
svn.cwi.migros.net
jira.migros.net
artikelstamm.migros.net
d21.mindustry-test.migros.net
q-bw.migros.net
sts.migros.net
m-packaging-bw06.migros.net
wp2.migros.net
test-bivrost.migros.net
staging.qual.mam.mdb.migros.net
neops.migros.net
pim-supp-qual.migros.net
m-packaging-bw04.migros.net
zeugnis.migros.net
zeugnis-sts.migros.net
streaming.migros.net
mcds.migros.net
mlsplus-s.migros.net
mlsplus-t.migros.net
dsapbemignept.migros.net
ltopex-supplier-test.migros.net
sim-report.migros.net
owa.migros.net
intranet.migros.net
smslogin.migros.net
accountant-mpay.migros.net
d-onemindsolman.migros.net
api.idm.migros.net
sso-maps.migros.net
industry-test.migros.net
qual.ts.mobile.migros.net
assets.migros.net
image-upload.mdb.migros.net
finanzarchiv-test.migros.net
epass.migros.net
p99.migros.ch
sapp22.migros.net
sfd.migros.net
p58.mindustry.migros.net
mls-connect.migros.net
ra-sense-test.migros.net
outlook.migros.net
mobilemaps-q.migros.net
ewf.migros.net
d-hr-portal-d30.migros.net
lb-service-url.migros.net
pim.migros.net
hr-portal-p30.migros.net
q-mepcis.migros.net
voucher.migros.net
staging.dev.pema-coupons.mdb.migros.net
login-corp.migros.net
api.commit.migros.net
tagetik.migros.net
parkcontrol.migros.net
octane-uboot.migros.net
cumulus.migros.net
assets.migros.net
helpline.prod.migros.net
obsonis.migros.net
pos-upload-test.migros.net
staging.prod.kms-portal.mdb.migros.net
srm.migros.net
pim-q.migros.net
ctx.migros.net
mura.migros.net
boe.q-bw.migros.net
oas-con.migros.net
login-azure.migros.net
dataintegrationhub.migros.net
d-hr-portal-d30.migros.net
qim-q.migros.net
migros.net
transfer.migros.net
pmls.migros.net
group.m-mobile.migros.net
test-mlsplus-help.migros.net
d-rechnungswesen.migros.net
idm.migros.net
sim.migros.net
ltopex-supplier.migros.net
login-schadenportal.migros.net
ra-sense-test.migros.net
suppliernet.migros.net
migrosticino.migros.net
integ.migros.net
login-schadenportal.migros.net
Certificate
The complete raw certificate details for api.commit.migros.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIKFFG8PAAAAADQejANBgkqhkiG9w0BAQUFADA5MQswCQYD VQQGEwJDSDEPMA0GA1UEChMGTWlncm9zMRkwFwYDVQQDExBNaWdyb3MgQ0EgQ2xh c3MxMB4XDTEyMTAyOTE2MDQ0M1oXDTE3MTAyODE2MDQ0M1owTzELMAkGA1UEBhMC Q0gxDzANBgNVBAoTBk1pZ3JvczEPMA0GA1UECxMGU0VSVkVSMR4wHAYDVQQDExVh cGkuY29tbWl0Lm1pZ3Jvcy5uZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDDLYL8Vr9hKYV6AA/sSYL/RHLQNPaFHLoaDPioxvPoiVhmWDCv1E9Nty5+ C/3FVxjQWtWjmOEdyRUWGnsL0a5EzQqYoci9KIq2LcxL95swOcMpX3PmrEzOhtFo DeVZg/SypN3P51S6tdkePoU//9MG85W217Njd2T9NWluOmirNGKwHbBNoXnCHgHX xNv+ApzL6CWo5J8HVCyl/7h+5ccPR4QOu3IYsObtOzLfIlELZVYfOSrEsaXrAiaT b+CiqWOiTR2H1+MjNavZ+vUlJIZ0y68WgVPdJaRS07cq45JrJsbge+Ah0OcJ9zl9 dbrehcssFMXdBwsj7OE9fT210vmBAgMBAAGjggHJMIIBxTALBgNVHQ8EBAMCBLAw HQYDVR0OBBYEFNr8dfe0RLxSOomGHnoEbJrZ2Q1WMIIBAQYDVR0lBIH5MIH2Bgor BgEEAYI3CgMFBggrBgEFBQcDCAYKKwYBBAGCNwoDBgYIKwYBBQUHAwQGCisGAQQB gjcKAwcGCisGAQQBgjcKAwEGCisGAQQBgjcKAwIGCisGAQQBgjcKAw0GCisGAQQB gjcKBgIGCisGAQQBgjcKBgEGCCsGAQUFBwMHBggrBgEFBQcDBgYIKwYBBQUIAgIG CCsGAQUFBwMFBgsrBgEEAYI3CgMEAQYKKwYBBAGCNwoDBAYKKwYBBAGCNwoDCAYK KwYBBAGCNwoDDAYJKwYBBAGCNxUTBggrBgEFBQcDAwYIKwYBBQUHAwIGCCsGAQUF BwMBME8GA1UdHwRIMEYwRKBCoECGPmxkYXA6Ly9tZXRhZGlyLm1pZ3Jvcy5jaDoz ODkvY249bWlncm9zX2NhX2NsYXNzMSxvPW1pZ3JvcyxjPWNoMEEGA1UdIAQ6MDgw NgYMKwYBBAG+WAFkCgEGMCYwJAYIKwYBBQUHAgEWGGh0dHA6Ly93d3cubWlncm9z LmNoL3BraTANBgkqhkiG9w0BAQUFAAOCAQEAv+Tl5VOSJkyhn7+3DrNMDX2dGFtM CBScyEI2QTlDoffVoInNkZUiWEdcSjlY5nw8UVPUieJQaBrvJymHw1yhUOmWZKW8 MUiQXMn6EmfM/WOPrrMCQHCI9rdOxblbdQogsgSSow/wk8ryoV7KzrMcfNd5ErSA mq7vJoOGAfqdL2DbikJpfdwB4do+UTff7ZBYJPah+/3oq3acs9L1LSEXBgulwfAE iwC44OhrdoWVbYH++yZbVLMQ+JGsp1TeJfXnUE4GBRrtenIPul+oSeOojZK5udOF eUxNAEFdVhqx1qZPELbqOtZJsIFWt6cC/qXgppCpNzh9cuhZKKfGjwlCWg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwy2C/Fa/YSmFegAP7EmC /0Ry0DT2hRy6Ggz4qMbz6IlYZlgwr9RPTbcufgv9xVcY0FrVo5jhHckVFhp7C9Gu RM0KmKHIvSiKti3MS/ebMDnDKV9z5qxMzobRaA3lWYP0sqTdz+dUurXZHj6FP//T BvOVttezY3dk/TVpbjpoqzRisB2wTaF5wh4B18Tb/gKcy+glqOSfB1Qspf+4fuXH D0eEDrtyGLDm7Tsy3yJRC2VWHzkqxLGl6wImk2/goqljok0dh9fjIzWr2fr1JSSG dMuvFoFT3SWkUtO3KuOSaybG4HvgIdDnCfc5fXW63oXLLBTF3QcLI+zhPX09tdL5 gQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 95955079643541111099514 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Migros' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Migros CA Class1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-10-29 16:04:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-28 16:04:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Migros' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SERVER' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.commit.migros.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24638912105798774534617287966925277179376618931422799561498567540114600169176039488351521865760318629767427808342151734898326028667814103978874018107229477134606699850779679493532766044263320034318960900469795527197211589862283232342240412410157149984715912815471754603644820570582761861436462759434418881415447626790784891461571987023331167554994492938759794589463114858328307480851960639238466399415716451839902199922511601739231570063294168588884262203256819184406912071387949058288687503095650691865980945506254680081991345392318422949522741621413501780971412611206605331930823204184792103500114869046254616377729 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dafc75f7b444bc523a89861e7a046c9ad9d90d56 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (249 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.5 (whqlCrypto) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.8 (timeStamping) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.6 (nt5Crypto) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.4 (emailProtection) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.7 (oemWHQLCrypto) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.1 (certTrustListSigning) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.2 (timeStampSigning) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.13 (lifetimeSigning) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.6.2 (licenseServer) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.6.1 (licenses) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.7 (ipsecUser) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.6 (ipsecTunnel) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.8.2.2 (iKEIntermediate) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.5 (ipsecEndSystem) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.4.1 (efsRecovery) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.4 (encryptedFileSystem) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.8 (embeddedNTCrypto) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.10.3.12 (documentSigning) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.19 (dsEmailReplication) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.3 (codeSigning) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://metadir.migros.ch:389/cn=migros_ca_class1,o=migros,c=ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.1.100.10.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.migros.ch/pki' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00bfe4e5e55392264ca19fbfb70eb34c0d7d9d185b4c08149cc84236413943a1f7d5a089cd91952258475c4a3958e67c3c5153d489e250681aef272987c35ca150e99664a5bc3148905cc9fa1267ccfd638faeb302407088f6b74ec5b95b750a20b20492a30ff093caf2a15ecaceb31c7cd77912b4809aaeef26838601fa9d2f60db8a42697ddc01e1da3e5137dfed905824f6a1fbfde8ab769cb3d2f52d2117060ba5c1f0048b00b8e0e86b7685956d81fefb265b54b310f891aca754de25f5e7504e06051aed7a720fba5fa849e3a88d92b9b9d385794c4d00415d561ab1d6a64f10b6ea3ad649b08156b7a702fea5e0a690a937387d72e85928a7c68f09425a