3dsec.postfinance.ch
- PostFinance AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 67:09:c2:7f:a4:5e:65:4f:c4:6e:a6:72:e9:a3:75:8c:fb:af:d9:e1 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PostFinance AG
Organization:
PostFinance AG
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 67:09:c2:7f:a4:5e:65:4f:c4:6e:a6:72:e9:a3:75:8c:fb:af:d9:e1Serial Number (int): 588243699319457129107938059959367832241225849313
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 19:c1:0a:05:6e:bc:77:20:b8:43:98:54:b5:33:22:2c:81:ac:22:2b
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): d3:58:e0:a1:c5:0e:11:b9:01:cd:77:be:1f:32:58:24:2c:26:6e:3e
Fingerprint (sha256): 09:e0:57:9e:d2:f1:d0:90:f1:63:ce:21:4d:5c:19:da:87:25:60:65:a9:1c:aa:1b:fd:00:ff:ca:2b:e0:d6:d9
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate 3dsec.postfinance.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 3dsec.postfinance.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
3dsec.postfinance.ch
www.3dsec.postfinance.ch
www.3dsec.postfinance.ch
Other certificates including the domain name postfinance.ch
(limited to 100 certificates)
www.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
Certificate
The complete raw certificate details for 3dsec.postfinance.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKFTCCB/2gAwIBAgIUZwnCf6ReZU/EbqZy6aN1jPuv2eEwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMTAxOTA3 MDYwOVoXDTIzMTAxOTA3MDYwOVowYTELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAkJF MQ0wCwYDVQQHEwRCZXJuMRcwFQYDVQQKEw5Qb3N0RmluYW5jZSBBRzEdMBsGA1UE AxMUM2RzZWMucG9zdGZpbmFuY2UuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCmBVLq5CKBGsBrol4ltlv0m1Q2n4hHVzWF+K3Yu4/aC+XZY6posYPW /PvRQgYTIRydP6fSxyA5306LM36MJYJad1snFfBaDOiMT60qosUSE6i4hv5lSZKT r93UVUOLoWihjDldLKJC9kQTlN4XLaR+fHfODLA+6LzZ7Csn0Y1g7ctbAWoL1sIU 56Aw/rN36wiEUOUvvXgu0/bSuCsPsH77u1c+UlD0rYxNhq9TEyNUSd0jmgSjU/Gf +fwVIqNF2RtWvv+dPsWXblJT3xjhjLHBtVp7L6PTuyVbMq1mV+hJnhcLrZ7P+aHJ 2e8iNFnutCr3kWWXA3vERR6K2O3b1bvnAgMBAAGjggXUMIIF0DA5BgNVHREEMjAw ghQzZHNlYy5wb3N0ZmluYW5jZS5jaIIYd3d3LjNkc2VjLnBvc3RmaW5hbmNlLmNo MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw HQYDVR0OBBYEFBnBCgVuvHcguEOYVLUzIiyBrCIrMB8GA1UdIwQYMBaAFKzQOsLC V1WRaRHMcGpZOIqMrJw9MIH/BgNVHR8EgfcwgfQwR6BFoEOGQWh0dHA6Ly9jcmwu c3dpc3NzaWduLm5ldC9BQ0QwM0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThD QUM5QzNEMIGooIGloIGihoGfbGRhcDovL2RpcmVjdG9yeS5zd2lzc3NpZ24ubmV0 L0NOPUFDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0QlMkNP PVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNl P29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MG8GA1UdIARoMGYwUAYI YIV0AVkCAQIwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNz c2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMAgGBgQAj3oBBzAIBgZngQwB AgIwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsGAQUFBzAChlhodHRwOi8vc3dpc3Nz aWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC9BQ0QwM0FDMkMyNTc1 NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEME4GCCsGAQUFBzABhkJodHRwOi8v b2NzcC5zd2lzc3NpZ24ubmV0L0FDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkz ODhBOENBQzlDM0QwggLmBgorBgEEAdZ5AgQCBIIC1gSCAtIC0AB1AFWB1MIWkDYB SuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABg+8QXb8AAAQDAEYwRAIgGv+oDSVA mFT/ohgF63xyfLZ/xOn2ZbRL8DPa7RztgvoCIG/6/OdOMSb9TfEUACHVtxDQagWE m05tIps90D4tmM+wAHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMA AAGD7xBdFwAABAMASDBGAiEAzfOEHU6mh0w0/lBM/TwhCPXJe3I6k9gH5Z6S92LX pHoCIQChrVOrVJj8mTEeI6FmMTCHlRsbE1W1/Phug5onp9FRigB1AHoyjFTYty22 IOo44FIe6YQWcDIThU070ivBOlejUutSAAABg+8QXCQAAAQDAEYwRAIgQbbkDeep eT5bebelkvSCZkkJ3OIkQkNiJsUgi85E2JsCIDKI5elBi+5ts10NdTRWLTWKDbbu T8OrNVzSMpiawThmAHYArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooA AAGD7xBcaQAABAMARzBFAiAaUzhNg8FN7Vx8b+pxoFUuykz3roOw81iEa0beicz7 NwIhAPjbVYHVJVBVg0O1cSfw7aGssgEgJ1FFbBCQrbAUO+ynAHcAs3N3B+GEUPhj htYFqdwRCUp5LbFnDAuH3PADDnk2pZoAAAGD7xBc/AAABAMASDBGAiEAgA2dYSp8 Jm0bz4FuLfPNPsmJlxxcCH0IJexq9S5pdFoCIQCP3U8BfHNxp6nTK9LfuahzSfGf AAtZ0XK1W6072XdbUgB2AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1u AAABg+8QW+EAAAQDAEcwRQIgPFau6gi6RTr9ESHddz9EnUaYXIjJbHp25HHSLVQK 3L4CIQCL+YkvNd14ERO7mSEqWCYstsF1GfK8AVvBVXkJJoEvVTANBgkqhkiG9w0B AQsFAAOCAgEAQp0QkxJUEyX59Kg1IDHWMQ1Xnx9MMs8S+iAViGKdOzFd7ka26IX3 E8sZecGjT3wxUzj6fuIBomNxkuzsYm0GqqHUXAVZsF7INnqlrHg+mIFopNxV/G7y wQleNO9v42MuXr6It9loU0X2B+U248W3iD+jZ/z2mCK0SOTl1JkhyoIAVLc3UlZq npGQr072Wd3MNN011KShawTKmDAyopFfkjhS9aiqkW2dVZt5UfzOzABlLSYpwwfM QoPa5R0lexrFKXQAT1hdL2KoZo1Y4KWY5lOaN3Ly4yLaIPCO1Ae7SIx5wqhcIsut VHXiDfpIDIOhyi8vX4oFa055n8BBelxlxfBhn/e36kEIJ9Fqee+cmnLQjprJYHO5 XNczJjfn8OInisuKqTb5igLE8APkRpJFlDQRQm4hC6gwB29CUc76beUQgS0HhmI+ prlnlNqpzCnV5ehm1scl+M4MU0fyg/u65U6GwJnFTiC+suj4WPi0/kYKE/32fyPY kRMI1M8yiw375DVXo57rI/8WlBieBbrdz0sGss2wftMQcjwagQZboJ1aBzxakgGv vIXVB+bOYogMx7UXO+sElZOATsGbUk8qrWF7yN9jA3/l9Oq/M2TOeWK80uHH5lUk MdbV2RCuaMqGO1kqqQmC91JdegWeG0vkr5dWVgr75WUAh7K9OEy8QWI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgVS6uQigRrAa6JeJbZb 9JtUNp+IR1c1hfit2LuP2gvl2WOqaLGD1vz70UIGEyEcnT+n0scgOd9OizN+jCWC WndbJxXwWgzojE+tKqLFEhOouIb+ZUmSk6/d1FVDi6FooYw5XSyiQvZEE5TeFy2k fnx3zgywPui82ewrJ9GNYO3LWwFqC9bCFOegMP6zd+sIhFDlL714LtP20rgrD7B+ +7tXPlJQ9K2MTYavUxMjVEndI5oEo1Pxn/n8FSKjRdkbVr7/nT7Fl25SU98Y4Yyx wbVaey+j07slWzKtZlfoSZ4XC62ez/mhydnvIjRZ7rQq95FllwN7xEUeitjt29W7 5wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 588243699319457129107938059959367832241225849313 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-19 07:06:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-19 07:06:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PostFinance AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '3dsec.postfinance.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20958183935652773302051483903456984985025198899078777859661296552484336111433782957935708425251533034107824842523566183376906479485495797920513980078551034342410560427126687571809295171138698717102927627060912477245958377682764888308298159688868962406472937115279581944915116745260500685991528497249983938036060764463969676059564262979902988101455463327520462827862461206479459265342060712226834360628949584403181855787372287609498259883460984928759106798273051835980179373780596495469388905746403386111104539716060654604735904004979542904303092045662165610507546158132356993391916728113967066282461105588885131738087 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '3dsec.postfinance.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.3dsec.postfinance.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 19c10a056ebc7720b8439854b533222c81ac222b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (726 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (722 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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