norma4040315.lucorp.ch
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 46:6e:af:92:62:1a:6a:b0:e7:65:c7:01:9f:3a:5d:c0:61:a6:b6:30 was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=norma4040315.lucorp.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 46:6e:af:92:62:1a:6a:b0:e7:65:c7:01:9f:3a:5d:c0:61:a6:b6:30Serial Number (int): 402097730391172270998500154498821035527974073904
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: a0:fd:d5:75:47:4c:f0:e2:14:3b:10:66:8b:47:0f:e7:16:1a:42:9f
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): 49:6e:6b:5f:6a:45:37:6b:19:2d:11:a6:aa:b8:94:5c:08:06:e1:01
Fingerprint (sha256): 0b:cc:1c:8a:e2:31:e4:69:e2:e6:ca:7c:2e:cf:70:21:e4:c1:69:89:82:d7:32:11:98:de:c2:a9:18:01:d9:66
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate norma4040315.lucorp.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for norma4040315.lucorp.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
norma4040315.lucorp.ch
Other certificates including the domain name lucorp.ch
(limited to 100 certificates)
int-opus.lucorp.ch
dev-zertifikate.lucorp.ch
sb009425.lucorp.ch
lu311003.lucorp.ch
contractx.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
michel.lucorp.ch
caml.lucorp.ch
zertifikate.lucorp.ch
dlp-admin.lucorp.ch
norma4040046.lucorp.ch
int-caml.lucorp.ch
dev-zertifikate.lucorp.ch
uci-lukh-nc-002.ucc.lucorp.ch
lu326003.lucorp.ch
int-ecm-trans.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
*.ops.lucorp.ch
tst-opus.lucorp.ch
vm-prd-iacmvp-gitlabserver-chn-001.gitlab.azure.lucorp.ch
int-ecm-trans.lucorp.ch
lu317003.lucorp.ch
amx1.lucorp.ch
paedi.lucorp.ch
tst-opus.lucorp.ch
dev-admin-anlegen.lucorp.ch
old-opus.lucorp.ch
zertifikate.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
rechner.lucorp.ch
norma4040315.lucorp.ch
uci-lukh-nc-003.ucc.lucorp.ch
uci-lukh-nwe-002.lukb.ch
*.lucorp.ch
norma4040044.lucorp.ch
old-opus.lucorp.ch
lu380003.lucorp.ch
tst-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
ecm-act1.lucorp.ch
old-opus.lucorp.ch
int-intra.lucorp.ch
dev-zertifikate.lucorp.ch
int-admin.lucorp.ch
dev-opus.lucorp.ch
test-dlp.lucorp.ch
int-opus.lucorp.ch
zertifikate.lucorp.ch
quote-push1.lucorp.ch
norma4040045.lucorp.ch
tst-opus.lucorp.ch
lu326001.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
int-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
tst-opus.lucorp.ch
int-opus.lucorp.ch
old-opus.lucorp.ch
tst-opus.lucorp.ch
ecm-act4.lucorp.ch
norma4040045.lucorp.ch
keycloak.test-dlp.lucorp.ch
int-datrading.lucorp.ch
dacs.lucorp.ch
int-datrading.lucorp.ch
dev-opus.lucorp.ch
int-opus.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
dev-opus.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
lu311003.lucorp.ch
opus.lucorp.ch
zertifikate.lucorp.ch
datrading.lucorp.ch
old-opus.lucorp.ch
lu312004.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
sb001904.lucorp.ch
dev-opus.lucorp.ch
norma4040250.lucorp.ch
dev-opus.lucorp.ch
opus.lucorp.ch
old-opus.lucorp.ch
test-dlp.lucorp.ch
sursee-safepro.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
lu15388.lucorp.ch
vm-prd-iacmvp-gitlabrunner-chn-001.gitlab.azure.lucorp.ch
michel1.lucorp.ch
dev-zertifikate.lucorp.ch
arbeitszeugnis.lucorp.ch
old-opus.lucorp.ch
lu305003.lucorp.ch
dev-zertifikate.lucorp.ch
sb009425.lucorp.ch
lu311003.lucorp.ch
contractx.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
michel.lucorp.ch
caml.lucorp.ch
zertifikate.lucorp.ch
dlp-admin.lucorp.ch
norma4040046.lucorp.ch
int-caml.lucorp.ch
dev-zertifikate.lucorp.ch
uci-lukh-nc-002.ucc.lucorp.ch
lu326003.lucorp.ch
int-ecm-trans.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
*.ops.lucorp.ch
tst-opus.lucorp.ch
vm-prd-iacmvp-gitlabserver-chn-001.gitlab.azure.lucorp.ch
int-ecm-trans.lucorp.ch
lu317003.lucorp.ch
amx1.lucorp.ch
paedi.lucorp.ch
tst-opus.lucorp.ch
dev-admin-anlegen.lucorp.ch
old-opus.lucorp.ch
zertifikate.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
rechner.lucorp.ch
norma4040315.lucorp.ch
uci-lukh-nc-003.ucc.lucorp.ch
uci-lukh-nwe-002.lukb.ch
*.lucorp.ch
norma4040044.lucorp.ch
old-opus.lucorp.ch
lu380003.lucorp.ch
tst-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
ecm-act1.lucorp.ch
old-opus.lucorp.ch
int-intra.lucorp.ch
dev-zertifikate.lucorp.ch
int-admin.lucorp.ch
dev-opus.lucorp.ch
test-dlp.lucorp.ch
int-opus.lucorp.ch
zertifikate.lucorp.ch
quote-push1.lucorp.ch
norma4040045.lucorp.ch
tst-opus.lucorp.ch
lu326001.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
int-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
tst-opus.lucorp.ch
int-opus.lucorp.ch
old-opus.lucorp.ch
tst-opus.lucorp.ch
ecm-act4.lucorp.ch
norma4040045.lucorp.ch
keycloak.test-dlp.lucorp.ch
int-datrading.lucorp.ch
dacs.lucorp.ch
int-datrading.lucorp.ch
dev-opus.lucorp.ch
int-opus.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
dev-opus.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
lu311003.lucorp.ch
opus.lucorp.ch
zertifikate.lucorp.ch
datrading.lucorp.ch
old-opus.lucorp.ch
lu312004.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
sb001904.lucorp.ch
dev-opus.lucorp.ch
norma4040250.lucorp.ch
dev-opus.lucorp.ch
opus.lucorp.ch
old-opus.lucorp.ch
test-dlp.lucorp.ch
sursee-safepro.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
lu15388.lucorp.ch
vm-prd-iacmvp-gitlabrunner-chn-001.gitlab.azure.lucorp.ch
michel1.lucorp.ch
dev-zertifikate.lucorp.ch
arbeitszeugnis.lucorp.ch
old-opus.lucorp.ch
lu305003.lucorp.ch
Certificate
The complete raw certificate details for norma4040315.lucorp.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJgzCCB2ugAwIBAgIURm6vkmIaarDnZccBnzpdwGGmtjAwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTI0MDUyNDA2 NTgwNloXDTI1MDUyNDA2NTgwNlowITEfMB0GA1UEAxMWbm9ybWE0MDQwMzE1Lmx1 Y29ycC5jaDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKkQtcMqNxOa vubg926SqSIcw2lD6tHs0qMwE30yR6jQ5A81ihzJQLP7Tsam1F2JB8Wzt4e4hFL4 vaairA4uwLTHOchriGe3hlPdngIAAQwWsusAUjNBiBqQemM+5o/GWiMQEpChWnEw 2QST1OT5mW4rjL53y1F3bDNhT6Oz06HRl9wC6LvLS083uuGr2BbqUA0atuxTvGWJ BdpglLbY/q55ykD+0GrDWtifxePTjEVuY3jiryNpJpN1fz0kv/ZbH24KQnNM/VF5 OycFglEWVWpjRNT6RdFPeZ7uppIzdMeuYuWrPr2j2+5DCOzOvCSTwX0qufDGLYrC 74OJcpGYzeZPkpXRvO8HxPQds27XcWf8fhoNbvr42I3YKJbqpvsopn4uKyT6SPTP Djm712zdNEh52qL7LZ6qCx5dGMGAjmG+K2YMheNlHvQ0pcH0ayY7k7/X9L63t8HV 2WJC+cRoSkcXFPLyf7zRh3Ix0xHq2ceMGtTMRjKKuAlk7wXMQ+et0MPQCXZNejl2 apDOkWwCeQJLDq7WazFBsP3TiYZAdVclDj6vSsyZtnKNvoe12m0TPWpBs5EBWd2d 67KjPSAEmURp5z2NLDBnAYe4DDBMx7FOSuKRCYz199REavAFNHd5zPlW7KO+mycZ jsBITOuQVCqcGt1D/MYkzpu2piA3xYZTAgMBAAGjggSCMIIEfjCBsgYIKwYBBQUH AQEEgaUwgaIwTAYIKwYBBQUHMAKGQGh0dHA6Ly9haWEuc3dpc3NzaWduLmNoL2Fp ci0xYjg2MzM4NS1mNGE5LTQ3ZmEtODhhNS0yYTVhYmZkNGExNjcwUgYIKwYBBQUH MAGGRmh0dHA6Ly9vY3NwLnN3aXNzc2lnbi5jaC9zaWduL29jcy1hYWNjY2VkNS02 NmU4LTQwNjktOWIxYi1mZDI5YWI3M2VmZWMwbwYDVR0gBGgwZjAIBgZngQwBAgEw CAYGBACPegEGMFAGCGCFdAFZAgEBMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVw b3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjBRBgNV HR8ESjBIMEagRKBChkBodHRwOi8vY3JsLnN3aXNzc2lnbi5jaC9jZHAtNjc5NzIz YjItODY0MS00NjQyLTg1MDAtZjZkMmZmMzdlNmJhMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAwIQYDVR0RBBowGIIWbm9ybWE0 MDQwMzE1Lmx1Y29ycC5jaDAdBgNVHQ4EFgQUoP3VdUdM8OIUOxBmi0cP5xYaQp8w HwYDVR0jBBgwFoAU671/SZOMye7sorr3HNJn8IOx6t4wggJvBgorBgEEAdZ5AgQC BIICXwSCAlsCWQB2ACjigTj9gyFF6anWqnU3bYN3qIUSs8B/ckFIIdy96YxmAAAB j6lkg30AAAQDAEcwRQIgVi7t4SELD6uQQanm6LSTC+kwxS8mWeaMvaKEeztxnMAC IQCjl9L5p1X89I6RIm/Aq/zmSmVE9PZJvuguB4zmUTjVbwB3AOCSs/wMHcjnaDYf 3mG5lk0KUngZinLWcsSwTaVtb1QEAAABj6lkgUwAAAQDAEgwRgIhAJjdjqr1+NNP sIzUNuh2HoL8ujfcxOfiWZlS/J5VNp5CAiEApWXs4WzhmoSFe6Bc16NcUk1TyMxm 75H0YCjXb5KCP4kAdgDPEVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAA AY+pZIAyAAAEAwBHMEUCIQCeNwahhzGhL9yCruHKilDFPxe+Eb9GwCWSijTJFGFc SwIgOiz0FuQiRPKuJqNwd8wj8l+aWR1q99jJ+tVZUchib6cAdQDM+w9qhXEJZf6V m1PO6bJ8IumFXA2XjbapflTA/kwNsAAAAY+pZICkAAAEAwBGMEQCIC70ZkW4NFpV NNAlJZ7TnTmPBb/Hecljtdxl1+ab5hKVAiAEL/NRpkfGQNbFNI0C5KelpSBdT3M8 hXrTpEN/ulSe1QB3AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAAB j6lkgHMAAAQDAEgwRgIhANnLJgKNE3IGWMdLGnQe48W4K8rk20ZhiAA/pGt/0QRl AiEAi6n48ubRixCyphff4CRts2s/Q4fRRdQ7WCn91u3fNKEwDQYJKoZIhvcNAQEL BQADggIBAH9BHrthGz/xhLueErpxuH9c3PFCav6Vk/9hRa0zijLP3AHwahHLOduA nukhfWu0GPSGIljvp+k4uaulUEN7vvikTPZW2MCc2s3TxzBMram94xjJakc4MCVm 7wCBg/Op8Ubj0N6LqPXeno7GpP2Tm+hQcSah35fjWGFWnUHa7aaMvlQejG+s8l8X uWlRLfVJJ9DuV/xf9jk8VHh8jsjiHONQDmZk2hTQwD8NsPMqQTdCYEcMXM1i+HJI U/9rwiaF6MXcRhaEd8q++0b4pmijuL2t/Xygrw156u3x6UG2EtFQIgK6X6/BLJJf IQHkJbxoGfpo4FQlUOzTNTapEwpVms7QYDM6a3d6esBaxlw2OUz7JY/45P+mmy8v NxNKWRnv/Nqhx2KYCxFY8CP6l1Rav2wJ3URgnK25mnkd7gOnL1fUWsJAVF+R/XwX KOq91By2XVv8JdHni1eD3x5+AHQiVGb+zKtwimvm+6+lpbdHy26E2lMj/G6E8KhG 9qGqAfMM5J3GG5Aqi05bNLhrdY621uzOzmLPZclWYKl8hPNWdmlOD+vzre/4Yewx k1BQeAoH4ZGIzlGASrnUwBiaYUCZaUAmuOw0l/vDumdYfusWhO8XXRfxiYZKokir nCLBZHwaA1YPXUtsvYIZKXIxZN7Aur1UI7MovBafKSswdhMEOqJt -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqRC1wyo3E5q+5uD3bpKp IhzDaUPq0ezSozATfTJHqNDkDzWKHMlAs/tOxqbUXYkHxbO3h7iEUvi9pqKsDi7A tMc5yGuIZ7eGU92eAgABDBay6wBSM0GIGpB6Yz7mj8ZaIxASkKFacTDZBJPU5PmZ biuMvnfLUXdsM2FPo7PTodGX3ALou8tLTze64avYFupQDRq27FO8ZYkF2mCUttj+ rnnKQP7QasNa2J/F49OMRW5jeOKvI2kmk3V/PSS/9lsfbgpCc0z9UXk7JwWCURZV amNE1PpF0U95nu6mkjN0x65i5as+vaPb7kMI7M68JJPBfSq58MYtisLvg4lykZjN 5k+SldG87wfE9B2zbtdxZ/x+Gg1u+vjYjdgoluqm+yimfi4rJPpI9M8OObvXbN00 SHnaovstnqoLHl0YwYCOYb4rZgyF42Ue9DSlwfRrJjuTv9f0vre3wdXZYkL5xGhK RxcU8vJ/vNGHcjHTEerZx4wa1MxGMoq4CWTvBcxD563Qw9AJdk16OXZqkM6RbAJ5 AksOrtZrMUGw/dOJhkB1VyUOPq9KzJm2co2+h7XabRM9akGzkQFZ3Z3rsqM9IASZ RGnnPY0sMGcBh7gMMEzHsU5K4pEJjPX31ERq8AU0d3nM+Vbso76bJxmOwEhM65BU Kpwa3UP8xiTOm7amIDfFhlMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 402097730391172270998500154498821035527974073904 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-24 06:58:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-24 06:58:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'norma4040315.lucorp.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 689726140034589276043940180122306699047920551183335631941223576930822004928193602483192688990299509450832198062904783749213969561377546769333091408412321049915995196836112621056440902574556393120574248130849654187462415918328530383056013984358870333663534381369397007528737874444331421994951634267220824797292725492681855608140625730568449685240094333194988124893250559361281857232692102836641238671005514041152777162757219665325799897549751124095603362583782004685148215071181487887912696443223866558856607421070025217019671943899359096970895596502884311549881622725606280460383989427893744282178217055120958225915871551776738235923399456073855514227545550604564263243267479111376792684535628050480474036056469674207641747498894049199723515332103349549091260296486197994290416420141616574904345979929133152472495806653045497686181038325859864400637938351852515559485525051091712017503605998468338090016211624117849001258305481224519908219366837253229195124367105585096695540929840473197201016686113904067745730009661492048555290115015014855524082681918668338580595160641246091194170410249635645123601454253654417716891328629678132408008773058438659432047496874658032116043710875471130869202254291687629984412026431857412845437552211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norma4040315.lucorp.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a0fdd575474cf0e2143b10668b470fe7161a429f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 025900760028e28138fd832145e9a9d6aa75376d8377a88512b3c07f72414821dcbde98c660000018fa964837d00000403004730450220562eede1210b0fab9041a9e6e8b4930be930c52f2659e68cbda2847b3b719cc0022100a397d2f9a755fcf48e91226fc0abfce64a6544f4f649bee82e078ce65138d56f007700e092b3fc0c1dc8e768361fde61b9964d0a5278198a72d672c4b04da56d6f54040000018fa964814c000004030048304602210098dd8eaaf5f8d34fb08cd436e8761e82fcba37dcc4e7e2599952fc9e55369e42022100a565ece16ce19a84857ba05cd7a35c524d53c8cc66ef91f46028d76f92823f89007600cf1156eed52e7caff3875bd9692e9be91a71674ab017ecac01d25b77cecc3b080000018fa964803200000403004730450221009e3706a18731a12fdc82aee1ca8a50c53f17be11bf46c025928a34c914615c4b02203a2cf416e42244f2ae26a37077cc23f25f9a591d6af7d8c9fad55951c8626fa7007500ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db00000018fa96480a4000004030046304402202ef46645b8345a5534d025259ed39d398f05bfc779c963b5dc65d7e69be612950220042ff351a647c640d6c5348d02e4a7a5a5205d4f733c857ad3a4437fba549ed50077004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018fa96480730000040300483046022100d9cb26028d13720658c74b1a741ee3c5b82bcae4db466188003fa46b7fd104650221008ba9f8f2e6d18b10b2a617dfe0246db36b3f4387d145d43b5829fdd6eddf34a1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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