idp.ge.ch
- Republique et Canton de Geneve -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 7a:ef:b6:b2:23:f0:d4:6a:35:c7:15:c2:e8:03:83:e3:f8:05:26:5e was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Republique et Canton de Geneve
Organization:
Republique et Canton de Geneve
State / Province:
GE
Locality: Geneve
Country: CH
Locality: Geneve
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 7a:ef:b6:b2:23:f0:d4:6a:35:c7:15:c2:e8:03:83:e3:f8:05:26:5eSerial Number (int): 701842667197031572563391771161253838382969464414
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 08:23:b9:f7:7f:de:ea:c6:36:3b:a5:19:67:99:51:01:38:eb:66:0f
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 7c:68:82:9b:8e:4d:94:cf:f5:31:54:f1:dc:8f:58:17:fa:a9:04:e3
Fingerprint (sha256): 0f:c3:c8:ae:0a:ff:6b:56:95:6f:ac:90:bf:89:97:47:db:02:9e:71:9a:dd:26:69:6b:bf:af:8b:cd:c9:a5:39
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate idp.ge.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for idp.ge.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
idp.ge.ch
Other certificates including the domain name ge.ch
(limited to 100 certificates)
impuserlabo000-ms.ceti.etat-ge.ch
gc.ge.ch
contacts.ge.ch
testeaspolb2b.ge.ch
ge.ch
vcscgv2-1.ceti.etat-ge.ch
pol.b2b.ge.ch
cucmuser000-ms.ceti.etat-ge.ch
vcscnhp-1.ceti.etat-ge.ch
justice.ge.ch
test.b2b.ge.ch
testmobilepol.ge.ch
portailadmin.ge.ch
portail.ge.ch
survey.cdc.ge.ch
*.ge.ch
testservices.b2b.ge.ch
vpntest.ge.ch
www.etat.ge.ch
REPUBLIQUE ET CANTON DE GENEVE
epi.ge.ch
testservices.b2b.ge.ch
test.b2b.ge.ch
mobilepol.ge.ch
securebox.epi.ge.ch
imap.gc.ge.ch
appconpol02.ge.ch
ge.ch
pexip.ge.ch
recensement.app.ge.ch
vcsclabo-2.ceti.etat-ge.ch
jabberguest.ge.ch
vcselabo-1.ge.ch
epi.ge.ch
impuser000-ms.ceti.etat-ge.ch
padbleu.ge.ch
idp.ge.ch
dgsiemmensrec.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
padpolice.ge.ch
ssl829352.cloudflaressl.com
testeasadmb2b.ge.ch
ge.ch
pexipedge.ge.ch
vcsenhp-1.ge.ch
pol.b2b.ge.ch
jabberguest.ge.ch
ge.ch
test.b2b.ge.ch
justice-doc-ext.ge.ch
eas.gc.ge.ch
pjdeploy01.ceti.etat-ge.ch
vcselabo-2.ge.ch
webmail.gc.ge.ch
test.b2b.ge.ch
jabbergexpe002.ge.ch
testeasadmb2b.ge.ch
vcscnhp-1.ceti.etat-ge.ch
polmi.b2b.ge.ch
epi.ge.ch
appconsae01.ge.ch
epi.ge.ch
vcselabo-2.ge.ch
www.etat.ge.ch
easpolb2b.ge.ch
padjustice.ge.ch
sni.cloudflaressl.com
www.ge.ch
ssl829350.cloudflaressl.com
securebox.epi.ge.ch
annuaire.ge.ch
epi.ge.ch
*.ge.ch
epi.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
cucmuser000-ms.ceti.etat-ge.ch
survey.cdc.ge.ch
*.ge.ch
portailwifiedu.ge.ch
pocdme.etat.ge.ch
amendes.ge.ch
vcsclabo-2.ceti.etat-ge.ch
videogw.ge.ch
amendes.ge.ch
vpn.ge.ch
test.b2b.ge.ch
portail.ge.ch
vcselabo-1.ge.ch
*.app4.ge.ch
etoile.ge.ch
outlook.ge.ch
amendes-rec.ge.ch
testpolmi.b2b.ge.ch
mdmacore01.ge.ch
ge.ch
ldapedu.ge.ch
testmobilepol.ge.ch
*.epi.ge.ch
participer-rec.ge.ch
*.ge.ch
gc.ge.ch
contacts.ge.ch
testeaspolb2b.ge.ch
ge.ch
vcscgv2-1.ceti.etat-ge.ch
pol.b2b.ge.ch
cucmuser000-ms.ceti.etat-ge.ch
vcscnhp-1.ceti.etat-ge.ch
justice.ge.ch
test.b2b.ge.ch
testmobilepol.ge.ch
portailadmin.ge.ch
portail.ge.ch
survey.cdc.ge.ch
*.ge.ch
testservices.b2b.ge.ch
vpntest.ge.ch
www.etat.ge.ch
REPUBLIQUE ET CANTON DE GENEVE
epi.ge.ch
testservices.b2b.ge.ch
test.b2b.ge.ch
mobilepol.ge.ch
securebox.epi.ge.ch
imap.gc.ge.ch
appconpol02.ge.ch
ge.ch
pexip.ge.ch
recensement.app.ge.ch
vcsclabo-2.ceti.etat-ge.ch
jabberguest.ge.ch
vcselabo-1.ge.ch
epi.ge.ch
impuser000-ms.ceti.etat-ge.ch
padbleu.ge.ch
idp.ge.ch
dgsiemmensrec.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
padpolice.ge.ch
ssl829352.cloudflaressl.com
testeasadmb2b.ge.ch
ge.ch
pexipedge.ge.ch
vcsenhp-1.ge.ch
pol.b2b.ge.ch
jabberguest.ge.ch
ge.ch
test.b2b.ge.ch
justice-doc-ext.ge.ch
eas.gc.ge.ch
pjdeploy01.ceti.etat-ge.ch
vcselabo-2.ge.ch
webmail.gc.ge.ch
test.b2b.ge.ch
jabbergexpe002.ge.ch
testeasadmb2b.ge.ch
vcscnhp-1.ceti.etat-ge.ch
polmi.b2b.ge.ch
epi.ge.ch
appconsae01.ge.ch
epi.ge.ch
vcselabo-2.ge.ch
www.etat.ge.ch
easpolb2b.ge.ch
padjustice.ge.ch
sni.cloudflaressl.com
www.ge.ch
ssl829350.cloudflaressl.com
securebox.epi.ge.ch
annuaire.ge.ch
epi.ge.ch
*.ge.ch
epi.ge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
cucmuser000-ms.ceti.etat-ge.ch
survey.cdc.ge.ch
*.ge.ch
portailwifiedu.ge.ch
pocdme.etat.ge.ch
amendes.ge.ch
vcsclabo-2.ceti.etat-ge.ch
videogw.ge.ch
amendes.ge.ch
vpn.ge.ch
test.b2b.ge.ch
portail.ge.ch
vcselabo-1.ge.ch
*.app4.ge.ch
etoile.ge.ch
outlook.ge.ch
amendes-rec.ge.ch
testpolmi.b2b.ge.ch
mdmacore01.ge.ch
ge.ch
ldapedu.ge.ch
testmobilepol.ge.ch
*.epi.ge.ch
participer-rec.ge.ch
*.ge.ch
Certificate
The complete raw certificate details for idp.ge.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKBzCCB++gAwIBAgIUeu+2siPw1Go1xxXC6AOD4/gFJl4wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIzMDMyODE1 MDAyM1oXDTI0MDMyODE1MDAyM1owaDELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAkdF MQ8wDQYDVQQHEwZHZW5ldmUxJzAlBgNVBAoTHlJlcHVibGlxdWUgZXQgQ2FudG9u IGRlIEdlbmV2ZTESMBAGA1UEAxMJaWRwLmdlLmNoMIICIjANBgkqhkiG9w0BAQEF AAOCAg8AMIICCgKCAgEAzAh5PRZA9qhvnTUQOZws6cWMlbRmK+EYXZW2k9/LdKLf J/bOEaWkkv/iscWdkaKJ7vMVGc0NycyTGRwiuj4vTLweT+P12tvNfY8/YX0pHHhv i6ut//axRntCLO23fgTNdQjM8UzqQid+Y6HhHDiAb5f0XUswclJdRd9oelCAc93v jBilSRTCmKhIhjpL7YV5kfAjG83kMjBVBdyi+GDVx6LTHpao3QlbbjkaY8bwTmVj aOPe2muJwHnuDyN0YDtsEGuXaa7RAyuuIjbV0mRH3+k/fCKFkwUNn1Vhsl+Ors9r 624QlU1uhmYeF2Ab+meQJCQRjXIq+dL1u/csCGx2QzgbKfSS4riIT9JD6kcNwuOw t/YrKESwzlrqm/JeWuyVTKdzwARSMtB6+ocfu0OmsZwzXCvYg7Oksuf7dVNyqfFs uDV8zu6KPZ2/UsZ82iP7qW2Iu9znfpqkr8yhRRroZKKrr+l8OjU+It9LlSUJrlH3 umPBn5Nko2zVDHUG8nw6OOc1OPrpK552Al/yYs2ORUvOvVs5Ak66mGMvlCRHiEFA 5cyix9xueV3p1xXpiNbJ7TsGG44EK+nNT3rVjuFJ6QPrdADA6EQJZa127C3+7BM2 Yy0W8zwU4Yf2SaUnkDQoBYyyO8J0FzYctXHQqJ5CDD4I0UqmwvvcxF2TI77H53EC AwEAAaOCBL8wggS7MBQGA1UdEQQNMAuCCWlkcC5nZS5jaDAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBQII7n3 f97qxjY7pRlnmVEBOOtmDzAfBgNVHSMEGDAWgBSs0DrCwldVkWkRzHBqWTiKjKyc PTCB/wYDVR0fBIH3MIH0MEegRaBDhkFodHRwOi8vY3JsLnN3aXNzc2lnbi5uZXQv QUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMzRDCBqKCBpaCB ooaBn2xkYXA6Ly9kaXJlY3Rvcnkuc3dpc3NzaWduLm5ldC9DTj1BQ0QwM0FDMkMy NTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEJTJDTz1Td2lzc1NpZ24lMkND PUNIP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1j UkxEaXN0cmlidXRpb25Qb2ludDBvBgNVHSAEaDBmMFAGCGCFdAFZAgECMEQwQgYI KwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNz U2lnbl9DUFNfVExTLnBkZjAIBgYEAI96AQcwCAYGZ4EMAQICMIHGBggrBgEFBQcB AQSBuTCBtjBkBggrBgEFBQcwAoZYaHR0cDovL3N3aXNzc2lnbi5uZXQvY2dpLWJp bi9hdXRob3JpdHkvZG93bmxvYWQvQUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcwNkE1 OTM4OEE4Q0FDOUMzRDBOBggrBgEFBQcwAYZCaHR0cDovL29jc3Auc3dpc3NzaWdu Lm5ldC9BQ0QwM0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEMIIB 9gYKKwYBBAHWeQIEAgSCAeYEggHiAeAAdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAl CBcvo6odBxPTDAAAAYcovAmDAAAEAwBHMEUCIQCuV9NzK8Su8n56rDbGIbqNkoS6 Ce8X0ix8daMpi2xiRQIgWAjNlPu1UE+OL67BVdtFCMskTlngbDrvUgoCxXLjX/IA dgBz2Z6JG0yWeKAgfUed5rLGHNBRXnEZKoxrgBB6wXdytQAAAYcovAktAAAEAwBH MEUCIQDJLgvea0Ut1m/3YOpAXHGcCKGy0F47r/DyLk/BvqE2jQIgTAT78tktHgDo 1aE1CzdnqzrzMFYLNYRHBahCcH/QqREAdgDatr9rP7W2Ip+bwrtca+hwkXFsu1GE hTS9pD0wSNf7qwAAAYcovAhcAAAEAwBHMEUCIQCmdrEnuq6QpEaXsb2vd3zvbSTZ ffO2F1FDb2PNCJ5QeQIgPcfpVQDRuWI5ry32+WbZpwRMYQEG4LbRZ6pVOrfAQu8A dgDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYcovAo9AAAEAwBH MEUCID7Ml1AcmJ6wedQEE72SeG8rGEEhsPeL/o+c1eSw3I1gAiEAls/YPiK0QJDW zkMBStVU0Z61OlqFcWwzrfOGy/2B/ScwDQYJKoZIhvcNAQELBQADggIBALOFyZVq tijAmwhuiH9+yDpOf0vdhJ5QdZmuZugdv/pAgfAVYIJ0v+85w1zZOk2Hkls0wGrf Zs/GVP1ENJW7yM6tDe4EKs4uOYfF0ZXh03SImUE4ltE4gsc/ZSvRdFzJlMy1mpUU uIwVzxFZ2QlYHdfTpv/RY8+DmeANIyZWzXp0GGd0V/zzmLpQCNNb7IiKZqOAZ7mn Imb7aYTesteepqNfEtr6GTmLCGS99UpoF1oTeM2Ym1uYfz2hyg+OXqFtibJFIDst 4Zr1aCM3YOcSQ/9AgUrK4f+2ktF7rHyXuowKR2kIIqKrBNwbPAqmbMGvWyPjpZcb H84j9NawQYW4rlD2hc+sBeAzvCt4rz6JayvA5HfdpAOnWuoSNNpfIn9ofwUnATxl 64FLuHeCcPJAq/Bx2SWm7GbjrojOJZ6yTcoWbIzrGdIl3qkO2muTf/iTynGLa41+ biZsAL4P86U0Y2Yfg5/Jrmf4TyeYMMGOQdi6Et5gfdbfLC4hUTcbGcC8ZtQaAli9 Ak+YCI9F38iDUOEHQkuQ4sj7XPYZTfWbRPTy7HlBglyIzgU8fAphar6qzZ6Shu7e xUQY1wMvfAJWHlSYDYGRZQu5nLOeKxQs5j7UhF/Vxma9HmRW5/ra1WC7Fxb6OjT6 udK6SNSMsXkT/eQU3NJgkTts5je8JAmm2+oR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzAh5PRZA9qhvnTUQOZws 6cWMlbRmK+EYXZW2k9/LdKLfJ/bOEaWkkv/iscWdkaKJ7vMVGc0NycyTGRwiuj4v TLweT+P12tvNfY8/YX0pHHhvi6ut//axRntCLO23fgTNdQjM8UzqQid+Y6HhHDiA b5f0XUswclJdRd9oelCAc93vjBilSRTCmKhIhjpL7YV5kfAjG83kMjBVBdyi+GDV x6LTHpao3QlbbjkaY8bwTmVjaOPe2muJwHnuDyN0YDtsEGuXaa7RAyuuIjbV0mRH 3+k/fCKFkwUNn1Vhsl+Ors9r624QlU1uhmYeF2Ab+meQJCQRjXIq+dL1u/csCGx2 QzgbKfSS4riIT9JD6kcNwuOwt/YrKESwzlrqm/JeWuyVTKdzwARSMtB6+ocfu0Om sZwzXCvYg7Oksuf7dVNyqfFsuDV8zu6KPZ2/UsZ82iP7qW2Iu9znfpqkr8yhRRro ZKKrr+l8OjU+It9LlSUJrlH3umPBn5Nko2zVDHUG8nw6OOc1OPrpK552Al/yYs2O RUvOvVs5Ak66mGMvlCRHiEFA5cyix9xueV3p1xXpiNbJ7TsGG44EK+nNT3rVjuFJ 6QPrdADA6EQJZa127C3+7BM2Yy0W8zwU4Yf2SaUnkDQoBYyyO8J0FzYctXHQqJ5C DD4I0UqmwvvcxF2TI77H53ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 701842667197031572563391771161253838382969464414 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-28 15:00:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 15:00:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Geneve' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Republique et Canton de Geneve' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'idp.ge.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 832382425909301858050068455521554832221164921559710950172935287526709773795434487753093503718968292374516014688281154846235514960546155947346690437687982159865221536934306956560015947220580220965674470404613379763974596847264699393487230655069744106289767634083428850596079654422153895197547561178383771363232950893532883094307251815359882031578182165532023625616981674802823820680997131883042376230303880900954763394335069494857020612797703625241585762346819130889280619084975631035199741002654814185214056499539577224935465459509170258196752210069261435111715300179219601600544415650262423388688257567135116565715286635320906672022692444294494455737758866465719820420253982068669970361389493439966354964465950889520219742708671547783553945703711593510841338638308065085783245717155009043727045141352953142022389007821362998941593747019277138673298484615657378076841391727270363541215981651723869299795565314479111121329159669526375426832991503114230796926909541126828638186733863887659535201098459541024196235038422954095819619757783290735591275744411691840366693976814966068921284987157860422866673778538510982987453501513193902718504349497539869309682983296902546543881604872964081999242095232452068268578464552592118854095202161 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'idp.ge.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0823b9f77fdeeac6363ba5196799510138eb660f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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