bbuem.snb.ch
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 54:4e:de:7e:e8:31:27:ed:dc:81:7f:d3:96:c2:ce:be:3e:04:f1:69 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bbuem.snb.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 54:4e:de:7e:e8:31:27:ed:dc:81:7f:d3:96:c2:ce:be:3e:04:f1:69Serial Number (int): 481314064986379118881086823249558811442042696041
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 8e:20:f4:2f:ad:40:fb:01:df:7b:b4:5d:fe:75:c7:3b:d6:91:ff:d1
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): 42:fe:7f:dc:a6:05:15:08:64:e7:f8:9d:6d:d1:03:c6:51:fa:c8:ed
Fingerprint (sha256): 11:4b:01:7a:99:01:75:e2:65:69:d9:d2:64:15:fb:37:cc:26:4b:bf:d4:26:80:12:ad:5d:7a:f3:3c:f9:70:c5
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate bbuem.snb.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bbuem.snb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bbuem.snb.ch
www.bbuem.snb.ch
www.bbuem.snb.ch
Other certificates including the domain name snb.ch
(limited to 100 certificates)
remotemail.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
wlanportal1.snb.ch
alert.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
wlanportal1.snb.ch
alert.snb.ch
Certificate
The complete raw certificate details for bbuem.snb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIgTCCBmmgAwIBAgIUVE7efugxJ+3cgX/TlsLOvj4E8WkwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTIzMDgwMjEx MjI1M1oXDTI0MDgwMjExMjI1M1owFzEVMBMGA1UEAxMMYmJ1ZW0uc25iLmNoMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygErZdQKSgPnq92Im6iO6sHb aaoTa+LFvzf6ELI9+rB54nFYx5Dr/s76Jhqf85Mh8LWFXL4SYuHUAXS2WChoQfE7 52hpZkkDp5dGAMyyB0jfwaVmvdBifBAIXa3iAHx2+qLtFQiwhLh1eyZHqUD4ED5a VomJ59MkFgTdO/bs/2B8xKJBAPyu6PicY+fQA6QufSuLoimIdm8KNnRtFMzLgLhn sSRICyEnfQYHch2l8E/7iOQ3bfOfSM9pJ8S1Gy5FGCp1vHsXzXO1zg/J/r5qFkPh nG/NHQDbNPw8oiChrzKZu04knUNLj2DEAHAGHuhlxlEud/Vt4MBHLer3Rvn44QID AQABo4IEijCCBIYwgbIGCCsGAQUFBwEBBIGlMIGiMEwGCCsGAQUFBzAChkBodHRw Oi8vYWlhLnN3aXNzc2lnbi5jaC9haXItMWI4NjMzODUtZjRhOS00N2ZhLTg4YTUt MmE1YWJmZDRhMTY3MFIGCCsGAQUFBzABhkZodHRwOi8vb2NzcC5zd2lzc3NpZ24u Y2gvc2lnbi9vY3MtYWFjY2NlZDUtNjZlOC00MDY5LTliMWItZmQyOWFiNzNlZmVj MG8GA1UdIARoMGYwCAYGZ4EMAQIBMAgGBgQAj3oBBjBQBghghXQBWQIBATBEMEIG CCsGAQUFBwIBFjZodHRwczovL3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS9Td2lz c1NpZ25fQ1BTX1RMUy5wZGYwUQYDVR0fBEowSDBGoESgQoZAaHR0cDovL2NybC5z d2lzc3NpZ24uY2gvY2RwLTY3OTcyM2IyLTg2NDEtNDY0Mi04NTAwLWY2ZDJmZjM3 ZTZiYTAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQD AgWgMCkGA1UdEQQiMCCCDGJidWVtLnNuYi5jaIIQd3d3LmJidWVtLnNuYi5jaDAd BgNVHQ4EFgQUjiD0L61A+wHfe7Rd/nXHO9aR/9EwHwYDVR0jBBgwFoAU671/SZOM ye7sorr3HNJn8IOx6t4wggJvBgorBgEEAdZ5AgQCBIICXwSCAlsCWQB2AFWB1MIW kDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABibX8jW4AAAQDAEcwRQIhAPGC MAdLqRJv0LSuxsiBD9IQi8ydNVO4uMqG8KQkkWW1AiBHFko8ri25JmMNzNICoceB 5h1WqHlkDR8Km4URBg7R5QB3ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI 1/urAAABibX8jpsAAAQDAEgwRgIhALMwrP1Grzx7fUyS3Xu8XLmpgAZhWTv+E6VJ i+vC+euuAiEArN42y/d3evE8KlM0l180zQV347k2PlZOAgXSCARPuX8AdgB2/4g/ Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYm1/I9+AAAEAwBHMEUCIQCO ZjoUMb5BU+xJM9+IVlDIJkK0y8ulkuzxQ76/ZTPDqwIgfwGdx6ArGQNY0Q4w8UER Wn/wOq8qkLZH4Ent3nD/lc8AdQDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlG cR+1mwAAAYm1/JI/AAAEAwBGMEQCIEY2CELyclbQZ+eeKPGdIsxDUGT4t+8wSOVg 1zk/PyqmAiBVgTF7ss+Autr+KKxRhLkyLxpDprdRBB5BCX4ad1r9qQB3AIdPtQ3A KdmTHeVz6fKJno5FM7OS04sKRiV0vw/usvweAAABibX8lzcAAAQDAEgwRgIhAN4l fLWuodvIS7Knma54DyXnRkz6guaXBRTYu05X+8x4AiEA1R1Oon1LkK9ErL+Bdp9c nPlamocU0vLDAYUZ0y5LvagwDQYJKoZIhvcNAQELBQADggIBAAcDM6X0H/Lm14RD /xE9zOYxWc5wSdQFWYqrHXGYFAE0kj8SiMZpJu3yIpyzrol4rfA9Txd3tajTlbHZ 7qW2Y2sgg5MM7BbJf0XKoZL1Hl+lz8LzXwHiDGcT/dtEMf35yJtjqX4Csvpgwr3z flhK10Ih2FWrFVS7RUFp8d+nQ4Okd7ckeZd3SueDRN/eT+uv1poqMFe7rE2XBgSN X5EE9AKZaA8WVgbb1MghHelIR460V1VG94JkySyU/NkTya6LWQAhKiavLzcWOcZw gHWELzjTgEV5bdI6QAHv1ODKDFXqT1VOWG824Zlv3R6cvoIy2I0Jc/FrFUrLXTBn O3N9LOTQ3UftcEQX5BhZDbJOk48+0bgZC54+tLzOr779ErF7Zhat42GJJ/SyxPXo dgai7n915S9nJ926gcpQYtQAeHbMstyfmAZGGfyZ4TUv+iR9+wjtIIQZ2KbofxB8 jX5qpXaG6TYX+Y1BejbXn+b99OmejfbAGLLVJv8TZJ6Y6iIiLTC4bcOdONTPCyxO sr9jAZAx1c51TEkqMZF8sYUU4PF/oc8DRu5/vwXA4xg7nzD1Y+tLaXOJ+VuhgXUB 4zeIaIeW8olx2oK+YbJMmcP1fUsyxdolU7Cvj0W9cD9b3IA0OPRq14n3yFTxEHYN Y1tSVuyoZWAlGdgmyD6HMAz/slZG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygErZdQKSgPnq92Im6iO 6sHbaaoTa+LFvzf6ELI9+rB54nFYx5Dr/s76Jhqf85Mh8LWFXL4SYuHUAXS2WCho QfE752hpZkkDp5dGAMyyB0jfwaVmvdBifBAIXa3iAHx2+qLtFQiwhLh1eyZHqUD4 ED5aVomJ59MkFgTdO/bs/2B8xKJBAPyu6PicY+fQA6QufSuLoimIdm8KNnRtFMzL gLhnsSRICyEnfQYHch2l8E/7iOQ3bfOfSM9pJ8S1Gy5FGCp1vHsXzXO1zg/J/r5q FkPhnG/NHQDbNPw8oiChrzKZu04knUNLj2DEAHAGHuhlxlEud/Vt4MBHLer3Rvn4 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 481314064986379118881086823249558811442042696041 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-02 11:22:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-02 11:22:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bbuem.snb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25500714316195938018573915397052624705747165186563059647226418499201709383613917957197677075195682223273074504406003838412225931389364290169021188625933884851056264946084834415892816109804227802276882726450900987659777707099624466886027840859418566263109463527278221653605168496280547274694757036415729650740734112559788155587321420522612966782376636618252813346855609493325001991666575480047419043328100550438557590275746146149319401984960553781105482729384583473924934953350784045522766380692700021592362481558200221792314023895591854588491338534496797657309600759878735771853604944857783349992656812069933612136673 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bbuem.snb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bbuem.snb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8e20f42fad40fb01df7bb45dfe75c73bd691ffd1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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