mapps.postfinance.ch
- PostFinance AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 7b:9e:81:1c:b8:6b:30:8f:c8:ad:ae:d7:8f:33:12:d6:45:8d:fb:0d was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PostFinance AG
Organization:
PostFinance AG
State / Province:
Bern
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 7b:9e:81:1c:b8:6b:30:8f:c8:ad:ae:d7:8f:33:12:d6:45:8d:fb:0dSerial Number (int): 705740629810626082730816665703487722205574200077
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 15:d4:04:41:27:b0:bf:d7:8c:ef:21:b8:ce:19:07:00:00:32:54:88
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 38:ee:a1:11:57:0a:28:c4:26:ae:1d:24:03:1e:30:ab:12:5a:3c:32
Fingerprint (sha256): 12:f1:07:f0:cf:5b:b0:47:74:09:30:f0:a4:e8:36:f9:4c:4a:92:f9:1a:07:1d:da:73:11:51:36:78:ad:2e:d5
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate mapps.postfinance.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mapps.postfinance.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mapps.postfinance.ch
Other certificates including the domain name postfinance.ch
(limited to 100 certificates)
www.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
Certificate
The complete raw certificate details for mapps.postfinance.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIlDCCBnygAwIBAgIUe56BHLhrMI/Ira7XjzMS1kWN+w0wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMDIyODEy NTQ1N1oXDTIzMDIyODEyNTQ1N1owYzELMAkGA1UEBhMCQ0gxDTALBgNVBAgTBEJl cm4xDTALBgNVBAcTBEJlcm4xFzAVBgNVBAoTDlBvc3RGaW5hbmNlIEFHMR0wGwYD VQQDExRtYXBwcy5wb3N0ZmluYW5jZS5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMoWmk9fRDI5uVsSLh78swaaEJVphUPRD95kNHRCfptUeUurItpG 5yCbl92XrKq5lgRFh1A0/O8Gk+6oeeCTYYD6DJ70VyHkt8VZiluj1r3V/iK0LTWd 8HUim6BdHGUacWgFzZPU3oe7JMCV0UAxQWirP9aJ0vNI1yaFTzxOk95OFNlVRbPY hbB/1QjsnvRveZolCaMbYycL9A4zsWjpTsl/GA4y3oiedho7LGrEDOvb/SvVK9dB f2SPJY8O3JmX8QmnKuK4Rmt0ArdtisAgchbqy7/X0Hqb18Rj6lS8BNoOgENCPhOp V8ozUS2QQxkiusMQ+WhPbNCM5VAii81CfXcCAwEAAaOCBFEwggRNMB8GA1UdEQQY MBaCFG1hcHBzLnBvc3RmaW5hbmNlLmNoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFBXUBEEnsL/XjO8huM4Z BwAAMlSIMB8GA1UdIwQYMBaAFKzQOsLCV1WRaRHMcGpZOIqMrJw9MIH/BgNVHR8E gfcwgfQwR6BFoEOGQWh0dHA6Ly9jcmwuc3dpc3NzaWduLm5ldC9BQ0QwM0FDMkMy NTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEMIGooIGloIGihoGfbGRhcDov L2RpcmVjdG9yeS5zd2lzc3NpZ24ubmV0L0NOPUFDRDAzQUMyQzI1NzU1OTE2OTEx Q0M3MDZBNTkzODhBOENBQzlDM0QlMkNPPVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlm aWNhdGVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1 dGlvblBvaW50MG8GA1UdIARoMGYwUAYIYIV0AVkCAQIwRDBCBggrBgEFBQcCARY2 aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19U TFMucGRmMAgGBgQAj3oBBzAIBgZngQwBAgIwgcYGCCsGAQUFBwEBBIG5MIG2MGQG CCsGAQUFBzAChlhodHRwOi8vc3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0 eS9kb3dubG9hZC9BQ0QwM0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5 QzNEME4GCCsGAQUFBzABhkJodHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0L0FDRDAz QUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0QwggF9BgorBgEEAdZ5 AgQCBIIBbQSCAWkBZwB1AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kT AAABf0Bl9UEAAAQDAEYwRAIgLCOMXW70FAnV5WRjH81TLUEqR9NlfyTlj3fc8GTA K4UCIDOS7cR7yWokgIzQJXctY2T4Hf1ckWMYdFVsN+3dWMX+AHYAejKMVNi3LbYg 6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAF/QGX0ogAABAMARzBFAiAvF7lH3VcW jSHYKDBy6kAbLMfaGztzq6aw4Ky9MfHbngIhAMGigAaxQhRjrS8lXxrL5fIdmU6a CMYAiRHzgB+glRRSAHYArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvcgooA AAF/QGX0sgAABAMARzBFAiEAqI8HvrUQHRMx/sJX8WTBHYnZ2SJ+sDvW7oSu/uBc bPkCIAUo8+ZVfAqRrsDfUhOl1cpWfbSIM2Liff+KkCJ/czoXMA0GCSqGSIb3DQEB CwUAA4ICAQAlw7UgPmOL2n8NYQtcMFFc6zAHPkBb2msWAsVVZ8JmLXDBqkdpvo2r +GewHEL7S1rrlKCkEfG8gB4tc2JTrLoa/ApRwPsIfnCSFmF7ZBbO3PGucZ96PohY TJ8u/rUXaoBnMF/aPRPt0TonECiSOj/F77W3aC3Jag+KE8dscbIsmIvRFS2mwycD VgzTFAm4yQytOaWcrcheTL6toTSlHjWjb3gvj2MFnzSNnKKmanTIrwXT1DDAsEWk x1HGA0ishuP089fnk6TOtYTmc6+UPP1L8quIJHVnUo8LJTSntKPTM6Jdc77w/8tE TPvovONIgw/bjPWZ+U59UoTMTfowku22t6zaL9H5U48EHbbfHNKPWoznG/rar7rR ZfITDG/RTdR8wMXlYqWLbxSmjyVVe3DnEMnEYIlrzjD9CyqFiOwAedaS+hUdq4Uv aRzclUASdi6jke6mgYszMnIXkn8Ca3c3KuT/opG8TJ2ktkq8f0xEfKbVaH9LQ8Xu rOI063ykOnpNVDqdKqBcyy9fOId/GKRRTbzCXZSlHhBBXoqLk2YpLlowlEnVuWM2 IrAI+5Ce1SA5sKaRe9Aqmbxwu63MePW2ZePvk3fSh7TOLGC/JV+ZB8bQsbIcUqmS GYHNum5LWqun+gHS8t6dIUJmrMOj6j0CAyx1tP9GsfZT8tbidJ6EzQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyhaaT19EMjm5WxIuHvyz BpoQlWmFQ9EP3mQ0dEJ+m1R5S6si2kbnIJuX3ZesqrmWBEWHUDT87waT7qh54JNh gPoMnvRXIeS3xVmKW6PWvdX+IrQtNZ3wdSKboF0cZRpxaAXNk9Teh7skwJXRQDFB aKs/1onS80jXJoVPPE6T3k4U2VVFs9iFsH/VCOye9G95miUJoxtjJwv0DjOxaOlO yX8YDjLeiJ52GjssasQM69v9K9Ur10F/ZI8ljw7cmZfxCacq4rhGa3QCt22KwCBy FurLv9fQepvXxGPqVLwE2g6AQ0I+E6lXyjNRLZBDGSK6wxD5aE9s0IzlUCKLzUJ9 dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 705740629810626082730816665703487722205574200077 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-28 12:54:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-28 12:54:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PostFinance AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mapps.postfinance.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25511283446228433699410098775329195267563131707834137538537252830025606051989132466268999067882162937241119528910920366561307976410912547644137522505605730712799567189347750097938383933104182297437277371211991365780025523496327622079353360278103478192908221793883399351454160538927983847453260131955518968891215788610275014513207660898147681296384976787180996333440846071785663114498360004126766022608006059794482529800264274572813076327938178906779295360714215272581841267664075886150718119601170873456269087017702666834305429173550585852343061415273746146692827568744883963918791779497355205950092612083071915818359 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mapps.postfinance.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 15d4044127b0bfd78cef21b8ce19070000325488 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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