www-poc-test.postfinance.ch
- PostFinance AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 42:df:a0:ee:a2:52:1c:8d:bc:87:d6:4d:55:91:bb:22:c7:ac:aa:67 was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PostFinance AG
Organization:
PostFinance AG
State / Province:
Bern
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 42:df:a0:ee:a2:52:1c:8d:bc:87:d6:4d:55:91:bb:22:c7:ac:aa:67Serial Number (int): 381780476222359429179311168095597381046254742119
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: a3:fd:a9:80:de:68:d4:80:24:57:b9:1b:fa:64:cd:de:80:e0:68:78
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 6b:31:e2:9e:67:b3:9c:93:22:a7:fc:2e:42:72:28:1d:7e:9a:7d:87
Fingerprint (sha256): 15:f0:d0:8a:47:57:9a:5a:8d:39:9a:4d:88:bb:00:60:bb:66:c0:ba:97:c1:84:56:f1:6c:cf:a2:16:b7:b2:e1
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate www-poc-test.postfinance.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www-poc-test.postfinance.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www-poc-test.postfinance.ch
Other certificates including the domain name postfinance.ch
(limited to 100 certificates)
www.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
e-archiv.postfinance.ch
aliasreg.postfinance.ch
e-finance.postfinance.ch
jobs.postfinance.ch
pfportalmo.postfinance.ch
csgw-test.postfinance.ch
proof.doc-shop.postfinance.ch
commercioestero.postfinance.ch
egw-test.postfinance.ch
e-payment.postfinance.ch
sventest.postfinance.ch
youth.postfinance.ch
pfportalext-test.postfinance.ch
sgtm.postfinance.ch
sipskypebe.post.ch
pfsb-admin-test.postfinance.ch
smartbusiness.postfinance.ch
onlinehypothek-test.postfinance.ch
www-poc-test.postfinance.ch
plano.postfinance.ch
mapps-test.postfinance.ch
www.wcm-test.postfinance.ch
www.doc-shop.postfinance.ch
testplattform.postfinance.ch
oauth.postfinance.ch
privatkredit-peprod.postfinance.ch
www.postfinance.ch
dev.plusfinance.postfinance.ch
outlook.post.ch
benefit.postfinance.ch
egw.postfinance.ch
versicherungen.postfinance.ch
ebics-test.postfinance.ch
sventest.postfinance.ch
pfsb-test.postfinance.ch
universal-t2.postfinance.ch
egw-test.postfinance.ch
3dsec.postfinance.ch
dev.tilbago.postfinance.ch
pfportalmo.postfinance.ch
sipskypebe.post.ch
dev.young.postfinance.ch
tilbago.postfinance.ch
statusitservices.postfinance.ch
events-test.postfinance.ch
digitalpfc.int.postfinance.ch
pfportalmo-test.postfinance.ch
sventest.postfinance.ch
m.commercioestero.postfinance.ch
rivista.postfinance.ch
ai.ep2.postfinance.ch
ef-t2.postfinance.ch
jira-dev.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
sandbox1.postfinance.ch
sandbox1.postfinance.ch
collector-test.postfinance.ch
mapps-test.postfinance.ch
sventest.postfinance.ch
egw.postfinance.ch
hosting.postfinance.ch
nladh-t2.postfinance.ch
aussenhandel.postfinance.ch
plano.postfinance.ch
epayment.postfinance.ch
yellowpay.postfinance.ch
nlsec.postfinance.ch
challengethefuture.postfinance.ch
skypeweb.post.ch
pfsb.postfinance.ch
plano.postfinance.ch
pfportalmo.postfinance.ch
events-test.postfinance.ch
csgw-t2.postfinance.ch
epayment-test.postfinance.ch
dev.magazine.postfinance.ch
mapps.postfinance.ch
ef-t2.postfinance.ch
meet.post.ch
young.postfinance.ch
epayment.postfinance.ch
www-test.postfinance.ch
pfportalmo-test.postfinance.ch
e-trading.postfinance.ch
www-poc-test.postfinance.ch
pfportalext-test.postfinance.ch
events-test.postfinance.ch
pfportalmo.postfinance.ch
bqztyw.postfinance.ch
young.postfinance.ch
questback.postfinance.ch
www.plusfinance.postfinance.ch
csgw-test.postfinance.ch
stage.tour.postfinance.ch
3dsec.postfinance.ch
www2.postfinance.ch
teleoptipf.postfinance.ch
plano.postfinance.ch
Certificate
The complete raw certificate details for www-poc-test.postfinance.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIozCCBougAwIBAgIUQt+g7qJSHI28h9ZNVZG7IsesqmcwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMDMwOTEy NDkxN1oXDTIzMDMwOTEyNDkxN1owajELMAkGA1UEBhMCQ0gxDTALBgNVBAgTBEJl cm4xDTALBgNVBAcTBEJlcm4xFzAVBgNVBAoTDlBvc3RGaW5hbmNlIEFHMSQwIgYD VQQDExt3d3ctcG9jLXRlc3QucG9zdGZpbmFuY2UuY2gwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCgNYFlxLeXbj1H8/bWcyASNdQiOyJ3UuVchXO7YSOl WzcuZrZx33nvlEA6T3X4PSs+XIOT+TAV8vLaW9c9FmSmUpRFOOjXRXKneRzVbD3f fnPbZLSp2PvzBMUg+1GQGUI+MCoH1/PIEap3Igla+LuAUpzxCiUb0QovyqLFGMF9 xxN9tzD24NxjWsHEuFf1nqBt6RZIlzEXAZTJn6iz3SKN4IcfNJ6mBziLCMTxTiIU aiC2RK3chabrnxxUaBp44lVBNViazgTYpeWurXu8xkomtR+szcXLIlWNeToiFdH1 xEzo3ZLdCwx1E/qYgZMggOviPX5/9bLQlNk9FsWsLlapAgMBAAGjggRZMIIEVTAm BgNVHREEHzAdght3d3ctcG9jLXRlc3QucG9zdGZpbmFuY2UuY2gwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQU o/2pgN5o1IAkV7kb+mTN3oDgaHgwHwYDVR0jBBgwFoAUrNA6wsJXVZFpEcxwalk4 ioysnD0wgf8GA1UdHwSB9zCB9DBHoEWgQ4ZBaHR0cDovL2NybC5zd2lzc3NpZ24u bmV0L0FDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0Qwgaig gaWggaKGgZ9sZGFwOi8vZGlyZWN0b3J5LnN3aXNzc2lnbi5uZXQvQ049QUNEMDNB QzJDMjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMzRCUyQ089U3dpc3NTaWdu JTJDQz1DSD9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xh c3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwbwYDVR0gBGgwZjBQBghghXQBWQIBAjBE MEIGCCsGAQUFBwIBFjZodHRwczovL3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS9T d2lzc1NpZ25fQ1BTX1RMUy5wZGYwCAYGBACPegEHMAgGBmeBDAECAjCBxgYIKwYB BQUHAQEEgbkwgbYwZAYIKwYBBQUHMAKGWGh0dHA6Ly9zd2lzc3NpZ24ubmV0L2Nn aS1iaW4vYXV0aG9yaXR5L2Rvd25sb2FkL0FDRDAzQUMyQzI1NzU1OTE2OTExQ0M3 MDZBNTkzODhBOENBQzlDM0QwTgYIKwYBBQUHMAGGQmh0dHA6Ly9vY3NwLnN3aXNz c2lnbi5uZXQvQUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMz RDCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYAb1N2rDHwMRnYmQCkURX/dxUc EdkCwQApBo2yCJo32RMAAAF/broCLgAABAMARzBFAiBFn7y71+mnTtdgCdHu8AJf wl4P7KMLKIcP3MlE8fzMQgIhAI37bdbych7iqebkJyL9lw+XLDcN/0wosEMkul7y I6FdAHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAF/broB7gAA BAMASDBGAiEA2rNeARn3aIPhEt93n2nw6tXIyOqb/AXk1F72yn8weloCIQCeSMZn 5JvFBrNA9OXvEXypXr7c8y96/7jEm1wAcdjObgB1AK33vvp8/xDIi509nB4+GGq0 Zyldz7EMJMqFhjTr3IKKAAABf266AiQAAAQDAEYwRAIgL5ORlPn13sxSGMZ8OufR 1uEBhnrFGBPFayjebglqLgACIAWVv/C9DthDyeMtuOrmQFG2/3sh1K7l20ITDcue aQ0mMA0GCSqGSIb3DQEBCwUAA4ICAQANyRZbS4WcugkBtQillatddyghgqAiSmlX VMCuIE3oNNMpy9HmA6wZ3D8nZnT0cKj2OiPZTvhU/UpL0X8yb0fD4BgoMl1/pZCB MMxyonEa1fuuPcv4cSPWbwTIL4uhITrQ9593HKKWR+dfBmh3go9DvOuqdheHMF8A cIivaKZsnTM4BHio/Hlbo/lhPbk0cfKjXNk88XCNjxp0Clx0rVisRZOBc0+EbbJE Z4aw7UsE8SIxe5igV/6ai/F0khDMvQoJkSFKGksuq1nEUy4PBipkE/1HpDRLxJmU XUX6cvuzWqgnsx1J4khbaa/GCCDN2plJ3rai8Y8cgooA0uKafOfRORn/pRPmMgFV HccAIPMrjJUE8f4AOyde9rQuiKe5RyUKovAS48ojXzJGKVjl6+0qMFKdGnCK43/j tDDS7r0NXI9T2V3hqSmOLdRuxFFrMUOq7RoEn21mrTJNVlIu0UZIePQmpyyNCXpg 9h+veSfJwBbFAuDqRgNiYTFOtLXf79/vw6R4G/UW3zY8884mGwyvmC8QJMw8gBEb H4Q02RZcF45CFKzm59Bv8aetyKDpJbcljDI51w9eKnfeGwDn4Gm0mR31+nynJNje YrhphWBrRbZLEmQ+gIydMuj1x/r+J70GGZy+1IMSwSkx3ayTxEvd1v95mIWATKaS /9l0PaxRnQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDWBZcS3l249R/P21nMg EjXUIjsid1LlXIVzu2EjpVs3Lma2cd9575RAOk91+D0rPlyDk/kwFfLy2lvXPRZk plKURTjo10Vyp3kc1Ww9335z22S0qdj78wTFIPtRkBlCPjAqB9fzyBGqdyIJWvi7 gFKc8QolG9EKL8qixRjBfccTfbcw9uDcY1rBxLhX9Z6gbekWSJcxFwGUyZ+os90i jeCHHzSepgc4iwjE8U4iFGogtkSt3IWm658cVGgaeOJVQTVYms4E2KXlrq17vMZK JrUfrM3FyyJVjXk6IhXR9cRM6N2S3QsMdRP6mIGTIIDr4j1+f/Wy0JTZPRbFrC5W qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 381780476222359429179311168095597381046254742119 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-09 12:49:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-09 12:49:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PostFinance AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www-poc-test.postfinance.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20224513319822698867686855743580348618886497161848506464636782714188538562788736146289296947174654351057849788138925233187357712038398664184478041529872430656321112490580594933699055055979791735343819781713157077419356184028779520280138983712040690788201233732384008408420671336138190765682868579166878772183870025048324428335280222485589921760486683348802904935585941970815379534044490156846559249425573470829799216049828922811019212741488010549766043547318544758052045624375229429982335981745768459904669041482117819022500024161459850922484436453253593567628245922228602271241833531672512441316769776390984707233449 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-poc-test.postfinance.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a3fda980de68d4802457b91bfa64cdde80e06878 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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