kunst.mobiliar.ch
- Schweizerische Mobiliar Holding AG -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 67:1d:0b:8e:cd:44:9a:cf:cc:61:39:54:7c:d2:04:2d:55:f8:f3:e0 was issued on by SwissSign AG.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Schweizerische Mobiliar Holding AG
Organization:
Schweizerische Mobiliar Holding AG
State / Province:
BE
Locality: Bern
Country: CH
Locality: Bern
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 67:1d:0b:8e:cd:44:9a:cf:cc:61:39:54:7c:d2:04:2d:55:f8:f3:e0Serial Number (int): 588673777833702166479942483480638567501643969504
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: f8:49:ff:03:80:b6:29:6f:0a:4d:7c:93:71:aa:0c:ee:60:81:e7:70
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 07:e2:58:f6:94:f4:19:6d:eb:e6:12:53:ec:4f:63:1c:55:0f:b6:3e
Fingerprint (sha256): 1a:42:e1:a2:a5:5f:6e:86:6e:9e:aa:29:60:8a:86:3c:4c:02:95:3c:11:e1:13:c8:51:30:1b:76:65:4a:86:ad
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate kunst.mobiliar.ch
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kunst.mobiliar.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kunst.mobiliar.ch
art.mobiliere.ch
arte.mobiliare.ch
art.mobiliere.ch
arte.mobiliare.ch
Other certificates including the domain name mobiliar.ch
(limited to 100 certificates)
standortcheck.mobiliar.ch
vpn.mobiliar.ch
gp-devsec.mobiliar.ch
cloud.campaign.mobiliar.ch
gp-ext.mobiliar.ch
securemail.mobiliar.ch
m24pp.mobiliar.ch
client-auto-i-dat.mobiliar.ch
vorsorge.mobiliar.ch
leonteq.mobiliar.ch
gp-gw-prelogon.mobiliar.ch
leonteq.mobiliar.ch
marke.mobiliar.ch
gp-portal.mobiliar.ch
gp-gw-prod.mobiliar.ch
video.mobiliar.ch
*.content.mobiliar.ch
meteo-alarm.mobi.ch
gp-gw-dev.mobiliar.ch
tinelstest.mobiliar.ch
sos.mobiliar.ch
test.mobiliar.ch
gp-prod.mobiliar.ch
strategiemap.mobiliar.ch
raiffeisen.mobiliar.ch
gp-gw-dev.mobiliar.ch
mobiliar.ch
trainingnet-compliance.mobiliar.ch
api.training.cyber.mobiliar.ch
staging-video.mobiliar.ch
gp-prelogon.mobiliar.ch
test500.apps.mobiliar.ch
marke.mobiliar.ch
click.campaign.mobiliar.ch
newsletter-cdn.mobiliar.ch
selfservice.mobiliar.ch
secure.mobi.ch
gp-userid.mobiliar.ch
meinauto.mobiliar.ch
handwerker.mobiliar.ch
jobs.mobiliar.ch
selfservice.mobiliar.ch
gp-userid.mobiliar.ch
luawext.mobiliar.ch
strategiemap.mobiliar.ch
url4870.mobiliar.ch
resources.mobiliar.ch
gp-gw-dev.mobiliar.ch
selfservice.mobiliar.ch
newsletter.mobiliar.ch
ucc.mobi.ch
gp-testzertifikat.mobiliar.ch
*.mobiliar.ch
gp-gw-prelogon.mobiliar.ch
mobiliar.ch
*.mobiliar.ch
kunst.mobiliar.ch
my.mobiliar.ch
fancystuff.mobiliar.ch
msghub.mobiliar.ch
mp.mobi.ch
cyber-training.mobiliar.ch
eshop.mobiliar.ch
test.mobiliar.ch
client-comparis.mobiliar.ch
b2capi1.mobiliar.ch
tinelstest.mobiliar.ch
www.handwerker.mobiliar.ch
check.mobiliar.ch
cyber-training.mobiliar.ch
b2capi.mobiliar.ch
liip-lead-client.mobiliar.ch
pssp-admin.mobiliar.ch
test.mobiliar.ch
vorsorge-mobiliar.ch
b2capi.mobiliar.ch
tymodenengelsman.com
vorsorge.mobiliar.ch
fileshare.mobiliar.ch
msghub.mobiliar.ch
meinauto-client.mobiliar.ch
smide.mobiliar.ch
gp-userid.mobiliar.ch
elm.mobiliar.ch
kunst.mobiliar.ch
igb2b.mobiliar.ch
b2eapi1.mobiliar.ch
eshop.mobiliar.ch
b2bapi2.mobiliar.ch
sign.mobiliar.ch
vorsorge.mobiliar.ch
viq.mobiliar.ch
jobs.mobiliar.ch
gp-gw-prelogon.mobiliar.ch
b2capi.mobiliar.ch
awareness.mobiliar.ch
z101392.mobiliar.ch
client-auto-i-dat.mobiliar.ch
kunst.mobiliar.ch
ftp.mobiliar.ch
vpn.mobiliar.ch
gp-devsec.mobiliar.ch
cloud.campaign.mobiliar.ch
gp-ext.mobiliar.ch
securemail.mobiliar.ch
m24pp.mobiliar.ch
client-auto-i-dat.mobiliar.ch
vorsorge.mobiliar.ch
leonteq.mobiliar.ch
gp-gw-prelogon.mobiliar.ch
leonteq.mobiliar.ch
marke.mobiliar.ch
gp-portal.mobiliar.ch
gp-gw-prod.mobiliar.ch
video.mobiliar.ch
*.content.mobiliar.ch
meteo-alarm.mobi.ch
gp-gw-dev.mobiliar.ch
tinelstest.mobiliar.ch
sos.mobiliar.ch
test.mobiliar.ch
gp-prod.mobiliar.ch
strategiemap.mobiliar.ch
raiffeisen.mobiliar.ch
gp-gw-dev.mobiliar.ch
mobiliar.ch
trainingnet-compliance.mobiliar.ch
api.training.cyber.mobiliar.ch
staging-video.mobiliar.ch
gp-prelogon.mobiliar.ch
test500.apps.mobiliar.ch
marke.mobiliar.ch
click.campaign.mobiliar.ch
newsletter-cdn.mobiliar.ch
selfservice.mobiliar.ch
secure.mobi.ch
gp-userid.mobiliar.ch
meinauto.mobiliar.ch
handwerker.mobiliar.ch
jobs.mobiliar.ch
selfservice.mobiliar.ch
gp-userid.mobiliar.ch
luawext.mobiliar.ch
strategiemap.mobiliar.ch
url4870.mobiliar.ch
resources.mobiliar.ch
gp-gw-dev.mobiliar.ch
selfservice.mobiliar.ch
newsletter.mobiliar.ch
ucc.mobi.ch
gp-testzertifikat.mobiliar.ch
*.mobiliar.ch
gp-gw-prelogon.mobiliar.ch
mobiliar.ch
*.mobiliar.ch
kunst.mobiliar.ch
my.mobiliar.ch
fancystuff.mobiliar.ch
msghub.mobiliar.ch
mp.mobi.ch
cyber-training.mobiliar.ch
eshop.mobiliar.ch
test.mobiliar.ch
client-comparis.mobiliar.ch
b2capi1.mobiliar.ch
tinelstest.mobiliar.ch
www.handwerker.mobiliar.ch
check.mobiliar.ch
cyber-training.mobiliar.ch
b2capi.mobiliar.ch
liip-lead-client.mobiliar.ch
pssp-admin.mobiliar.ch
test.mobiliar.ch
vorsorge-mobiliar.ch
b2capi.mobiliar.ch
tymodenengelsman.com
vorsorge.mobiliar.ch
fileshare.mobiliar.ch
msghub.mobiliar.ch
meinauto-client.mobiliar.ch
smide.mobiliar.ch
gp-userid.mobiliar.ch
elm.mobiliar.ch
kunst.mobiliar.ch
igb2b.mobiliar.ch
b2eapi1.mobiliar.ch
eshop.mobiliar.ch
b2bapi2.mobiliar.ch
sign.mobiliar.ch
vorsorge.mobiliar.ch
viq.mobiliar.ch
jobs.mobiliar.ch
gp-gw-prelogon.mobiliar.ch
b2capi.mobiliar.ch
awareness.mobiliar.ch
z101392.mobiliar.ch
client-auto-i-dat.mobiliar.ch
kunst.mobiliar.ch
ftp.mobiliar.ch
Certificate
The complete raw certificate details for kunst.mobiliar.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKKzCCCBOgAwIBAgIUZx0Ljs1Ems/MYTlUfNIELVX48+AwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMTIwNjEy MTcyN1oXDTIzMTIwNjEyMTcyN1owcjELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAkJF MQ0wCwYDVQQHEwRCZXJuMSswKQYDVQQKEyJTY2h3ZWl6ZXJpc2NoZSBNb2JpbGlh ciBIb2xkaW5nIEFHMRowGAYDVQQDExFrdW5zdC5tb2JpbGlhci5jaDCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALerkqdJb97fG6PN9engAmMtsauMCBp9 WOy8aLOubevLlqN/gB/EWkwUUaJThU8jh7qV1MlvjBKuYbpHfstR363INLYqw8aI GlwXvvK6Gtn2C8S5Ste1GcbNnomOwS2mxf8MxCy6OaUPKE9ibf+VgMduE+1jhaK+ 36Fvf0sMfWzaYo+Sp6cdQMjK4WQf+FF5hf7oGGKSpFo0mrbKUrVPhPF9e4QJIvnP yH3dqjqFDYcQJgLXBZcuHsjQ/VDrk1I8lTwHCcXDQhRPsrEHFDfAeOZaie7Ns5KP UIQMyQBDP/9Y8+ltYpUdehtEFAjOeY6z9M0ehq8RFTjyNHz7ZbGUon8CAwEAAaOC BdkwggXVMEEGA1UdEQQ6MDiCEWt1bnN0Lm1vYmlsaWFyLmNoghBhcnQubW9iaWxp ZXJlLmNoghFhcnRlLm1vYmlsaWFyZS5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBT4Sf8DgLYpbwpNfJNx qgzuYIHncDAfBgNVHSMEGDAWgBSs0DrCwldVkWkRzHBqWTiKjKycPTCB/wYDVR0f BIH3MIH0MEegRaBDhkFodHRwOi8vY3JsLnN3aXNzc2lnbi5uZXQvQUNEMDNBQzJD MjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMzRDCBqKCBpaCBooaBn2xkYXA6 Ly9kaXJlY3Rvcnkuc3dpc3NzaWduLm5ldC9DTj1BQ0QwM0FDMkMyNTc1NTkxNjkx MUNDNzA2QTU5Mzg4QThDQUM5QzNEJTJDTz1Td2lzc1NpZ24lMkNDPUNIP2NlcnRp ZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmli dXRpb25Qb2ludDBvBgNVHSAEaDBmMFAGCGCFdAFZAgECMEQwQgYIKwYBBQUHAgEW Nmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbl9DUFNf VExTLnBkZjAIBgYEAI96AQcwCAYGZ4EMAQICMIHGBggrBgEFBQcBAQSBuTCBtjBk BggrBgEFBQcwAoZYaHR0cDovL3N3aXNzc2lnbi5uZXQvY2dpLWJpbi9hdXRob3Jp dHkvZG93bmxvYWQvQUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FD OUMzRDBOBggrBgEFBQcwAYZCaHR0cDovL29jc3Auc3dpc3NzaWduLm5ldC9BQ0Qw M0FDMkMyNTc1NTkxNjkxMUNDNzA2QTU5Mzg4QThDQUM5QzNEMIIC4wYKKwYBBAHW eQIEAgSCAtMEggLPAs0AdgBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPT DAAAAYTnXp54AAAEAwBHMEUCIAdAAzkVkmurCooGIGHtU8VMDX04wGI7UO8Ocrfs wl2DAiEAhogINHxKQ4l785B/WGQzLAc9uTcljX8ZhOc1l6KukUEAdgBvU3asMfAx GdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAYTnXp1LAAAEAwBHMEUCIE1m+8M9 TEKuh+Bf4Hq17Ef7Mpoh14hMHpAUH7MuXeW2AiEAh6OOkhOxCjmIKuIceju1r0Oh XJZNnL5Vf0Hmmeh0v1gAdQB6MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1Lr UgAAAYTnXp28AAAEAwBGMEQCICIlKhDZl4oF1i2ofTeDTb6zxcmRZiEP+YB1krLt QlMaAiBeCakuyrdKRUXrGl66DOOVI34bb0SNs+pJKkfqKqIwsAB2AK33vvp8/xDI i509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABhOdentUAAAQDAEcwRQIhALVy9Gpl sVh8ACdAeNizDHAA4mHJkav6YzrwoivCFj4AAiAxkGwk2vvIo8qp55vgh09GUl7J eKweimXY0IlhdZ5K9wB1ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWa AAABhOden8oAAAQDAEYwRAIgUYM/kQHxr8o9h4OJI9RHtCJW2kAGTpG77ByHoAbm EIQCIEQY5v50PQL8n8XuGYXPNT7K4NjW2jm7jmYmZL1aOuogAHUA6D7Q2j71BjUy 51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGE516fpAAABAMARjBEAiB2+P30gl2x iiFEMueeE1wZx3i39Obt+gXZ3AoSJhqZQAIgc9NFOXrNfVqyaAEjjFCIc+C3HGCS 84hfRRCbFelA8PMwDQYJKoZIhvcNAQELBQADggIBAJ+4X6bPAVwxMxuk6CIRHweE jQy3nUUj0Zhr9++nknCAfOvxhE0dY89/T1Ybhwu9yxmM5L50yvFILQdWiFlHYIAb WhDmEDCOIP66j+NNR6BBptbYIjl+cJgaGJWk3NUC1qCXRkOX/F6lSwB6EKIaOup9 agXoD9GFXhvaAWEzndpd6WAUtO7ApxZSjs+tHTRM8Z0IBcz0NeiKwWZ+8JkyWA0n ypV1FDyr2RWIVLdIlnJ9hY3+WsexjvIjXeAmi/TGv4pxFlBjdGawuESiK3rCzXwp UQnUOBaSWkWo7Lp8IbwZgznhQCjxAEvOxY+zsx30J092GzPoRkawPcltfZRE63Ck cVMCXcKELUr4Jk6D0qNlX5yr/st3wT6eG+tmVBRtzqrI/GD4Ham0HshGP/jKBerU jrJCMbrFqyrmV+KtxIe2T1llB71t6ih5+CqkYpQe5Hu2nE8dMPhbKc6yYr2ZA18Z ZtB+LSjKBRyUfoqf+9Fm7l48RBAy2AwmFSRdIuxtp4UOTwHwvWSEaGEs8LRNRfd1 SMSUC5kTwyAnTf3LqOQet7j/0wtO9Jxx73COPxa1CCH1qdFxWWVe+/hX8cwb9mao vsijDDzRWWUiQyKUb1EAC4d2QGBUSM4cnKL1Uv57gyjelh3yy/jttRCNJ1p2sPSW 8HPrSmU7nEVKnygfKeYc -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6uSp0lv3t8bo8316eAC Yy2xq4wIGn1Y7Lxos65t68uWo3+AH8RaTBRRolOFTyOHupXUyW+MEq5hukd+y1Hf rcg0tirDxogaXBe+8roa2fYLxLlK17UZxs2eiY7BLabF/wzELLo5pQ8oT2Jt/5WA x24T7WOFor7foW9/Swx9bNpij5Knpx1AyMrhZB/4UXmF/ugYYpKkWjSatspStU+E 8X17hAki+c/Ifd2qOoUNhxAmAtcFly4eyND9UOuTUjyVPAcJxcNCFE+ysQcUN8B4 5lqJ7s2zko9QhAzJAEM//1jz6W1ilR16G0QUCM55jrP0zR6GrxEVOPI0fPtlsZSi fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 588673777833702166479942483480638567501643969504 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-06 12:17:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 12:17:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Schweizerische Mobiliar Holding AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kunst.mobiliar.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23186215541865907251247401571995031412107756625171287390455824119897768720489195468801753529840045846385903662973062694833595372839782038825814515408401459512503578999757808330594321691765757366209674928795372836304438393949633611881217832939145492403805380275088003968300387072271662325714536297620218099618371133519119339849875301154955021799042024950705593485975019029029583645211955507510969912114747791092928612646591836917075164101191003117409974721887851719900924471912058112622488385067431955072136189336632904183179569447890297916801120474387035186353031805326007164385717274440521171139011442908490502546047 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kunst.mobiliar.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'art.mobiliere.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arte.mobiliare.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f849ff0380b6296f0a4d7c9371aa0cee6081e770 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (723 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (719 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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