bi-test.sartorius.com
Issued by SwissSign RSA TLS DV ICA 2021 - 1
About this certificate
This digital certificate with serial number 4d:a5:6b:75:a1:73:a5:0d:43:b8:ea:37:b6:44:a2:16:6a:40:48:13 was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bi-test.sartorius.com
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 4d:a5:6b:75:a1:73:a5:0d:43:b8:ea:37:b6:44:a2:16:6a:40:48:13Serial Number (int): 443281273353430993389109606073658533515817404435
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 1d:32:b7:b3:29:3f:96:8e:96:f0:ea:4b:3b:68:7d:89:44:54:47:64
AuthorityKeyId: 3c:9e:52:79:03:63:6f:4f:9c:81:1b:d3:28:70:0c:24:5a:ea:a5:87
Fingerprint (sha1): 81:c1:15:05:ee:5f:37:03:f6:4e:00:9e:25:64:94:0f:99:e1:ae:57
Fingerprint (sha256): 1f:c5:11:f2:9e:b2:15:a5:82:68:da:fe:7e:47:cb:cf:27:b8:72:ec:f9:9d:70:29:e0:ff:ff:e3:46:52:d0:1d
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587
Revocation information
OCSP Server: http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587CRL Distribution Point: http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587
CRL Distribution Point: ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate bi-test.sartorius.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bi-test.sartorius.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bi-test.sartorius.com
Other certificates including the domain name sartorius.com
(limited to 100 certificates)
cert00068-azurecdn.akamaized.net
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
eshop.sartorius.com
api-qa.sartorius.com
*.scp.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
eshop-qa.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
ir-berichte.sartorius.de
btconfigurator-dev2.sartorius.com
su-adp-presentation.sartorius.com
*.portal.sartorius.com
cert00068-azurecdn.akamaized.net
jira.sartorius.com
am.vpn.sartorius.com
cert00068-azurecdn.akamaized.net
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
www.sartorius.com
sfpi-test.sartorius.com
go.sartorius.com
bioprocess-sandbox.sartorius.com
configurator-presentation.sartorius.com
serviceshop.sartorius.de
login.sartorius.com
click.sartorius.com
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
eshop.sartorius.com
api-qa.sartorius.com
*.scp.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
eshop-qa.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
ir-berichte.sartorius.de
btconfigurator-dev2.sartorius.com
su-adp-presentation.sartorius.com
*.portal.sartorius.com
cert00068-azurecdn.akamaized.net
jira.sartorius.com
am.vpn.sartorius.com
cert00068-azurecdn.akamaized.net
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
www.sartorius.com
sfpi-test.sartorius.com
go.sartorius.com
bioprocess-sandbox.sartorius.com
configurator-presentation.sartorius.com
serviceshop.sartorius.de
login.sartorius.com
click.sartorius.com
Certificate
The complete raw certificate details for bi-test.sartorius.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIyTCCBrGgAwIBAgIUTaVrdaFzpQ1DuOo3tkSiFmpASBMwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjEgLSAxMB4XDTIyMDkyNzEw MDk0NFoXDTIzMDkyNzEwMDk0NFowIDEeMBwGA1UEAxMVYmktdGVzdC5zYXJ0b3Jp dXMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk47mecHEMxdP MbLUQ1lP+ND7Xi0ndn7LnI32xHZcGE5i3PHrKgY90UK9fQkgA4KHRRrHy3faq+m1 QvPdtEs8EVYJ/HyTlhTP7DAvmKdLncDEIxb7/pAgbANpdSol47u5MpnB5oirdQx7 BzSWjYq43w3CuCwR1935gcPttt0+hHspeinFwm3ntCH7wwwqz0bpgHMjRV8i0Qhq CFvuZAlT2e47Y8+ChKmAnBDrSNk5ouwt34Q7ZLq7jCPE4cZFHZk3NZTEytO/6LR5 5SRz1elr3Phzj0r8S+sBCBtu0ebkOvnB24wGh5DzeieqDBWtEVTsCf1EWQScGWIn OfoCE6dnzQIDAQABo4IEyTCCBMUwIAYDVR0RBBkwF4IVYmktdGVzdC5zYXJ0b3Jp dXMuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwHQYDVR0OBBYEFB0yt7MpP5aOlvDqSztofYlEVEdkMB8GA1UdIwQYMBaA FDyeUnkDY29PnIEb0yhwDCRa6qWHMIH/BgNVHR8EgfcwgfQwR6BFoEOGQWh0dHA6 Ly9jcmwuc3dpc3NzaWduLm5ldC8zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMyODcw MEMyNDVBRUFBNTg3MIGooIGloIGihoGfbGRhcDovL2RpcmVjdG9yeS5zd2lzc3Np Z24ubmV0L0NOPTNDOUU1Mjc5MDM2MzZGNEY5QzgxMUJEMzI4NzAwQzI0NUFFQUE1 ODclMkNPPVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlz dD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MG8GA1UdIARo MGYwUAYIYIV0AVkCAQEwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5 LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMAgGBgQAj3oBBjAI BgZngQwBAgEwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsGAQUFBzAChlhodHRwOi8v c3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC8zQzlFNTI3 OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3ME4GCCsGAQUFBzABhkJo dHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0LzNDOUU1Mjc5MDM2MzZGNEY5QzgxMUJE MzI4NzAwQzI0NUFFQUE1ODcwggH0BgorBgEEAdZ5AgQCBIIB5ASCAeAB3gB1AHoy jFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABg35si4kAAAQDAEYwRAIg eoN0xxUGM6xJIWrlptg4N6IMINwBSktOBwZFf5U0m4gCIDQqU6X+KbhyCamSMtXd Jl1qiMpye8KeDRNYonc9IJJDAHYArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWG NOvcgooAAAGDfmyLmwAABAMARzBFAiAXVTB1japlb5epMLbQrmS9GM8SkkITg/aB QXWDNnhkCwIhAO/w+0JsV7ihkbJxKGO96MXgqWFqEgfnpYcv0mGRPKWfAHUAs3N3 B+GEUPhjhtYFqdwRCUp5LbFnDAuH3PADDnk2pZoAAAGDfmyOIQAABAMARjBEAiAN jVxO48XMe9t7EAiWuEZGXv70LKVAmPwjsegRE9rUiwIgCOyhtQzPn/lIvO3N3zuC v7VweWWqRk/AtY6+jJYJ4zcAdgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9 bQa9bgAAAYN+bI1/AAAEAwBHMEUCIGJtV38CSZvY62EAr++UKBF4Sx2w0+hDhK92 +NB9SpzgAiEAqd3Tr0gU8F2yRSiIpC/eIWvpYpFaojWmK8IUtNcnAQcwDQYJKoZI hvcNAQELBQADggIBAAfY/GOQd/4qZdjMRKHFH6rUkjwpT8irszbhe5YNmdmRb1Dg icXrJf5cBXVXoXeOm0Ghw0ajW8ltPxKQEoKsVp5HOCqQj6hqgU6WcMlS8jiSI18r borI2HIIxZLnSmLvaLLUk03KV0jbIpKYcn0+1PHDt0+PoMYp7+NxeqSJzVyZSkN9 NKWbAHvHzBWXnLvE2wd/lv6//CiM2SM+oSqu6CTkbjrXE0jA4lJg4UaenwPsntKG 9tNl0+Wc5xswqxbPG2mFldsJdKKSS6VmBzFuujuzjw5SIlTYElzy2LdAN6y5WlGP 9B/fG+yB3vepgKsYghyatWjvVnUsZPMkD4INKyJ1LjLccECzHQWynPtwpTbqXefK rHu8Ta9/ilYimALZAUF5SwL1Aa2ygSHKBfgC5w/ntqkcUrPsKCS8rALd5iHZIY6r K+E3LW+1s+kI1yKQ/jb0Hb5W666+6FrtPsadqb+RHrxW47Cpko0uG0Isvg8Nq6WD 2WNR2uaIZD6tPM/avRw/B/hahzk9Tj5lU7vWx0v42TEyBHZkDi98cJD7wLX7A14A xreJoawMr6vSFOe4PbDsfptFK1TfRXSu9orqx9h2cOKsxBxbrUdzsEyNHKO9ngwr gHyjvnapPdH0KNtjaz8+ZKmj6XSvth02cYc5I1u5U47n/DqtxpmhKh4zjQfS -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk47mecHEMxdPMbLUQ1lP +ND7Xi0ndn7LnI32xHZcGE5i3PHrKgY90UK9fQkgA4KHRRrHy3faq+m1QvPdtEs8 EVYJ/HyTlhTP7DAvmKdLncDEIxb7/pAgbANpdSol47u5MpnB5oirdQx7BzSWjYq4 3w3CuCwR1935gcPttt0+hHspeinFwm3ntCH7wwwqz0bpgHMjRV8i0QhqCFvuZAlT 2e47Y8+ChKmAnBDrSNk5ouwt34Q7ZLq7jCPE4cZFHZk3NZTEytO/6LR55SRz1elr 3Phzj0r8S+sBCBtu0ebkOvnB24wGh5DzeieqDBWtEVTsCf1EWQScGWInOfoCE6dn zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 443281273353430993389109606073658533515817404435 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-27 10:09:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-27 10:09:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bi-test.sartorius.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18627497591986226266549245604507872429628825838368922029323839858987175605223956483751346445435635118286037340477623497759054461830691560452980494671405804192192973829625908192513069052254825398334456134670862452117278200810563540754646437326275378629515147070071620014082924624306252944260669388207177806087526217462846187141448060015877249386244239255943381185073250198120090704797596582026433650539917875561434699560042278657597906276949192957597062577296255291161270604134854803422650335305972907586076641638783844439549051108661135189202937291824276511759807674184283706412393185658141554209894111636061566756813 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bi-test.sartorius.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1d32b7b3293f968e96f0ea4b3b687d8944544764 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3c9e527903636f4f9c811bd328700c245aeaa587 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (480 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 0007d8fc639077fe2a65d8cc44a1c51faad4923c294fc8abb336e17b960d99d9916f50e089c5eb25fe5c057557a1778e9b41a1c346a35bc96d3f12901282ac569e47382a908fa86a814e9670c952f23892235f2b6e8ac8d87208c592e74a62ef68b2d4934dca5748db229298727d3ed4f1c3b74f8fa0c629efe3717aa489cd5c994a437d34a59b007bc7cc15979cbbc4db077f96febffc288cd9233ea12aaee824e46e3ad71348c0e25260e1469e9f03ec9ed286f6d365d3e59ce71b30ab16cf1b698595db0974a2924ba56607316eba3bb38f0e522254d8125cf2d8b74037acb95a518ff41fdf1bec81def7a980ab18821c9ab568ef56752c64f3240f820d2b22752e32dc7040b31d05b29cfb70a536ea5de7caac7bbc4daf7f8a56229802d90141794b02f501adb28121ca05f802e70fe7b6a91c52b3ec2824bcac02dde621d9218eab2be1372d6fb5b3e908d72290fe36f41dbe56ebaebee85aed3ec69da9bf911ebc56e3b0a9928d2e1b422cbe0f0daba583d96351dae688643ead3ccfdabd1c3f07f85a87393d4e3e6553bbd6c74bf8d931320476640e2f7c7090fbc0b5fb035e00c6b789a1ac0cafabd214e7b83db0ec7e9b452b54df4574aef68aeac7d87670e2acc41c5bad4773b04c8d1ca3bd9e0c2b807ca3be76a93dd1f428db636b3f3e64a9a3e974afb61d36718739235bb9538ee7fc3aadc699a12a1e338d07d2