dev-opus.lucorp.ch
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 6e:30:df:1a:e4:98:87:4e:fc:d1:b5:1b:1c:db:f2:18:81:c7:5e:f0 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dev-opus.lucorp.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 6e:30:df:1a:e4:98:87:4e:fc:d1:b5:1b:1c:db:f2:18:81:c7:5e:f0Serial Number (int): 629078855751112096600636813341677475783768497904
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: f0:a1:3d:0a:38:cc:f1:16:a0:5a:e5:7e:c3:54:2a:52:5f:4e:ae:68
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): 75:5a:d5:58:97:04:82:53:82:45:9f:9b:ae:41:d4:82:4f:e2:a9:03
Fingerprint (sha256): 1f:cd:b1:f1:95:1b:c0:41:ac:c9:68:5f:4d:99:67:f2:cd:a8:68:60:40:5b:fb:f5:62:69:15:77:95:3c:ae:76
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate dev-opus.lucorp.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dev-opus.lucorp.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
d-oim-app01.lucorp.ch
dev-opus.lucorp.ch
dev-opus.lucorp.ch
Other certificates including the domain name lucorp.ch
(limited to 100 certificates)
int-opus.lucorp.ch
dev-zertifikate.lucorp.ch
sb009425.lucorp.ch
lu311003.lucorp.ch
contractx.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
michel.lucorp.ch
caml.lucorp.ch
zertifikate.lucorp.ch
dlp-admin.lucorp.ch
norma4040046.lucorp.ch
int-caml.lucorp.ch
dev-zertifikate.lucorp.ch
uci-lukh-nc-002.ucc.lucorp.ch
lu326003.lucorp.ch
int-ecm-trans.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
*.ops.lucorp.ch
tst-opus.lucorp.ch
vm-prd-iacmvp-gitlabserver-chn-001.gitlab.azure.lucorp.ch
int-ecm-trans.lucorp.ch
lu317003.lucorp.ch
amx1.lucorp.ch
paedi.lucorp.ch
tst-opus.lucorp.ch
dev-admin-anlegen.lucorp.ch
old-opus.lucorp.ch
zertifikate.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
rechner.lucorp.ch
norma4040315.lucorp.ch
uci-lukh-nc-003.ucc.lucorp.ch
uci-lukh-nwe-002.lukb.ch
*.lucorp.ch
norma4040044.lucorp.ch
old-opus.lucorp.ch
lu380003.lucorp.ch
tst-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
ecm-act1.lucorp.ch
old-opus.lucorp.ch
int-intra.lucorp.ch
dev-zertifikate.lucorp.ch
int-admin.lucorp.ch
dev-opus.lucorp.ch
test-dlp.lucorp.ch
int-opus.lucorp.ch
zertifikate.lucorp.ch
quote-push1.lucorp.ch
norma4040045.lucorp.ch
tst-opus.lucorp.ch
lu326001.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
int-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
tst-opus.lucorp.ch
int-opus.lucorp.ch
old-opus.lucorp.ch
tst-opus.lucorp.ch
ecm-act4.lucorp.ch
norma4040045.lucorp.ch
keycloak.test-dlp.lucorp.ch
int-datrading.lucorp.ch
dacs.lucorp.ch
int-datrading.lucorp.ch
dev-opus.lucorp.ch
int-opus.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
dev-opus.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
lu311003.lucorp.ch
opus.lucorp.ch
zertifikate.lucorp.ch
datrading.lucorp.ch
old-opus.lucorp.ch
lu312004.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
sb001904.lucorp.ch
dev-opus.lucorp.ch
norma4040250.lucorp.ch
dev-opus.lucorp.ch
opus.lucorp.ch
old-opus.lucorp.ch
test-dlp.lucorp.ch
sursee-safepro.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
lu15388.lucorp.ch
vm-prd-iacmvp-gitlabrunner-chn-001.gitlab.azure.lucorp.ch
michel1.lucorp.ch
dev-zertifikate.lucorp.ch
arbeitszeugnis.lucorp.ch
old-opus.lucorp.ch
lu305003.lucorp.ch
dev-zertifikate.lucorp.ch
sb009425.lucorp.ch
lu311003.lucorp.ch
contractx.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
michel.lucorp.ch
caml.lucorp.ch
zertifikate.lucorp.ch
dlp-admin.lucorp.ch
norma4040046.lucorp.ch
int-caml.lucorp.ch
dev-zertifikate.lucorp.ch
uci-lukh-nc-002.ucc.lucorp.ch
lu326003.lucorp.ch
int-ecm-trans.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
*.ops.lucorp.ch
tst-opus.lucorp.ch
vm-prd-iacmvp-gitlabserver-chn-001.gitlab.azure.lucorp.ch
int-ecm-trans.lucorp.ch
lu317003.lucorp.ch
amx1.lucorp.ch
paedi.lucorp.ch
tst-opus.lucorp.ch
dev-admin-anlegen.lucorp.ch
old-opus.lucorp.ch
zertifikate.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
rechner.lucorp.ch
norma4040315.lucorp.ch
uci-lukh-nc-003.ucc.lucorp.ch
uci-lukh-nwe-002.lukb.ch
*.lucorp.ch
norma4040044.lucorp.ch
old-opus.lucorp.ch
lu380003.lucorp.ch
tst-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
ecm-act1.lucorp.ch
old-opus.lucorp.ch
int-intra.lucorp.ch
dev-zertifikate.lucorp.ch
int-admin.lucorp.ch
dev-opus.lucorp.ch
test-dlp.lucorp.ch
int-opus.lucorp.ch
zertifikate.lucorp.ch
quote-push1.lucorp.ch
norma4040045.lucorp.ch
tst-opus.lucorp.ch
lu326001.lucorp.ch
old-opus.lucorp.ch
dev-zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
int-opus.lucorp.ch
uci-lukt-np-001.int-ucc.lucorp.ch
zertifikate.lucorp.ch
dev-zertifikate.lucorp.ch
tst-opus.lucorp.ch
int-opus.lucorp.ch
old-opus.lucorp.ch
tst-opus.lucorp.ch
ecm-act4.lucorp.ch
norma4040045.lucorp.ch
keycloak.test-dlp.lucorp.ch
int-datrading.lucorp.ch
dacs.lucorp.ch
int-datrading.lucorp.ch
dev-opus.lucorp.ch
int-opus.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
uci-lukh-nc-001.ucc.lucorp.ch
dev-opus.lucorp.ch
uci-lukt-nc-001.int-ucc.lucorp.ch
lu311003.lucorp.ch
opus.lucorp.ch
zertifikate.lucorp.ch
datrading.lucorp.ch
old-opus.lucorp.ch
lu312004.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
sb001904.lucorp.ch
dev-opus.lucorp.ch
norma4040250.lucorp.ch
dev-opus.lucorp.ch
opus.lucorp.ch
old-opus.lucorp.ch
test-dlp.lucorp.ch
sursee-safepro.lucorp.ch
uci-lukt-nr-001.int-ucc.lucorp.ch
lu15388.lucorp.ch
vm-prd-iacmvp-gitlabrunner-chn-001.gitlab.azure.lucorp.ch
michel1.lucorp.ch
dev-zertifikate.lucorp.ch
arbeitszeugnis.lucorp.ch
old-opus.lucorp.ch
lu305003.lucorp.ch
Certificate
The complete raw certificate details for dev-opus.lucorp.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJGjCCBwKgAwIBAgIUbjDfGuSYh0780bUbHNvyGIHHXvAwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTI0MDExMjE1 MjE0MloXDTI1MDExMjE1MjE0MlowHTEbMBkGA1UEAxMSZGV2LW9wdXMubHVjb3Jw LmNoMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgd+ej1lE6GoEZLlt y9Gs81eTnA7Mdsnix+oKudoBI1FvLq7DklyNYlQZ4qMoJ3RIGWxxxIpxp5R9U6GY CsO4QljKJSuFqFe1Bnrqnbp21YuqGaKRLYTFFH5n6bpf3dt9DfPdoRMIXLe37G06 j7Ncw6isgUem2AHbjIl1ZNtzmXmSdMJ/4MGcoW/DUXhhWWdIgBUoGLaRJTBXj+HO 4oYtWko2eM0sGim4hQWoMRTLI2r5W3XDDGsCs0l7+pEtZEAb4i5QL3iavuzyXtHM YjDRQ/XPorqhvQRh2sLeiBT7mAoOzh1zK+TRZBO4C7BRhUGdlo3IePCVuG6wW0zp 1th3p0K6s5T36/iPPe2R4cGXxIv/cnhNN8uGLqk1Gc5T26E2BmVHZ6qv4mSZYDxQ 4BfSuU6RW0kz3K4sFpEO3LPhvaaQqGsKqZrL4zGXUk/DUcqZUq+wm+qFK0I3ul/B kDVWaGmT1gLkXTkiQLfQ8NPOSUuZMwzGhd7C2ZCptMSo1TYPBSjAngzdpWvGW/bi I97069EoqMRed/oTwMPq+9L2Y7HjBzHs3VbuVBDJMNNMr+/Bz3CHaYXC+slYr3nd XaYmAn6a3s0Os6klXT9F9FzyjQJSPw+Cb+EAG4ag50bGhQ99PIbE084bmLhW+OgL 2oE9XLszaPETwPdEBAA4DJ8Fy4UCAwEAAaOCBB0wggQZMIGyBggrBgEFBQcBAQSB pTCBojBMBggrBgEFBQcwAoZAaHR0cDovL2FpYS5zd2lzc3NpZ24uY2gvYWlyLTFi ODYzMzg1LWY0YTktNDdmYS04OGE1LTJhNWFiZmQ0YTE2NzBSBggrBgEFBQcwAYZG aHR0cDovL29jc3Auc3dpc3NzaWduLmNoL3NpZ24vb2NzLWFhY2NjZWQ1LTY2ZTgt NDA2OS05YjFiLWZkMjlhYjczZWZlYzBvBgNVHSAEaDBmMAgGBmeBDAECATAIBgYE AI96AQYwUAYIYIV0AVkCAQEwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0 b3J5LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMFEGA1UdHwRK MEgwRqBEoEKGQGh0dHA6Ly9jcmwuc3dpc3NzaWduLmNoL2NkcC02Nzk3MjNiMi04 NjQxLTQ2NDItODUwMC1mNmQyZmYzN2U2YmEwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDA0BgNVHREELTArghVkLW9pbS1hcHAw MS5sdWNvcnAuY2iCEmRldi1vcHVzLmx1Y29ycC5jaDAdBgNVHQ4EFgQU8KE9CjjM 8RagWuV+w1QqUl9OrmgwHwYDVR0jBBgwFoAU671/SZOMye7sorr3HNJn8IOx6t4w ggH3BgorBgEEAdZ5AgQCBIIB5wSCAeMB4QB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4 cCUIFy+jqh0HE9MMAAABjP5DxbAAAAQDAEcwRQIhAI1EL+8HYC8jnt/BNuMKFI1a d53XCwDL2juaiTp9iCKMAiBXxv3oMU4mWBom2XfaO9oD4NxX1O72JCGYvqiyH0YS jAB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAABjP5DxzIAAAQD AEgwRgIhAPh9/p+glLJrjTHLeTooIToEXgo0s/n8CGOD/9Ew/88NAiEAjQz1Dlaz m1+IPiRv17ffk07/LC0GKOlIlKsUGvYOcyAAdgDM+w9qhXEJZf6Vm1PO6bJ8IumF XA2XjbapflTA/kwNsAAAAYz+Q8iSAAAEAwBHMEUCIQDfMItAqcQtaU5eZtWEMjps xdh96+J+aw5zoNv5z2C2ywIgJT3KO08FzTUHm217HM4R7jh9bmpYJEKrzrGGMCtg /FEAdgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAYz+Q8mlAAAE AwBHMEUCIH19txUjxCYMvuVPsT1YewdfPlRHof5pb+brMAvNfQhMAiEAjiU7V38o Bopv4DHb0Nff5Xmk2IKtK7TgNfU22b9tFf8wDQYJKoZIhvcNAQELBQADggIBADNA tGUH68TgT4niJMDpxWigxjGvLgdAQVa2iFcSvTR/uY4ePgU38JMaQf3fc6xwUlmm E8rnxwElolBooUCWBRZuYbzxYKt3HI8RroCEjssypL65trSBAHoLYAK8NNq0n5Z3 kIGAU37PFWCSZnym35uMsTik2fKL7vPdxmO07vt51dYe45sN7drVvrwQ8gobt6JB s11uumrZJc55SRnBYsxfGaW1MC90Tn/CTtVFg5eQ9f3LwGW2QKRb7o4S86+Qdofm eDd0c5lJYmIxtEzf+qP812JwS6buo5aAHdV7iHUvS4OaDM2P/7OR5THCdeIyJJwm 8eJD2FEgS2ldwk1Pe/rA3pgNqKMk3u5y4YswzqyCQgqF7vSyhTryZRn5QDMlNDmi ti+q2odwLibKri7FB03OoH0Xf8lKew50Bc0vAOiCjR3UkhEQwxpFM7DXGCfT0u48 AEUBvJnWomL0bqn5blRiNGFDlct3myo4SrL+SRkcPAeSC4PPAQgoos6oV8+4cCBs u5CMg34RmjhPbv/vd2uDmRHvIQXjqLZAbxz4eGZaHWtEACLJulxc7NANGB2Ek2uE 2vTr8EQIhr413sZbiHGxSlnlmHrs7J8ORyRfJMlawGnNraJHSKx/ADHhk7jStUnq L8GG7tq8qc4vBVK+13dbbcxd1sU8C/PH+LLyRjJq -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAgd+ej1lE6GoEZLlty9Gs 81eTnA7Mdsnix+oKudoBI1FvLq7DklyNYlQZ4qMoJ3RIGWxxxIpxp5R9U6GYCsO4 QljKJSuFqFe1Bnrqnbp21YuqGaKRLYTFFH5n6bpf3dt9DfPdoRMIXLe37G06j7Nc w6isgUem2AHbjIl1ZNtzmXmSdMJ/4MGcoW/DUXhhWWdIgBUoGLaRJTBXj+HO4oYt Wko2eM0sGim4hQWoMRTLI2r5W3XDDGsCs0l7+pEtZEAb4i5QL3iavuzyXtHMYjDR Q/XPorqhvQRh2sLeiBT7mAoOzh1zK+TRZBO4C7BRhUGdlo3IePCVuG6wW0zp1th3 p0K6s5T36/iPPe2R4cGXxIv/cnhNN8uGLqk1Gc5T26E2BmVHZ6qv4mSZYDxQ4BfS uU6RW0kz3K4sFpEO3LPhvaaQqGsKqZrL4zGXUk/DUcqZUq+wm+qFK0I3ul/BkDVW aGmT1gLkXTkiQLfQ8NPOSUuZMwzGhd7C2ZCptMSo1TYPBSjAngzdpWvGW/biI970 69EoqMRed/oTwMPq+9L2Y7HjBzHs3VbuVBDJMNNMr+/Bz3CHaYXC+slYr3ndXaYm An6a3s0Os6klXT9F9FzyjQJSPw+Cb+EAG4ag50bGhQ99PIbE084bmLhW+OgL2oE9 XLszaPETwPdEBAA4DJ8Fy4UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 629078855751112096600636813341677475783768497904 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-12 15:21:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-12 15:21:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dev-opus.lucorp.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 529837707649636098331687186309412788278847656110405527724464257190661310715174171844706657581776800575158027982471885261381797274394363206746800438346778771250093941653232696255035633982370762856756140321266656586230348751836149004750598502860409648579297121200615319384259613239260249534308413942049534154827855029902978836253506845440679931673124802004086456029632664920650518820550526519211431372568088870105947221930950296962385804680108914278465258003643489342310143764408036338974758986444648200143159949082384121800566524621289464814052223466720972386449083449486593788592387296022183918585367639965726077969053679055869741981697773072691610450453467985499097366439994898090101630516994125645385082370281607970405382652701574207420543562727443780708025928342068274044374300993290939771668343746094512900508407212771956101728876038222682563250676595025206115512290405090477208784690198575390568786638783958590023906026238920578321034861346131520318950990991060163157597846438429900085653193349119189223746635452464713032088420526174474238589728335407564307452546527630277952198980761752860716503892624395306381836469840958566684698161888859973816463029920399437890206024032568910097326205629495841582717824196016840009603992453 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'd-oim-app01.lucorp.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-opus.lucorp.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f0a13d0a38ccf116a05ae57ec3542a525f4eae68 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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