identityserver.datacenter-migros.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:1c:e6:6c:06:7a:0d:ca:88:47:6e:f0:3d:d1:af:19:fb:92 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=identityserver.datacenter-migros.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:1c:e6:6c:06:7a:0d:ca:88:47:6e:f0:3d:d1:af:19:fb:92Serial Number (int): 358283333339283077575974909763585280965522
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 64:55:90:45:15:ef:ed:98:01:ad:a5:2d:05:5c:ea:b9:52:84:ce:9e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 06:5d:09:d0:dd:fa:2d:ca:8d:af:97:a2:7a:85:db:55:6d:6d:67:d4
Fingerprint (sha256): 20:d8:55:91:60:53:49:19:0d:1d:8a:81:cc:eb:75:50:4a:8d:6f:01:3a:49:67:1a:5b:76:cc:ff:cf:34:53:17
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate identityserver.datacenter-migros.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for identityserver.datacenter-migros.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
identityserver.datacenter-migros.ch
Other certificates including the domain name datacenter-migros.ch
(limited to 100 certificates)
vnexs02a.datacenter-migros.ch
gmaa-adfs.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
ewfki-wf.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
ewfki-kont-t.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
adeon-gmos.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
*.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
vnexs03a.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
mail1b.datacenter-migros.ch
vnexs04a.datacenter-migros.ch
ewfki-kont-t.datacenter-migros.ch
sts.datacenter-migros.ch
adeon-gmos.datacenter-migros.ch
vnexs02a.datacenter-migros.ch
gmlu-adfs.datacenter-migros.ch
ewfki-wf.datacenter-migros.ch
mail.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
vnexs04a.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
outlook.migroszh.ch
adeon-gmos.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
identityserver.datacenter-migros.ch
ewfki-wf.datacenter-migros.ch
*.datacenter-migros.ch
sts-s.datacenter-migros.ch
vpn.gmaare.migros.ch
vpn.migrosaare.migros.ch
adeon-gmzh-t.datacenter-migros.ch
*.datacenter-migros.ch
vpn.gmaare.migros.ch
adeon-gmos-t.datacenter-migros.ch
citrix.migroszh.ch
lb.mrd-adfs.datacenter-migros.ch
mail1b.datacenter-migros.ch
sts.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
ewfki-kont-t.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
netpulse.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
sts.datacenter-migros.ch
*.datacenter-migros.ch
mail.datacenter-migros.ch
citrix.migroszh.ch
vnexs01a.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
mail1b.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
citrix.migroszh.ch
adeon-gmzh.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
sts-s.datacenter-migros.ch
vnexs01a.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
ba-bern.tac-gateway-servers.datacenter-migros.ch
identityserver.datacenter-migros.ch
storefront.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
adeon-gmzh.datacenter-migros.ch
*.datacenter-migros.ch
*.datacenter-migros.ch
vsrpa02.datacenter-migros.ch
sts-s.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
adeon-gmos.datacenter-migros.ch
sts-t.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
mail.datacenter-migros.ch
mail.datacenter-migros.ch
mail1b.datacenter-migros.ch
mail.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
szc.migroszh.ch
revcap.datacenter-migros.ch
p45.migros.ch
mail.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
gmaa-adfs.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
ewfki-wf.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
ewfki-kont-t.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
adeon-gmos.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
*.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
vnexs03a.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
mail1b.datacenter-migros.ch
vnexs04a.datacenter-migros.ch
ewfki-kont-t.datacenter-migros.ch
sts.datacenter-migros.ch
adeon-gmos.datacenter-migros.ch
vnexs02a.datacenter-migros.ch
gmlu-adfs.datacenter-migros.ch
ewfki-wf.datacenter-migros.ch
mail.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
vnexs04a.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
outlook.migroszh.ch
adeon-gmos.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
identityserver.datacenter-migros.ch
ewfki-wf.datacenter-migros.ch
*.datacenter-migros.ch
sts-s.datacenter-migros.ch
vpn.gmaare.migros.ch
vpn.migrosaare.migros.ch
adeon-gmzh-t.datacenter-migros.ch
*.datacenter-migros.ch
vpn.gmaare.migros.ch
adeon-gmos-t.datacenter-migros.ch
citrix.migroszh.ch
lb.mrd-adfs.datacenter-migros.ch
mail1b.datacenter-migros.ch
sts.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
ewfki-kont-t.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
netpulse.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
ewfki-wf-t.datacenter-migros.ch
sts.datacenter-migros.ch
*.datacenter-migros.ch
mail.datacenter-migros.ch
citrix.migroszh.ch
vnexs01a.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
mail1b.datacenter-migros.ch
adeon-gmos-t.datacenter-migros.ch
citrix.migroszh.ch
adeon-gmzh.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
sts-s.datacenter-migros.ch
vnexs01a.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
lyncaccess.datacenter-migros.ch
ba-bern.tac-gateway-servers.datacenter-migros.ch
identityserver.datacenter-migros.ch
storefront.datacenter-migros.ch
lb.mrd-adfs.datacenter-migros.ch
adeon-gmzh.datacenter-migros.ch
*.datacenter-migros.ch
*.datacenter-migros.ch
vsrpa02.datacenter-migros.ch
sts-s.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
adeon-gmos.datacenter-migros.ch
sts-t.datacenter-migros.ch
ewfki-kont.datacenter-migros.ch
mail.datacenter-migros.ch
mail.datacenter-migros.ch
mail1b.datacenter-migros.ch
mail.datacenter-migros.ch
ctxdirector.datacenter-migros.ch
szc.migroszh.ch
revcap.datacenter-migros.ch
p45.migros.ch
mail.datacenter-migros.ch
adeon-gmzh-t.datacenter-migros.ch
Certificate
The complete raw certificate details for identityserver.datacenter-migros.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgISBBzmbAZ6DcqIR27wPdGvGfuSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjExMDExMzU2MjJaFw0yMzAxMzAxMzU2MjFaMC4xLDAqBgNVBAMT I2lkZW50aXR5c2VydmVyLmRhdGFjZW50ZXItbWlncm9zLmNoMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyh2x8uD4Q665UUO3zfM5rQmDMkycBWQtX0Hl zEN4vu64Le6Spo1CR8qbqMfh3gqfDUiwIYfUY7t0FjhwvSl4yunC23R1JB/WAIVp lsL2ueZP9BD3Kti9AMTVuFGNMcToBaZazAFFaS5HAgcTWMFvgIy7Dli8JBfvLDm6 FLhEdEkXTdSg+QSEx3KJCIhXbreej5HnKP05pWcbyCgZEN/nI4Hd+AEOWO1yBxh4 MVotHg/19REX4ZZQhQTRuAWGpemH2EM92fg2rIi65m2YaJsVdA5ROA/4+gj1H4YU N6YhmZJXAEYrQhsQ23yCv1dP/3vhdKMaLqmxrkrJqNcd+ahCawIDAQABo4ICXjCC AlowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRkVZBFFe/tmAGtpS0FXOq5UoTOnjAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzAuBgNVHREEJzAlgiNpZGVudGl0eXNlcnZl ci5kYXRhY2VudGVyLW1pZ3Jvcy5jaDBMBgNVHSAERTBDMAgGBmeBDAECATA3Bgsr BgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0 Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB3ALc++yTfnE26dfI5xbpY9Gxd /ELPep81xJ4dCYEl7bSZAAABhDOxgqAAAAQDAEgwRgIhAO22tbhOrnk16YAN2qfZ msI3BNMY4BvXDrOBULeawQQHAiEA3uuw7VPrt2BdlD/0sKnINIX98Ytl5KqtORDw a4j3JU8AdQB6MoxU2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAYQzsYLt AAAEAwBGMEQCIChlnnShKqdrS64jAS7vuANYDr+r8mwfp7WUYDrnrVplAiBpTA95 Vw9W9+L4VhSENDg9TFbR1S6hZ0X1HBfyykOSsDANBgkqhkiG9w0BAQsFAAOCAQEA VGsv0k9L/oqv9isxU5LAr12UXozdbwidLKmgAT8uhh3KB+rXKhEb1vPk4F2W3TiJ Ksem6BGCeJDCdEVJpz7bVN5wLnecaZwZTR6Bhlek2c6PKddk2OaKoecY6qI/3o44 9SQxWAMclFgtHO2HZ40I5xFwUvPrWwarPpA63xb+F2FHopg/k/KykE6zbmOqEKOY ap7JayOzgdMtIFqB5hrsXGzpY5jSCDVzZ4pOKode9tahC47HvqkEc5KldGQUDEOH cjZRqJZqbE39n9yEe5iIq1kiUYwM0NjNS8PUVt5fL3kmNHKmVzyRtHlW85WNhd7I Tyy9ZLQPZ++28NkaVmDCPw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyh2x8uD4Q665UUO3zfM5 rQmDMkycBWQtX0HlzEN4vu64Le6Spo1CR8qbqMfh3gqfDUiwIYfUY7t0FjhwvSl4 yunC23R1JB/WAIVplsL2ueZP9BD3Kti9AMTVuFGNMcToBaZazAFFaS5HAgcTWMFv gIy7Dli8JBfvLDm6FLhEdEkXTdSg+QSEx3KJCIhXbreej5HnKP05pWcbyCgZEN/n I4Hd+AEOWO1yBxh4MVotHg/19REX4ZZQhQTRuAWGpemH2EM92fg2rIi65m2YaJsV dA5ROA/4+gj1H4YUN6YhmZJXAEYrQhsQ23yCv1dP/3vhdKMaLqmxrkrJqNcd+ahC awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 358283333339283077575974909763585280965522 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-01 13:56:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-30 13:56:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'identityserver.datacenter-migros.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25514780808771913202873582636919815702221626943410254833080569021339389806489391189378570141241427362787213794933479523823539736386470405606091505186984380668835470899057770140262104443986713819921091741526619936439252087399208135117342941247565356930084480818626867636754836966396318201364553432402380840430091344145328323775788757317352073598939304009461387630180657354526405347774906311941045767528452851427598043995294469559073578655481899276804940634071370378693340240164687325416895500587248752132414755852659711603656166257861407907387630392245375707281738909963361409328110809812853483469510764815825177690731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6455904515efed9801ada52d055ceab95284ce9e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'identityserver.datacenter-migros.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018433b182a00000040300483046022100edb6b5b84eae7935e9800ddaa7d99ac23704d318e01bd70eb38150b79ac10407022100deebb0ed53ebb7605d943ff4b0a9c83485fdf18b65e4aaad3910f06b88f7254f0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018433b182ed0000040300463044022028659e74a12aa76b4bae23012eefb803580ebfabf26c1fa7b594603ae7ad5a650220694c0f79570f56f7e2f856148434383d4c56d1d52ea16745f51c17f2ca4392b0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00546b2fd24f4bfe8aaff62b315392c0af5d945e8cdd6f089d2ca9a0013f2e861dca07ead72a111bd6f3e4e05d96dd38892ac7a6e811827890c2744549a73edb54de702e779c699c194d1e818657a4d9ce8f29d764d8e68aa1e718eaa23fde8e38f5243158031c94582d1ced87678d08e7117052f3eb5b06ab3e903adf16fe176147a2983f93f2b2904eb36e63aa10a3986a9ec96b23b381d32d205a81e61aec5c6ce96398d2083573678a4e2a875ef6d6a10b8ec7bea9047392a57464140c4387723651a8966a6c4dfd9fdc847b9888ab5922518c0cd0d8cd4bc3d456de5f2f79263472a6573c91b47956f3958d85dec84f2cbd64b40f67efb6f0d91a5660c23f