git.sartorius.com
Issued by SwissSign RSA TLS DV ICA 2021 - 1
About this certificate
This digital certificate with serial number 27:99:c5:a8:85:c1:a4:94:80:e0:de:93:98:6b:d9:d3:33:b3:cb:da was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=git.sartorius.com
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 27:99:c5:a8:85:c1:a4:94:80:e0:de:93:98:6b:d9:d3:33:b3:cb:daSerial Number (int): 226079872543063901085918838427296237306013535194
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: ac:96:4e:40:2b:56:27:d3:0b:a4:67:46:23:8e:24:09:fa:63:cc:30
AuthorityKeyId: 3c:9e:52:79:03:63:6f:4f:9c:81:1b:d3:28:70:0c:24:5a:ea:a5:87
Fingerprint (sha1): 91:00:ba:f8:b9:2a:92:32:aa:a1:b6:11:8b:e8:a1:01:12:3c:50:26
Fingerprint (sha256): 25:93:fe:0e:ce:84:2d:3e:6f:61:e8:6f:5c:d1:b4:b8:c9:8a:fa:4f:da:79:f5:7e:39:5e:71:66:1e:ea:11:9f
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587
Revocation information
OCSP Server: http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587CRL Distribution Point: http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587
CRL Distribution Point: ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate git.sartorius.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for git.sartorius.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
git.sartorius.com
Other certificates including the domain name sartorius.com
(limited to 100 certificates)
cert00068-azurecdn.akamaized.net
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
eshop.sartorius.com
api-qa.sartorius.com
*.scp.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
eshop-qa.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
ir-berichte.sartorius.de
btconfigurator-dev2.sartorius.com
su-adp-presentation.sartorius.com
*.portal.sartorius.com
cert00068-azurecdn.akamaized.net
jira.sartorius.com
am.vpn.sartorius.com
cert00068-azurecdn.akamaized.net
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
www.sartorius.com
sfpi-test.sartorius.com
go.sartorius.com
bioprocess-sandbox.sartorius.com
configurator-presentation.sartorius.com
serviceshop.sartorius.de
login.sartorius.com
click.sartorius.com
go.sartorius.com
owa.sartorius.com
sentry-c1.sartorius.com
sentry-access.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
eshop.sartorius.com
api-qa.sartorius.com
*.scp.sartorius.com
*.scp.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
su-adp-presentation.sartorius.com
open-access.sartorius.com
configurator-training.sartorius.com
www.shop-wer.de
shop.sartorius.com
dam-qa.sartorius.com
www.sartorius.com
ecoach.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
upload.sartorius.com
btconfigurator.sartorius.com
jira.sartorius.com
de91vaucxwye01.sartorius.com
*.portal-q.sartorius.com
git.sartorius.com
ecoach.sartorius.com
configurator-training.sartorius.com
verical.sartorius.com
eshop-qa.sartorius.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
developer-qa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
go.sartorius.com
uc-gw.sartorius.com
*.sartorius.com
btconfigurator-dev.sartorius.com
sartdam.sartorius.com
btconfigurator-dev3.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
cert00068-azurecdn.akamaized.net
ir-reports.sartorius.com
brm.sartorius.com
developer-qa.sartorius.com
bioprocess-test.sartorius.com
*.scp.sartorius.com
mobile-test.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev.sartorius.com
cert00068-azurecdn.akamaized.net
git.sartorius.com
serviceshop.sartorius.de
owa.sartorius.com
dam-qa.sartorius.com
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
cert00068-azurecdn.akamaized.net
sartdam.sartorius.com
cert00068-azurecdn.akamaized.net
btconfigurator-dev2.sartorius.com
serviceshop.sartorius.de
jira.sartorius.com
owa.sartorius.com
cert00068-azurecdn.akamaized.net
config-data-downloads.sartorius.com
cert00068-azurecdn.akamaized.net
bi-test.sartorius.com
studio.sartorius.com
www.shop-wer.de
Sartorius Corporate Administration GmbH
lps-globalsalesmeeting.sartorius.com
mobile.sartorius.com
login-test.sartorius.com
btconfigurator-dev3.sartorius.com
ir-berichte.sartorius.de
btconfigurator-dev2.sartorius.com
su-adp-presentation.sartorius.com
*.portal.sartorius.com
cert00068-azurecdn.akamaized.net
jira.sartorius.com
am.vpn.sartorius.com
cert00068-azurecdn.akamaized.net
www.connect-upstream.com
cert00068-azurecdn.akamaized.net
www.sartorius.com
sfpi-test.sartorius.com
go.sartorius.com
bioprocess-sandbox.sartorius.com
configurator-presentation.sartorius.com
serviceshop.sartorius.de
login.sartorius.com
click.sartorius.com
Certificate
The complete raw certificate details for git.sartorius.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG3jCCBMagAwIBAgIUJ5nFqIXBpJSA4N6TmGvZ0zOzy9owDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjEgLSAxMB4XDTIyMDcyNzA1 NDI1MFoXDTIzMDcyNzA1NDI1MFowHDEaMBgGA1UEAxMRZ2l0LnNhcnRvcml1cy5j b20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5T2RvTsg5Kd2ZAfG+ F/QvctJM6h7GbZN6cQZHsq6UkZmMbknV88JAb7fYr+ARYP83bgqzMu2aFj2cIJXe xJvqNzu3J6cYvujFi702INQrC7R81TUhCiuQVyzUxYAPlefFnCp//gZpZDxRPX1Q JpIwXthrsQQRpq4R0tpXW+4WnyxOyZypNmWBzzUiz6iHvSag5RwHumdtWU6vuck9 7Yv+vcgtIIVX5RYBrM9j3hcmddvezMbIynR+SCcZsGnmuHAlrzQbn7VQNINTz7yl jttVykB34XY6tWia487kAxenuEsebe9nTj6+mMx0+lVTcqePuXOU+6zXW02S+HRQ K9zLAgMBAAGjggLiMIIC3jAcBgNVHREEFTATghFnaXQuc2FydG9yaXVzLmNvbTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0G A1UdDgQWBBSslk5AK1Yn0wukZ0YjjiQJ+mPMMDAfBgNVHSMEGDAWgBQ8nlJ5A2Nv T5yBG9MocAwkWuqlhzCB/wYDVR0fBIH3MIH0MEegRaBDhkFodHRwOi8vY3JsLnN3 aXNzc2lnbi5uZXQvM0M5RTUyNzkwMzYzNkY0RjlDODExQkQzMjg3MDBDMjQ1QUVB QTU4NzCBqKCBpaCBooaBn2xkYXA6Ly9kaXJlY3Rvcnkuc3dpc3NzaWduLm5ldC9D Tj0zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3JTJDTz1T d2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9v YmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2ludDBvBgNVHSAEaDBmMFAGCGCF dAFZAgEBMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3Np Z24uY29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjAIBgYEAI96AQYwCAYGZ4EMAQIB MIHGBggrBgEFBQcBAQSBuTCBtjBkBggrBgEFBQcwAoZYaHR0cDovL3N3aXNzc2ln bi5uZXQvY2dpLWJpbi9hdXRob3JpdHkvZG93bmxvYWQvM0M5RTUyNzkwMzYzNkY0 RjlDODExQkQzMjg3MDBDMjQ1QUVBQTU4NzBOBggrBgEFBQcwAYZCaHR0cDovL29j c3Auc3dpc3NzaWduLm5ldC8zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMy NDVBRUFBNTg3MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IC AQCzbXZmjib2jDBs6kA52O05f/xbnZULNtIGeF+da4U4UGjyVduGQJ8Yr32K+pmD xg6ld3n6kihDFrJh3TTRmb97uGeBhk1PV2tlMM5eqeVfjQRcw8MypD41RPnl9h5l jyYelCrpUj+NHmL2LQ4ERcqRQgSbI3wDzXeWq6NSFZxlse1SMJ/O314+9sUNOqel sJjTjGIvQ1wXaClcW2zJteTnBJ64h7V4jkfJoDtpbUn+zMyW4utjCHV3JSnuIaz4 5B8Wik2Ra+kBSPPLomFPLGczzy8hAVNnXYX0jLGjOdIV7QBjVv6c6Cr5dlwa4p1Z e4ZgC9ORiCX2ZSm677HO7lohqAJ6Pgc/7UktRk5T7o7kPJ/dpgMHk7p1a5JqlJPf 0093+hWtShVWGfIZxTF+CDQ93w4JHCyUr/76XNZhgxotZL+WeZaKVmq4DXkF780G QvSaDHseaJ4GCdk+9dUDDZKNCHPthztw9DVjc0ni040516tfQU/9TM2/CymSJqCQ CQd7pMK3vvn/mMZ6w0H+81bfxkSCYyUJzZ3oZBMHhlK0UZSmUk+6pnPzgeqkL5A4 deSLfaIx4R/X6OTEGEhjS0b1nWpt21bd+jKksuDLa6+jrcM9tTCF8m8gumXwPXWI CezOjT2CUQnSidogReTsyoxYf8MRMqfKg+qZEkTXGvtatw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuU9kb07IOSndmQHxvhf0 L3LSTOoexm2TenEGR7KulJGZjG5J1fPCQG+32K/gEWD/N24KszLtmhY9nCCV3sSb 6jc7tyenGL7oxYu9NiDUKwu0fNU1IQorkFcs1MWAD5XnxZwqf/4GaWQ8UT19UCaS MF7Ya7EEEaauEdLaV1vuFp8sTsmcqTZlgc81Is+oh70moOUcB7pnbVlOr7nJPe2L /r3ILSCFV+UWAazPY94XJnXb3szGyMp0fkgnGbBp5rhwJa80G5+1UDSDU8+8pY7b VcpAd+F2OrVomuPO5AMXp7hLHm3vZ04+vpjMdPpVU3Knj7lzlPus11tNkvh0UCvc ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 226079872543063901085918838427296237306013535194 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-27 05:42:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-27 05:42:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'git.sartorius.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23393236232533463884496496994231334423159378275287903413909478196515696043968587381210111731296565946393211850707367262117804652001748457105953906326331538450837621210380824614085997695047692748583696086726158238820830159501428155412592113179083361807501670355954049898780854655083908207374487497078224195139832112138005476241858496989583396301414779341534012320997397932811635844504288745107707799839303762602993656593918746530344569107020759225479289253794856342166940499156907335471179236154464780730874880906209011148855173906401374302269209361651775580991803555336292247076874634836237776015139369874889391201483 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'git.sartorius.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ac964e402b5627d30ba46746238e2409fa63cc30 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3c9e527903636f4f9c811bd328700c245aeaa587 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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