aai-login.eduid.ch
- SWITCH -
Issued by QuoVadis EV SSL ICA G1
About this certificate
This digital certificate with serial number 03:fb:d8:1f:ee:d4:c6:0b:1e:d7:b4:a0:f8:de:99:f7:0b:69:66:4a was issued on by QuoVadis Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
SWITCH
Company registration number:
CH-035.7.001.278-9
Organization: SWITCH
Organization: SWITCH
State / Province:
Zuerich
Locality: Zuerich
Country: CH
Locality: Zuerich
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fb:d8:1f:ee:d4:c6:0b:1e:d7:b4:a0:f8:de:99:f7:0b:69:66:4aSerial Number (int): 22743286477278386472568929283976664184219330122
Serial Number lenght: 154 bits, 20 octets
SubjectKeyId: c0:19:d7:f6:f2:9e:3b:70:02:a1:57:61:3c:b4:cb:6d:9e:07:ec:88
AuthorityKeyId: 55:58:86:ce:ba:7c:76:4e:99:13:a9:0f:d3:6c:9f:c2:f5:d3:3c:e3
Fingerprint (sha1): 94:fe:a7:bb:01:06:fa:e4:dc:a6:d7:86:1b:dc:14:ed:14:7d:8b:28
Fingerprint (sha256): 2c:ff:41:9c:6f:4e:fc:43:65:1f:11:af:44:8e:a4:35:43:f9:28:f7:93:e6:92:b3:cc:00:17:2b:cc:d8:7f:26
Issuing Certificate URL: http://trust.quovadisglobal.com/qvevssl1.crt
Revocation information
OCSP Server: http://ev.ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvevssl1.crl
Check the revocation status for certificate aai-login.eduid.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aai-login.eduid.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aai-login.eduid.ch
Other certificates including the domain name eduid.ch
(limited to 100 certificates)
io.gdi.lenovo.com
node1.login.test.eduid.ch
status.republic.com
node21.webauthn.eduid.ch
login.eduid.ch
login.test.eduid.ch
idp-db.eduid.ch
login.test.eduid.ch
idp-db.test.eduid.ch
altastatus.us.veritas.com
status.republic.com
login.test.eduid.ch
login.eduid.ch
status.greenewx.com
test.login.eduid.ch
login.eduid.ch
node2.lb.trid.switch.ch
node2.lb.trid.switch.ch
login.eduid.ch
login.staging.eduid.ch
status.admiresty.co
idp-db.eduid.ch
login.staging.eduid.ch
uern.d5n.is
aai-login.eduid.ch
node1.lb.trid.switch.ch
status.alogna.co.ao
mfa.test.eduid.ch
login.test.eduid.ch
status.conpds.com
status.conpds.com
login.eduid.ch
login.eduid.ch
status.greenewx.com
eduid.ch
node1.lb.trid.switch.ch
ap-api-fernuni.test.eduid.ch
uern.d5n.is
login.test.eduid.ch
cinc-status.tkelevator.com
comanagetest.eduid.ch
status.linkmanager.ai
status-v3.knowledgeforce.com
status.h2.tc
io.gdi.lenovo.com
idp-db.test.eduid.ch
status.greenewx.com
node2.lb.trid.switch.ch
login.eduid.ch
node2.lb.trid.switch.ch
status.greenewx.com
api.eduid.ch
eduid.ch
status.huntervoip.com.br
status.linkmanager.ai
switch.login.staging.eduid.ch
zhaw.login.staging.eduid.ch
login.staging.eduid.ch
login.eduid.ch
dun.im.4pple.org
status.ioneaccess.ch
status.alam.earth
login.eduid.ch
eduid.ch
proxy-login.eduid.ch
node2.lb.trid.switch.ch
status.republic.com
ldap-slave1.test.eduid.ch
status.sumex.ch
status.linkmanager.ai
login.staging.eduid.ch
status.linkmanager.ai
status.greenewx.com
status.linkmanager.ai
proxy-login.eduid.ch
node2.login.test.eduid.ch
login.test.eduid.ch
proxy-login.eduid.ch
mfa.eduid.ch
login.eduid.ch
altastatus.us.veritas.com
eduid.ch
ldap-slave1.eduid.ch
login.test.eduid.ch
login.test.eduid.ch
io.gdi.lenovo.com
login.test.eduid.ch
status.conpds.com
altastatus.us.veritas.com
status.linkmanager.ai
test.eduid.ch
io.gdi.lenovo.com
unisg.login.staging.eduid.ch
status.huntervoip.com.br
status.nicksaude.com.br
malincdb.switch.ch
uern.d5n.is
node1.lb.trid.switch.ch
cinc-status.tkelevator.com
api.test.eduid.ch
node1.login.test.eduid.ch
status.republic.com
node21.webauthn.eduid.ch
login.eduid.ch
login.test.eduid.ch
idp-db.eduid.ch
login.test.eduid.ch
idp-db.test.eduid.ch
altastatus.us.veritas.com
status.republic.com
login.test.eduid.ch
login.eduid.ch
status.greenewx.com
test.login.eduid.ch
login.eduid.ch
node2.lb.trid.switch.ch
node2.lb.trid.switch.ch
login.eduid.ch
login.staging.eduid.ch
status.admiresty.co
idp-db.eduid.ch
login.staging.eduid.ch
uern.d5n.is
aai-login.eduid.ch
node1.lb.trid.switch.ch
status.alogna.co.ao
mfa.test.eduid.ch
login.test.eduid.ch
status.conpds.com
status.conpds.com
login.eduid.ch
login.eduid.ch
status.greenewx.com
eduid.ch
node1.lb.trid.switch.ch
ap-api-fernuni.test.eduid.ch
uern.d5n.is
login.test.eduid.ch
cinc-status.tkelevator.com
comanagetest.eduid.ch
status.linkmanager.ai
status-v3.knowledgeforce.com
status.h2.tc
io.gdi.lenovo.com
idp-db.test.eduid.ch
status.greenewx.com
node2.lb.trid.switch.ch
login.eduid.ch
node2.lb.trid.switch.ch
status.greenewx.com
api.eduid.ch
eduid.ch
status.huntervoip.com.br
status.linkmanager.ai
switch.login.staging.eduid.ch
zhaw.login.staging.eduid.ch
login.staging.eduid.ch
login.eduid.ch
dun.im.4pple.org
status.ioneaccess.ch
status.alam.earth
login.eduid.ch
eduid.ch
proxy-login.eduid.ch
node2.lb.trid.switch.ch
status.republic.com
ldap-slave1.test.eduid.ch
status.sumex.ch
status.linkmanager.ai
login.staging.eduid.ch
status.linkmanager.ai
status.greenewx.com
status.linkmanager.ai
proxy-login.eduid.ch
node2.login.test.eduid.ch
login.test.eduid.ch
proxy-login.eduid.ch
mfa.eduid.ch
login.eduid.ch
altastatus.us.veritas.com
eduid.ch
ldap-slave1.eduid.ch
login.test.eduid.ch
login.test.eduid.ch
io.gdi.lenovo.com
login.test.eduid.ch
status.conpds.com
altastatus.us.veritas.com
status.linkmanager.ai
test.eduid.ch
io.gdi.lenovo.com
unisg.login.staging.eduid.ch
status.huntervoip.com.br
status.nicksaude.com.br
malincdb.switch.ch
uern.d5n.is
node1.lb.trid.switch.ch
cinc-status.tkelevator.com
api.test.eduid.ch
Certificate
The complete raw certificate details for aai-login.eduid.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGzDCCBbSgAwIBAgIUA/vYH+7Uxgse17Sg+N6Z9wtpZkowDQYJKoZIhvcNAQEL BQAwSTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxHzAd BgNVBAMTFlF1b1ZhZGlzIEVWIFNTTCBJQ0EgRzEwHhcNMTYwODExMDY0NTU1WhcN MTgwODExMDY1NTAwWjCBxzETMBEGCysGAQQBgjc8AgEDEwJDSDEVMBMGCysGAQQB gjc8AgECDARCZXJuMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjEbMBkG A1UEBRMSQ0gtMDM1LjcuMDAxLjI3OC05MQswCQYDVQQGEwJDSDEQMA4GA1UECAwH WnVlcmljaDEQMA4GA1UEBwwHWnVlcmljaDEPMA0GA1UECgwGU1dJVENIMRswGQYD VQQDDBJhYWktbG9naW4uZWR1aWQuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDZtD6kj1Q1/EdC//9Jy/vFvYHdRuM9jp+xTwB1WlSiBPI0e9Wq5R9+ CO3FFAZsEI4PFUlD1muhVov5EMxkoGNvXznWjqQCGuGdHsk/GWgjDST+NQeBB6br pdyo2HTXb36bSoru2/QLGVAKC6NDcDL4xaS4rwHlE7m7G/SwzX4ptvq06JCRJuW7 TMcwo6vRntKoVfp4sdOyjGZCpyYEnTj33UgxyTxf6rLuFCpjXN4ZFGWP3jjZf0GL IIjDiAQjIfo42Hxo8rOlhNeoMBGNuulXAmprAZeG1DxZamCP1kPSl3QJGiLzYCQ0 5I3myt54LIhbIiw47cFkDcYTetTehmIHAgMBAAGjggMrMIIDJzB3BggrBgEFBQcB AQRrMGkwOAYIKwYBBQUHMAKGLGh0dHA6Ly90cnVzdC5xdW92YWRpc2dsb2JhbC5j b20vcXZldnNzbDEuY3J0MC0GCCsGAQUFBzABhiFodHRwOi8vZXYub2NzcC5xdW92 YWRpc2dsb2JhbC5jb20wHQYDVR0OBBYEFMAZ1/bynjtwAqFXYTy0y22eB+yIMAwG A1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAUVViGzrp8dk6ZE6kP02yfwvXTPOMwUQYD VR0gBEowSDBGBgwrBgEEAb5YAAJkAQIwNjA0BggrBgEFBQcCARYoaHR0cDovL3d3 dy5xdW92YWRpc2dsb2JhbC5jb20vcmVwb3NpdG9yeTA7BgNVHR8ENDAyMDCgLqAs hipodHRwOi8vY3JsLnF1b3ZhZGlzZ2xvYmFsLmNvbS9xdmV2c3NsMS5jcmwwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAdBgNV HREEFjAUghJhYWktbG9naW4uZWR1aWQuY2gwggF+BgorBgEEAdZ5AgQCBIIBbgSC AWoBaAB2AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABVnhizOcA AAQDAEcwRQIhAM0JYhSkrbPcqWNDmwv5xiDwPVimjiQACgcX2lhLAm1QAiB9fW9E WnMrzu/lZDpvuuM+MSCPixeKHRM6Hu3icXwGXAB2AGj2mPgfZIK+OozuuSgdTPxx UV1nk9RE0QpnrLtPT/vEAAABVnhiy8cAAAQDAEcwRQIhANgQ/k1soQDUXjZbx2rB ++vMXz7epRMs/riWeYIA5uwFAiBazShIH4MO8xoQ/3aIAas1gihCCjldFerL9eIH BHAqigB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABVnhizGoA AAQDAEcwRQIhAJLY/jhErCRkYEqSnps5O5NanMKUDDKkKulHR0GeEeQ0AiB7cAib 65dkr60p3dskS1CxYlPMvt8eskGd4tLexoJxVjANBgkqhkiG9w0BAQsFAAOCAQEA AHibdOY10VSliNhwCnXUa438KWxjytb53V4lZ7Bb4m4v+bxWcEWt70cTu5ulwqvy Q6yCjQETsVQm1OvgnGuKsdwCJxwFztmPQGhPe1SxP7X4YvcwiRn/2BJCUHZACi+F f2ztlSD+q7LXniz//pclPRAupTTSB90E1IRjcU50HyvsJs/TClTngc/F4Zd2r23L 6cYaq4aNBJddj7Ncx4khRu76/RVQ0JMkWWp+Z++BRvDGEfyO8apZ80j85NJ+2VOF m9nI8sAZistQPsypu3fGBrAQODG9NOJa8Cc1VFzwStrNhRM6zzx2Za+NsS+89x+M BZuQZaUtFdcn5fcogstcag== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bQ+pI9UNfxHQv//Scv7 xb2B3UbjPY6fsU8AdVpUogTyNHvVquUffgjtxRQGbBCODxVJQ9ZroVaL+RDMZKBj b1851o6kAhrhnR7JPxloIw0k/jUHgQem66XcqNh0129+m0qK7tv0CxlQCgujQ3Ay +MWkuK8B5RO5uxv0sM1+Kbb6tOiQkSblu0zHMKOr0Z7SqFX6eLHTsoxmQqcmBJ04 991IMck8X+qy7hQqY1zeGRRlj9442X9BiyCIw4gEIyH6ONh8aPKzpYTXqDARjbrp VwJqawGXhtQ8WWpgj9ZD0pd0CRoi82AkNOSN5sreeCyIWyIsOO3BZA3GE3rU3oZi BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 22743286477278386472568929283976664184219330122 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis EV SSL ICA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-11 06:45:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-11 06:55:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH-035.7.001.278-9' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SWITCH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'aai-login.eduid.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27482594151133934833439222531095397716233800925716490832560686398113754618978783864842474516464501055536869829562733683603391767962544693687956466597178535408145608965673508000649817084890573476046549424834610554031420211517371541537622116873702471871976163083835485443189258755030456461886625041121171141378555585367377822708946973118775155872840069720487996069434111238745901403490484898932633979738705429390969413196894303965932286175079023183234120449809557930618943921646737966624215543959332545062457313539459101879880303074468721452138177351811975187714114082543132981428178986479434954569254771991354349609479 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvevssl1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ev.ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c019d7f6f29e3b7002a157613cb4cb6d9e07ec88 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 555886ceba7c764e9913a90fd36c9fc2f5d33ce3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.2 (QuoVadis EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvevssl1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aai-login.eduid.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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