extranet.nationalesuisse.ch
- Schweizerische National-Versicherungs-Gesellschaft AG -
Issued by SwissSign Server Gold CA 2014 - G22
About this certificate
This digital certificate with serial number 07:19:b0:1f:90:a8:91:1b:29:49:27:f7:f7:b7:3c was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Schweizerische National-Versicherungs-Gesellschaft AG
Organization:
Schweizerische National-Versicherungs-Gesellschaft AG
Organization unit: IT Operations Certificate Registration Authority
Organization unit: IT Operations Certificate Registration Authority
State / Province:
Basel-Stadt
Locality: Basel
Country: CH
Locality: Basel
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 07:19:b0:1f:90:a8:91:1b:29:49:27:f7:f7:b7:3cSerial Number (int): 36867092175354252474121088310687548
Serial Number lenght: 115 bits, 15 octets
SubjectKeyId: f2:27:9b:03:63:35:db:d4:37:1f:4b:81:d9:8d:f2:6b:56:30:80:d8
AuthorityKeyId: e7:f1:e7:fd:2e:53:ad:11:e5:81:1a:57:a4:73:8f:12:7d:98:c8:ae
Fingerprint (sha1): a2:73:b8:f3:8f:0b:e9:5f:1f:f7:e0:ff:a7:6c:e8:ca:2c:2a:82:59
Fingerprint (sha256): 2e:0a:d1:4b:8f:15:0d:7b:d9:ff:cf:af:0d:14:d1:5f:16:a3:ec:b7:4d:8c:f3:59:24:43:d4:96:3b:86:89:d5
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE
Revocation information
OCSP Server: http://gold-server-g2.ocsp.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AECRL Distribution Point: http://crl.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE
CRL Distribution Point: ldap://directory.swisssign.net/CN=E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate extranet.nationalesuisse.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for extranet.nationalesuisse.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
extranet.nationalesuisse.ch
Other certificates including the domain name nationalesuisse.ch
(limited to 100 certificates)
leben.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
swissforms.nationalesuisse.ch
*.nationalesuisse.ch
extranet.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
nationalesuisse.ch
elmnet.nationalesuisse.ch
mobile11.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
mobile01.nationalesuisse.ch
mobile10.nationalesuisse.ch
extranet.nationalesuisse.ch
decla.nationalesuisse.ch
karriere.nationalesuisse.ch
www.nationalesuisse.ch
*.nationalesuisse.ch
bsse.nationalesuisse.ch
karriere.nationalesuisse.ch
eplink.nationalesuisse.ch
igb2b.nationalesuisse.ch
extranet.nationalesuisse.ch
mobile11.nationalesuisse.ch
*.nationalesuisse.ch
swissforms.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
karriere.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
*.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
swissforms.nationalesuisse.ch
*.nationalesuisse.ch
extranet.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
nationalesuisse.ch
elmnet.nationalesuisse.ch
mobile11.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
mobile01.nationalesuisse.ch
mobile10.nationalesuisse.ch
extranet.nationalesuisse.ch
decla.nationalesuisse.ch
karriere.nationalesuisse.ch
www.nationalesuisse.ch
*.nationalesuisse.ch
bsse.nationalesuisse.ch
karriere.nationalesuisse.ch
eplink.nationalesuisse.ch
igb2b.nationalesuisse.ch
extranet.nationalesuisse.ch
mobile11.nationalesuisse.ch
*.nationalesuisse.ch
swissforms.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
karriere.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
*.nationalesuisse.ch
Certificate
The complete raw certificate details for extranet.nationalesuisse.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGszCCBZugAwIBAgIPBxmwH5CokRspSSf397c8MA0GCSqGSIb3DQEBCwUAMFIx CzAJBgNVBAYTAkNIMRUwEwYDVQQKEwxTd2lzc1NpZ24gQUcxLDAqBgNVBAMTI1N3 aXNzU2lnbiBTZXJ2ZXIgR29sZCBDQSAyMDE0IC0gRzIyMB4XDTE0MTEyNjE0MTc1 M1oXDTE3MTEyNjE0MTc1M1owgf8xCzAJBgNVBAYTAkNIMRQwEgYDVQQIEwtCYXNl bC1TdGFkdDEOMAwGA1UEBxMFQmFzZWwxPjA8BgNVBAoTNVNjaHdlaXplcmlzY2hl IE5hdGlvbmFsLVZlcnNpY2hlcnVuZ3MtR2VzZWxsc2NoYWZ0IEFHMTkwNwYDVQQL EzBJVCBPcGVyYXRpb25zIENlcnRpZmljYXRlIFJlZ2lzdHJhdGlvbiBBdXRob3Jp dHkxJDAiBgNVBAMTG2V4dHJhbmV0Lm5hdGlvbmFsZXN1aXNzZS5jaDEpMCcGCSqG SIb3DQEJARYab3ByLW5ldEBuYXRpb25hbGVzdWlzc2UuY2gwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDUNy/ouFsD7SQ2aQl7Eb/H6lumOjZ1Mc4Fid54 0qIdi7EPDN/+JIvy81Mj+UqGILvSUSPLfhsuHl/HT6JTh3JJ+WBgK714JbCZN4SU HRGRnaVPfIYqHrllS4gRs4ItDM+rIKLgH+39YPF5vZj9TvPFv+KsxL14NdOIhJ3/ T+9f9jBapv0Ptxpe9VYlbcCs+Gzg9tyVrROhPa76v4RaoJw9riaLJ9x17Noq3sre X2ivLl4ZQ7EFcH344Ui++svEb60vUGEDGPl1srhVTGeF1qFDlJsf2eni4XL/KR51 t1KFvfZrgmjJiMOCVdvOLjmPeZWw9ifztd8MdBgGTbucJ4qHAgMBAAGjggLWMIIC 0jAmBgNVHREEHzAdghtleHRyYW5ldC5uYXRpb25hbGVzdWlzc2UuY2gwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4E FgQU8iebA2M129Q3H0uB2Y3ya1YwgNgwHwYDVR0jBBgwFoAU5/Hn/S5TrRHlgRpX pHOPEn2YyK4wgf8GA1UdHwSB9zCB9DBHoEWgQ4ZBaHR0cDovL2NybC5zd2lzc3Np Z24ubmV0L0U3RjFFN0ZEMkU1M0FEMTFFNTgxMUE1N0E0NzM4RjEyN0Q5OEM4QUUw gaiggaWggaKGgZ9sZGFwOi8vZGlyZWN0b3J5LnN3aXNzc2lnbi5uZXQvQ049RTdG MUU3RkQyRTUzQUQxMUU1ODExQTU3QTQ3MzhGMTI3RDk4QzhBRSUyQ089U3dpc3NT aWduJTJDQz1DSD9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0P2Jhc2U/b2JqZWN0 Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwXwYDVR0gBFgwVjBUBglghXQBWQEC AQYwRzBFBggrBgEFBQcCARY5aHR0cDovL3JlcG9zaXRvcnkuc3dpc3NzaWduLmNv bS9Td2lzc1NpZ24tR29sZC1DUC1DUFMucGRmMIHVBggrBgEFBQcBAQSByDCBxTBk BggrBgEFBQcwAoZYaHR0cDovL3N3aXNzc2lnbi5uZXQvY2dpLWJpbi9hdXRob3Jp dHkvZG93bmxvYWQvRTdGMUU3RkQyRTUzQUQxMUU1ODExQTU3QTQ3MzhGMTI3RDk4 QzhBRTBdBggrBgEFBQcwAYZRaHR0cDovL2dvbGQtc2VydmVyLWcyLm9jc3Auc3dp c3NzaWduLm5ldC9FN0YxRTdGRDJFNTNBRDExRTU4MTFBNTdBNDczOEYxMjdEOThD OEFFMA0GCSqGSIb3DQEBCwUAA4IBAQAw6i33uWDqpafjFJMyEER3NL9VGfh0m6nT fdfpGu+ciTzxZUcICu3hethrAv/2KQjOBHDe7mf0dChkCxhwWAthm8u0SoJxwWQg AYzd2mqG1bJ+Lcl9A9cGpLLI0Wp1PWm2p0rwHx1+TnZ34hGEG+FX/G5CesebKD/O WGTBTttpcP+T+RppAt+QPopgZpRLv9WPE44huaueKd7JNBIM2Agbt/IHLm9aUkDG XEsvEAZ/8MmL7J6E1y5EPOZFOpwpltN3ThwnhfUkdE/0TP0nYmedvQCELxt5iz89 gfZypjAY3ha8aBnKtMseeh6ofOGWAsx12I4RYGqqnucenBGZe/qV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Dcv6LhbA+0kNmkJexG/ x+pbpjo2dTHOBYneeNKiHYuxDwzf/iSL8vNTI/lKhiC70lEjy34bLh5fx0+iU4dy SflgYCu9eCWwmTeElB0RkZ2lT3yGKh65ZUuIEbOCLQzPqyCi4B/t/WDxeb2Y/U7z xb/irMS9eDXTiISd/0/vX/YwWqb9D7caXvVWJW3ArPhs4Pbcla0ToT2u+r+EWqCc Pa4miyfcdezaKt7K3l9ory5eGUOxBXB9+OFIvvrLxG+tL1BhAxj5dbK4VUxnhdah Q5SbH9np4uFy/ykedbdShb32a4JoyYjDglXbzi45j3mVsPYn87XfDHQYBk27nCeK hwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 36867092175354252474121088310687548 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign Server Gold CA 2014 - G22' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-26 14:17:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-26 14:17:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel-Stadt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Schweizerische National-Versicherungs-Gesellschaft AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Operations Certificate Registration Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'extranet.nationalesuisse.ch' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26789734448166260428578074956322542117059507476429296624626875019757478022636304021778989835792293110189573545896197035507005641160789673018134427216701250383702311123166066088008110501845877239751618384061162828886619306262798470236827052407758554202850938604969060864586991950556962618256845829221931759110781560073451153133696882797094590790279610456071866832823844237088390316665067655938612655369828415684012133492130021713947061791994203302116863551802462473093403987621172688038801088108817862320137938610988148410470068699962902051297181005666032055601079267412517378896263904473659893842935912680966721079943 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'extranet.nationalesuisse.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f2279b036335dbd4371f4b81d98df26b563080d8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName e7f1e7fd2e53ad11e5811a57a4738f127d98c8ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.2.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Gold-CP-CPS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (200 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gold-server-g2.ocsp.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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