www.privasphere.com
- PrivaSphere AG -
Issued by QuoVadis Global SSL ICA G2
About this certificate
This digital certificate with serial number 31:5e:03:e1:34:b1:9a:72:87:85:03:ee:37:46:21:86:c2:d1:f7:6b was issued on by QuoVadis Limited.
With 24 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PrivaSphere AG
Organization:
PrivaSphere AG
Organization unit: Secure Messaging
Organization unit: Secure Messaging
State / Province:
ZH
Locality: Zuerich
Country: CH
Locality: Zuerich
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 31:5e:03:e1:34:b1:9a:72:87:85:03:ee:37:46:21:86:c2:d1:f7:6bSerial Number (int): 281837155789462392644429687546640586876996679531
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 32:8f:5f:3a:b6:39:ff:ad:02:3d:d9:74:65:6d:e8:2b:98:b7:b6:dd
AuthorityKeyId: 91:19:62:ad:5b:17:a7:30:fb:f0:de:39:25:b1:bd:8c:b9:b8:51:27
Fingerprint (sha1): d4:99:89:19:a5:9b:53:80:fa:ad:df:bb:16:4c:64:81:79:d7:8a:ac
Fingerprint (sha256): 3e:25:31:61:95:d9:cf:60:3d:e7:50:e8:50:30:bc:00:e6:8f:63:1f:87:9c:ca:27:03:63:87:cf:6a:ed:43:30
Issuing Certificate URL: http://trust.quovadisglobal.com/qvsslg2.crt
Revocation information
OCSP Server: http://ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvsslg2.crl
Check the revocation status for certificate www.privasphere.com
24
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.privasphere.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.privasphere.com
secmail.tg.ch
eeg.lu.ch
ees.lu.ch
erv.tg.ch
securemail.holcim.com
securemail.ar.ch
securemail.zg.ch
securemail.bekb.ch
securemail.ifrc.org
secmail.ukb.ch
p4u.ch
www.p4u.ch
zh.p4u.ch
glb.p4u.ch
securemail.aarau.ch
securemail.lu.ch
www.zh.privasphere.com
www.glb.privasphere.com
vrfy5210.privasphere.com
large.privasphere.com
upusec.post
www.upusec.post
webmail.upusec.post
secmail.tg.ch
eeg.lu.ch
ees.lu.ch
erv.tg.ch
securemail.holcim.com
securemail.ar.ch
securemail.zg.ch
securemail.bekb.ch
securemail.ifrc.org
secmail.ukb.ch
p4u.ch
www.p4u.ch
zh.p4u.ch
glb.p4u.ch
securemail.aarau.ch
securemail.lu.ch
www.zh.privasphere.com
www.glb.privasphere.com
vrfy5210.privasphere.com
large.privasphere.com
upusec.post
www.upusec.post
webmail.upusec.post
Other certificates including the domain name privasphere.com
(limited to 100 certificates)
git.privasphere.com
crm.privasphere.com
crm.privasphere.com
bugs.privasphere.com
www-dev.privasphere.com
www-dev.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
git.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
*.privasphere.com
bugs.privasphere.com
www.privasphere.com
crm.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
www.privasphere.com
git.privasphere.com
tickets.privasphere.com
www.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
crm.privasphere.com
tickets.privasphere.com
tickets.privasphere.com
www.privasphere.com
tickets.privasphere.com
*.privasphere.com
smtp.privasphere.com
bugs.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
www-dev.privasphere.com
www.privasphere.com
www.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
crm.privasphere.com
puppet.privasphere.com
www.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www-dev.privasphere.com
git.privasphere.com
bugs.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
puppet.privasphere.com
www.privasphere.com
www.privasphere.com
git.privasphere.com
git.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
*.privasphere.com
www.privasphere.com
www.privasphere.com
crm.privasphere.com
typo3.privasphere.com
crm.privasphere.com
typo3.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
crm.privasphere.com
git.privasphere.com
typo3.privasphere.com
crm.privasphere.com
crm.privasphere.com
bugs.privasphere.com
www-dev.privasphere.com
www-dev.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
git.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
*.privasphere.com
bugs.privasphere.com
www.privasphere.com
crm.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
www.privasphere.com
git.privasphere.com
tickets.privasphere.com
www.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
crm.privasphere.com
tickets.privasphere.com
tickets.privasphere.com
www.privasphere.com
tickets.privasphere.com
*.privasphere.com
smtp.privasphere.com
bugs.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
www-dev.privasphere.com
www.privasphere.com
www.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
crm.privasphere.com
puppet.privasphere.com
www.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www-dev.privasphere.com
git.privasphere.com
bugs.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
puppet.privasphere.com
www.privasphere.com
www.privasphere.com
git.privasphere.com
git.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
*.privasphere.com
www.privasphere.com
www.privasphere.com
crm.privasphere.com
typo3.privasphere.com
crm.privasphere.com
typo3.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
crm.privasphere.com
git.privasphere.com
typo3.privasphere.com
Certificate
The complete raw certificate details for www.privasphere.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGgzCCBWugAwIBAgIUMV4D4TSxmnKHhQPuN0YhhsLR92swDQYJKoZIhvcNAQEL BQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxIzAh BgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBIEcyMB4XDTE2MDkwOTEzNTA0 N1oXDTE5MDkwOTEzNTA0MVowfjELMAkGA1UEBhMCQ0gxCzAJBgNVBAgTAlpIMRAw DgYDVQQHEwdadWVyaWNoMRcwFQYDVQQKEw5Qcml2YVNwaGVyZSBBRzEZMBcGA1UE CxMQU2VjdXJlIE1lc3NhZ2luZzEcMBoGA1UEAxMTd3d3LnByaXZhc3BoZXJlLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANlrJ46QC/UD1ArLh3GS bW2y+kiaU+qgD2AGvH5Tk9GmO5glXfdywTqcEptlNM8H7IiZyrIO5NKdxw+5+Uvt LLmmI1s32iYBgBmfgwUct1/GQrHeHA1unsBvRRCgxgOB0LGo5AUziWLeUyRpJT+Y 5FOmZoMjJSpUK/mgnTF0nG5y/X7Jcan53Zvou/IivnVp8SmOmp6jNofDSyAiGXa0 sSkH9slO9xtiSSKyEG4IB4ATwt/cOzyLyOiIcB89mBmR2tyHQc7AvzWgvHbMO9cZ /tGTMvdGB5x3spOwcr9vVmEXHvKuibO9goKWVX6TSVOYII71XqpL5eiiPJGy2msg sN8CAwEAAaOCAygwggMkMHMGCCsGAQUFBwEBBGcwZTAqBggrBgEFBQcwAYYeaHR0 cDovL29jc3AucXVvdmFkaXNnbG9iYWwuY29tMDcGCCsGAQUFBzAChitodHRwOi8v dHJ1c3QucXVvdmFkaXNnbG9iYWwuY29tL3F2c3NsZzIuY3J0MIIBrQYDVR0RBIIB pDCCAaCCE3d3dy5wcml2YXNwaGVyZS5jb22CDXNlY21haWwudGcuY2iCCWVlZy5s dS5jaIIJZWVzLmx1LmNoggllcnYudGcuY2iCFXNlY3VyZW1haWwuaG9sY2ltLmNv bYIQc2VjdXJlbWFpbC5hci5jaIIQc2VjdXJlbWFpbC56Zy5jaIISc2VjdXJlbWFp bC5iZWtiLmNoghNzZWN1cmVtYWlsLmlmcmMub3Jngg5zZWNtYWlsLnVrYi5jaIIG cDR1LmNoggp3d3cucDR1LmNoggl6aC5wNHUuY2iCCmdsYi5wNHUuY2iCE3NlY3Vy ZW1haWwuYWFyYXUuY2iCEHNlY3VyZW1haWwubHUuY2iCFnd3dy56aC5wcml2YXNw aGVyZS5jb22CF3d3dy5nbGIucHJpdmFzcGhlcmUuY29tghh2cmZ5NTIxMC5wcml2 YXNwaGVyZS5jb22CFWxhcmdlLnByaXZhc3BoZXJlLmNvbYILdXB1c2VjLnBvc3SC D3d3dy51cHVzZWMucG9zdIITd2VibWFpbC51cHVzZWMucG9zdDBRBgNVHSAESjBI MEYGDCsGAQQBvlgAAmQBATA2MDQGCCsGAQUFBwIBFihodHRwOi8vd3d3LnF1b3Zh ZGlzZ2xvYmFsLmNvbS9yZXBvc2l0b3J5MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgwFoAUkRlirVsXpzD78N45 JbG9jLm4UScwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybC5xdW92YWRpc2ds b2JhbC5jb20vcXZzc2xnMi5jcmwwHQYDVR0OBBYEFDKPXzq2Of+tAj3ZdGVt6CuY t7bdMA0GCSqGSIb3DQEBCwUAA4IBAQAIsGN5HRb0RHwdlDNy0JStu47wUQrB0xrB dgANS40UR/NNRmJavaHXmZLs3OpEsEHQ7Syy2P8ncrmxq+5AnK/BJ3/xsSUfu7Ue VQWh3jhuwiY/HW+eAoXMNT69NLAsH4mnWnk8XlH/HsSHqF/jlX0m7rQ6mUnW64uU oMPguDU4BGhYl3zrTWO+GnBjel0evMaFffw4HrLF2R+MaVNoOqSc0YrpcL8nBseD OSIfMcGukbUuHRmId974MQrK9xgoAuuBFUbyQCOL+I6iIVL+/MSUl2w4rxzuzKch EhOMNz3K5qF3Y2/fHpq8UXNKC6WboNBLibYTYfvwgV6XqNHlXKiO -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WsnjpAL9QPUCsuHcZJt bbL6SJpT6qAPYAa8flOT0aY7mCVd93LBOpwSm2U0zwfsiJnKsg7k0p3HD7n5S+0s uaYjWzfaJgGAGZ+DBRy3X8ZCsd4cDW6ewG9FEKDGA4HQsajkBTOJYt5TJGklP5jk U6ZmgyMlKlQr+aCdMXScbnL9fslxqfndm+i78iK+dWnxKY6anqM2h8NLICIZdrSx KQf2yU73G2JJIrIQbggHgBPC39w7PIvI6IhwHz2YGZHa3IdBzsC/NaC8dsw71xn+ 0ZMy90YHnHeyk7Byv29WYRce8q6Js72CgpZVfpNJU5ggjvVeqkvl6KI8kbLaayCw 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 281837155789462392644429687546640586876996679531 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Global SSL ICA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-09 13:50:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-09 13:50:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PrivaSphere AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure Messaging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.privasphere.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27446552040363645559012080819338267791552632781338623702821925707133909656711109930008285456324913246639767496063128507294583384127299122589127832236736441306109207955511605063489796239099264092651578815634247800647858481130422431850994357417037660413802022193252708253895588039399587034744314801090537526479129307180705366824105273938704854652116132742824535135183132982296892101228917785388077167815601322353242045802532264426835857504621030272883206096912037733310768116836662166785103681798996187231428100104575907775715408462623807375678375098600862404083263487363512142649309718076534046784000596298943229374687 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvsslg2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (420 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secmail.tg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eeg.lu.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ees.lu.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erv.tg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.holcim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.ar.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.zg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.bekb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.ifrc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secmail.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zh.p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glb.p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.aarau.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.lu.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.zh.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.glb.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vrfy5210.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'large.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'upusec.post' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.upusec.post' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.upusec.post' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 911962ad5b17a730fbf0de3925b1bd8cb9b85127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvsslg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 328f5f3ab639ffad023dd974656de82b98b7b6dd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0008b063791d16f4447c1d943372d094adbb8ef0510ac1d31ac176000d4b8d1447f34d46625abda1d79992ecdcea44b041d0ed2cb2d8ff2772b9b1abee409cafc1277ff1b1251fbbb51e5505a1de386ec2263f1d6f9e0285cc353ebd34b02c1f89a75a793c5e51ff1ec487a85fe3957d26eeb43a9949d6eb8b94a0c3e0b83538046858977ceb4d63be1a70637a5d1ebcc6857dfc381eb2c5d91f8c6953683aa49cd18ae970bf2706c78339221f31c1ae91b52e1d198877def8310acaf7182802eb811546f240238bf88ea22152fefcc494976c38af1ceecca72112138c373dcae6a177636fdf1e9abc51734a0ba59ba0d04b89b61361fbf0815e97a8d1e55ca88e