datashare.snb.ch
- Schweizerische Nationalbank -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 69:34:45:2f:14:7c:33:8d:ad:98:d3:0d:03:4f:fe:29:0e:aa:51:3a was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Schweizerische Nationalbank
Organization:
Schweizerische Nationalbank
State / Province:
ZH
Locality: Zurich
Country: CH
Locality: Zurich
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 69:34:45:2f:14:7c:33:8d:ad:98:d3:0d:03:4f:fe:29:0e:aa:51:3aSerial Number (int): 600609696455056729542909361260163408610674233658
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: d3:f8:0c:44:a5:e8:af:4e:ae:a4:38:ec:6f:05:bb:d3:24:54:df:c9
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): c2:75:0d:47:e5:7e:9b:82:c2:44:c0:4a:f7:71:2e:a6:9f:ea:a9:0b
Fingerprint (sha256): 3f:dd:fc:bf:68:dc:45:67:d3:66:1f:7d:2f:a0:15:a8:02:f7:62:1e:31:f1:be:ea:62:fb:95:db:c1:e2:98:e7
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate datashare.snb.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for datashare.snb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
datashare.snb.ch
Other certificates including the domain name snb.ch
(limited to 100 certificates)
remotemail.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
Certificate
The complete raw certificate details for datashare.snb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGajCCBFKgAwIBAgIUaTRFLxR8M42tmNMNA0/+KQ6qUTowDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTI0MDExNjEw MDkyNFoXDTI1MDExNjEwMDkyNFowbDELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAlpI MQ8wDQYDVQQHDAZadXJpY2gxJDAiBgNVBAoMG1NjaHdlaXplcmlzY2hlIE5hdGlv bmFsYmFuazEZMBcGA1UEAxMQZGF0YXNoYXJlLnNuYi5jaDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAJpeKs/NI7C4fwsqJRhtUgCgOPPSg7eBfVlviut8 VQ4OA1tddSgWvK3e6RJSRTj9+nIZNBsO4AKXdwsSAoLDMoOMckLHLAdv5KQ29P4Y 4thIZGaIdg9ZjRX3lN8aTm15eLrVD8GzOnp7rE/Y3tb5sOYEz4AAMYgqB4eSc5b7 zcToRlY97nmW6EezFPc0JIUhmOpNvolXPAA9C2wBMgm9zYQkRbJ7Am5F/sxq9i4+ fSYOmrbP5FX9nApGwidS3pJlhI27UAJ5jgGKJwCToEwl7mCFzIxsXsIoSP14z6ro mG3rkubwq9xSv/G2JoAuy16FaUFCUzJpbMnLhqijITF6ElUCAwEAAaOCAh4wggIa MIGyBggrBgEFBQcBAQSBpTCBojBMBggrBgEFBQcwAoZAaHR0cDovL2FpYS5zd2lz c3NpZ24uY2gvYWlyLTBmMmJmOWE1LWRkMzctNDhjOS1hODViLTEyYWNkY2I4YmU0 NTBSBggrBgEFBQcwAYZGaHR0cDovL29jc3Auc3dpc3NzaWduLmNoL3NpZ24vb2Nz LWFhY2NjZWQ1LTY2ZTgtNDA2OS05YjFiLWZkMjlhYjczZWZlYzBvBgNVHSAEaDBm MAgGBmeBDAECAjAIBgYEAI96AQcwUAYIYIV0AVkCAQIwRDBCBggrBgEFBQcCARY2 aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19U TFMucGRmMFEGA1UdHwRKMEgwRqBEoEKGQGh0dHA6Ly9jcmwuc3dpc3NzaWduLmNo L2NkcC05NmI2MmY1YS02YjczLTRkYTQtODdmNy1jZTQwMDJjMWNkMzQwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1UdDwEB/wQEAwIFoDAbBgNVHREE FDASghBkYXRhc2hhcmUuc25iLmNoMB0GA1UdDgQWBBTT+AxEpeivTq6kOOxvBbvT JFTfyTAfBgNVHSMEGDAWgBR8bwpvEw/ZjCRvJjTzXGtDbbcjtjATBgorBgEEAdZ5 AgQDAQH/BAIFADANBgkqhkiG9w0BAQsFAAOCAgEACydXDrzAWQ/2ET9ce3DYQB06 w/RBS6ezc0VFgoW0oJ26ddmr2+4mScgqEOtt7N4k5AJQBm/rATL3vXVb/HZHWVS8 0VXM3nuw4IYlqF2vus8AFq3Q8KDmTZ492qqg9Rr306NjNYkeHVWWg1U6ox+QqbAu r/U03NofOqxQl6gdI/Lcxc0K0S+T4PQR/lL1IIT5VuFFZlJOGVk8XX4rKG2Bs4C1 J3wrEqDt0lrXeWgtK3cGoGhO9magpgl5DKp9dSDpzArleA64eW9/OkUi6Jrg4LBu At7ogEBGc2lKsyk5LjlaWdAa9io+5xzWiqBtzLJ8ccVBmbnVUoZXPQYUyeV2chVq W4vZZbnwVXty5TPUfcmcPrdriZwNXzqKN0r0S5t+dHYa7zCW2j+j+DFOdcskpWyT kMSBWysgTc+4esrR4g+R67ahVQNMB5kkdMsNsqYFzVS6F5y4d36Zxr3XyPe2lPss Zw4UEeu5lPqYMFdZ8xnU5KBHYigBtjhKbVgqMrvf3ouJVgiqHtc0IygdMF72AKRz d4MtSvNs/H6jcKF4XOTHABs+bDg/KxQwEhkCn6F+M6lBZzyfTdT8ZYOrpNToIwhx qOzgTKGM4cs0ZVy/WZmwHvk1UIydRWlzsQuFbpwZ8GYfHChepfQjzfv92S2jklgl hiDTIgiqiCR2T9YXZj8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml4qz80jsLh/CyolGG1S AKA489KDt4F9WW+K63xVDg4DW111KBa8rd7pElJFOP36chk0Gw7gApd3CxICgsMy g4xyQscsB2/kpDb0/hji2EhkZoh2D1mNFfeU3xpObXl4utUPwbM6enusT9je1vmw 5gTPgAAxiCoHh5JzlvvNxOhGVj3ueZboR7MU9zQkhSGY6k2+iVc8AD0LbAEyCb3N hCRFsnsCbkX+zGr2Lj59Jg6ats/kVf2cCkbCJ1LekmWEjbtQAnmOAYonAJOgTCXu YIXMjGxewihI/XjPquiYbeuS5vCr3FK/8bYmgC7LXoVpQUJTMmlsycuGqKMhMXoS VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 600609696455056729542909361260163408610674233658 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-16 10:09:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-16 10:09:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Schweizerische Nationalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'datashare.snb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19487134558189847819514499598050933565099002353426869937287160736524707860835851664021537805568111423706312277839125037920923441515878045111942813737053167466321269111442125878188520659268401034812158080557285555103660217740119292340837336937175199182826045164322063293798150241525428637113169566886010120017844842970517710145262241356776147052847502591729101199324416933582972689424035584485780091354253141908853398882523357503712752847679007911400024893647518273473041865118156881936433394457713099372550147191899827309543567869869056735587373304557806643726434313529642207582721827176431005018781503057944999760469 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'datashare.snb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d3f80c44a5e8af4eaea438ec6f05bbd32454dfc9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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