*.stgag.ch
- thurmed AG -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 35:39:17:19:05:dc:51:5d:b9:c8:0a:f7:49:0c:54:f5:66:3f:47:8b was issued on by SwissSign AG.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
thurmed AG
Organization:
thurmed AG
State / Province:
TG
Locality: Frauenfeld
Country: CH
Locality: Frauenfeld
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 35:39:17:19:05:dc:51:5d:b9:c8:0a:f7:49:0c:54:f5:66:3f:47:8bSerial Number (int): 303849665427405439401254435219717203914374727563
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: d3:ab:9d:e8:21:22:cd:05:40:e2:a0:2b:36:1d:94:e7:fa:9c:f0:4a
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): 76:6b:0e:7f:0b:10:eb:7f:36:70:3b:ad:77:ca:f6:8e:0c:cb:44:53
Fingerprint (sha256): 45:26:40:4c:4f:d3:a6:e5:fd:8c:59:c3:cb:0d:39:73:0d:96:9e:9c:9e:64:de:be:2b:6a:14:a4:b8:8e:8e:c7
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate *.stgag.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.stgag.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.stgag.ch
Other certificates including the domain name stgag.ch
(limited to 100 certificates)
imito-test.stgag.ch
af.stgag.ch
www.stgag.ch
pol.swiss
pol.swiss
pol.swiss
rekrutierung.stgag.ch
pol.swiss
pol.swiss
stgag.ch
pol.swiss
imito-test.stgag.ch
pol.swiss
pol.swiss
www.stgag.ch
mail.stgag.ch
pol.swiss
www.stgag.ch
stgag.ch
www.stgag.ch
www.stgag.ch
stg-xapf.stgag.ch
am.stgag.ch
*.stgag.ch
stgag.ch
stgag.ch
jobportal.stgag.ch
pol.swiss
www.stgag.ch
imito.stgag.ch
www.stgag.ch
stg-xapf.stgag.ch
jobportal.stgag.ch
imito-test.stgag.ch
pol.swiss
expe.stgag.ch
*.stgag.ch
*.stgag.ch
*.stgag.ch
stgag.ch
*.stgag.ch
imito.stgag.ch
pol.swiss
imito-test.stgag.ch
imito.stgag.ch
pol.swiss
jobportal.stgag.ch
jobportal.stgag.ch
stg-xapf.stgag.ch
stgag.ch
pol.swiss
jobportal.stgag.ch
expe.stgag.ch
www.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
pol.swiss
pol.swiss
imito.stgag.ch
*.stgag.ch
imito.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
pol.swiss
pol.swiss
pol.swiss
imito-test.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
imito-test.stgag.ch
*.stgag.ch
*.stgag.ch
stgag.ch
rekrutierung.stgag.ch
imito.stgag.ch
pol.swiss
stgag.ch
jobportal.stgag.ch
af.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
am.stgag.ch
stgag.ch
stg-xapf.stgag.ch
af.stgag.ch
www.stgag.ch
pol.swiss
pol.swiss
pol.swiss
rekrutierung.stgag.ch
pol.swiss
pol.swiss
stgag.ch
pol.swiss
imito-test.stgag.ch
pol.swiss
pol.swiss
www.stgag.ch
mail.stgag.ch
pol.swiss
www.stgag.ch
stgag.ch
www.stgag.ch
www.stgag.ch
stg-xapf.stgag.ch
am.stgag.ch
*.stgag.ch
stgag.ch
stgag.ch
jobportal.stgag.ch
pol.swiss
www.stgag.ch
imito.stgag.ch
www.stgag.ch
stg-xapf.stgag.ch
jobportal.stgag.ch
imito-test.stgag.ch
pol.swiss
expe.stgag.ch
*.stgag.ch
*.stgag.ch
*.stgag.ch
stgag.ch
*.stgag.ch
imito.stgag.ch
pol.swiss
imito-test.stgag.ch
imito.stgag.ch
pol.swiss
jobportal.stgag.ch
jobportal.stgag.ch
stg-xapf.stgag.ch
stgag.ch
pol.swiss
jobportal.stgag.ch
expe.stgag.ch
www.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
pol.swiss
pol.swiss
imito.stgag.ch
*.stgag.ch
imito.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
pol.swiss
pol.swiss
pol.swiss
imito-test.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
imito-test.stgag.ch
*.stgag.ch
*.stgag.ch
stgag.ch
rekrutierung.stgag.ch
imito.stgag.ch
pol.swiss
stgag.ch
jobportal.stgag.ch
af.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
am.stgag.ch
stgag.ch
stg-xapf.stgag.ch
Certificate
The complete raw certificate details for *.stgag.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJnTCCB4WgAwIBAgIUNTkXGQXcUV25yAr3SQxU9WY/R4swDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTIyMTIwNTE0 MTgyNFoXDTIzMTIwNTE0MTgyNFowWTELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAlRH MRMwEQYDVQQHDApGcmF1ZW5mZWxkMRMwEQYDVQQKDAp0aHVybWVkIEFHMRMwEQYD VQQDDAoqLnN0Z2FnLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA usjzi/Zbne1eRYT48CsoeEipp7ikosCE+vM72moC18oSlWVu4BhBUlC5PY6w/m16 z/Rv9jXy0eLkN2t02kWvTghK9HNYBFNaAO5+bqZsLWCsCnBK2mfiud2OoheSXlaJ 6xJ/tEWKrXvmYa3U4E1kn+elBn3toRPTtiKiUF/IrYrBj2S2XCMK9UBTMKqPl4V4 GkQ3fQpVqdC6Zvso9+VDsdjSstY/Y4hAxXAKeZFLRh1e7Q2PZnXBHmLNEwJ5Z3AV /qYuaC+RhckAToWG0Kmxkk5OQ5w8BEFuJBIhNX3sfscnNkMS4bTBLcGPyWINyfkx 4RmiwSwOpC3W+FeJINKFuwIDAQABo4IFZDCCBWAwgbIGCCsGAQUFBwEBBIGlMIGi MEwGCCsGAQUFBzAChkBodHRwOi8vYWlhLnN3aXNzc2lnbi5jaC9haXItMGYyYmY5 YTUtZGQzNy00OGM5LWE4NWItMTJhY2RjYjhiZTQ1MFIGCCsGAQUFBzABhkZodHRw Oi8vb2NzcC5zd2lzc3NpZ24uY2gvc2lnbi9vY3MtYWFjY2NlZDUtNjZlOC00MDY5 LTliMWItZmQyOWFiNzNlZmVjMG8GA1UdIARoMGYwCAYGZ4EMAQICMAgGBgQAj3oB BzBQBghghXQBWQIBAjBEMEIGCCsGAQUFBwIBFjZodHRwczovL3JlcG9zaXRvcnku c3dpc3NzaWduLmNvbS9Td2lzc1NpZ25fQ1BTX1RMUy5wZGYwUQYDVR0fBEowSDBG oESgQoZAaHR0cDovL2NybC5zd2lzc3NpZ24uY2gvY2RwLTk2YjYyZjVhLTZiNzMt NGRhNC04N2Y3LWNlNDAwMmMxY2QzNDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDgYDVR0PAQH/BAQDAgWgMBUGA1UdEQQOMAyCCiouc3RnYWcuY2gwHQYD VR0OBBYEFNOrneghIs0FQOKgKzYdlOf6nPBKMB8GA1UdIwQYMBaAFHxvCm8TD9mM JG8mNPNca0NttyO2MIIDXQYKKwYBBAHWeQIEAgSCA00EggNJA0cAdQBVgdTCFpA2 AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAYTipv1tAAAEAwBGMEQCIAXdJ+nA OasD8qSYl11K0oVjEUlv+XXtgSKGcMSuhRdZAiAVZcXsziQLfrL7ALD9pLhWNTpP luy5DY4X+rnmZ9ENHwB2AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKK AAABhOKm/n8AAAQDAEcwRQIhAOGLrRyBLQDkFVFyu0DHZag4V7ewDczXRpC+/2x1 01X8AiAZoLVv/tN4g0hZb3obU1ph5mvtbDH2mUCu3xcoD2gggAB3AHoyjFTYty22 IOo44FIe6YQWcDIThU070ivBOlejUutSAAABhOKnAAYAAAQDAEgwRgIhAIDWiKrE +It7B6BVMapJ6CKE61K4Qg9fqbLfTrj0JgDmAiEA2gj89vmFhsV1xqPE2RRdO9Dr eEpfxK9Wo5Os3FNyjn8AdQDofqdmC8Js9gAu9XJdP+DjMbk5O7kvv1jrO5BJ2vVD WgAAAYTipwXWAAAEAwBGMEQCIELCIiNFvFrICdR25ljcLImlmnPAdeH626Ct8/f0 MTgyAiBd4wbejA32TExZUId9YRLWpcLLu3boX8jkncIrZrLHAgB2AOg+0No+9QY1 MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABhOKnCRMAAAQDAEcwRQIgfIuwIuIH JH6JfszZzzYcNdEpYru9bU2rdUGTO8vQD2ECIQCBN6KJZyYeyVhWCPQBFWJx7St6 8Xv30HuQJvJ030189QB2ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWa AAABhOKnDDUAAAQDAEcwRQIgMd30lF8XEKeHliQt4vCPXQByHAk7eF0iuafGT/Da d0ECIQC7ABpVTxBOyRGE8hBQDcvB3x0Pw2neSA54oNJzT0o1fwB2AG9Tdqwx8DEZ 2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABhOKnE2cAAAQDAEcwRQIhALlWScev OH/V+fXZ/b4Z63M+UFb9o9rsjAEY0FfvuRVbAiAFg4jdrBwNGnnJ/ol89td1Rn25 g0iQLIvC1wXW6sORYjANBgkqhkiG9w0BAQsFAAOCAgEALLkV2FSK2gTL6clsUjL+ uKqILuEcVGwTi657KlCB/XYbbjkr9KANnFbwCIb+OAvftw061IzP1rmiIl01wg7v grt0UOjtrxW/Qwapw8Xo0ZOm4Lt1KDjtAe2EOaECmr8Q7GnZG02sgZyzQTADxUYT Yla/RWOuJDVDkBJHU3yo/RWaNbJ83y0m0YOpFkj0VrXDx/Zpl3YbXlMTHQ7pFiUF +5sMEDdcuXlQ+0ML13zH8QYq1lIJ+Y9AiqiNRN2qmmKSQzPmu350vCvRoJ8gOVBI u+/3FH7tWM+g6oRbrO7vMQqEjEK0ZAj0HXwz7Q/wXgEqHXDEQ8bUnG2kSzOZY2Q7 LpOgjionZSDWwhGtKiCx7aaMkTEHW14X7KccBfPi09HA7wkM++rPc2HLtuJZ/2nz 21JK1G/8GnmkUm5eLXmINQyLw5V3+ZRLbVrKSAQqGhOlIoKmP26C0lIMan8xOtAe zFShTmuTWKoQeBo5MluPdIBF1vRNE2DmVVTB3iVP9fe1TCiSrvsKWQPHGqIhbP1r wJPhAzzbFdbzDz8cRRJP/ecQ/kBRED3zsYyun9ALnlGhiuohYmQEWCq0RDxzy4vY LNB1bSh/hoP5mTK7xYHp0HrciP+UXCbMeI638zfRcAINowT5A/f8KgteyMEMZSbT YtNihcOALPi1KykFvdoy2h0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusjzi/Zbne1eRYT48Cso eEipp7ikosCE+vM72moC18oSlWVu4BhBUlC5PY6w/m16z/Rv9jXy0eLkN2t02kWv TghK9HNYBFNaAO5+bqZsLWCsCnBK2mfiud2OoheSXlaJ6xJ/tEWKrXvmYa3U4E1k n+elBn3toRPTtiKiUF/IrYrBj2S2XCMK9UBTMKqPl4V4GkQ3fQpVqdC6Zvso9+VD sdjSstY/Y4hAxXAKeZFLRh1e7Q2PZnXBHmLNEwJ5Z3AV/qYuaC+RhckAToWG0Kmx kk5OQ5w8BEFuJBIhNX3sfscnNkMS4bTBLcGPyWINyfkx4RmiwSwOpC3W+FeJINKF uwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 303849665427405439401254435219717203914374727563 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-05 14:18:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 14:18:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'TG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Frauenfeld' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'thurmed AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.stgag.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23579417529783841403611116119566291559548425153275297886017198378221929808726869304406285105664159687399873607763973689882943419477217136873735669610342632992818435065099801498295186056463085619162316198308459778890374049804546621659361383025394821051675963021520352205300235106715233604394040144476357036319056931770981371870343106157313474085817479241803026165345502337255439422823753133888621064340712082859880388028678362179226116581451844279083866511985874475022252524145026777230006727522140766982163377488212152885892097066167817723685359619494204454759780382874650955391183334738292111013879837615479120364987 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.stgag.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d3ab9de82122cd0540e2a02b361d94e7fa9cf04a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (845 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (841 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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