sip2.snb.ch
- Schweizerische Nationalbank -
Issued by SwissSign RSA TLS EV ICA 2022 - 1
About this certificate
This digital certificate with serial number 7d:02:02:6f:dd:df:bf:d9:20:95:19:84:03:7d:f1:aa:f4:f5:55:fa was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Schweizerische Nationalbank
Company registration number:
CHE-105.944.570
Organization: Schweizerische Nationalbank
Organization: Schweizerische Nationalbank
Address:
Börsenstrasse 15
Postal code: 8001
State / Province: ZH
Locality: Zurich
Country: CH
Postal code: 8001
State / Province: ZH
Locality: Zurich
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 7d:02:02:6f:dd:df:bf:d9:20:95:19:84:03:7d:f1:aa:f4:f5:55:faSerial Number (int): 713668660134212753930837802136778721921160533498
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 27:39:a0:ff:c6:07:d1:e6:ba:6d:8c:65:f0:4a:32:0e:d4:8a:09:3e
AuthorityKeyId: 49:52:df:30:86:92:59:5f:34:9c:25:48:24:ab:c0:eb:d1:06:f2:d6
Fingerprint (sha1): dc:5b:d2:69:42:19:be:d2:e2:37:eb:a6:2f:ef:d2:5c:63:21:b2:41
Fingerprint (sha256): 48:d6:4f:98:ad:79:4f:5d:ff:68:fe:a2:38:c9:45:74:8a:0f:89:f0:b1:fb:3e:ec:18:3a:09:21:bc:28:f8:1c
Issuing Certificate URL: http://aia.swisssign.ch/air-20350159-813d-4532-b988-8519eca57650
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-9fdd910e-b9ff-4b2f-be38-2e93708c1b36
Check the revocation status for certificate sip2.snb.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sip2.snb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webconf3.snb.ch
sip2.snb.ch
sip2.snb.ch
Other certificates including the domain name snb.ch
(limited to 100 certificates)
remotemail.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
Certificate
The complete raw certificate details for sip2.snb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG/zCCBOegAwIBAgIUfQICb93fv9kglRmEA33xqvT1VfowDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRVYgSUNBIDIwMjIgLSAxMB4XDTIzMTAwMzEz MzI1NFoXDTI0MTAwMzEzMzI1NFowgfUxEzARBgsrBgEEAYI3PAIBAxMCQ0gxEzAR BgsrBgEEAYI3PAIBAgwCWkgxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9u MQswCQYDVQQGEwJDSDELMAkGA1UECAwCWkgxDzANBgNVBAcMBlp1cmljaDENMAsG A1UEERMEODAwMTEaMBgGA1UECQwRQsO2cnNlbnN0cmFzc2UgMTUxJDAiBgNVBAoM G1NjaHdlaXplcmlzY2hlIE5hdGlvbmFsYmFuazEYMBYGA1UEBRMPQ0hFLTEwNS45 NDQuNTcwMRQwEgYDVQQDEwtzaXAyLnNuYi5jaDCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKY2tk3ykTDhOP2gBrLW/R6hxuxClePUsf0Q8mGIUo6Msg7R UWWHxv0NsEZmkpxS2VhhdT37g7990nI83NjiSZXpLQ5SyiPqiEmr4rqYhjT++/6c 1NnXdFOGmvhDmuzKOEwWSzvjD9QnlBkHgUSNZHKY4Sf27M+ydXbw7COU43E0cXx3 nD2Eg0NwF0/zSUquzQlOlHzm62/8D2V+OCqFKAvGonxgh3dif2VV4edNwDf9aJqS GthQ+A2Ev2pMNG5w1pu8sW9qRJzC5SJgsHhCYpGtHDxhOKZ65DZ4NWcOPaMca4PT iEsKiB0KXTqLI/2zeKppvC0KAig0d7xjGBD3UUcCAwEAAaOCAikwggIlMIGyBggr BgEFBQcBAQSBpTCBojBMBggrBgEFBQcwAoZAaHR0cDovL2FpYS5zd2lzc3NpZ24u Y2gvYWlyLTIwMzUwMTU5LTgxM2QtNDUzMi1iOTg4LTg1MTllY2E1NzY1MDBSBggr BgEFBQcwAYZGaHR0cDovL29jc3Auc3dpc3NzaWduLmNoL3NpZ24vb2NzLWFhY2Nj ZWQ1LTY2ZTgtNDA2OS05YjFiLWZkMjlhYjczZWZlYzBuBgNVHSAEZzBlMAcGBWeB DAEBMAgGBgQAj3oBBDBQBghghXQBWQIBAzBEMEIGCCsGAQUFBwIBFjZodHRwczov L3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS9Td2lzc1NpZ25fQ1BTX1RMUy5wZGYw UQYDVR0fBEowSDBGoESgQoZAaHR0cDovL2NybC5zd2lzc3NpZ24uY2gvY2RwLTlm ZGQ5MTBlLWI5ZmYtNGIyZi1iZTM4LTJlOTM3MDhjMWIzNjAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDgYDVR0PAQH/BAQDAgWgMCcGA1UdEQQgMB6CD3dl YmNvbmYzLnNuYi5jaIILc2lwMi5zbmIuY2gwHQYDVR0OBBYEFCc5oP/GB9Hmum2M ZfBKMg7Uigk+MB8GA1UdIwQYMBaAFElS3zCGkllfNJwlSCSrwOvRBvLWMBMGCisG AQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4ICAQCVrwCLY5aijWL+eXDT rsiYxWlcS3foV4mI+qDSazSzJXswHLFK0335CVyeck9WmYQp9PhVomDXvKbOCXqz UPa+WOFJunu/DfH/kJ5hCopfqZFuxv1Edz4FC8Y7Uk4ZLVq4EGjtFbnMkynCjpvA FRPvlFA1eN3uBbp1Gt6noxYGfwlH94TUzd5tLJpZhV99j5eu4bNy5ibSM2og86Xv hNG+7H6jIpLV3sds1F17lB8AEe+eTrD9XIYM3Vadfyu1xT7esfXczjd+GCMmGqm/ AtmErVyMSpu9OjSq+ukBuzzoiH8Lu5yu3Q7lYM4PYlJHRqiV6wDmBM5fBS2/qwcD AUmQtMSKN5ZktGOBdAF0uUqlavwhTM7AmaROp17G5fGuWnc8C0/V0r+pyQoWrOS3 WKzt3A1NKIcN49YMtL7vg+puVUtTAtJTxhqV0tFRwLjI87XKcIpWIQ1f4ST0VVZI mXiCCkYJgswF+cWCYTOIof5EnZND64RB+dICQgi3b3t7uYOVr9YbeUkbG5F5uSXZ fTwUtdOYBQQemQk4ho05ahmswec92gUc/6wH2lOld0KHAmyTFShHCYHHsHv7aZyT TElHKmz4BQEYZO28t1HlhMGCJWHZni/6FFDJvBi8VrLVUgrqrUJA+6viO1/AnhZy ZzjhkSuXA+D6oiiSROkA+bPVNg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApja2TfKRMOE4/aAGstb9 HqHG7EKV49Sx/RDyYYhSjoyyDtFRZYfG/Q2wRmaSnFLZWGF1PfuDv33Scjzc2OJJ lektDlLKI+qISaviupiGNP77/pzU2dd0U4aa+EOa7Mo4TBZLO+MP1CeUGQeBRI1k cpjhJ/bsz7J1dvDsI5TjcTRxfHecPYSDQ3AXT/NJSq7NCU6UfObrb/wPZX44KoUo C8aifGCHd2J/ZVXh503AN/1ompIa2FD4DYS/akw0bnDWm7yxb2pEnMLlImCweEJi ka0cPGE4pnrkNng1Zw49oxxrg9OISwqIHQpdOosj/bN4qmm8LQoCKDR3vGMYEPdR RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 713668660134212753930837802136778721921160533498 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS EV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-03 13:32:54 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-03 13:32:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '8001' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Börsenstrasse 15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Schweizerische Nationalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CHE-105.944.570' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sip2.snb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20982538179674465781479351518610523237803182749290557852240554222034815049896451346464193900258156895394539260800023150563413023016590557229541876652254936538969895877021789100580557843828117068057698889072715378874246587985623423907440767951702686770933562943581878061582153048881681834497157411144284133179756762740217173987971358183841273614896062107712158533654057779851239980970331134648453146764663188269487610925253102104603729933497264756127707710097028525854169336771080685862900421018882323096381784748017668917186855031280846765874505565410203486820984457291725672891987786408333901485360017885525771243847 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-20350159-813d-4532-b988-8519eca57650' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-9fdd910e-b9ff-4b2f-be38-2e93708c1b36' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webconf3.snb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sip2.snb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2739a0ffc607d1e6ba6d8c65f04a320ed48a093e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4952df308692595f349c254824abc0ebd106f2d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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