*.hesge.ch
- HES-SO Genève -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 1b:a0:b8:87:7b:f0:92:6e:50:f6:05:87:4f:a9:02:a8:17:a3:dd:ba was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
HES-SO Genève
Organization:
HES-SO Genève
State / Province:
Genève
Locality: Carouge
Country: CH
Locality: Carouge
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 1b:a0:b8:87:7b:f0:92:6e:50:f6:05:87:4f:a9:02:a8:17:a3:dd:baSerial Number (int): 157726944807483709768565389333440091685862497722
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: 01:f3:31:f7:e5:90:73:f3:fa:d3:24:e3:a2:07:eb:52:b4:e0:1a:48
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 22:ce:d6:48:b9:c3:a7:9a:08:a6:2a:f9:75:2e:33:24:49:b3:c0:18
Fingerprint (sha256): 4a:ff:2c:13:38:20:ab:14:56:b1:7d:91:b6:fa:27:5b:bd:79:23:46:71:23:14:98:42:92:0f:de:b9:94:98:23
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate *.hesge.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hesge.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hesge.ch
hesge.ch
hesge.ch
Other certificates including the domain name hesge.ch
(limited to 100 certificates)
heds.prod.hesge.ch
goldorak.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
mail.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
goldorak.hesge.ch
hepiacloud.hesge.ch
m.hesge.ch
idp.hesge.ch
hepiacloud.hesge.ch
idp.hesge.ch
mail.ge.ch
*.hesge.ch
hepiacloud.hesge.ch
vdi.hesge.ch
hepiacloud.hesge.ch
hepiacloud.hesge.ch
candy.hesge.ch
idp.hesge.ch
goldorak.hesge.ch
m.hesge.ch
hepiacloud.hesge.ch
vpn.hesge.ch
*.hesge.ch
mail.ge.ch
m.hesge.ch
idp.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
*.hesge.ch
m.hesge.ch
*.hesge.ch
vdi.hesge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
mpp.hesge.ch
m.hesge.ch
goldorak.hesge.ch
head-mdm.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
goldorak.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
mail.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
goldorak.hesge.ch
hepiacloud.hesge.ch
m.hesge.ch
idp.hesge.ch
hepiacloud.hesge.ch
idp.hesge.ch
mail.ge.ch
*.hesge.ch
hepiacloud.hesge.ch
vdi.hesge.ch
hepiacloud.hesge.ch
hepiacloud.hesge.ch
candy.hesge.ch
idp.hesge.ch
goldorak.hesge.ch
m.hesge.ch
hepiacloud.hesge.ch
vpn.hesge.ch
*.hesge.ch
mail.ge.ch
m.hesge.ch
idp.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
*.hesge.ch
m.hesge.ch
*.hesge.ch
vdi.hesge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
mpp.hesge.ch
m.hesge.ch
goldorak.hesge.ch
head-mdm.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
Certificate
The complete raw certificate details for *.hesge.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJgzCCB2ugAwIBAgIUG6C4h3vwkm5Q9gWHT6kCqBej3bowDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMDUxMzEy NTgwNVoXDTIzMDUxMzEyNTgwNVowXzELMAkGA1UEBhMCQ0gxEDAOBgNVBAgMB0dl bsOodmUxEDAOBgNVBAcTB0Nhcm91Z2UxFzAVBgNVBAoMDkhFUy1TTyBHZW7DqHZl MRMwEQYDVQQDDAoqLmhlc2dlLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA1ezJlNkWUaGEjuVQmB61JvN3u5KWl0yoG01Rvi75bEmU3nNu8xm0jZ8+ PAQPZqH/uSG8ZfuF93bVLowVRIlhsnAfbwwY1/NpPuzN1UvTuihxmHLfJZ524dF2 eHPpHDqiWfLcrUB112VBqGeKqHEpfzZSTBe1mEPEaeI/Zrc+K3sIjvKFRyT4xmnP z2x7k5pyblLw0Ot9TKRSgENTYsZTg/oWbGNFVjscgJIoPpX0D5lt7NXTx9o/L7QJ vjkip+Q5ikNCrehu/7chxZzz0yZfE+rshOS5bB55e6hcVxKODTjxZmeFFlAiWmOu WpvKpVSe/AbCN9mKQ4+kUKkRgo8SQQIDAQABo4IFRDCCBUAwHwYDVR0RBBgwFoIK Ki5oZXNnZS5jaIIIaGVzZ2UuY2gwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUAfMx9+WQc/P60yTjogfrUrTg GkgwHwYDVR0jBBgwFoAUrNA6wsJXVZFpEcxwalk4ioysnD0wgf8GA1UdHwSB9zCB 9DBHoEWgQ4ZBaHR0cDovL2NybC5zd2lzc3NpZ24ubmV0L0FDRDAzQUMyQzI1NzU1 OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0QwgaiggaWggaKGgZ9sZGFwOi8vZGly ZWN0b3J5LnN3aXNzc2lnbi5uZXQvQ049QUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcw NkE1OTM4OEE4Q0FDOUMzRCUyQ089U3dpc3NTaWduJTJDQz1DSD9jZXJ0aWZpY2F0 ZVJldm9jYXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9u UG9pbnQwbwYDVR0gBGgwZjBQBghghXQBWQIBAjBEMEIGCCsGAQUFBwIBFjZodHRw czovL3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS9Td2lzc1NpZ25fQ1BTX1RMUy5w ZGYwCAYGBACPegEHMAgGBmeBDAECAjCBxgYIKwYBBQUHAQEEgbkwgbYwZAYIKwYB BQUHMAKGWGh0dHA6Ly9zd2lzc3NpZ24ubmV0L2NnaS1iaW4vYXV0aG9yaXR5L2Rv d25sb2FkL0FDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0Qw TgYIKwYBBQUHMAGGQmh0dHA6Ly9vY3NwLnN3aXNzc2lnbi5uZXQvQUNEMDNBQzJD MjU3NTU5MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMzRDCCAnAGCisGAQQB1nkCBAIE ggJgBIICXAJaAHUAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAGA vX9tugAABAMARjBEAiAxahH2apmRO08rRYEYPhgO9D7MJDkk6Ir05HbJvk49kgIg Qm8ViEtvqfQaDwovtPT/nyXlet4Fda2NoNIT0pH5p6AAdwBvU3asMfAxGdiZAKRR Ff93FRwR2QLBACkGjbIImjfZEwAAAYC9f2yLAAAEAwBIMEYCIQDCOqCkOgSIZ5Uo 5SVA2mhyGm67w6qm9e+ajlzHmlKZTAIhAPARkgXx+aAlzhurJwAn1X2iyVE01ubi tAm/gPPh12uhAHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGA vX9sOAAABAMASDBGAiEA433YFAAUDKtLFq4FLNi2sLyyMCADrXnpGdufopTVrjMC IQCvfqVCRLBaGEYcam/HUz0bvRMZbv9gycL8evQnR78YyQB2AK33vvp8/xDIi509 nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABgL1/bHYAAAQDAEcwRQIhALuA2OARaKx2 pWwrG/mUIEJsN0RL1SNSIt0UedssLORhAiA1XrpB5J9Ds/U7Q0DUgfs//ux5sI0w CcHBrzEMmrwFXAB3ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAAB gL1/bd0AAAQDAEgwRgIhAKWVpEFfWtDajhoFoCei9/oaSvX0UbXVFzeiIUvhUvlB AiEA1C6JgZDQ1sJz5GaPic07cH63+jmBKkC/qK6MYsJJXYYwDQYJKoZIhvcNAQEL BQADggIBAK9ZvXyG2ntdAToB/qVYhUfRKpkDWG+IeS+8dU0oUGXVlUEk9Mwx3xe1 a1rZt86zzu/MeT1E87BBk7jpRax4oknky3KbwFT0sfluBH9482+nncn/wsHUTsKm DrJro6VGhlLmFO5MUNxx6tVMW86JnG0emCgl4UZgXoWnpXT/2j7pP/oHQsUzRa3s Qea60D+ChdoxMkgS/rMIukF+ZeWKEFZ1snc8h/SFHz9KIPHAQNswp4inWM5sRg9L 0r9HHwuwypzUFJ6IK8wQJiE5hfyHxj3tatMvkNNcbTrx4vhoiQc9zcqLvrWMSwwJ 3wTwt3R+NoNE5l0kb3P55pFkalz9d5DzRY6fUigqnXe1LnHTn9bRTqGyus3YDBep JPh/Jf5czhT6uV9h/ovHKIepYsF+SDygJuk47T2keKhCvk+LpLt+SQOP726TC5s4 bBRtDkbwugShQBb0y0pXEFmCP3OdsRLmjHf+LJcaekvpBf/weVrAVYZqs+3TK6T6 3MhHQRojSQL5UndcUuaAZGE4qo1yeNTpsGYC5v49wPV1XAxuxHIRYuTG8xjCTxCA offAg21rfVGnDlSSRLob+ll2xdMl59ooQUimpGKsAIDbenmJqj0Nqe1Km1DcqfsO VB25MTx/iTNP5bVPn53fAJuUxoUiwTZSziD63W/PIOK6mkzOm0vi -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ezJlNkWUaGEjuVQmB61 JvN3u5KWl0yoG01Rvi75bEmU3nNu8xm0jZ8+PAQPZqH/uSG8ZfuF93bVLowVRIlh snAfbwwY1/NpPuzN1UvTuihxmHLfJZ524dF2eHPpHDqiWfLcrUB112VBqGeKqHEp fzZSTBe1mEPEaeI/Zrc+K3sIjvKFRyT4xmnPz2x7k5pyblLw0Ot9TKRSgENTYsZT g/oWbGNFVjscgJIoPpX0D5lt7NXTx9o/L7QJvjkip+Q5ikNCrehu/7chxZzz0yZf E+rshOS5bB55e6hcVxKODTjxZmeFFlAiWmOuWpvKpVSe/AbCN9mKQ4+kUKkRgo8S QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 157726944807483709768565389333440091685862497722 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-13 12:58:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-13 12:58:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Carouge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'HES-SO Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hesge.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27005523190128434016917984403949598200123814440890541197167910112754482796312025481387627029710003353645847601996306577148700578032795465716594353647115720666425222217569058260903984126606820719036517565080181173863993127783129892817030040922798882139520664060994402392211911807777702651303849900651670701709606444009158412712254828103945584524842451865870283864120964960611762595398931830291505212525137310322246553094664186683345646088903715911746109828637687430779149015923224324670770485820532871460570029529542732960797504452873601468883133810934753237185790994100773965625535139239950818012717055279313389032001 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hesge.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hesge.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 01f331f7e59073f3fad324e3a207eb52b4e01a48 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (608 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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