imito.stgag.ch

Issued by SwissSign Server Silver CA 2014 - G22

About this certificate

This digital certificate with serial number 1a:32:81:a3:22:8f:1f:33:53:ed:d8:05:cb:eb:ac:d2:94:d9:c4:ee was issued on by SwissSign AG.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=imito.stgag.ch

SwissSign AG

Organization: SwissSign AG
Country: CH

This certificate has expire since

Certificate Details

Serial Number (hex): 1a:32:81:a3:22:8f:1f:33:53:ed:d8:05:cb:eb:ac:d2:94:d9:c4:ee
Serial Number (int): 149560090298194247100691898580858767271022675182
Serial Number lenght: 157 bits, 20 octets

SubjectKeyId: 32:be:27:f3:7e:9b:ec:31:14:d0:5e:ce:53:9a:0a:59:17:7e:fa:46
AuthorityKeyId: db:bc:bf:82:18:59:dc:69:fa:f8:ab:aa:83:4d:77:1d:0b:b0:8b:d8

Fingerprint (sha1): 49:28:3e:0d:02:c6:fe:b4:d9:5c:60:cb:e2:ed:2c:ed:fd:72:73:a5
Fingerprint (sha256): 4b:f1:8f:b5:25:02:fb:2e:8c:cc:31:6b:38:70:87:0f:fe:26:20:d8:b9:bb:95:50:1f:7b:a0:08:a0:bf:bb:8e

Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8

Revocation information

OCSP Server: http://silver-server-g2.ocsp.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8
CRL Distribution Point: http://crl.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8
CRL Distribution Point: ldap://directory.swisssign.net/CN=DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint

Check the revocation status for certificate imito.stgag.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for imito.stgag.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

imito.stgag.ch

Other certificates including the domain name stgag.ch

(limited to 100 certificates)
imito-test.stgag.ch
af.stgag.ch
www.stgag.ch
pol.swiss
pol.swiss
pol.swiss
rekrutierung.stgag.ch
pol.swiss
pol.swiss
stgag.ch
pol.swiss
imito-test.stgag.ch
pol.swiss
pol.swiss
www.stgag.ch
mail.stgag.ch
pol.swiss
www.stgag.ch
stgag.ch
www.stgag.ch
www.stgag.ch
stg-xapf.stgag.ch
am.stgag.ch
*.stgag.ch
stgag.ch
stgag.ch
jobportal.stgag.ch
pol.swiss
www.stgag.ch
imito.stgag.ch
www.stgag.ch
stg-xapf.stgag.ch
jobportal.stgag.ch
imito-test.stgag.ch
pol.swiss
expe.stgag.ch
*.stgag.ch
*.stgag.ch
*.stgag.ch
stgag.ch
*.stgag.ch
imito.stgag.ch
pol.swiss
imito-test.stgag.ch
imito.stgag.ch
pol.swiss
jobportal.stgag.ch
jobportal.stgag.ch
stg-xapf.stgag.ch
stgag.ch
pol.swiss
jobportal.stgag.ch
expe.stgag.ch
www.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
pol.swiss
pol.swiss
imito.stgag.ch
*.stgag.ch
imito.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
pol.swiss
pol.swiss
pol.swiss
imito-test.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
imito-test.stgag.ch
*.stgag.ch
*.stgag.ch
stgag.ch
rekrutierung.stgag.ch
imito.stgag.ch
pol.swiss
stgag.ch
jobportal.stgag.ch
af.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
jobportal.stgag.ch
am.stgag.ch
stgag.ch
stg-xapf.stgag.ch

Certificate

The complete raw certificate details for imito.stgag.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8dUKjakDufLH7GsVaT7F
KdnjrqGs7Xdn9h7D/sOGzAvFHd8efdQ4fzrXgipMXUQ6OhmvQ+iPE5XnvVxMbx5C
EBqF6J4n17ZQpaN9JcMTPeC9KrofBdC32gOF/RQp3jQfOkVw+PFv8nGvVta4FYY7
9TAQjh8EsaruuwhXuik9wOFlZGMRPpaP4ACZKsAQTi40DVXIfJOlJB/xurgXFsQi
l7GeVVjhDmmwtEq+YQwd9/8uXCI9C4NMbDpiwmxUzgaqwBrdmlhwawDhYSzq5+Vf
qC+BOqrSwOrCXK1n7Mqxo/1vXjKC/hpxjZE9T0bjgr0CcklEgWE+cEeVJhbmGtFT
TQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 149560090298194247100691898580858767271022675182
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign Server Silver CA 2014 - G22'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-16 11:45:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-09-16 11:45:23 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'imito.stgag.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30528486039842185012509635926529943309545385518442124083739198047054018168156129301014949717425484593520203924871509370878428224939326462622490767270291606167768175070735663296501576770522203408661739581719537631635285984337964932028377340990492615030040860352263885395142770742947823198986690553009992243687406252246215430186498272021086284074265547967119724382820636109551431844164403547405235151048949079687937888858205461851998782332007037386445593250971214447420461970890896667973624445499313183547452150678168710640150844521767559739009251273572179696268013980105354661909124145286479264046744527795920972108621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imito.stgag.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							32be27f37e9bec3114d05ece539a0a59177efa46
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName dbbcbf821859dc69faf8abaa834d771d0bb08bd8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.3.1.11
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Silver-CP-CPS.pdf'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (202 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://silver-server-g2.ocsp.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (480 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004065240e54d98633b413de8e894ce54be27221ee8d0f965e0c8e60902e48976c52416f11acbb4854d9a246aef5759bc2ea106221203d4ec3d9c031861ac311d2a41be31af26c73a39c359c8b7c1c1f991641e0b4731cd6d18db85679852855b52953d9d374e0abc08eb38f45ab85a104c1d0aa440bb4be9199d3292b51916c4d35dfa3c7dc306f725cc3fd5baa382a394aaa9c015b96196a5334db70a23d0be7b5ca058d664830781254fa2a46ebb44383e381e083efa9dfe3b6951a667f0fa93b4b12941981a2a83b01673f6bded99ed44c9ecbcfebe7ae8175ad30a090e397254ef650d0ba573bcda5312555a39fd3db6452bc6065bad739db633266e80949