vcse.snb.ch
- Schweizerische Nationalbank -
Issued by SwissSign RSA TLS EV ICA 2021 - 1
About this certificate
This digital certificate with serial number 5a:2d:23:49:17:a9:6c:ea:7f:82:47:3c:2a:f7:70:11:3e:7a:ac:0e was issued on by SwissSign AG.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Schweizerische Nationalbank
Company registration number:
CHE-105.944.570
Organization: Schweizerische Nationalbank
Organization: Schweizerische Nationalbank
Address:
Börsenstrasse 15
Postal code: 8001
State / Province: ZH
Locality: Zurich
Country: CH
Postal code: 8001
State / Province: ZH
Locality: Zurich
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 5a:2d:23:49:17:a9:6c:ea:7f:82:47:3c:2a:f7:70:11:3e:7a:ac:0eSerial Number (int): 514815776710151783210727287652968076162669128718
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 48:9a:0b:f7:8c:3a:9f:86:50:29:9a:0c:b8:7b:13:82:26:06:34:26
AuthorityKeyId: da:34:d4:8e:10:23:f4:6a:2d:6c:b4:1f:f3:28:11:de:5e:01:c4:de
Fingerprint (sha1): b9:23:a8:78:67:7e:a1:0b:ed:f0:71:f8:ee:57:1a:fc:b0:a7:e4:12
Fingerprint (sha256): 52:11:f4:5b:91:a9:07:6f:9c:c7:c6:32:50:e1:4b:40:94:c0:1d:87:9e:79:c4:29:63:42:19:17:b9:5f:25:82
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE
Revocation information
OCSP Server: http://ocsp.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DECRL Distribution Point: http://crl.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE
CRL Distribution Point: ldap://directory.swisssign.net/CN=DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate vcse.snb.ch
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vcse.snb.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vcse.snb.ch
vcsexpress-zh2.snb.ch
vcse-1.swissnationalbank.ch
vcsexpress-zh2.snb.ch
vcse-1.swissnationalbank.ch
Other certificates including the domain name snb.ch
(limited to 100 certificates)
remotemail.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
mailz.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
rastest.snb.ch
ras.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
testswiss.snb.ch
testgold.snb.ch
surveys-usertest.snb.ch
secmail.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
alert.snb.ch
data.snb.ch
secmail.snb.ch
rastest.snb.ch
secmail.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
remotez.snb.ch
data.snb.ch
surveys.snb.ch
datashare.snb.ch
data.snb.ch
testserver.snb.ch
ras-betest1.snb.ch
remoteb.snb.ch
datashare.snb.ch
rastest.snb.ch
rastest.snb.ch
testswiss.snb.ch
securemail.snb.ch
snb.ch
sip.snb.ch
mailb.snb.ch
testgold.snb.ch
bbuem.snb.ch
alert.snb.ch
bbuem.snb.ch
ras.snb.ch
data.test.snb.ch
bbuem.snb.ch
snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
mailz.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
rastest.snb.ch
ras.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
testswiss.snb.ch
testgold.snb.ch
surveys-usertest.snb.ch
secmail.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
alert.snb.ch
data.snb.ch
secmail.snb.ch
rastest.snb.ch
secmail.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
remotez.snb.ch
data.snb.ch
surveys.snb.ch
datashare.snb.ch
data.snb.ch
testserver.snb.ch
ras-betest1.snb.ch
remoteb.snb.ch
datashare.snb.ch
rastest.snb.ch
rastest.snb.ch
testswiss.snb.ch
securemail.snb.ch
snb.ch
sip.snb.ch
mailb.snb.ch
testgold.snb.ch
bbuem.snb.ch
alert.snb.ch
bbuem.snb.ch
ras.snb.ch
data.test.snb.ch
bbuem.snb.ch
snb.ch
Certificate
The complete raw certificate details for vcse.snb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIII5TCCBs2gAwIBAgIUWi0jSRepbOp/gkc8KvdwET56rA4wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRVYgSUNBIDIwMjEgLSAxMB4XDTIyMDkwNzA2 MDU0MloXDTIzMDkwNzA2MDU0MlowgfUxEzARBgsrBgEEAYI3PAIBAxMCQ0gxEzAR BgsrBgEEAYI3PAIBAhMCWkgxGDAWBgNVBAUTD0NIRS0xMDUuOTQ0LjU3MDEdMBsG A1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xCzAJBgNVBAYTAkNIMQswCQYDVQQI EwJaSDEPMA0GA1UEBxMGWnVyaWNoMQ0wCwYDVQQREwQ4MDAxMRowGAYDVQQJDBFC w7Zyc2Vuc3RyYXNzZSAxNTEkMCIGA1UEChMbU2Nod2VpemVyaXNjaGUgTmF0aW9u YWxiYW5rMRQwEgYDVQQDEwt2Y3NlLnNuYi5jaDCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBAJ9aYihEaQdK5qx+/9B127syu9HDmHrdFA6c6UFqXmh9Ty7n hXu0XqJl+duc7ZFyDa/MEz0QutqvKKbS2gKWFNboUPzDZwC1BQEAaUgxaxRFvE7Z sqxzc+EE1TPowGH3nqIQVyqB0WhKZRLx/aPA8dQl/as7nFVrAlAGTHeXnhEVAFLS WC0VXlB7j727aWXOsRbWgu0AsFu50iSWqMTWhl2hywVV8rwjg4XDDgEjfRNwJkn3 zwrtWyiyMUcT0axnbFOma7LLiH3CgKHf/785RfkFW/xdYZDVkVx6UDUZwoWMBn08 MpwII5dAJ5pNAqAjKniBcAa1foIGEdJd8rGTct4UvPzXydrHnZAtmTbDvKG1slHU gfjN1v1oCaNDvfgi2aiAIKII7wspNYaHpmREiv51daIjARpDsNPM+ZxGdb2hd+On 5IZnQZXNK218n6Brci238r5PLQFrveF+8WqyGdQ7MfUo3QfqkY+RcFMsqTrvJKol EGwEIbrIxDCeAWHtSv+j7BscM3LJiUKZuWh55hpDQXmPqLd5QBrHQaR/jl8AJQNe TAwywGaS6l+wYcFx2G6nwFGUEv0AY2zxXixgxLpvOQ0pC+JuNX+IwwQK5lLJQ+Xb 2plhRlNGCTCQCNZWV+UNUpIVkdt/9zg77F4mJ1PR8CK9EcUdgEVb0DO428yVAgMB AAGjggMPMIIDCzBKBgNVHREEQzBBggt2Y3NlLnNuYi5jaIIVdmNzZXhwcmVzcy16 aDIuc25iLmNoght2Y3NlLTEuc3dpc3NuYXRpb25hbGJhbmsuY2gwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQU SJoL94w6n4ZQKZoMuHsTgiYGNCYwHwYDVR0jBBgwFoAU2jTUjhAj9GotbLQf8ygR 3l4BxN4wgf8GA1UdHwSB9zCB9DBHoEWgQ4ZBaHR0cDovL2NybC5zd2lzc3NpZ24u bmV0L0RBMzRENDhFMTAyM0Y0NkEyRDZDQjQxRkYzMjgxMURFNUUwMUM0REUwgaig gaWggaKGgZ9sZGFwOi8vZGlyZWN0b3J5LnN3aXNzc2lnbi5uZXQvQ049REEzNEQ0 OEUxMDIzRjQ2QTJENkNCNDFGRjMyODExREU1RTAxQzRERSUyQ089U3dpc3NTaWdu JTJDQz1DSD9jZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xh c3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQwbgYDVR0gBGcwZTBQBghghXQBWQIBAzBE MEIGCCsGAQUFBwIBFjZodHRwczovL3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS9T d2lzc1NpZ25fQ1BTX1RMUy5wZGYwCAYGBACPegEEMAcGBWeBDAEBMIHGBggrBgEF BQcBAQSBuTCBtjBkBggrBgEFBQcwAoZYaHR0cDovL3N3aXNzc2lnbi5uZXQvY2dp LWJpbi9hdXRob3JpdHkvZG93bmxvYWQvREEzNEQ0OEUxMDIzRjQ2QTJENkNCNDFG RjMyODExREU1RTAxQzRERTBOBggrBgEFBQcwAYZCaHR0cDovL29jc3Auc3dpc3Nz aWduLm5ldC9EQTM0RDQ4RTEwMjNGNDZBMkQ2Q0I0MUZGMzI4MTFERTVFMDFDNERF MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4ICAQA+Yj9s+5S4 sd5C5MPfF7fSKtrYQ06a9yGYRlAmKRAeDQI0SgI/4kY5NyUDbMtgnZAHwxU86Uj7 Vg1i5ycPrcFvu3NyeHO/X5eBEbTSSSqoSMIr6Zgc9phbbyFC4iNUOwJJ+nPkee+b 4+I7XYMqLxfmTpcUgfzQ+hUUxUMKbJFs42S9dqP9f62RW9joxEJcwD7sKbH5+acD Jb2O4wZKqqwLlCqBgBZ33znMD5FFF19rn7bPMA/eCqFB/58JBHLit1FJetXRrLRQ jAY8wPVUcAYj0npAZsGO4U1j49x7O+VG4dbBR6sZyAsGuauyFTCUjoSd6qg8Mg+I 1xWOgPNEaCII1zw2t+YDXGEAW4LChV1uIuEYsC+/BZzry5zgvdnqfmVasuPpVjRt CV5gZUZHeIDUncI2ZJ96xmILt/IX3K+kxRPkjkkVu0f6idkCczAchSTuRkkK5TFV dbShtDr/ODE9QcE9fexljhvmMf4lefCN5Yg2w6xYuBVkKxUpBLvttCNaw40eiKGf UcGbMzzmrXq3DYZaI3P5o6vnw+LthJkvcWKS7tKSf0WLmDIZbgYBl1+B08MuehhA 0fbXOYiNiIB7qvDcWct2WjGvhy3PewKja9iFALqWWrY10+lTIgaq5la6FSpp8zAD I8rmIhHPb9BenRnzwPmA6G0QQI2/mWvMig== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAn1piKERpB0rmrH7/0HXb uzK70cOYet0UDpzpQWpeaH1PLueFe7ReomX525ztkXINr8wTPRC62q8optLaApYU 1uhQ/MNnALUFAQBpSDFrFEW8TtmyrHNz4QTVM+jAYfeeohBXKoHRaEplEvH9o8Dx 1CX9qzucVWsCUAZMd5eeERUAUtJYLRVeUHuPvbtpZc6xFtaC7QCwW7nSJJaoxNaG XaHLBVXyvCODhcMOASN9E3AmSffPCu1bKLIxRxPRrGdsU6ZrssuIfcKAod//vzlF +QVb/F1hkNWRXHpQNRnChYwGfTwynAgjl0Anmk0CoCMqeIFwBrV+ggYR0l3ysZNy 3hS8/NfJ2sedkC2ZNsO8obWyUdSB+M3W/WgJo0O9+CLZqIAgogjvCyk1hoemZESK /nV1oiMBGkOw08z5nEZ1vaF346fkhmdBlc0rbXyfoGtyLbfyvk8tAWu94X7xarIZ 1Dsx9SjdB+qRj5FwUyypOu8kqiUQbAQhusjEMJ4BYe1K/6PsGxwzcsmJQpm5aHnm GkNBeY+ot3lAGsdBpH+OXwAlA15MDDLAZpLqX7BhwXHYbqfAUZQS/QBjbPFeLGDE um85DSkL4m41f4jDBArmUslD5dvamWFGU0YJMJAI1lZX5Q1SkhWR23/3ODvsXiYn U9HwIr0RxR2ARVvQM7jbzJUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 514815776710151783210727287652968076162669128718 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS EV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-07 06:05:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-07 06:05:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CHE-105.944.570' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '8001' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Börsenstrasse 15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Schweizerische Nationalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vcse.snb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 650103767016445364549057514583167360642559978275824263915549738798168286335400989222209552691113245962859883180374268754467769008649162636171031345317097085082637753346544752660643483247217083024189507947732595859079092784762544716272600173158016262810328690339152727275049347314364375024591374474988656346382581814613623353815064936762933733852784263706474841199987704482423687006072603531327773011276865165783184188763270601284768966064225483258276006731700231712118654113688229223842483999635784611969054577901233335172851601099479127624178867580864952277364257368531521615727230797157525178917065780402156258991253239519074633350117438119884966813380203408450625862962657744277227131146425636110757699249949797752283688419508790032102668217855841028418495434231487665866361181147444618271375011586269765443402824703590760282365037036707743076569090238701273277159255481088080506635364482832694784030702138981714770385033956785969342813309414930344338823575072530980873569191692261803001737204723854351020311910998959817211606442559620690527527536221818105145290281962266368619806952154311822560264980883570705288178214069766104569303784142725099386412164227054480969068286636577258517632906153105475180155997303055614338477575317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vcse.snb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vcsexpress-zh2.snb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vcse-1.swissnationalbank.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 489a0bf78c3a9f8650299a0cb87b138226063426 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName da34d48e1023f46a2d6cb41ff32811de5e01c4de . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 003e623f6cfb94b8b1de42e4c3df17b7d22adad8434e9af7219846502629101e0d02344a023fe246393725036ccb609d9007c3153ce948fb560d62e7270fadc16fbb73727873bf5f978111b4d2492aa848c22be9981cf6985b6f2142e223543b0249fa73e479ef9be3e23b5d832a2f17e64e971481fcd0fa1514c5430a6c916ce364bd76a3fd7fad915bd8e8c4425cc03eec29b1f9f9a70325bd8ee3064aaaac0b942a81801677df39cc0f9145175f6b9fb6cf300fde0aa141ff9f090472e2b751497ad5d1acb4508c063cc0f554700623d27a4066c18ee14d63e3dc7b3be546e1d6c147ab19c80b06b9abb21530948e849deaa83c320f88d7158e80f344682208d73c36b7e6035c61005b82c2855d6e22e118b02fbf059cebcb9ce0bdd9ea7e655ab2e3e956346d095e606546477880d49dc236649f7ac6620bb7f217dcafa4c513e48e4915bb47fa89d90273301c8524ee46490ae5315575b4a1b43aff38313d41c13d7dec658e1be631fe2579f08de58836c3ac58b815642b152904bbedb4235ac38d1e88a19f51c19b333ce6ad7ab70d865a2373f9a3abe7c3e2ed84992f716292eed2927f458b9832196e0601975f81d3c32e7a1840d1f6d739888d88807baaf0dc59cb765a31af872dcf7b02a36bd88500ba965ab635d3e9532206aae656ba152a69f3300323cae62211cf6fd05e9d19f3c0f980e86d10408dbf996bcc8a