www.privasphere.com
- PrivaSphere AG -
Issued by QuoVadis Global SSL ICA G2
About this certificate
This digital certificate with serial number 2c:f8:8e:ad:79:b2:1a:8a:cf:98:50:e2:9c:b3:19:98:51:d5:12:48 was issued on by QuoVadis Limited.
With 27 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
PrivaSphere AG
Organization:
PrivaSphere AG
State / Province:
Zürich
Locality: Zürich
Country: CH
Locality: Zürich
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 2c:f8:8e:ad:79:b2:1a:8a:cf:98:50:e2:9c:b3:19:98:51:d5:12:48Serial Number (int): 256738607700697675553914866090587116092198818376
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 80:1f:15:6a:1e:f9:e9:08:c1:22:ac:85:b5:5e:ed:b4:e9:98:19:63
AuthorityKeyId: 91:19:62:ad:5b:17:a7:30:fb:f0:de:39:25:b1:bd:8c:b9:b8:51:27
Fingerprint (sha1): 7e:50:cd:8d:5a:f4:de:a2:7a:41:2b:8a:1c:2c:54:3c:32:ca:36:dd
Fingerprint (sha256): 56:c0:5e:4e:64:1b:fe:1c:fe:76:36:2d:19:82:d6:48:d4:f2:34:89:f5:00:ff:25:41:b5:48:1b:da:58:15:b1
Issuing Certificate URL: http://trust.quovadisglobal.com/qvsslg2.crt
Revocation information
OCSP Server: http://ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvsslg2.crl
Check the revocation status for certificate www.privasphere.com
27
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.privasphere.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.privasphere.com
secmail.tg.ch
eeg.lu.ch
ees.lu.ch
erv.tg.ch
securemail.holcim.com
securemail.ar.ch
securemail.zg.ch
securemail.bekb.ch
securemail.ifrc.org
secmail.ukb.ch
p4u.ch
www.p4u.ch
zh.p4u.ch
glb.p4u.ch
securemail.lu.ch
www.zh.privasphere.com
www.glb.privasphere.com
vrfy5210.privasphere.com
large.privasphere.com
erv.sh.ch
sec.globalaw.email
jusphere.privasphere.com
securemail.bav.admin.ch
secmail.bvger.ch
securemail.blw.admin.ch
secmail.ti.ch
secmail.tg.ch
eeg.lu.ch
ees.lu.ch
erv.tg.ch
securemail.holcim.com
securemail.ar.ch
securemail.zg.ch
securemail.bekb.ch
securemail.ifrc.org
secmail.ukb.ch
p4u.ch
www.p4u.ch
zh.p4u.ch
glb.p4u.ch
securemail.lu.ch
www.zh.privasphere.com
www.glb.privasphere.com
vrfy5210.privasphere.com
large.privasphere.com
erv.sh.ch
sec.globalaw.email
jusphere.privasphere.com
securemail.bav.admin.ch
secmail.bvger.ch
securemail.blw.admin.ch
secmail.ti.ch
Other certificates including the domain name privasphere.com
(limited to 100 certificates)
git.privasphere.com
crm.privasphere.com
crm.privasphere.com
bugs.privasphere.com
www-dev.privasphere.com
www-dev.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
git.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
*.privasphere.com
bugs.privasphere.com
www.privasphere.com
crm.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
www.privasphere.com
git.privasphere.com
tickets.privasphere.com
www.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
crm.privasphere.com
tickets.privasphere.com
tickets.privasphere.com
www.privasphere.com
tickets.privasphere.com
*.privasphere.com
smtp.privasphere.com
bugs.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
www-dev.privasphere.com
www.privasphere.com
www.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
crm.privasphere.com
puppet.privasphere.com
www.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www-dev.privasphere.com
git.privasphere.com
bugs.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
puppet.privasphere.com
www.privasphere.com
www.privasphere.com
git.privasphere.com
git.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
*.privasphere.com
www.privasphere.com
www.privasphere.com
crm.privasphere.com
typo3.privasphere.com
crm.privasphere.com
typo3.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
crm.privasphere.com
git.privasphere.com
typo3.privasphere.com
crm.privasphere.com
crm.privasphere.com
bugs.privasphere.com
www-dev.privasphere.com
www-dev.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
git.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
*.privasphere.com
bugs.privasphere.com
www.privasphere.com
crm.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
crl-dev.privasphere.com
typo3.privasphere.com
www.privasphere.com
git.privasphere.com
tickets.privasphere.com
www.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
crm.privasphere.com
tickets.privasphere.com
tickets.privasphere.com
www.privasphere.com
tickets.privasphere.com
*.privasphere.com
smtp.privasphere.com
bugs.privasphere.com
www.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
www-dev.privasphere.com
www.privasphere.com
www.privasphere.com
www.privasphere.com
crl-dev.privasphere.com
crm.privasphere.com
puppet.privasphere.com
www.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
tickets.privasphere.com
typo3.privasphere.com
typo3.privasphere.com
www.privasphere.com
typo3.privasphere.com
www.privasphere.com
www-dev.privasphere.com
git.privasphere.com
bugs.privasphere.com
crm.privasphere.com
crl-dev.privasphere.com
puppet.privasphere.com
www.privasphere.com
www.privasphere.com
git.privasphere.com
git.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
tickets.privasphere.com
crl-dev.privasphere.com
bugs.privasphere.com
bugs.privasphere.com
typo3.privasphere.com
*.privasphere.com
www.privasphere.com
www.privasphere.com
crm.privasphere.com
typo3.privasphere.com
crm.privasphere.com
typo3.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
tickets.privasphere.com
bugs.privasphere.com
crm.privasphere.com
git.privasphere.com
typo3.privasphere.com
Certificate
The complete raw certificate details for www.privasphere.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJwDCCCKigAwIBAgIULPiOrXmyGorPmFDinLMZmFHVEkgwDQYJKoZIhvcNAQEL BQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxIzAh BgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBIEcyMB4XDTIzMDExMjE5NTMx M1oXDTI0MDExMjE5NDgwMFowaDELMAkGA1UEBhMCQ0gxEDAOBgNVBAgMB1rDvHJp Y2gxEDAOBgNVBAcMB1rDvHJpY2gxFzAVBgNVBAoMDlByaXZhU3BoZXJlIEFHMRww GgYDVQQDDBN3d3cucHJpdmFzcGhlcmUuY29tMIICIjANBgkqhkiG9w0BAQEFAAOC Ag8AMIICCgKCAgEArq1MPJ7P4sBtyiZpGF9Ik4RQ/K+dfsvQef1ivY/u1hHbhwd5 KstEXW5gE186g7WckNHDt6XBDVUhcA9qsiM3WLtAVf5IO/EV+dG52qhVk6GyJULc Gx8mZXrzkt6AgcwT8cygH4iqVea+dtTivD3prPu/6cjl27gy22Yrh0n9/xUfy+dL 6kAExIfh1JSGNmYNwvf+F/FKwXwHBW0QMhRISKhxqFqO3n+QlzfDnFeUM1z70YRB 2SX2BYYXyCwQTJ9v+n74wcx9fRJ+D11VwuDpLlCGly/F4YV3MDMEaAuggOGjJR2n Q0ZWqt8yxyS/k/BfuYKAnSfcQ7m3trahFUSgkbV3S56I6VAaYvhhuQicPV5Q90EZ 3cxo8UEZdufQtQi61pzZektkENIlxt8mKsXfNTobV04rnrGd+faWWpb+AL5szsxd AWthrE/B5rlRuuadVlRTmAOmul0GDzs7PKeuNBUhTD2ZcNG0z8N6lTO5D/oE0eY4 ybhwsFFvYXmnEAWEK3zYZ4tDrPzReOjnnLgSqSxfOO8wyCiUV1pjBDPa+h7pZWC+ BfM7zen3oru05Mcfs6KFEOLGu5R9TL27NiJHc2VXOOB/WE++CdSO8haClzm0D9iD uUnBn3VGM91RoqYwhgZzIlTTTl/gKf52VfrpSBBthP/jTI0Z+iMWoIi8tl8CAwEA AaOCBXswggV3MAkGA1UdEwQCMAAwHwYDVR0jBBgwFoAUkRlirVsXpzD78N45JbG9 jLm4UScwcwYIKwYBBQUHAQEEZzBlMDcGCCsGAQUFBzAChitodHRwOi8vdHJ1c3Qu cXVvdmFkaXNnbG9iYWwuY29tL3F2c3NsZzIuY3J0MCoGCCsGAQUFBzABhh5odHRw Oi8vb2NzcC5xdW92YWRpc2dsb2JhbC5jb20wggHxBgNVHREEggHoMIIB5IITd3d3 LnByaXZhc3BoZXJlLmNvbYINc2VjbWFpbC50Zy5jaIIJZWVnLmx1LmNoggllZXMu bHUuY2iCCWVydi50Zy5jaIIVc2VjdXJlbWFpbC5ob2xjaW0uY29tghBzZWN1cmVt YWlsLmFyLmNoghBzZWN1cmVtYWlsLnpnLmNoghJzZWN1cmVtYWlsLmJla2IuY2iC E3NlY3VyZW1haWwuaWZyYy5vcmeCDnNlY21haWwudWtiLmNoggZwNHUuY2iCCnd3 dy5wNHUuY2iCCXpoLnA0dS5jaIIKZ2xiLnA0dS5jaIIQc2VjdXJlbWFpbC5sdS5j aIIWd3d3LnpoLnByaXZhc3BoZXJlLmNvbYIXd3d3LmdsYi5wcml2YXNwaGVyZS5j b22CGHZyZnk1MjEwLnByaXZhc3BoZXJlLmNvbYIVbGFyZ2UucHJpdmFzcGhlcmUu Y29tggllcnYuc2guY2iCEnNlYy5nbG9iYWxhdy5lbWFpbIIYanVzcGhlcmUucHJp dmFzcGhlcmUuY29tghdzZWN1cmVtYWlsLmJhdi5hZG1pbi5jaIIQc2VjbWFpbC5i dmdlci5jaIIXc2VjdXJlbWFpbC5ibHcuYWRtaW4uY2iCDXNlY21haWwudGkuY2gw WwYDVR0gBFQwUjBGBgwrBgEEAb5YAAJkAQEwNjA0BggrBgEFBQcCARYoaHR0cDov L3d3dy5xdW92YWRpc2dsb2JhbC5jb20vcmVwb3NpdG9yeTAIBgZngQwBAgIwHQYD VR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMDoGA1UdHwQzMDEwL6AtoCuGKWh0 dHA6Ly9jcmwucXVvdmFkaXNnbG9iYWwuY29tL3F2c3NsZzIuY3JsMB0GA1UdDgQW BBSAHxVqHvnpCMEirIW1Xu206ZgZYzAOBgNVHQ8BAf8EBAMCBaAwggH2BgorBgEE AdZ5AgQCBIIB5gSCAeIB4AB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABhaeUU+0AAAQDAEcwRQIhALcbZ84tlF7/WtQaxOgK+0aaeCUaOhETNQ9D vH3+oRYGAiBlW6oumNhX84ZxLDVQ1dun4gD1+f9WfieG6m5AlZjhvwB3AHPZnokb TJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABhaeUVVAAAAQDAEgwRgIhAJmx Fjloi6m9qQIsgK2lDvSm1fe41oz+j9mJ+D3Urta/AiEAqdjmKF+owkw705LvK1Yd /mljvZ/l9PrPK5lxwMzTTJ4AdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv 4frUFwAAAYWnlFU+AAAEAwBHMEUCIQDF52gI4bQ+MQS/jpFFUPloUFgFHmVJOC3u /1k/kGQrRgIganTqmBmXawQK91g+1K5iMUGAyXCKK7BPxp3GVSE2xVMAdQDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYWnlFQhAAAEAwBGMEQCIE/M GEhLjijmhQyCJe7v587BYkup1cqUTO0aGKepJTIfAiAFwotLmre81tJcW6ep5VQk sMwqb7uDOlFuCPSibSXOzjANBgkqhkiG9w0BAQsFAAOCAQEAuJnWuuDDM9vPTE92 2R7XREbA9y9Kz19uj6rBCxB5musi7dOkOyYivFkQV/5jEayPsKm6/qM5qIHu1PdH 0nAJCzQ6D/Q/uXb6Uj41stJ9T99PqyC65mPOid70LUU2oSLhckwZWWLcN/FTtgTw mS1hO2JkGg+nwpROJM0R8Tmhri9k8AS6VISfNFN8kqvBY2F4/I4yzEJ+htH36No+ iqkwLA7YaHQsnHefJ/WNQAuv/5c1GSUAuS8NfF78tCKyYTIxPdUaurk8YcNYAZyA nL3PmQhQzMHbjV1xk9Svp9likY0qd2sJPR0lKYCapJC83QF2HfW1yT6lARPWE+7+ QMZ45A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArq1MPJ7P4sBtyiZpGF9I k4RQ/K+dfsvQef1ivY/u1hHbhwd5KstEXW5gE186g7WckNHDt6XBDVUhcA9qsiM3 WLtAVf5IO/EV+dG52qhVk6GyJULcGx8mZXrzkt6AgcwT8cygH4iqVea+dtTivD3p rPu/6cjl27gy22Yrh0n9/xUfy+dL6kAExIfh1JSGNmYNwvf+F/FKwXwHBW0QMhRI SKhxqFqO3n+QlzfDnFeUM1z70YRB2SX2BYYXyCwQTJ9v+n74wcx9fRJ+D11VwuDp LlCGly/F4YV3MDMEaAuggOGjJR2nQ0ZWqt8yxyS/k/BfuYKAnSfcQ7m3trahFUSg kbV3S56I6VAaYvhhuQicPV5Q90EZ3cxo8UEZdufQtQi61pzZektkENIlxt8mKsXf NTobV04rnrGd+faWWpb+AL5szsxdAWthrE/B5rlRuuadVlRTmAOmul0GDzs7PKeu NBUhTD2ZcNG0z8N6lTO5D/oE0eY4ybhwsFFvYXmnEAWEK3zYZ4tDrPzReOjnnLgS qSxfOO8wyCiUV1pjBDPa+h7pZWC+BfM7zen3oru05Mcfs6KFEOLGu5R9TL27NiJH c2VXOOB/WE++CdSO8haClzm0D9iDuUnBn3VGM91RoqYwhgZzIlTTTl/gKf52Vfrp SBBthP/jTI0Z+iMWoIi8tl8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 256738607700697675553914866090587116092198818376 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Global SSL ICA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-12 19:53:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-12 19:48:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zürich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zürich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'PrivaSphere AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.privasphere.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 712619760576687728476891545812201787597988265115456621937692241223766455554926192431622075637016771726453592600549670432946160575309951972967442066838314217914085947683564982872117424651910999323324201700855863483479888198322486065725454040345091949979139350857221944341304970088989480260612964059467438353386356994280137007284414562090409032681252175603466324255761789521887519506521639620307224810702639183269765743740601949658155155049192347230142341131731636115703903725492661764658626205060542959948068673156239491722559840934604978586936484753265517044527785185273194172336371054955906094305564573859741765307799581393316732837324285458236174080488677737354878782229537358338561060912459958290323993458790594098046967657936328368246708222870575320576376555408752476029431774119232375118305674055964557938297261601657710444848253567316594870168984265660963400832776831588589805074882867263670685245494135547682980200864751133949169694926382133829687327697892698356101947485926238753857256541731464532795402038032820280256039159660312267952927099778198152171666034866417730339955192293253369172295914141534472170435920081748626898199330778452259513893481072807594292737482821479764835059011249337460046041678558618278308794381919 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 911962ad5b17a730fbf0de3925b1bd8cb9b85127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvsslg2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (488 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secmail.tg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eeg.lu.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ees.lu.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erv.tg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.holcim.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.ar.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.zg.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.bekb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.ifrc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secmail.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zh.p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glb.p4u.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.lu.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.zh.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.glb.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vrfy5210.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'large.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erv.sh.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sec.globalaw.email' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jusphere.privasphere.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.bav.admin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secmail.bvger.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'securemail.blw.admin.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secmail.ti.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvsslg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 801f156a1ef9e908c122ac85b55eedb4e9981963 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 01e000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a7400000185a79453ed0000040300473045022100b71b67ce2d945eff5ad41ac4e80afb469a78251a3a1113350f43bc7dfea116060220655baa2e98d857f386712c3550d5dba7e200f5f9ff567e2786ea6e409598e1bf00770073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b500000185a7945550000004030048304602210099b11639688ba9bda9022c80ada50ef4a6d5f7b8d68cfe8fd989f83dd4aed6bf022100a9d8e6285fa8c24c3bd392ef2b561dfe6963bd9fe5f4facf2b9971c0ccd34c9e0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad41700000185a794553e0000040300473045022100c5e76808e1b43e3104bf8e914550f9685058051e6549382deeff593f90642b4602206a74ea9819976b040af7583ed4ae62314180c9708a2bb04fc69dc6552136c553007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000185a7945421000004030046304402204fcc18484b8e28e6850c8225eeefe7cec1624ba9d5ca944ced1a18a7a925321f022005c28b4b9ab7bcd6d25c5ba7a9e55424b0cc2a6fbb833a516e08f4a26d25cece . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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