surveys-usertest.snb.ch
- Schweizerische Nationalbank -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 59:9a:70:e1:06:d3:73:1e:51:25:05:2a:ab:13:93:7e:a2:6f:cf:04 was issued on by SwissSign AG.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Schweizerische Nationalbank
Organization:
Schweizerische Nationalbank
State / Province:
ZH
Locality: Zurich
Country: CH
Locality: Zurich
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 59:9a:70:e1:06:d3:73:1e:51:25:05:2a:ab:13:93:7e:a2:6f:cf:04Serial Number (int): 511544326512525625470247686560888446924891344644
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 46:cf:30:6d:15:07:5a:ee:f7:cd:56:b9:a6:28:d6:b5:94:be:5d:87
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): 97:57:84:f4:c3:6f:85:92:ac:91:8d:22:77:99:5c:b5:14:72:09:41
Fingerprint (sha256): 61:46:cb:b1:16:7e:fb:26:d8:84:75:a9:0d:ae:6e:93:e0:78:3a:2d:3d:12:f8:22:9f:1e:09:45:f1:96:ad:94
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate surveys-usertest.snb.ch
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for surveys-usertest.snb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
surveys-usertest.snb.ch
surveys-nightly.snb.ch
surveys-integration.snb.ch
surveys-nightly.snb.ch
surveys-integration.snb.ch
Other certificates including the domain name snb.ch
(limited to 100 certificates)
remotemail.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch
Certificate
The complete raw certificate details for surveys-usertest.snb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJCjCCBvKgAwIBAgIUWZpw4QbTcx5RJQUqqxOTfqJvzwQwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTI0MDQyMjEy MDAzMVoXDTI1MDQyMjEyMDAzMVowczELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAlpI MQ8wDQYDVQQHDAZadXJpY2gxJDAiBgNVBAoMG1NjaHdlaXplcmlzY2hlIE5hdGlv bmFsYmFuazEgMB4GA1UEAwwXc3VydmV5cy11c2VydGVzdC5zbmIuY2gwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIzJoM9ZnPBMr5K4s2RQNPwbEb9EBG 913jMWvsMTek6VhQxkzX9G8vSk/4Fp7GP4DlIdinkIE4LLxd4S0j+yQAb7BBKJ8O i9OjxkWr8bMkbUbVjrYfFDdGhUMOS11krNP2B2R1CZkQaUjTgikJ2Wy9RVS6LcAE MDXYj/y87SWxdfYOLQTyACBkMEKCaC5mW80NXhKXA84rnE9/QIQ02FLESmxD4iHD bhqpu1xVAiHd5OoG3Sq3aM5PyVDIFwprXFGixHUElxvzBLgLmSbcYrOvwodtBKJo pgsW6PA+U/E/TZtBTgMDPJP0YeX1nA3024r1650Bz7H4O5b3xnflIVKfAgMBAAGj ggS3MIIEszCBsgYIKwYBBQUHAQEEgaUwgaIwTAYIKwYBBQUHMAKGQGh0dHA6Ly9h aWEuc3dpc3NzaWduLmNoL2Fpci0wZjJiZjlhNS1kZDM3LTQ4YzktYTg1Yi0xMmFj ZGNiOGJlNDUwUgYIKwYBBQUHMAGGRmh0dHA6Ly9vY3NwLnN3aXNzc2lnbi5jaC9z aWduL29jcy1hYWNjY2VkNS02NmU4LTQwNjktOWIxYi1mZDI5YWI3M2VmZWMwbwYD VR0gBGgwZjAIBgZngQwBAgIwCAYGBACPegEHMFAGCGCFdAFZAgECMEQwQgYIKwYB BQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2ln bl9DUFNfVExTLnBkZjBRBgNVHR8ESjBIMEagRKBChkBodHRwOi8vY3JsLnN3aXNz c2lnbi5jaC9jZHAtOTZiNjJmNWEtNmI3My00ZGE0LTg3ZjctY2U0MDAyYzFjZDM0 MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMCBaAw VgYDVR0RBE8wTYIXc3VydmV5cy11c2VydGVzdC5zbmIuY2iCFnN1cnZleXMtbmln aHRseS5zbmIuY2iCGnN1cnZleXMtaW50ZWdyYXRpb24uc25iLmNoMB0GA1UdDgQW BBRGzzBtFQda7vfNVrmmKNa1lL5dhzAfBgNVHSMEGDAWgBR8bwpvEw/ZjCRvJjTz XGtDbbcjtjCCAm8GCisGAQQB1nkCBAIEggJfBIICWwJZAHcAKOKBOP2DIUXpqdaq dTdtg3eohRKzwH9yQUgh3L3pjGYAAAGPBa3gtwAABAMASDBGAiEAwCiGXp3Lk+3T 5rdUb+ce75iJswtJfFmjnFEzfBCIdPYCIQDk2XGkKRiY7RSFbpnSfgsaPrxcEo50 g77l9izIQBFNNwB1AOCSs/wMHcjnaDYf3mG5lk0KUngZinLWcsSwTaVtb1QEAAAB jwWt364AAAQDAEYwRAIgPmvd2Bbc4CsuKU8zKGcvtlf2ALKOQZ2KPaPbzZVVFP8C IBFRbEFaefaKHWS8Ej6ROMXCE/ocxKNSPXNF0MJfkX7mAHYAzxFW7tUufK/zh1vZ aS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGPBa3dNAAABAMARzBFAiBRNO5JtV0A9+OU yBQn1LsR2q6GWGnu6oC2Fuln7cbpdQIhALmrEbbWTVwdAxcDO4Lw9GHLc0jB7st7 Pek6M62oFvypAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGP Ba3dhAAABAMARzBFAiEAriMPq87R8xb7rDoMKpGCxf+HKMK2Ta6T0R0WaR73NLoC IBNrZkzpJpLNoJ+1GkBlhbpzaVUlTUEtbbYtXI7umPyqAHcATnWjJ1yaEMM4W2zU 3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGPBa3fUgAABAMASDBGAiEAxjcZzApASt8u diLBZ7E8r9aeievbmkXNHz6FAUfP85cCIQDlw+1tG9n1l5mBB1NPT0KLktqHg2pL aRURIv9VgQfCdTANBgkqhkiG9w0BAQsFAAOCAgEAptGkzQjt7I3UkkRwTS8cwK3P +v5arCzPrgVFVTHIJUl+N/iXvzKXlZBDxCzvqP23YmSHp4G/YlpE5CYUtQJAQ9f7 v5qepWSIeOjGdCbtg+1dgwRXf2CzYzAMNdM31cHa6dE0A+eSi43ZyEFgCHq5Mpxe vJ60KgraIucqfFkFwAnwYWU0yfQoPOuMs7AyGMo+nkL5YS3dE9FboM7YigZQ8qtQ ZKWlz+kEO3l2rmfzByHQ97j8FV9sovAscXhvQfYv3jU8twTV/bghIwvrGF2Nv1P1 lptaghQ6at0e9wKZ/7hlu11EyjaAeNzaPqsHlYFoaxgRdCzzKN1ocH3C1QR14RH/ m6MEf+0Vuzru9WkcRBGjLzsKjBdHvPnz7aOMLBGdJ6k3CpKAbhORQTUsTy21e33P yUXnK0cabUqWGEH15q02y+td0m2dGr50n6woDWVW57OMysVD7jvXYKtxJhBD5hEW pAKAI0T7zE6m9v2DLAw8Ro4Mu0xz4YqCEadKsGsp2RfpX+AD8x38NFRZJoN+SLlX HzWfMhYB7APrvJP6Z98KBK4CmLiGNyMqt5i3SjuH6Qj2vE+I37qUi/XbBnjQ85zU 7/KJyblqAwOwIwoBEPKogxKnFoXJGW/8l2sTc8LancSN+85KLBCS/7naobXnZFFU 9PTUeF/L7lgJoRzh++E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMyaDPWZzwTK+SuLNkUD T8GxG/RARvdd4zFr7DE3pOlYUMZM1/RvL0pP+Baexj+A5SHYp5CBOCy8XeEtI/sk AG+wQSifDovTo8ZFq/GzJG1G1Y62HxQ3RoVDDktdZKzT9gdkdQmZEGlI04IpCdls vUVUui3ABDA12I/8vO0lsXX2Di0E8gAgZDBCgmguZlvNDV4SlwPOK5xPf0CENNhS xEpsQ+Ihw24aqbtcVQIh3eTqBt0qt2jOT8lQyBcKa1xRosR1BJcb8wS4C5km3GKz r8KHbQSiaKYLFujwPlPxP02bQU4DAzyT9GHl9ZwN9NuK9eudAc+x+DuW98Z35SFS nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 511544326512525625470247686560888446924891344644 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-22 12:00:31 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-22 12:00:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ZH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Schweizerische Nationalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'surveys-usertest.snb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17269302363689938487391932455328960443274806732768541520627886106796249975847253613753503919037124133053370434986369175886162905261929066105037261831911088259991993388373799933079228873704905868309690058840824615054266914731694904878192251884018851030416048385103554889950014522008599150802949033895705179026492589399362932135225490663773522886248115711863771452747288906931730861090301618618128183128600878478656859995283833324254003160038650050375633268879907660087636786076028247341576871682255298050276652762483974441218296400922840323446249687013942685238978072484385280940224876346952655446530931031800214016671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surveys-usertest.snb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surveys-nightly.snb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surveys-integration.snb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46cf306d15075aeef7cd56b9a628d6b594be5d87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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