certest-win.empa.ch
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 42:db:72:a6:bc:e1:e4:ff:72:08:fc:0c:13:d8:aa:ff:58:64:50:d1 was issued on by SwissSign AG.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=certest-win.empa.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 42:db:72:a6:bc:e1:e4:ff:72:08:fc:0c:13:d8:aa:ff:58:64:50:d1Serial Number (int): 381687241611388519239884215107037612704138547409
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 64:a6:38:bc:5d:59:01:1c:48:f3:10:f5:18:f1:7d:99:6e:d8:a4:70
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): 0e:07:1f:7d:f0:5f:9e:44:17:3a:93:a3:32:26:91:54:70:a4:d7:51
Fingerprint (sha256): 66:ed:8d:5f:90:fd:53:4c:a4:de:9d:65:5e:c3:34:63:a0:4c:7b:0f:e2:93:ea:d5:68:cf:39:bc:19:fb:1c:0d
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate certest-win.empa.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for certest-win.empa.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
certest-win.empa.ch
Other certificates including the domain name empa.ch
(limited to 100 certificates)
certest-win.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sbc.empa.ch
test.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
certest-win.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
certest-win.empa.ch
adobesync.empa.ch
*.empa.ch
www.nest.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sbc.empa.ch
sip.empa.ch
test.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sbc.empa.ch
test.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
certest-win.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
certest-win.empa.ch
adobesync.empa.ch
*.empa.ch
www.nest.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sbc.empa.ch
sip.empa.ch
test.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
Certificate
The complete raw certificate details for certest-win.empa.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIfDCCBmSgAwIBAgIUQttyprzh5P9yCPwME9iq/1hkUNEwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTIzMDgyNDE0 MDg1NVoXDTI0MDgyNDE0MDg1NVowHjEcMBoGA1UEAxMTY2VydGVzdC13aW4uZW1w YS5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMsKz8X7/PN2dwRd wlIz1XanIBJquRlYtBLfzv/+b7QT1bOvHg1DcNn3CnvJCFGAvAIaQNyvmHJrEWqR 7IlNV6sRAK6n48I+vmZrL0hU/hjOruSxKBxlLZWtTmipsZi8Xp0/8/mUlj6ZEuaX N59IsP7oThKpdx3zS7/dOlxt6If9KT0gIy9aM6+hcysgiF1jSBRbcexDFmlSWtpj jGnvTaoImxFY8UybkDfwbT9cp9NDDP8tNx5+zhv4g7ErU9fBFjoUuXUYmGJmIhEf r/LZDLPkSqgcHU0jS6foOvMcHjlYyxVmp+gEhFErpVvWyx9lGGpFmfC3LcBkv7Th sZUDxSkCAwEAAaOCBH4wggR6MIGyBggrBgEFBQcBAQSBpTCBojBMBggrBgEFBQcw AoZAaHR0cDovL2FpYS5zd2lzc3NpZ24uY2gvYWlyLTFiODYzMzg1LWY0YTktNDdm YS04OGE1LTJhNWFiZmQ0YTE2NzBSBggrBgEFBQcwAYZGaHR0cDovL29jc3Auc3dp c3NzaWduLmNoL3NpZ24vb2NzLWFhY2NjZWQ1LTY2ZTgtNDA2OS05YjFiLWZkMjlh YjczZWZlYzBvBgNVHSAEaDBmMAgGBmeBDAECATAIBgYEAI96AQYwUAYIYIV0AVkC AQEwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5LnN3aXNzc2lnbi5j b20vU3dpc3NTaWduX0NQU19UTFMucGRmMFEGA1UdHwRKMEgwRqBEoEKGQGh0dHA6 Ly9jcmwuc3dpc3NzaWduLmNoL2NkcC02Nzk3MjNiMi04NjQxLTQ2NDItODUwMC1m NmQyZmYzN2U2YmEwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMA4GA1Ud DwEB/wQEAwIFoDAeBgNVHREEFzAVghNjZXJ0ZXN0LXdpbi5lbXBhLmNoMB0GA1Ud DgQWBBRkpji8XVkBHEjzEPUY8X2ZbtikcDAfBgNVHSMEGDAWgBTrvX9Jk4zJ7uyi uvcc0mfwg7Hq3jCCAm4GCisGAQQB1nkCBAIEggJeBIICWgJYAHYAVYHUwhaQNgFK 6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAGKJ+BzoAAABAMARzBFAiEA0uTM6oie g7Qn3WdWnROPOKseMKRL8GO7qGXN3EkH8yUCIF77bZI9+JJrRjOY3PGxmQ2paXpQ sQt9IERI4aOuq9c5AHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sA AAGKJ+B2OQAABAMARzBFAiEA9px4bUKfacBcgarSVk09WeGvI0sOIyJmbsy1rCPf sDsCICKjzf4hm2eVb59KGFrUg/ISUx8bF9EYx1EkqCAg0sa0AHYAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGKJ+B3RwAABAMARzBFAiBehIDxakGj C0Bz4pt4g+VwtPxvjmSDwXbEzSTyHni9nwIhAMepZusAcsEw15o55IdZa8XjtpSk 9B9IZ2ZWB1CDBSzgAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsA AAGKJ+B4kAAABAMARzBFAiEAzH5VmY2nncNtCEjL5dBUi63wRhnzsqLdWq1haIis KBQCIH5/mu0/foORKgmVLhnupw43d8D1mOZ6W2V7bScFUn+RAHYAh0+1DcAp2ZMd 5XPp8omejkUzs5LTiwpGJXS/D+6y/B4AAAGKJ+B9xgAABAMARzBFAiAx0oF7hAQg DRWgAiIzcNcrpBBhYYf8vqGfL6ei0ajbHAIhAP+jaAxd3kEf/fQFXqstk6ktnnhw uQwJ33hMjebH/J8WMA0GCSqGSIb3DQEBCwUAA4ICAQAS6rDn4eOEwewUScxicYYN jiD+Yffx84tJIsEVqF9c3ybN/o3+JVKBMsODhfudJSD3hOIzylb10ixSlmOdJcV8 +RqhrLQdVlYmwLxp7OdiErqSVE8Ms/Lnre4R/qLkiBdMn5N/zjdrG8MQNrRSG7+i +P7gml40c1f1XoJQ/rs3jiCJ/D/yDfGr1L3KQzlM4R8g7d7ZKDX87Fpi/6CLQJQr kLlUamShxfhMonUEyAZBdCJ5ng9Q8rfqXj1purAhVNBbZTPhEHBhkjQlreloORGT JBh98Y013QTlmqfL8PdEZPyh+Nwzz4sgFP/jnWJDGNHYctcRMtEO4dmEIeLc2Y2L pDUloftACgK1x1uaK6CGsaeN7OCgkQ7Y2eB1hoEywz/aS1++FgiE4SeKmAqUC4W8 42jiyri6NvJFeLdmkUooLN0sIerZHwMQnKtrCmT4hG2t1sOPmrKjnk3MzYuQ1tdX 0DLbQ5jhMujAM20FahvdYTfpACZkBAL0SfUFbS9M9nn9MB/lYrwZr1YdpBX0RG8Y Xo8pJDg93s8GORFztXR7fZ53x/OJ5xsX5HLsnO0Mt5MaSlHdap+JOSbmHqLbHFf3 TSYBeuo9/1AEJYpYhPp/mQmnNAdBIF4qyXWlvnobaoVuNB/PM7htOzqPPAGdoQeG k5v6+mDH3I3e31opax7MeA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywrPxfv883Z3BF3CUjPV dqcgEmq5GVi0Et/O//5vtBPVs68eDUNw2fcKe8kIUYC8AhpA3K+YcmsRapHsiU1X qxEArqfjwj6+ZmsvSFT+GM6u5LEoHGUtla1OaKmxmLxenT/z+ZSWPpkS5pc3n0iw /uhOEql3HfNLv906XG3oh/0pPSAjL1ozr6FzKyCIXWNIFFtx7EMWaVJa2mOMae9N qgibEVjxTJuQN/BtP1yn00MM/y03Hn7OG/iDsStT18EWOhS5dRiYYmYiER+v8tkM s+RKqBwdTSNLp+g68xweOVjLFWan6ASEUSulW9bLH2UYakWZ8LctwGS/tOGxlQPF KQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 381687241611388519239884215107037612704138547409 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-24 14:08:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-24 14:08:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'certest-win.empa.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25631707314047891120368125925729989942384657671976835434461399015201103235441837992220033937809339605186698141973802882401619836269586423716332025022948713167246439669397945033977610454252363910583455714324366668523705684462343330168801391211510350907567871447615510551395510200492988134530407489831734978399785459778749182336749848669653621252325319774611336033751184909591843667966522359247700591246025861914306863477426581828402378604469668884046188423112646963323313130059238569019026680446687224539648245228937966351409115315647801379578222588706440252047151144387049795682088064783412846009554116685857607107881 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certest-win.empa.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64a638bc5d59011c48f310f518f17d996ed8a470 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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