api.eduid.ch
- SWITCH -
Issued by QuoVadis EV SSL ICA G1
About this certificate
This digital certificate with serial number 5b:f9:8b:22:bb:27:cb:11:17:b0:a1:fe:7d:8e:f2:a8:37:b8:f3:68 was issued on by QuoVadis Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
SWITCH
Company registration number:
CH-035.7.001.278-9
Organization: SWITCH
Organization: SWITCH
State / Province:
Zuerich
Locality: Zuerich
Country: CH
Locality: Zuerich
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 5b:f9:8b:22:bb:27:cb:11:17:b0:a1:fe:7d:8e:f2:a8:37:b8:f3:68Serial Number (int): 525083166125520765326272246914054869946247738216
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 8c:e6:8b:da:a6:a4:90:e4:b5:34:2f:f8:8d:f7:47:86:db:f2:b8:60
AuthorityKeyId: 55:58:86:ce:ba:7c:76:4e:99:13:a9:0f:d3:6c:9f:c2:f5:d3:3c:e3
Fingerprint (sha1): 19:ba:39:bc:cb:53:5c:9a:f1:66:1a:4c:90:4e:75:fa:51:d8:d5:7c
Fingerprint (sha256): 6c:77:26:13:b7:c5:7d:f0:f9:0c:8f:b9:8d:04:fc:39:bd:09:7d:0e:29:14:fc:f6:3c:40:7c:02:1a:df:97:8a
Issuing Certificate URL: http://trust.quovadisglobal.com/qvevssl1.crt
Revocation information
OCSP Server: http://ev.ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvevssl1.crl
Check the revocation status for certificate api.eduid.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.eduid.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.eduid.ch
Other certificates including the domain name eduid.ch
(limited to 100 certificates)
io.gdi.lenovo.com
node1.login.test.eduid.ch
status.republic.com
node21.webauthn.eduid.ch
login.eduid.ch
login.test.eduid.ch
idp-db.eduid.ch
login.test.eduid.ch
idp-db.test.eduid.ch
altastatus.us.veritas.com
status.republic.com
login.test.eduid.ch
login.eduid.ch
status.greenewx.com
test.login.eduid.ch
login.eduid.ch
node2.lb.trid.switch.ch
node2.lb.trid.switch.ch
login.eduid.ch
login.staging.eduid.ch
status.admiresty.co
idp-db.eduid.ch
login.staging.eduid.ch
uern.d5n.is
aai-login.eduid.ch
node1.lb.trid.switch.ch
status.alogna.co.ao
mfa.test.eduid.ch
login.test.eduid.ch
status.conpds.com
status.conpds.com
login.eduid.ch
login.eduid.ch
status.greenewx.com
eduid.ch
node1.lb.trid.switch.ch
ap-api-fernuni.test.eduid.ch
uern.d5n.is
login.test.eduid.ch
cinc-status.tkelevator.com
comanagetest.eduid.ch
status.linkmanager.ai
status-v3.knowledgeforce.com
status.h2.tc
io.gdi.lenovo.com
idp-db.test.eduid.ch
status.greenewx.com
node2.lb.trid.switch.ch
login.eduid.ch
node2.lb.trid.switch.ch
status.greenewx.com
api.eduid.ch
eduid.ch
status.huntervoip.com.br
status.linkmanager.ai
switch.login.staging.eduid.ch
zhaw.login.staging.eduid.ch
login.staging.eduid.ch
login.eduid.ch
dun.im.4pple.org
status.ioneaccess.ch
status.alam.earth
login.eduid.ch
eduid.ch
proxy-login.eduid.ch
node2.lb.trid.switch.ch
status.republic.com
ldap-slave1.test.eduid.ch
status.sumex.ch
status.linkmanager.ai
login.staging.eduid.ch
status.linkmanager.ai
status.greenewx.com
status.linkmanager.ai
proxy-login.eduid.ch
node2.login.test.eduid.ch
login.test.eduid.ch
proxy-login.eduid.ch
mfa.eduid.ch
login.eduid.ch
altastatus.us.veritas.com
eduid.ch
ldap-slave1.eduid.ch
login.test.eduid.ch
login.test.eduid.ch
io.gdi.lenovo.com
login.test.eduid.ch
status.conpds.com
altastatus.us.veritas.com
status.linkmanager.ai
test.eduid.ch
io.gdi.lenovo.com
unisg.login.staging.eduid.ch
status.huntervoip.com.br
status.nicksaude.com.br
malincdb.switch.ch
uern.d5n.is
node1.lb.trid.switch.ch
cinc-status.tkelevator.com
api.test.eduid.ch
node1.login.test.eduid.ch
status.republic.com
node21.webauthn.eduid.ch
login.eduid.ch
login.test.eduid.ch
idp-db.eduid.ch
login.test.eduid.ch
idp-db.test.eduid.ch
altastatus.us.veritas.com
status.republic.com
login.test.eduid.ch
login.eduid.ch
status.greenewx.com
test.login.eduid.ch
login.eduid.ch
node2.lb.trid.switch.ch
node2.lb.trid.switch.ch
login.eduid.ch
login.staging.eduid.ch
status.admiresty.co
idp-db.eduid.ch
login.staging.eduid.ch
uern.d5n.is
aai-login.eduid.ch
node1.lb.trid.switch.ch
status.alogna.co.ao
mfa.test.eduid.ch
login.test.eduid.ch
status.conpds.com
status.conpds.com
login.eduid.ch
login.eduid.ch
status.greenewx.com
eduid.ch
node1.lb.trid.switch.ch
ap-api-fernuni.test.eduid.ch
uern.d5n.is
login.test.eduid.ch
cinc-status.tkelevator.com
comanagetest.eduid.ch
status.linkmanager.ai
status-v3.knowledgeforce.com
status.h2.tc
io.gdi.lenovo.com
idp-db.test.eduid.ch
status.greenewx.com
node2.lb.trid.switch.ch
login.eduid.ch
node2.lb.trid.switch.ch
status.greenewx.com
api.eduid.ch
eduid.ch
status.huntervoip.com.br
status.linkmanager.ai
switch.login.staging.eduid.ch
zhaw.login.staging.eduid.ch
login.staging.eduid.ch
login.eduid.ch
dun.im.4pple.org
status.ioneaccess.ch
status.alam.earth
login.eduid.ch
eduid.ch
proxy-login.eduid.ch
node2.lb.trid.switch.ch
status.republic.com
ldap-slave1.test.eduid.ch
status.sumex.ch
status.linkmanager.ai
login.staging.eduid.ch
status.linkmanager.ai
status.greenewx.com
status.linkmanager.ai
proxy-login.eduid.ch
node2.login.test.eduid.ch
login.test.eduid.ch
proxy-login.eduid.ch
mfa.eduid.ch
login.eduid.ch
altastatus.us.veritas.com
eduid.ch
ldap-slave1.eduid.ch
login.test.eduid.ch
login.test.eduid.ch
io.gdi.lenovo.com
login.test.eduid.ch
status.conpds.com
altastatus.us.veritas.com
status.linkmanager.ai
test.eduid.ch
io.gdi.lenovo.com
unisg.login.staging.eduid.ch
status.huntervoip.com.br
status.nicksaude.com.br
malincdb.switch.ch
uern.d5n.is
node1.lb.trid.switch.ch
cinc-status.tkelevator.com
api.test.eduid.ch
Certificate
The complete raw certificate details for api.eduid.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHQjCCBiqgAwIBAgIUW/mLIrsnyxEXsKH+fY7yqDe482gwDQYJKoZIhvcNAQEL BQAwSTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxHzAd BgNVBAMTFlF1b1ZhZGlzIEVWIFNTTCBJQ0EgRzEwHhcNMTgwNjI4MTAwMjU1WhcN MjAwNjI4MTAxMzAwWjCBwTETMBEGCysGAQQBgjc8AgEDEwJDSDEVMBMGCysGAQQB gjc8AgECDARCZXJuMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlvbjEbMBkG A1UEBRMSQ0gtMDM1LjcuMDAxLjI3OC05MQswCQYDVQQGEwJDSDEQMA4GA1UECAwH WnVlcmljaDEQMA4GA1UEBwwHWnVlcmljaDEPMA0GA1UECgwGU1dJVENIMRUwEwYD VQQDDAxhcGkuZWR1aWQuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8+u7U3nQe4+G1rp6v2Oz9vFDHug86/B12REiGCqZayXm4I9XGMucxLjLZe1Nn cBG9VgXcWszeUX0U+C/McjERqLSahJnCpc06pg6XEFqYG5mmXhRJoNeNIWmcsUMv ry7+yzreIMZ7Ps6X9Fi5spZykBYBTznwrkP0JHp5Ku7RqqGHrnAeczRBSCJxToxX fEO2tDW/iN7xvF2pbExLxIvRGS6Rw3fx/spTxRqJcOuFflS1hTSYP7uWx/0ABg5Q W/DwHWYpSI8VjrKWBJNPUTGmz2YdsOhIBKWwA6NyTXmuxNYLy3Vr3VgkTdjnfo9g RNEjJhnGj3x8z7VMXE+MWTiFAgMBAAGjggOnMIIDozB3BggrBgEFBQcBAQRrMGkw OAYIKwYBBQUHMAKGLGh0dHA6Ly90cnVzdC5xdW92YWRpc2dsb2JhbC5jb20vcXZl dnNzbDEuY3J0MC0GCCsGAQUFBzABhiFodHRwOi8vZXYub2NzcC5xdW92YWRpc2ds b2JhbC5jb20wHQYDVR0OBBYEFIzmi9qmpJDktTQv+I33R4bb8rhgMAwGA1UdEwEB /wQCMAAwHwYDVR0jBBgwFoAUVViGzrp8dk6ZE6kP02yfwvXTPOMwWgYDVR0gBFMw UTBGBgwrBgEEAb5YAAJkAQIwNjA0BggrBgEFBQcCARYoaHR0cDovL3d3dy5xdW92 YWRpc2dsb2JhbC5jb20vcmVwb3NpdG9yeTAHBgVngQwBATA7BgNVHR8ENDAyMDCg LqAshipodHRwOi8vY3JsLnF1b3ZhZGlzZ2xvYmFsLmNvbS9xdmV2c3NsMS5jcmww DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAX BgNVHREEEDAOggxhcGkuZWR1aWQuY2gwggH3BgorBgEEAdZ5AgQCBIIB5wSCAeMB 4QB1AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQAAABZEXh1gcAAAQD AEYwRAIgSCyBnr+b2/ycuYLVgmnVu3sMCOWe4ygHt3stLbwnG3oCIFjTsAwDoJr8 fHiwOa4uCmeThRy+bmE9Fb77ChaMsBLDAHcAu9nfvB+KcbWTlCOXqpJ7RzhXlQqr UugakJZkNo4e0YUAAAFkReHV2gAABAMASDBGAiEAk48gn+NsXiqjTbjHmcG4uI/F m6NVa42/+WPdYPd89hUCIQCJJhHpl3YpcRzSlfd8NYAqgpKEZI4Ec1dx+sAyUHyZ IgB2AFYUBpov18Ls0/XhvUSyPsdGdrm8mRFcwO+UmFXWidDdAAABZEXh2EsAAAQD AEcwRQIgF2Qy2MnU5Nct+0erH5k8qRZ4pqtDrE4kFr8rAQppMOQCIQCy5F+ZmEeH WmVaFJnjImEL/hS+qAYzNROqTWTZZy2TZQB3AG9Tdqwx8DEZ2JkApFEV/3cVHBHZ AsEAKQaNsgiaN9kTAAABZEXh2RIAAAQDAEgwRgIhAM+5HF4vn3v+PQvQUkNM3qfC LhWSgxiIQUShtcOqotiSAiEAnrcljZX1ATyKRyRsRu+o0iySrj0rGV2l3y++mx+L Iv4wDQYJKoZIhvcNAQELBQADggEBAKt0Ji84Gyv4abS3YbufFZuNQxGmxp3mWPqD G2ux+q0KAQpH180QY5E6yyozF8oqVI9aFhyMVoBJT2S1umrLhTD39W1qXAu/i8lh p4WsIn/DzxfAE/ikYjG+lDxo9wYStj8IJxfH8DLUiKcEYGq+N9xq0c8kgCUpb9sX rQy7jEeEL3fXtU7kYvdHFpVzQQ+uQPXZ13ILrim4mb8VpB6iwnPb88vx6MJbmbig fN4mRtvY8R+di4x/GpxA+9GezsMlCsh3437ImZ3Dkvl/i7vx9+tqI5gnXEBFH9XD Xt/MlWayrYR7aY9hN8rh031C9DY2OraO+WVFgBJNJLAoJqBULr0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPru1N50HuPhta6er9js /bxQx7oPOvwddkRIhgqmWsl5uCPVxjLnMS4y2XtTZ3ARvVYF3FrM3lF9FPgvzHIx Eai0moSZwqXNOqYOlxBamBuZpl4USaDXjSFpnLFDL68u/ss63iDGez7Ol/RYubKW cpAWAU858K5D9CR6eSru0aqhh65wHnM0QUgicU6MV3xDtrQ1v4je8bxdqWxMS8SL 0RkukcN38f7KU8UaiXDrhX5UtYU0mD+7lsf9AAYOUFvw8B1mKUiPFY6ylgSTT1Ex ps9mHbDoSASlsAOjck15rsTWC8t1a91YJE3Y536PYETRIyYZxo98fM+1TFxPjFk4 hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 525083166125520765326272246914054869946247738216 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis EV SSL ICA G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-28 10:02:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-28 10:13:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH-035.7.001.278-9' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zuerich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SWITCH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'api.eduid.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23856540976014129094634801623774886929009294631536485893729119876100326639727663191061887222734512587950804922364406207049006235913244958554074608613310604269862440535726498667649192623587427788986058570481254083171656380528033221565524741155288393659195334416514188134246385542691575721157891200429551928153719143797826788009534309110420034938956118311865482006567418503122287521865880906161137877591083241411420041095669191936184014369140718927954887873840561264229070790619955372043923317014497904484781617194529032447659824629413923895042893588555433443774082497252980709134103452945403725610384820159462543800453 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvevssl1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ev.ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8ce68bdaa6a490e4b5342ff88df74786dbf2b860 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 555886ceba7c764e9913a90fd36c9fc2f5d33ce3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.2 (QuoVadis EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvevssl1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.eduid.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ab74262f381b2bf869b4b761bb9f159b8d4311a6c69de658fa831b6bb1faad0a010a47d7cd1063913acb2a3317ca2a548f5a161c8c5680494f64b5ba6acb8530f7f56d6a5c0bbf8bc961a785ac227fc3cf17c013f8a46231be943c68f70612b63f082717c7f032d488a704606abe37dc6ad1cf248025296fdb17ad0cbb8c47842f77d7b54ee462f747169573410fae40f5d9d7720bae29b899bf15a41ea2c273dbf3cbf1e8c25b99b8a07cde2646dbd8f11f9d8b8c7f1a9c40fbd19ecec3250ac877e37ec8999dc392f97f8bbbf1f7eb6a2398275c40451fd5c35edfcc9566b2ad847b698f6137cae1d37d42f436363ab68ef9654580124d24b02826a0542ebd