dialog.sbb.ch
Issued by R3
About this certificate
This digital certificate with serial number 04:9d:2a:0c:c0:4d:de:91:84:41:33:d8:e0:1d:b7:63:70:b7 was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=dialog.sbb.ch
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:9d:2a:0c:c0:4d:de:91:84:41:33:d8:e0:1d:b7:63:70:b7Serial Number (int): 401929369117405688240537321844361776033975
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 5d:3d:8c:d2:65:28:83:93:6f:96:4e:cc:1d:34:54:f9:9d:39:8c:2a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cd:bc:0b:2a:a7:ca:3f:a6:66:ff:ff:68:09:a6:4e:d0:f3:f0:74:98
Fingerprint (sha256): 85:8c:2a:a5:70:78:58:22:cf:fa:7f:9c:c7:b3:6e:a4:07:ff:b8:38:9e:08:21:09:64:02:ff:17:b9:48:67:7b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate dialog.sbb.ch
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dialog.sbb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dialog.sbb.ch
intervista-relaunch.3uu.de
red.allianceswisspass.ch
research.suva.ch
survey.intervista.ch
survey.wir.ch
umfrage.ukb.ch
intervista-relaunch.3uu.de
red.allianceswisspass.ch
research.suva.ch
survey.intervista.ch
survey.wir.ch
umfrage.ukb.ch
Other certificates including the domain name sbb.ch
(limited to 100 certificates)
i88507.sbb.ch
tel.sbb.ch
esq.sbb.ch
etcsst.sbb.ch
webservice.zvs.b2b.sbb.ch
rpn.sbb.ch
edgemail.sbb.ch
besichtigunghaegendorf.event.sbb.ch
hrstrategieanlass2022.event.sbb.ch
bim-industry-days.event.sbb.ch
origin.int-www.sbb.ch
ausbau-bahnhof-lenzburg.event.sbb.ch
ipv.sbb.ch
auth.sbb.ch
f2test.sbb.ch
qt1-ssl-client.sbb.ch
fs.sbb.ch
viewer.mud.sbb.ch
mobileprod.sbb.ch
austausch-buspartner.event.sbb.ch
polarion-coordinator-t.sbb.ch
secure05.stage.lithium.com
186e-d5751.event.sbb.ch
gtech-modelviewer.sbb.ch
clicks.freizeit.sbb.ch
previewserver.sbb.ch
austausch-buspartner.event.sbb.ch
oauthtester-ws.sbb.ch
smo.test.single.sbb.ch
kundenstimme.sbb.ch
fntcmd-prod.sbb.ch
hi1-ssl-client.sbb.ch
aditest3.sbb.ch
carbon.sbb.ch
dcs.info.sbb.ch
gewinnen.sbb.ch
elazt.sbb.ch
railbuyer.sbb.ch
tip.sbb.ch
bpoelscom501.sbb.ch
lea.sbb.ch
ftp-secure.sbb.ch
koserv.sbb.ch
apu-p-paq.sbb.ch
vmits04-t.cdc-dmz.sbb.ch
lira.sbb.ch
test1.event.sbb.ch
secure01.lithium.com
ictsca.sbb.ch
miku-ws.sbb.ch
events.sbb.ch
secure05.stage.lithium.com
biv-zvl-25042022.event.sbb.ch
int-infoportal.sbb.ch
secure01.lithium.com
kmsp.sbb.ch
f5int.sbb.ch
dim.sbb.ch
dms-int16.sbb.ch
apaint-swc2-t01.sbb.ch
api.solace01t.otc-test.sbb.ch
186e-d5751.event.sbb.ch
rsdpext.sbb.ch
polarion-coordinator.sbb.ch
carflt-otc2-p01.sbb.ch
besichtigungbahntechnikhaegendorf.event.sbb.ch
journey-maps-tiles.geocdn.sbb.ch
pv.mailing.railaway.ch
data.sbb.ch
sapdms-test.sbb.ch
railbuyer.sbb.ch
*.fpl-nonprod.aws.sbb.ch
4765-ec38.event.sbb.ch
fntcmd-prod.sbb.ch
sbbstimme.sbb.ch
nova-koserv-ws.sbb.ch
lscmeeting.event.sbb.ch
sso-inactive.sbb.ch
orbita.sbb.ch
microtrategy-day.event.sbb.ch
rgs-appl-prod-de.sbb.ch
lvsschiene.sbb.ch
mediacenter.sbb.ch
code-t.sbb.ch
klesy.sbb.ch
depotsystem.sbb.ch
company.sbb.ch
risportal.sbb.ch
secure01.lithium.com
f1.sbb.ch
vmits06.cdc-dmz.sbb.ch
trace-d.sbb.ch
f1test.sbb.ch
secretescapes.sbb.ch
trace-t.sbb.ch
company.sbb.ch
lisaint.sbb.ch
tip2.sbb.ch
*.app.sbb.ch
festtagskarte.sbb.ch
tel.sbb.ch
esq.sbb.ch
etcsst.sbb.ch
webservice.zvs.b2b.sbb.ch
rpn.sbb.ch
edgemail.sbb.ch
besichtigunghaegendorf.event.sbb.ch
hrstrategieanlass2022.event.sbb.ch
bim-industry-days.event.sbb.ch
origin.int-www.sbb.ch
ausbau-bahnhof-lenzburg.event.sbb.ch
ipv.sbb.ch
auth.sbb.ch
f2test.sbb.ch
qt1-ssl-client.sbb.ch
fs.sbb.ch
viewer.mud.sbb.ch
mobileprod.sbb.ch
austausch-buspartner.event.sbb.ch
polarion-coordinator-t.sbb.ch
secure05.stage.lithium.com
186e-d5751.event.sbb.ch
gtech-modelviewer.sbb.ch
clicks.freizeit.sbb.ch
previewserver.sbb.ch
austausch-buspartner.event.sbb.ch
oauthtester-ws.sbb.ch
smo.test.single.sbb.ch
kundenstimme.sbb.ch
fntcmd-prod.sbb.ch
hi1-ssl-client.sbb.ch
aditest3.sbb.ch
carbon.sbb.ch
dcs.info.sbb.ch
gewinnen.sbb.ch
elazt.sbb.ch
railbuyer.sbb.ch
tip.sbb.ch
bpoelscom501.sbb.ch
lea.sbb.ch
ftp-secure.sbb.ch
koserv.sbb.ch
apu-p-paq.sbb.ch
vmits04-t.cdc-dmz.sbb.ch
lira.sbb.ch
test1.event.sbb.ch
secure01.lithium.com
ictsca.sbb.ch
miku-ws.sbb.ch
events.sbb.ch
secure05.stage.lithium.com
biv-zvl-25042022.event.sbb.ch
int-infoportal.sbb.ch
secure01.lithium.com
kmsp.sbb.ch
f5int.sbb.ch
dim.sbb.ch
dms-int16.sbb.ch
apaint-swc2-t01.sbb.ch
api.solace01t.otc-test.sbb.ch
186e-d5751.event.sbb.ch
rsdpext.sbb.ch
polarion-coordinator.sbb.ch
carflt-otc2-p01.sbb.ch
besichtigungbahntechnikhaegendorf.event.sbb.ch
journey-maps-tiles.geocdn.sbb.ch
pv.mailing.railaway.ch
data.sbb.ch
sapdms-test.sbb.ch
railbuyer.sbb.ch
*.fpl-nonprod.aws.sbb.ch
4765-ec38.event.sbb.ch
fntcmd-prod.sbb.ch
sbbstimme.sbb.ch
nova-koserv-ws.sbb.ch
lscmeeting.event.sbb.ch
sso-inactive.sbb.ch
orbita.sbb.ch
microtrategy-day.event.sbb.ch
rgs-appl-prod-de.sbb.ch
lvsschiene.sbb.ch
mediacenter.sbb.ch
code-t.sbb.ch
klesy.sbb.ch
depotsystem.sbb.ch
company.sbb.ch
risportal.sbb.ch
secure01.lithium.com
f1.sbb.ch
vmits06.cdc-dmz.sbb.ch
trace-d.sbb.ch
f1test.sbb.ch
secretescapes.sbb.ch
trace-t.sbb.ch
company.sbb.ch
lisaint.sbb.ch
tip2.sbb.ch
*.app.sbb.ch
festtagskarte.sbb.ch
Certificate
The complete raw certificate details for dialog.sbb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZzCCBE+gAwIBAgISBJ0qDMBN3pGEQTPY4B23Y3C3MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTQxMDMzMThaFw0yNDAxMTIxMDMzMTdaMBgxFjAUBgNVBAMT DWRpYWxvZy5zYmIuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd 0wxe1vSajqVHF3A2B6ngULjw8pIyvwQRDhIPot1WxJwpXVX15WwswlYchEv8DO/A HqCucxcQHnp5zSkueXJRsOzMiRmvftt7GvGvn7sQjIivVEc/NSdTbCLALiFchEGX tcI92Mpro8m6wRwac6G0uIVolHEYNDCV5NcNnwrLBRBjABIQ9FisGUkNro5x5/+4 aBagoZXH1+AXVrdAzXlcRP+RlRQR3pFTDiZXBFqmA/ErD3GryJnD+R+19P47X2S/ QPI0lB6I5kJ8+2W9OnjnLlQ3OiXLTZZ9t5IVXoLymGvvZmPW2/KRDsEvWb7I5PBp CLwiV44e22EExKigXwAzAgMBAAGjggKPMIICizAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFF09jNJlKIOTb5ZOzB00VPmdOYwqMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MIGXBgNVHREEgY8wgYyCDWRpYWxvZy5zYmIuY2iCGmludGVydmlzdGEtcmVsYXVu Y2guM3V1LmRlghhyZWQuYWxsaWFuY2Vzd2lzc3Bhc3MuY2iCEHJlc2VhcmNoLnN1 dmEuY2iCFHN1cnZleS5pbnRlcnZpc3RhLmNogg1zdXJ2ZXkud2lyLmNogg51bWZy YWdlLnVrYi5jaDATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABiy32 UEwAAAQDAEcwRQIgd8x5sHj1MFu8jdS1jDQVZj+S5PRumZ+dCm+2i/nfQekCIQCz gxHRVrag4nU1uchxTWV4hUC0X3YqDxBPDV7MOatUdgB2ANq2v2s/tbYin5vCu1xr 6HCRcWy7UYSFNL2kPTBI1/urAAABiy32UFMAAAQDAEcwRQIgCnQeM/i9YG/qqnj3 lh0r3FnzZ1qwKQ0LccrFS2knN6wCIQCMm49lD8lz6yQMQAfjypYDj+OyH1Yd02rx cClD1LT2zTANBgkqhkiG9w0BAQsFAAOCAQEAXVNz7H4D5Hu/m1Fqcfu/bPpJvaCG GXxUP6yl3R0L+K8smjdIMUFWY/CN/Ngi8/C3Aaev+pNsP7pGSK0JYSuRRjIos/9q k/83rzlhuqIyH2VwJ7UZbCUZDNBFwDQTb/jwitrF9ov4EFN5PccHWwjikIR/9OBx Yl9qlS/ojhvY7z+gk7KS5xk9KXxXkrK8DfRedKv4ZXiW2BHk8MuVeLRGtC0qsUn/ 0Wv+IMLt7HE/XHmh2ommXLcVdFykEaxek/KSBgGAflAayt7zKC0FYfkV/l2XYNvx bGbeghyXxdFQ0n/AdRvOCLbSzMPjsBETQg9BKW7jcWY4ykr5dPKCzIAFRg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3dMMXtb0mo6lRxdwNgep 4FC48PKSMr8EEQ4SD6LdVsScKV1V9eVsLMJWHIRL/AzvwB6grnMXEB56ec0pLnly UbDszIkZr37bexrxr5+7EIyIr1RHPzUnU2wiwC4hXIRBl7XCPdjKa6PJusEcGnOh tLiFaJRxGDQwleTXDZ8KywUQYwASEPRYrBlJDa6Ocef/uGgWoKGVx9fgF1a3QM15 XET/kZUUEd6RUw4mVwRapgPxKw9xq8iZw/kftfT+O19kv0DyNJQeiOZCfPtlvTp4 5y5UNzoly02WfbeSFV6C8phr72Zj1tvykQ7BL1m+yOTwaQi8IleOHtthBMSooF8A MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 401929369117405688240537321844361776033975 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-14 10:33:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-12 10:33:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dialog.sbb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28002737203954803581743610284701405460442006574063102104774162741280926141173335974330978108801539752115662424903883261448235598084858724797957842193256979317119823224799759981152375007820214559188524157300474138001426547532605008222711123065041408456113868497857018141621125411470651553523547038408430182681057578901404929796156218102193262641376943680182579316300707103690024132334106921219922275763860409570171737094388692369242021037212348472391192373193815604969106623586365780230739776879609151126784960852317957036948054714847921482847676022482784411753081291293536528993704632785558109485656748472746949673011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5d3d8cd2652883936f964ecc1d3454f99d398c2a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (143 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dialog.sbb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intervista-relaunch.3uu.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'red.allianceswisspass.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'research.suva.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'survey.intervista.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'survey.wir.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'umfrage.ukb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b2df6504c0000040300473045022077cc79b078f5305bbc8dd4b58c3415663f92e4f46e999f9d0a6fb68bf9df41e9022100b38311d156b6a0e27535b9c8714d65788540b45f762a0f104f0d5ecc39ab5476007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b2df65053000004030047304502200a741e33f8bd606feaaa78f7961d2bdc59f3675ab0290d0b71cac54b692737ac0221008c9b8f650fc973eb240c4007e3ca96038fe3b21f561dd36af1702943d4b4f6cd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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