ukbhb01mx01-e.urkb.ch
- Urner Kantonalbank -
Issued by SwissSign Server Gold CA 2014 - G22
About this certificate
This digital certificate with serial number 6c:ff:0e:91:2f:10:f1:4d:8c:78:07:0d:00:b7:42:0a:35:cd:44:3a was issued on by SwissSign AG.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Urner Kantonalbank
Organization:
Urner Kantonalbank
Organization unit: ICT Services
Organization unit: ICT Services
State / Province:
Uri
Locality: Altdorf
Country: CH
Locality: Altdorf
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 6c:ff:0e:91:2f:10:f1:4d:8c:78:07:0d:00:b7:42:0a:35:cd:44:3aSerial Number (int): 622258962250107912454185004574846630630452446266
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 86:86:1d:c4:dd:85:b6:95:93:a1:15:32:53:d1:52:56:15:25:fd:13
AuthorityKeyId: e7:f1:e7:fd:2e:53:ad:11:e5:81:1a:57:a4:73:8f:12:7d:98:c8:ae
Fingerprint (sha1): ed:86:08:5c:93:2b:70:3e:98:89:aa:dc:a2:b2:fb:ac:32:f3:e9:fa
Fingerprint (sha256): 86:c1:28:c9:54:1d:21:f3:70:d5:7d:4a:0c:10:3a:41:4d:fb:fd:60:a9:30:dd:d8:59:84:b2:77:a3:24:9c:b9
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE
Revocation information
OCSP Server: http://gold-server-g2.ocsp.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AECRL Distribution Point: http://crl.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE
CRL Distribution Point: ldap://directory.swisssign.net/CN=E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate ukbhb01mx01-e.urkb.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ukbhb01mx01-e.urkb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ukbhb01mx01-e.urkb.ch
ukbhb01mx02-e.urkb.ch
ukbhb01mx01-e.ukb.ch
ukbhb01mx02-e.ukb.ch
ukbhb01mx02-e.urkb.ch
ukbhb01mx01-e.ukb.ch
ukbhb01mx02-e.ukb.ch
Other certificates including the domain name urkb.ch
(limited to 100 certificates)
www.ukb.ch
fintest-wwwsec.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
fintest-e-banking.ukb.ch
ukbhb01mx01-e.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
www.urkb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
ibdemo.urkb.ch
www.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-e-banking.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
mobilebanking.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.urkb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
www.urkb.ch
ssl.urkb.ch
fintest-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
wwwsec.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
fintest-e-banking.ukb.ch
ukbhb01mx01-e.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
www.urkb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
ibdemo.urkb.ch
www.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-e-banking.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
mobilebanking.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.urkb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
www.urkb.ch
ssl.urkb.ch
fintest-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
wwwsec.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
Certificate
The complete raw certificate details for ukbhb01mx01-e.urkb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIhDCCB2ygAwIBAgIUbP8OkS8Q8U2MeAcNALdCCjXNRDowDQYJKoZIhvcNAQEL BQAwUjELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEsMCoGA1UE AxMjU3dpc3NTaWduIFNlcnZlciBHb2xkIENBIDIwMTQgLSBHMjIwHhcNMTkwODE1 MDY1MjIwWhcNMjEwODE1MDY1MjIwWjCBgTELMAkGA1UEBhMCQ0gxDDAKBgNVBAgT A1VyaTEQMA4GA1UEBxMHQWx0ZG9yZjEbMBkGA1UEChMSVXJuZXIgS2FudG9uYWxi YW5rMRUwEwYDVQQLEwxJQ1QgU2VydmljZXMxHjAcBgNVBAMTFXVrYmhiMDFteDAx LWUudXJrYi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJuFe/Bb cKBEj2T4TMDuuKd+B9+S1P9ATN1s1kNQ0zaLgIaLLRtDOIGHQEM9YPoUOp9kLa+F 8vy85N/Y5IOuwzKuHo9HnPwHHK8N95Br7X5GoFAUNstuL7DFTyXtcn8MIimZKm00 Pe2LHF9rj/EtPhojjsAhSQka2VQy2xdkT6kitdZ1iRDx9eRrFzGl60T+txi/SoTu Mo9UwnUJs3WwzvJI2KqqeEUhZ2AWgvrPaao4hYwNPI2lXMcSdHiHiG5CR5spwLOd /JsU5N9GwbirqKxBJDb14nmzq/iXnYpHUNWkIeyU9hrswq5V0Iv5c9iLIzr3V8Gz PAkOcC22P7u5kGkCAwEAAaOCBSAwggUcMGMGA1UdEQRcMFqCFXVrYmhiMDFteDAx LWUudXJrYi5jaIIVdWtiaGIwMW14MDItZS51cmtiLmNoghR1a2JoYjAxbXgwMS1l LnVrYi5jaIIUdWtiaGIwMW14MDItZS51a2IuY2gwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUhoYdxN2FtpWT oRUyU9FSVhUl/RMwHwYDVR0jBBgwFoAU5/Hn/S5TrRHlgRpXpHOPEn2YyK4wgf8G A1UdHwSB9zCB9DBHoEWgQ4ZBaHR0cDovL2NybC5zd2lzc3NpZ24ubmV0L0U3RjFF N0ZEMkU1M0FEMTFFNTgxMUE1N0E0NzM4RjEyN0Q5OEM4QUUwgaiggaWggaKGgZ9s ZGFwOi8vZGlyZWN0b3J5LnN3aXNzc2lnbi5uZXQvQ049RTdGMUU3RkQyRTUzQUQx MUU1ODExQTU3QTQ3MzhGMTI3RDk4QzhBRSUyQ089U3dpc3NTaWduJTJDQz1DSD9j ZXJ0aWZpY2F0ZVJldm9jYXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlz dHJpYnV0aW9uUG9pbnQwcwYDVR0gBGwwajBUBglghXQBWQECAQswRzBFBggrBgEF BQcCARY5aHR0cDovL3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS9Td2lzc1NpZ24t R29sZC1DUC1DUFMucGRmMAgGBgQAj3oBBzAIBgZngQwBAgIwgdUGCCsGAQUFBwEB BIHIMIHFMGQGCCsGAQUFBzAChlhodHRwOi8vc3dpc3NzaWduLm5ldC9jZ2ktYmlu L2F1dGhvcml0eS9kb3dubG9hZC9FN0YxRTdGRDJFNTNBRDExRTU4MTFBNTdBNDcz OEYxMjdEOThDOEFFMF0GCCsGAQUFBzABhlFodHRwOi8vZ29sZC1zZXJ2ZXItZzIu b2NzcC5zd2lzc3NpZ24ubmV0L0U3RjFFN0ZEMkU1M0FEMTFFNTgxMUE1N0E0NzM4 RjEyN0Q5OEM4QUUwggH1BgorBgEEAdZ5AgQCBIIB5QSCAeEB3wB2AESUZS6w7s6v xEAH2Kj+KMDa5oK+2MsxtT/TM5a1toGoAAABbJQMf3wAAAQDAEcwRQIgQS2M1tP+ wow5f7wM9RbeX4ZS1Xi4FVlu+3X06jezfxMCIQD/6d3FU49v63EByq71Jo0WuRc1 hxYywe44XH/LkQFWnQB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kT AAABbJQMgSkAAAQDAEcwRQIhANip0CRG0y74WG9oOtX99u6KhAszxJCG3OcFftzo 62wbAiA/3zCcPx2N9Ub+tIyVckF8dHTlV0XXLuM1MMy1y7a69gB1ALvZ37wfinG1 k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABbJQMfr0AAAQDAEYwRAIgJ3s31t1Y EahYZFrKSsJ1opDzEomVLRGEttac4+CTdBYCIHg0SIPrnXsPPmDQba+YWwUPsl5Z Eu9M0+7pTUMM0W1KAHYA7ku9t3XOYLrhQmkfq+GeZqMPfl+wctiDAMR7iXqo/csA AAFslAx+hwAABAMARzBFAiEAz1LmqO5nLWLFU6rnkif9hOQQs1RsiZebgvoxAyBr 01ECIE9eokct9Ikr77wCIutJ0C3qZqLrANc4m9+LGUx0aN22MA0GCSqGSIb3DQEB CwUAA4IBAQAe9YAWBROnlyULaPIdEziHfw0+ESE/8Lyqc9slhlXYEommpL1NVeUd mi2g0aRnuSg1jsdkYkkYcLa8Pt+/ADar1Lton2KtJ5RnEcZPYVMPbcUnAFqEBrIf 416+5D4bjoltShC9xtoloJdRPWbgbrA2BuE9lCJ0/n8AiFDLgO8wwUErMvgU5LcH MYAVmPAQ0p+7efaLECWIgC+/O+VkrQLfJcagMQesSwJtmlA73wLaWXvLZK7lLO0z nOTe3eezyoqDDrYaTRsTL4eaMDI3cZJV9VDYau7XKYhEI7S1d9J56PF/iGueIkor UfiHJCUSj/xrRyVLlE0tkxXLU+ZDSvCH -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4V78FtwoESPZPhMwO64 p34H35LU/0BM3WzWQ1DTNouAhostG0M4gYdAQz1g+hQ6n2Qtr4Xy/Lzk39jkg67D Mq4ej0ec/Accrw33kGvtfkagUBQ2y24vsMVPJe1yfwwiKZkqbTQ97YscX2uP8S0+ GiOOwCFJCRrZVDLbF2RPqSK11nWJEPH15GsXMaXrRP63GL9KhO4yj1TCdQmzdbDO 8kjYqqp4RSFnYBaC+s9pqjiFjA08jaVcxxJ0eIeIbkJHmynAs538mxTk30bBuKuo rEEkNvXiebOr+JedikdQ1aQh7JT2GuzCrlXQi/lz2IsjOvdXwbM8CQ5wLbY/u7mQ aQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 622258962250107912454185004574846630630452446266 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign Server Gold CA 2014 - G22' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-15 06:52:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-15 06:52:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Uri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Altdorf' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Urner Kantonalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICT Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ukbhb01mx01-e.urkb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19632760750628089606900594953704970926929191075898209677827639275535300900199488111807762442051713633351834102415424420952326774151773989647378533452793184147983581190392309245807348206140857802563260052894014376545512931866509526923170366480037247686010815116381312842882417856735678224139705077104162539732740829369104758348160923107609278420068249068654649301703184379645776213587992910317944605761158972596329845687627580139990176232723815656158809422965545250882854297002269625427097802992104364725450384628672951673416696353439487385513496912856828523133908213331847482082509061081749737506879058871883010773097 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx01-e.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx02-e.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx01-e.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx02-e.ukb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 86861dc4dd85b69593a1153253d152561525fd13 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName e7f1e7fd2e53ad11e5811a57a4738f127d98c8ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.2.1.11 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Gold-CP-CPS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (200 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gold-server-g2.ocsp.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 01df0076004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000016c940c7f7c00000403004730450220412d8cd6d3fec28c397fbc0cf516de5f8652d578b815596efb75f4ea37b37f13022100ffe9ddc5538f6feb7101caaef5268d16b91735871632c1ee385c7fcb9101569d0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016c940c81290000040300473045022100d8a9d02446d32ef8586f683ad5fdf6ee8a840b33c49086dce7057edce8eb6c1b02203fdf309c3f1d8df546feb48c9572417c7474e55745d72ee33530ccb5cbb6baf6007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016c940c7ebd00000403004630440220277b37d6dd5811a858645aca4ac275a290f31289952d1184b6d69ce3e0937416022078344883eb9d7b0f3e60d06daf985b050fb25e5912ef4cd3eee94d430cd16d4a007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb0000016c940c7e870000040300473045022100cf52e6a8ee672d62c553aae79227fd84e410b3546c89979b82fa3103206bd35102204f5ea2472df4892befbc0222eb49d02dea66a2eb00d7389bdf8b194c7468ddb6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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