*.nationalesuisse.ch
- Schweizerische National-Versicherungs-Gesellschaft AG -
Issued by SwissSign Server Gold CA 2014 - G22
About this certificate
This digital certificate with serial number a6:5d:a0:64:b3:c0:3c:b2:db:d8:93:07:8a:b0:75 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- The Subject Alternate Name extension MUST contain only 'dnsName' and 'ipaddress' name types. (BRs: 7.1.4.2.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Schweizerische National-Versicherungs-Gesellschaft AG
Organization:
Schweizerische National-Versicherungs-Gesellschaft AG
Organization unit: IT Operations Certificate Registration Authority
Organization unit: IT Operations Certificate Registration Authority
State / Province:
Basel-Stadt
Locality: Basel
Country: CH
Locality: Basel
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): a6:5d:a0:64:b3:c0:3c:b2:db:d8:93:07:8a:b0:75Serial Number (int): 863820250281729791882518225905954933
Serial Number lenght: 120 bits, 15 octets
SubjectKeyId: de:1c:c1:0d:2c:95:6f:60:10:1d:87:8f:c4:f6:bd:42:8f:c4:ac:f8
AuthorityKeyId: e7:f1:e7:fd:2e:53:ad:11:e5:81:1a:57:a4:73:8f:12:7d:98:c8:ae
Fingerprint (sha1): e0:3f:51:c9:72:51:f9:5f:d2:9a:6f:15:c5:9e:00:8d:ee:e0:b3:c9
Fingerprint (sha256): 97:d8:68:26:59:6d:47:1d:d1:60:69:dd:e7:0b:fe:73:b7:5e:ee:a2:e9:b0:88:90:1b:5d:f9:cf:99:29:0d:19
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE
Revocation information
OCSP Server: http://gold-server-g2.ocsp.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AECRL Distribution Point: http://crl.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE
CRL Distribution Point: ldap://directory.swisssign.net/CN=E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate *.nationalesuisse.ch
2
DNS Names
1
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.nationalesuisse.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
Other certificates including the domain name nationalesuisse.ch
(limited to 100 certificates)
leben.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
swissforms.nationalesuisse.ch
*.nationalesuisse.ch
extranet.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
nationalesuisse.ch
elmnet.nationalesuisse.ch
mobile11.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
mobile01.nationalesuisse.ch
mobile10.nationalesuisse.ch
extranet.nationalesuisse.ch
decla.nationalesuisse.ch
karriere.nationalesuisse.ch
www.nationalesuisse.ch
*.nationalesuisse.ch
bsse.nationalesuisse.ch
karriere.nationalesuisse.ch
eplink.nationalesuisse.ch
igb2b.nationalesuisse.ch
extranet.nationalesuisse.ch
mobile11.nationalesuisse.ch
*.nationalesuisse.ch
swissforms.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
karriere.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
*.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
swissforms.nationalesuisse.ch
*.nationalesuisse.ch
extranet.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
nationalesuisse.ch
elmnet.nationalesuisse.ch
mobile11.nationalesuisse.ch
www.nationalesuisse.ch
www.nationalesuisse.ch
mobile01.nationalesuisse.ch
mobile10.nationalesuisse.ch
extranet.nationalesuisse.ch
decla.nationalesuisse.ch
karriere.nationalesuisse.ch
www.nationalesuisse.ch
*.nationalesuisse.ch
bsse.nationalesuisse.ch
karriere.nationalesuisse.ch
eplink.nationalesuisse.ch
igb2b.nationalesuisse.ch
extranet.nationalesuisse.ch
mobile11.nationalesuisse.ch
*.nationalesuisse.ch
swissforms.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
karriere.nationalesuisse.ch
leben.nationalesuisse.ch
www.nationalesuisse.ch
leben.nationalesuisse.ch
*.nationalesuisse.ch
Certificate
The complete raw certificate details for *.nationalesuisse.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIG1jCCBb6gAwIBAgIQAKZdoGSzwDyy29iTB4qwdTANBgkqhkiG9w0BAQsFADBS MQswCQYDVQQGEwJDSDEVMBMGA1UEChMMU3dpc3NTaWduIEFHMSwwKgYDVQQDEyNT d2lzc1NpZ24gU2VydmVyIEdvbGQgQ0EgMjAxNCAtIEcyMjAeFw0xNDEwMjQwNjAx NDZaFw0xNzEwMjQwNjAxNDZaMIH4MQswCQYDVQQGEwJDSDEUMBIGA1UECBMLQmFz ZWwtU3RhZHQxDjAMBgNVBAcTBUJhc2VsMT4wPAYDVQQKEzVTY2h3ZWl6ZXJpc2No ZSBOYXRpb25hbC1WZXJzaWNoZXJ1bmdzLUdlc2VsbHNjaGFmdCBBRzE5MDcGA1UE CxMwSVQgT3BlcmF0aW9ucyBDZXJ0aWZpY2F0ZSBSZWdpc3RyYXRpb24gQXV0aG9y aXR5MR0wGwYDVQQDFBQqLm5hdGlvbmFsZXN1aXNzZS5jaDEpMCcGCSqGSIb3DQEJ ARYab3ByLW5ldEBuYXRpb25hbGVzdWlzc2UuY2gwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkciaF67e8cBZfZ/iPLvDV1yUogmwYDvZcMlIWWP9Ckb6N EzjhFWqdXcN8azghtBtDUtnYbwMeQ19deB8h4V4f9j75flv6AHKfaxGFiNHSgj08 QrKQs5qdawrKR8QN8lrXFWsC6LstK1qoD2oT7W9JptjQOC156OEm5o0w0HB84db+ vVYDWzK2aQGqun/FJQA3tUtqJEZhpTiL1v+/0kAJQQhuH9Cz9DCRYj9lB9d3VYCU Y7ufm9Dorbmr90aPWahQHov4h1aIKrXPpKuxhqnPM/v63cgeO0wHKjFm5k0xTEeO oCMhI2ExvvtthN8DZyu5/FbU9hzq4rSENOU+2aQDAgMBAAGjggL/MIIC+zBPBgNV HREESDBGgRpvcHItbmV0QG5hdGlvbmFsZXN1aXNzZS5jaIIUKi5uYXRpb25hbGVz dWlzc2UuY2iCEm5hdGlvbmFsZXN1aXNzZS5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBTeHMENLJVvYBAd h4/E9r1Cj8Ss+DAfBgNVHSMEGDAWgBTn8ef9LlOtEeWBGlekc48SfZjIrjCB/wYD VR0fBIH3MIH0MEegRaBDhkFodHRwOi8vY3JsLnN3aXNzc2lnbi5uZXQvRTdGMUU3 RkQyRTUzQUQxMUU1ODExQTU3QTQ3MzhGMTI3RDk4QzhBRTCBqKCBpaCBooaBn2xk YXA6Ly9kaXJlY3Rvcnkuc3dpc3NzaWduLm5ldC9DTj1FN0YxRTdGRDJFNTNBRDEx RTU4MTFBNTdBNDczOEYxMjdEOThDOEFFJTJDTz1Td2lzc1NpZ24lMkNDPUNIP2Nl cnRpZmljYXRlUmV2b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0 cmlidXRpb25Qb2ludDBfBgNVHSAEWDBWMFQGCWCFdAFZAQIBBjBHMEUGCCsGAQUF BwIBFjlodHRwOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbi1H b2xkLUNQLUNQUy5wZGYwgdUGCCsGAQUFBwEBBIHIMIHFMGQGCCsGAQUFBzAChlho dHRwOi8vc3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC9F N0YxRTdGRDJFNTNBRDExRTU4MTFBNTdBNDczOEYxMjdEOThDOEFFMF0GCCsGAQUF BzABhlFodHRwOi8vZ29sZC1zZXJ2ZXItZzIub2NzcC5zd2lzc3NpZ24ubmV0L0U3 RjFFN0ZEMkU1M0FEMTFFNTgxMUE1N0E0NzM4RjEyN0Q5OEM4QUUwDQYJKoZIhvcN AQELBQADggEBAAV+e9XZ+IkL2i3+Int83rsMSHIILKfo4Rp8sRFZzFwklSPHuk7g 373rPg2eRqduyM2SIcJThPJa1OhvSN6TK2V+xGiZoyPr6l6e85PnVKsNaZG8RLxN DhlBU44HGaaYMMdPOLPmvmTpYC0ljTkXUQ2PyaC4V7JLSZtYML0o4fq9Srw2OZgT bCRUzr9G/zc88j5jmy8BzkrdM3XsAyV+bl05EGVVMQEjXz6LtQLEbrs6TJUIRVzj n8+y3hLOBSKeAtMzDjNPvNokZFLajpLPatnP8S7GIZmq7RMGV4YppANltO1EQh4p lI1tCgZuZDrnBtkH8GBcOajsYt59PSIkD+0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5HImheu3vHAWX2f4jy7w 1dclKIJsGA72XDJSFlj/QpG+jRM44RVqnV3DfGs4IbQbQ1LZ2G8DHkNfXXgfIeFe H/Y++X5b+gByn2sRhYjR0oI9PEKykLOanWsKykfEDfJa1xVrAui7LStaqA9qE+1v SabY0DgteejhJuaNMNBwfOHW/r1WA1sytmkBqrp/xSUAN7VLaiRGYaU4i9b/v9JA CUEIbh/Qs/QwkWI/ZQfXd1WAlGO7n5vQ6K25q/dGj1moUB6L+IdWiCq1z6SrsYap zzP7+t3IHjtMByoxZuZNMUxHjqAjISNhMb77bYTfA2crufxW1PYc6uK0hDTlPtmk AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 863820250281729791882518225905954933 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign Server Gold CA 2014 - G22' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-10-24 06:01:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-24 06:01:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel-Stadt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Schweizerische National-Versicherungs-Gesellschaft AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT Operations Certificate Registration Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.nationalesuisse.ch' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28838623232372942805320538456974792996795945270673728800083073098940552415661949737852284926659824338953105403772000004673227967977120379145504175618599543586462526338021051704695556548340939922099688625239175937839439611706484128467692134376526030817480818071155850206146171206835374432368828695909980656945614742465377474069596906586621784380455217507512974602378326760780039581372926501375855038030363335103620137605381181395565970048783168536533183603720608612195324793986946213080302339012553806681746623868645210651828916950888992541632120835294589644960598662788237831946188998036379999733291636233467642618883 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:1|false] IA5String '[email protected]' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nationalesuisse.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nationalesuisse.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) de1cc10d2c956f60101d878fc4f6bd428fc4acf8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName e7f1e7fd2e53ad11e5811a57a4738f127d98c8ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.2.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Gold-CP-CPS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (200 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gold-server-g2.ocsp.swisssign.net/E7F1E7FD2E53AD11E5811A57A4738F127D98C8AE' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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