sonroad18.empa.ch
Issued by SwissSign RSA TLS DV ICA 2021 - 1
About this certificate
This digital certificate with serial number 69:4a:d3:7c:09:2a:9b:26:90:b7:bf:71:06:4b:f5:52:36:18:1a:e9 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sonroad18.empa.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 69:4a:d3:7c:09:2a:9b:26:90:b7:bf:71:06:4b:f5:52:36:18:1a:e9Serial Number (int): 601112708980723791024435083485900578117813541609
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 33:cf:90:7a:62:f9:4b:e6:3e:e9:66:e2:f3:d7:da:da:1b:2a:1a:82
AuthorityKeyId: 3c:9e:52:79:03:63:6f:4f:9c:81:1b:d3:28:70:0c:24:5a:ea:a5:87
Fingerprint (sha1): 30:bb:49:84:fa:69:e3:6d:6a:53:a2:67:71:4e:cd:31:31:6c:90:10
Fingerprint (sha256): a5:85:29:6f:13:24:07:b8:0b:47:ec:12:66:4b:6b:f9:ca:67:eb:69:18:e2:43:98:cb:2c:2f:53:9d:40:d2:f1
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587
Revocation information
OCSP Server: http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587CRL Distribution Point: http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587
CRL Distribution Point: ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate sonroad18.empa.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sonroad18.empa.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sonroad18.empa.ch
www.sonroad18.empa.ch
www.sonroad18.empa.ch
Other certificates including the domain name empa.ch
(limited to 100 certificates)
certest-win.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
Certificate
The complete raw certificate details for sonroad18.empa.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKQTCCCCmgAwIBAgIUaUrTfAkqmyaQt79xBkv1UjYYGukwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjEgLSAxMB4XDTIyMDExMTE0 MTQwM1oXDTIzMDExMTE0MTQwM1owHDEaMBgGA1UEAxMRc29ucm9hZDE4LmVtcGEu Y2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCM7HcnLLgYKAqPrzMr OYUJG7tzAbAEChHoR4OHN52utIhGnHWAULdoh7UqCkLftFGZJ1FOSwyOBy6BiaF/ kvez3pIvILPJDOU4SKC5nyM/AeelFRjd/PpOxmLcY9q+40NHm+YQyhSG5oFYCyPq QL8PQ6gS/HPhdQUozSs2zIi7kMePuS6wJ+57vB8pUjYGfM9uZ1/vY75LPD0VO3CX AtdZ9UoiEZKxW5xMrm2iU6DiT0uHew1VVgZ3EFEQNqdl3uHFkEbITIl7KHJOPliq z/dxD3Ifhaa8n9pGedJChD3Rz86jkotS8QIEBiOf8ZHpX9536INIhQr4xOJlAY7s yt8HAgMBAAGjggZFMIIGQTAzBgNVHREELDAqghFzb25yb2FkMTguZW1wYS5jaIIV d3d3LnNvbnJvYWQxOC5lbXBhLmNoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFDPPkHpi+UvmPulm4vPX2tob KhqCMB8GA1UdIwQYMBaAFDyeUnkDY29PnIEb0yhwDCRa6qWHMIH/BgNVHR8Egfcw gfQwR6BFoEOGQWh0dHA6Ly9jcmwuc3dpc3NzaWduLm5ldC8zQzlFNTI3OTAzNjM2 RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3MIGooIGloIGihoGfbGRhcDovL2Rp cmVjdG9yeS5zd2lzc3NpZ24ubmV0L0NOPTNDOUU1Mjc5MDM2MzZGNEY5QzgxMUJE MzI4NzAwQzI0NUFFQUE1ODclMkNPPVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlmaWNh dGVSZXZvY2F0aW9uTGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlv blBvaW50MG8GA1UdIARoMGYwUAYIYIV0AVkCAQEwRDBCBggrBgEFBQcCARY2aHR0 cHM6Ly9yZXBvc2l0b3J5LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMu cGRmMAgGBgQAj3oBBjAIBgZngQwBAgEwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsG AQUFBzAChlhodHRwOi8vc3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9k b3dubG9hZC8zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3 ME4GCCsGAQUFBzABhkJodHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0LzNDOUU1Mjc5 MDM2MzZGNEY5QzgxMUJEMzI4NzAwQzI0NUFFQUE1ODcwggNdBgorBgEEAdZ5AgQC BIIDTQSCA0kDRwB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAAB fkl9IUMAAAQDAEcwRQIhANROSxBjd1pxwuFt1pzeqOGBMYsU4Z2uIBB7HwDQKoiY AiBhcFvFL9qRRGH/TuRPnVP0kO0LTmWWe5kEF+qK6VToOwB1AG9Tdqwx8DEZ2JkA pFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABfkl9H/cAAAQDAEYwRAIgNuruQ7haWjbv fQawFnKFaX4v7kWqcRcW91pkxTMdr7sCIHQwCDcWs8t4iZa6o5lEH/8/PrwDqM9m EneoxEtou184AHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAF+ SX0fQQAABAMARjBEAh9xO42cVWQ4qhmqdpBfVcccavoo0kbH63yhX1tcxCAoAiEA gRylVD+0Hq1grEGSkQXsseVJQDJ2LaIoSep+C+t68HUAdgCt9776fP8QyIudPZwe PhhqtGcpXc+xDCTKhYY069yCigAAAX5JfR99AAAEAwBHMEUCIE3ISkQ+9x5qViuE u3h9S99TDTgL5X0elTlojsS6rhtpAiEAzIIYzXTngrckdKtKWhF9PZU0njc5FAaH 8C5Yua+QED0AdgCzc3cH4YRQ+GOG1gWp3BEJSnktsWcMC4fc8AMOeTalmgAAAX5J fSC4AAAEAwBHMEUCIQCXolRTdPQ51zWKCIGXyHYtg5UD7pzqGsivYFZe3KMvEwIg dIt+eBOzUQhq5FvZn2ijg6XCnHJbUa5Ta0lYDOAmaeYAdwDoPtDaPvUGNTLnVyi8 iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAX5JfR+yAAAEAwBIMEYCIQDWOvBQn+7ZoSMX GQ8Qv/hajgjBpDygpCgd/JVtWkp3PgIhAOGRP+wvPuS1YiDUiwVESPLlTSXVVqRk d5duhoftXmv3AHYA6H6nZgvCbPYALvVyXT/g4zG5OTu5L79Y6zuQSdr1Q1oAAAF+ SX0jxQAABAMARzBFAiBK8O1D38I7jR4Z9fL7bZxMhvVivkXgnhTRDjeI1iNHrAIh AJWIoo/4EECXD4c0EiCZ5zz99fTNNXicaL9c/JT30aHzMA0GCSqGSIb3DQEBCwUA A4ICAQCsM6X1uMNftd+z19eMI5UzxxnANhOjpLsPi/a3MnweDeb1OFQ+z2VaHQdP XDN7PiCkzH11u1S9eHmk9cq+1lbXUfcfHylWu8oGnN44Boi5e4tqVDbHDw55rrqB ALXK+Ndpi+hG+J4VY59RWiKk7dRpbTYc1mVyP4YFwKQaqYo63S+t7r19pG8nTWmz 67F6kU0dnRjoLIgNiHPDlB6AyVi8EMwQCs8VifwHDBTn1gNU4HFq3WpEj7a0CWYO NDKg84cZ/fKIAHeSuobFzJIsl1KkKrEUk6h8Z7yUh4NHSvHDebzN+4G4KpLf+3V5 c0IeCYKlGrJsLnZWEEOYDulNpS6HW8J+dmB5GoJKAF9AlSQDMHLxEcefsGaNrmf/ tdhpjLXMKBc6Kxi1PvMXKs0lTqyn1ocigM3YlngmcrlqDBW4/Ddrh7lP+XuCFU+j 5v9QKiLi+pA9h1KE532OEZa2XY9n2vkC+kJRqDufSJ7WszJFZmtwdAMqmt+3CrjT wGqPXE5LjIlB4/5xqDzNaMPOQmIedUvd0FuMDC1+vObCXdjUChzOVujScv8O0R4E 2W82FTzYeQeMrfr3Uci6h+2OVJy1Ms7IKgCSmW2vE5r/8biT0H6AoyQYo0loqYdV 8kvusdy27io4KB0aMmS9LXmCYKdjiGzW1GH58Xd9soNnbvvuYA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjOx3Jyy4GCgKj68zKzmF CRu7cwGwBAoR6EeDhzedrrSIRpx1gFC3aIe1KgpC37RRmSdRTksMjgcugYmhf5L3 s96SLyCzyQzlOEiguZ8jPwHnpRUY3fz6TsZi3GPavuNDR5vmEMoUhuaBWAsj6kC/ D0OoEvxz4XUFKM0rNsyIu5DHj7kusCfue7wfKVI2BnzPbmdf72O+Szw9FTtwlwLX WfVKIhGSsVucTK5tolOg4k9Lh3sNVVYGdxBREDanZd7hxZBGyEyJeyhyTj5Yqs/3 cQ9yH4WmvJ/aRnnSQoQ90c/Oo5KLUvECBAYjn/GR6V/ed+iDSIUK+MTiZQGO7Mrf BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 601112708980723791024435083485900578117813541609 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-11 14:14:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-11 14:14:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sonroad18.empa.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17789968150400749992764780335095930077814528328978823507742002243889897481162073668499980628164782447781851914577395130432820838495231214912810797854214742518226364342885957542886279098450520339969961145648426067875916006503068297929942513031821314242536395393771930413302704633539339597858099445160132683493807421199679541362288607405854412621673038460374127918110018044209166982314949552683990319874067817795665358248468343010901828952576787008841423862486417247021963897471527667058404241961761733636073899698185181169354938667204134572672429994180246679849893593214452425096436855208827560790757156565131249508103 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sonroad18.empa.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sonroad18.empa.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33cf907a62f94be63ee966e2f3d7dada1b2a1a82 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3c9e527903636f4f9c811bd328700c245aeaa587 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (845 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (841 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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