privat.bhf-bank.ch
- ODDO BHF (Schweiz) AG -
Issued by QuoVadis Global SSL ICA G2
About this certificate
This digital certificate with serial number 2c:b1:c6:54:06:de:49:0e:33:27:37:89:9f:a8:22:1f:c6:78:a8:63 was issued on by QuoVadis Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
ODDO BHF (Schweiz) AG
Organization:
ODDO BHF (Schweiz) AG
State / Province:
Zurich
Locality: Zürich
Country: CH
Locality: Zürich
Country: CH
QuoVadis Limited
Organization:
QuoVadis Limited
Country:
BM
This certificate has expire since
Certificate Details
Serial Number (hex): 2c:b1:c6:54:06:de:49:0e:33:27:37:89:9f:a8:22:1f:c6:78:a8:63Serial Number (int): 255160102641851708868207829832255264470741854307
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 48:f7:6c:eb:0d:ed:4c:21:52:11:3c:37:3e:cc:6a:c9:a0:dd:1c:3d
AuthorityKeyId: 91:19:62:ad:5b:17:a7:30:fb:f0:de:39:25:b1:bd:8c:b9:b8:51:27
Fingerprint (sha1): 7b:ad:19:91:1f:19:26:f3:63:65:a4:35:de:e0:69:0b:b5:15:7b:c5
Fingerprint (sha256): b0:42:22:34:f3:7f:2e:ef:69:56:ab:b1:0e:fe:6b:05:32:fd:f6:dc:3e:77:d6:d1:c2:98:8c:1b:d5:8c:82:9a
Issuing Certificate URL: http://trust.quovadisglobal.com/qvsslg2.crt
Revocation information
OCSP Server: http://ocsp.quovadisglobal.comCRL Distribution Point: http://crl.quovadisglobal.com/qvsslg2.crl
Check the revocation status for certificate privat.bhf-bank.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for privat.bhf-bank.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
privat.bhf-bank.ch
Other certificates including the domain name bhf-bank.ch
(limited to 100 certificates)
privat.bhf-bank.ch
securegw.bhf-bank.ch
webmail.oddo-bhf.ch
privat.bhf-bank.ch
*.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
securegw.bhf-bank.ch
*.bhf-bank.ch
www.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
webmail.oddo-bhf.ch
secure.bhf-bank.ch
www.bhf-bank.ch
secure.bhf-bank.ch
securegw.bhf-bank.ch
www.bhf-bank.ch
webmail.bhf-bank.ch
www.bhf-bank.ch
privat.bhf-bank.ch
webmail.bhf-bank.ch
www.bhf-bank.ch
secure.bhf-bank.ch
secure.bhf-bank.ch
webmail.bhf-bank.ch
privat.bhf-bank.ch
www.bhf-bank.ch
privat.bhf-bank.ch
www.bhf-bank.ch
securegw.bhf-bank.ch
securegw.bhf-bank.ch
webmail.oddo-bhf.ch
privat.bhf-bank.ch
*.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
securegw.bhf-bank.ch
*.bhf-bank.ch
www.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
privat.bhf-bank.ch
webmail.oddo-bhf.ch
secure.bhf-bank.ch
www.bhf-bank.ch
secure.bhf-bank.ch
securegw.bhf-bank.ch
www.bhf-bank.ch
webmail.bhf-bank.ch
www.bhf-bank.ch
privat.bhf-bank.ch
webmail.bhf-bank.ch
www.bhf-bank.ch
secure.bhf-bank.ch
secure.bhf-bank.ch
webmail.bhf-bank.ch
privat.bhf-bank.ch
www.bhf-bank.ch
privat.bhf-bank.ch
www.bhf-bank.ch
securegw.bhf-bank.ch
Certificate
The complete raw certificate details for privat.bhf-bank.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/DCCBOSgAwIBAgIULLHGVAbeSQ4zJzeJn6giH8Z4qGMwDQYJKoZIhvcNAQEL BQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxIzAh BgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNBIEcyMB4XDTIxMDMzMDExNTM0 OFoXDTIyMDMzMDEyMDMwMFowbTELMAkGA1UEBhMCQ0gxDzANBgNVBAgMBlp1cmlj aDEQMA4GA1UEBwwHWsO8cmljaDEeMBwGA1UECgwVT0RETyBCSEYgKFNjaHdlaXop IEFHMRswGQYDVQQDDBJwcml2YXQuYmhmLWJhbmsuY2gwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDD9RTrk8v18kEVchwVI46qwylpYS4G9y7xO+WrerXS sdbLQnvU7nNrtwpapBoMetygvy/Vj7J1+He+27y8thhPaVq7dJx8aXdvedAHPX7i mHfayH6GS3D+uKbx1JpwJemZmi836q9saLVkzihNhffEtlqvO0uWPvdp2l5Z6umE Pa41q8L9wkfF0liaP21ATGFYNun5GezLajVhRrwp9czwoshdElL+HJeQy5WkIPtO irc1fb3F5lt2CcAoOPQRkAi9c4CrGUoIniTJtyO5v8gHQS1LZfbV4Xy++73aAQmB OHc6JVEMBJuWCur3uiJJAS251gNVbz1EGKaC4KyyMwqlAgMBAAGjggKyMIICrjAJ BgNVHRMEAjAAMB8GA1UdIwQYMBaAFJEZYq1bF6cw+/DeOSWxvYy5uFEnMHMGCCsG AQUFBwEBBGcwZTA3BggrBgEFBQcwAoYraHR0cDovL3RydXN0LnF1b3ZhZGlzZ2xv YmFsLmNvbS9xdnNzbGcyLmNydDAqBggrBgEFBQcwAYYeaHR0cDovL29jc3AucXVv dmFkaXNnbG9iYWwuY29tMB0GA1UdEQQWMBSCEnByaXZhdC5iaGYtYmFuay5jaDBb BgNVHSAEVDBSMEYGDCsGAQQBvlgAAmQBATA2MDQGCCsGAQUFBwIBFihodHRwOi8v d3d3LnF1b3ZhZGlzZ2xvYmFsLmNvbS9yZXBvc2l0b3J5MAgGBmeBDAECAjAdBgNV HSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwEwOgYDVR0fBDMwMTAvoC2gK4YpaHR0 cDovL2NybC5xdW92YWRpc2dsb2JhbC5jb20vcXZzc2xnMi5jcmwwHQYDVR0OBBYE FEj3bOsN7UwhUhE8Nz7Masmg3Rw9MA4GA1UdDwEB/wQEAwIFoDCCAQMGCisGAQQB 1nkCBAIEgfQEgfEA7wB1ACl5vvCeOTkh8FZzn2Old+W+V32cYAr4+U1dJlwlXceE AAABeIMEuw4AAAQDAEYwRAIgS6331viyUraVhVqA6l/0MCKdpv5YUwZvuwtun9n+ FKsCIGUS7ObqDxrWWcPUmGpXkrwS7OxFYDd26xOeRkr7l6qsAHYAVYHUwhaQNgFK 6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAF4gwS7bAAABAMARzBFAiAGKNNmZchB 7UblupJ9qcOga6bH5kvtmvaFUAqQ8AiQpQIhALHokQdXJj5y1KvR9cNR8nBqLRDb T6P+qV3+rsCPAMoOMA0GCSqGSIb3DQEBCwUAA4IBAQC0BneTfGhGeAPg1XSUdIfp acOE7UFoafuIQGQ4zsXpxpK3lGgf1kBR9GIYmf9ZhWPd644wo/baZLocoFCMX0Ix gQSUq0AAqhSXKB1pEN0/ZwUxZnFv/PXuKCx5bbuDB2Dl1UKZuy095ShbvqAV+rEU VjUZApOIHhYg0FdYdewWEXfhLgbb85Tp9gjXaDCToI7aH1F3FCNIYN4xNFfw5bwt 0XuXRnXHqIeQbtErs/6u5HXyY4ONQnb9e12cAmiqUV+0GsFJb8kywu+DgJBadLKF +4CvsGJwIwdwk9j82oy2BgjyuecSwJYNHbh+h8vUFsgDAfqzdfu6/fNXdeJVUHZV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/UU65PL9fJBFXIcFSOO qsMpaWEuBvcu8Tvlq3q10rHWy0J71O5za7cKWqQaDHrcoL8v1Y+ydfh3vtu8vLYY T2lau3ScfGl3b3nQBz1+4ph32sh+hktw/rim8dSacCXpmZovN+qvbGi1ZM4oTYX3 xLZarztLlj73adpeWerphD2uNavC/cJHxdJYmj9tQExhWDbp+Rnsy2o1YUa8KfXM 8KLIXRJS/hyXkMuVpCD7Toq3NX29xeZbdgnAKDj0EZAIvXOAqxlKCJ4kybcjub/I B0EtS2X21eF8vvu92gEJgTh3OiVRDASblgrq97oiSQEtudYDVW89RBimguCssjMK pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 255160102641851708868207829832255264470741854307 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BM' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'QuoVadis Global SSL ICA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-30 11:53:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-30 12:03:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zurich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zürich' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ODDO BHF (Schweiz) AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'privat.bhf-bank.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24737323768629875384650128268196111471544254257033434989493647470472934669876278298336019896077122017871366121626250817059486459463641514372635534979993692988855349758403807315887332001337933281924250155076884829216503518845539759858112566405753072361986871727615809876288050095963172844185463879283037684577842887226710849396821794417907296555018113112867502841463539692248316036399117672211642924035194270296075473667966675886176051461709182029817042305641897082938489926711823225012558872292166307360838327783834840350128424803376034019653528963856927543720998049404048080395808193056490370909761213544098279131813 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 911962ad5b17a730fbf0de3925b1bd8cb9b85127 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trust.quovadisglobal.com/qvsslg2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.quovadisglobal.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'privat.bhf-bank.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.8024.0.2.100.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.quovadisglobal.com/repository' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.quovadisglobal.com/qvsslg2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 48f76ceb0ded4c2152113c373ecc6ac9a0dd1c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075002979bef09e393921f056739f63a577e5be577d9c600af8f94d5d265c255dc784000001788304bb0e000004030046304402204badf7d6f8b252b695855a80ea5ff430229da6fe5853066fbb0b6e9fd9fe14ab02206512ece6ea0f1ad659c3d4986a5792bc12ecec45603776eb139e464afb97aaac0076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c000001788304bb6c000004030047304502200628d36665c841ed46e5ba927da9c3a06ba6c7e64bed9af685500a90f00890a5022100b1e8910757263e72d4abd1f5c351f2706a2d10db4fa3fea95dfeaec08f00ca0e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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