test2.empa.ch
Issued by SwissSign RSA TLS DV ICA 2021 - 1
About this certificate
This digital certificate with serial number 1c:44:0e:a4:c7:7e:6f:eb:87:34:f7:5e:b1:1e:44:16:df:0b:43:e2 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=test2.empa.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 1c:44:0e:a4:c7:7e:6f:eb:87:34:f7:5e:b1:1e:44:16:df:0b:43:e2Serial Number (int): 161369467900051679302815869965280508270554596322
Serial Number lenght: 157 bits, 20 octets
SubjectKeyId: 16:36:c3:91:34:6c:8a:ca:29:68:83:b5:7f:0b:02:9f:0b:20:9c:2f
AuthorityKeyId: 3c:9e:52:79:03:63:6f:4f:9c:81:1b:d3:28:70:0c:24:5a:ea:a5:87
Fingerprint (sha1): 80:2a:50:12:d4:18:ed:4e:8d:a6:e6:25:9d:31:ac:f7:41:3a:d4:68
Fingerprint (sha256): b3:60:0b:10:9d:15:64:bb:9b:e8:0e:32:9e:24:25:95:da:04:c4:59:71:4f:7a:6c:bc:d6:83:f6:0d:dd:e9:87
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587
Revocation information
OCSP Server: http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587CRL Distribution Point: http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587
CRL Distribution Point: ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate test2.empa.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test2.empa.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test2.empa.ch
www.test2.empa.ch
www.test2.empa.ch
Other certificates including the domain name empa.ch
(limited to 100 certificates)
certest-win.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
Certificate
The complete raw certificate details for test2.empa.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJRzCCBy+gAwIBAgIUHEQOpMd+b+uHNPdesR5EFt8LQ+IwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjEgLSAxMB4XDTIyMDUyMzEx MTgwMVoXDTIzMDUyMzExMTgwMVowGDEWMBQGA1UEAxMNdGVzdDIuZW1wYS5jaDCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMHNP4zr/Z8ea70+qONcO7lu d2PkwVLfsatbJl3xrQ+OQzcDqn+2IgTMgowFAPLef7a37ErnvzhprDw+6ighJYp5 HRuNdqKMwIGVaxZeKNlSbIeNZUNjXzDUmtfahwLZuVtde/NQoM108dasb6ZcFzlE WxD/lkVXV6WpFDuGg44HkbYr5gzr0GwbSfiOHqDQHrsyoJSyV8y8CsMSTWdbDUOm GTwzTZONb/x/w5l0QWP26uNgcVxhFCF5hOuqafLhh+kwqFBv3lzCVyQNyxHs3dUs tVddePwEM+XdlieHVCbaZ/nhXIzDkQ8Hc85WM0A12U0fSKbhtMmg5dd0Jy8WgokC AwEAAaOCBU8wggVLMCsGA1UdEQQkMCKCDXRlc3QyLmVtcGEuY2iCEXd3dy50ZXN0 Mi5lbXBhLmNoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwHQYDVR0OBBYEFBY2w5E0bIrKKWiDtX8LAp8LIJwvMB8GA1UdIwQY MBaAFDyeUnkDY29PnIEb0yhwDCRa6qWHMIH/BgNVHR8EgfcwgfQwR6BFoEOGQWh0 dHA6Ly9jcmwuc3dpc3NzaWduLm5ldC8zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMy ODcwMEMyNDVBRUFBNTg3MIGooIGloIGihoGfbGRhcDovL2RpcmVjdG9yeS5zd2lz c3NpZ24ubmV0L0NOPTNDOUU1Mjc5MDM2MzZGNEY5QzgxMUJEMzI4NzAwQzI0NUFF QUE1ODclMkNPPVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlmaWNhdGVSZXZvY2F0aW9u TGlzdD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MG8GA1Ud IARoMGYwUAYIYIV0AVkCAQEwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0 b3J5LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMAgGBgQAj3oB BjAIBgZngQwBAgEwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsGAQUFBzAChlhodHRw Oi8vc3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC8zQzlF NTI3OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3ME4GCCsGAQUFBzAB hkJodHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0LzNDOUU1Mjc5MDM2MzZGNEY5Qzgx MUJEMzI4NzAwQzI0NUFFQUE1ODcwggJvBgorBgEEAdZ5AgQCBIICXwSCAlsCWQB3 AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABgPCjam8AAAQDAEgw RgIhAPLscAQVJZxKWoeGiJ1cFgKZgPi7PTDNM9c+LJb5Jj0PAiEAif/gDZFgnuuC +T0kVLJwH7E4CTNrPsipT6KXMwAYFkMAdQBvU3asMfAxGdiZAKRRFf93FRwR2QLB ACkGjbIImjfZEwAAAYDwo2lzAAAEAwBGMEQCICcQTeTJCcXiXptwDJuTxlVmkVQw NP0XrmCk065f6BRYAiAYemURvNtY6UABssFTGfnCAAyc3v3o5e9R9xDrvUN7/wB2 AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABgPCjaM0AAAQDAEcw RQIhANRdbW/NHxEBKBTp1BcY6H/K/9u+VWm4oCaZ8e6Nd5b2AiBM/9paLrWvKhIq Z8TvYjWtY9zB5/Dz8A7zx/9+2nu86wB3ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwL h9zwAw55NqWaAAABgPCjan0AAAQDAEgwRgIhANk4Q4F5L81RKET0nXmSpC7+W51M gQ5DxdLU8wKBmYjwAiEAonoeb1BqFgW6wGfiFBLBrW5fzOdwmaZZI/DIXIr6B2MA dgDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYDwo2kcAAAEAwBH MEUCIQCuUdTnB1MdoAYUc5iXrfFj2XuBVDTRvajFBpDPTT8EEAIgelVFmxRpedK5 XnwyesBcYjfcHSqSnjJSTqGKkk8rn60wDQYJKoZIhvcNAQELBQADggIBAKnXLxGJ FsH1HmF7GX2DcyQJ0RNOMt6VzjcO9o5va5o7tWOM9c0hTcBJU5uSjXoGcOx9txqE nlTHPDahN/05aupJfBrXcwF9lfRus7C1u2ARez0IxrQ7xzr28h4Gu1p3kToJKBAk VLg64LwCN4f8Rdd2iQGnCc6GqMxgYakEcHxCMbIOb1ZFrd6VDTZgEiSRDBMZpOkm Ey1WSC+14XNF7e/Fkcuredzsz3qb/i5d0SBFANZNWBcxyr5XbQTaeDh6BEPJUT5n ecdo5ih25erYOZ0RptZ9l+b/Tzg5Wx/hSCiC8Xd55fa50JtmyZQCMXGZtrGpY6be e38RZFT24YXBUz1vW+vHeApl2IfojabHHglRxF/3fqcTG0WcdemVQtBu7V6NIN5j srCznEE57pRVX1K4kxzmZnQXSAOMKRmKc74ctgrHtXvV6Z3Cil5bOs0IYOkJ9sPa EDi48vbCRMNxJBs24U8uUO1xZFmpdXJ1H+FFzMSxwfJEyjuQazY2kHDDJ3HxY4TQ 5eJGZy4uethjKYEZ5jgo/2YdaMZJO27HHfPyzqytT0kdIpzSgwrxoMQcMBeUVjID 2SvHQ6gy0L78dfwfENd7ummMFDOs5YLvygKXum57AYWi6OLXSz3B1Ozy5wdVVBnv fu5QiSSJJdF+LL42viVuRgpINyzvqUtbdwSz -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwc0/jOv9nx5rvT6o41w7 uW53Y+TBUt+xq1smXfGtD45DNwOqf7YiBMyCjAUA8t5/trfsSue/OGmsPD7qKCEl inkdG412oozAgZVrFl4o2VJsh41lQ2NfMNSa19qHAtm5W11781CgzXTx1qxvplwX OURbEP+WRVdXpakUO4aDjgeRtivmDOvQbBtJ+I4eoNAeuzKglLJXzLwKwxJNZ1sN Q6YZPDNNk41v/H/DmXRBY/bq42BxXGEUIXmE66pp8uGH6TCoUG/eXMJXJA3LEezd 1Sy1V114/AQz5d2WJ4dUJtpn+eFcjMORDwdzzlYzQDXZTR9IpuG0yaDl13QnLxaC iQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 161369467900051679302815869965280508270554596322 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-23 11:18:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-23 11:18:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'test2.empa.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24465204539799720830150958796431451282701197941534730773292467477639597438584365702693345633045980932160956957329287524306983038316777671201803407396741922562357411084451994772608339263370873760547298586126915388664021613809976124401150407357658867061923327744829465880576179421420407991131607689557653700829687493711735699966670435976209108041233375341115497134488828069561590822316420004313926886044122690543866166305832691744112891763817462040183331583800882403284089450083937679397903018995082343055716313165668576156581139787885257333513086092073625673453843276333551891522415574989924712138029730667330283143817 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test2.empa.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.test2.empa.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1636c391346c8aca296883b57f0b029f0b209c2f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3c9e527903636f4f9c811bd328700c245aeaa587 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (607 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (603 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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