sbc.empa.ch
Issued by SwissSign RSA TLS DV ICA 2022 - 1
About this certificate
This digital certificate with serial number 73:52:c7:af:f7:8c:81:41:5d:6e:d4:0c:0b:13:cc:4b:4e:f5:a2:cb was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sbc.empa.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 73:52:c7:af:f7:8c:81:41:5d:6e:d4:0c:0b:13:cc:4b:4e:f5:a2:cbSerial Number (int): 658379994974384545966385879176979683122580136651
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 22:5e:f1:9c:b0:89:9a:00:00:00:6c:2d:d1:16:94:22:45:f3:0b:86
AuthorityKeyId: eb:bd:7f:49:93:8c:c9:ee:ec:a2:ba:f7:1c:d2:67:f0:83:b1:ea:de
Fingerprint (sha1): f9:4d:66:4a:46:8c:e5:86:db:66:41:5f:06:64:8b:c6:18:46:ad:19
Fingerprint (sha256): b3:d8:77:2c:7e:a5:71:01:e1:0c:f4:10:9a:47:92:cf:38:bd:59:b1:de:48:99:bc:e2:7e:b6:83:cc:1d:97:7f
Issuing Certificate URL: http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba
Check the revocation status for certificate sbc.empa.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sbc.empa.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sbc.empa.ch
www.sbc.empa.ch
www.sbc.empa.ch
Other certificates including the domain name empa.ch
(limited to 100 certificates)
certest-win.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sbc.empa.ch
test.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
certest-win.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
certest-win.empa.ch
adobesync.empa.ch
*.empa.ch
www.nest.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sbc.empa.ch
sip.empa.ch
test.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
*.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sbc.empa.ch
test.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
certest-win.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
certest-win.empa.ch
adobesync.empa.ch
*.empa.ch
www.nest.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sbc.empa.ch
sip.empa.ch
test.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
Certificate
The complete raw certificate details for sbc.empa.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIfTCCBmWgAwIBAgIUc1LHr/eMgUFdbtQMCxPMS071osswDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjIgLSAxMB4XDTI0MDMyMDEw NTAwMVoXDTI1MDMyMDEwNTAwMVowFjEUMBIGA1UEAxMLc2JjLmVtcGEuY2gwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxkEc52pX+n1WtIUCGnj/sUZJK CObS/4iAzfA1BV1YbRtThq6uuLM7+s8qQo83+iTVLFFDbKe8xX4XDIwoG/CGIm+3 j58yadNh+N5vUJZYmkyQmEVAA6G//NeXi9jfUKHVOxBSADwhGITKxClE/Ye9qo1o JQq868285AT8JluuUR9jK1P+p604n45x36LArpoYoutmsR9iL2YS9e4f0eoybAvB hurBoyCB0nFNky63LMy2adQbnyHbBEIOBMDx7qx8TOxBb77fsWf2ZpNMBbzoR6SB aeBvx3ROPWcB4Rk8g8qtrn2coabtJYR7JUdhgZ+BqyjmOur8WQK1KtvAUsTBAgMB AAGjggSHMIIEgzCBsgYIKwYBBQUHAQEEgaUwgaIwTAYIKwYBBQUHMAKGQGh0dHA6 Ly9haWEuc3dpc3NzaWduLmNoL2Fpci0xYjg2MzM4NS1mNGE5LTQ3ZmEtODhhNS0y YTVhYmZkNGExNjcwUgYIKwYBBQUHMAGGRmh0dHA6Ly9vY3NwLnN3aXNzc2lnbi5j aC9zaWduL29jcy1hYWNjY2VkNS02NmU4LTQwNjktOWIxYi1mZDI5YWI3M2VmZWMw bwYDVR0gBGgwZjAIBgZngQwBAgEwCAYGBACPegEGMFAGCGCFdAFZAgEBMEQwQgYI KwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNz U2lnbl9DUFNfVExTLnBkZjBRBgNVHR8ESjBIMEagRKBChkBodHRwOi8vY3JsLnN3 aXNzc2lnbi5jaC9jZHAtNjc5NzIzYjItODY0MS00NjQyLTg1MDAtZjZkMmZmMzdl NmJhMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8EBAMC BaAwJwYDVR0RBCAwHoILc2JjLmVtcGEuY2iCD3d3dy5zYmMuZW1wYS5jaDAdBgNV HQ4EFgQUIl7xnLCJmgAAAGwt0RaUIkXzC4YwHwYDVR0jBBgwFoAU671/SZOMye7s orr3HNJn8IOx6t4wggJuBgorBgEEAdZ5AgQCBIICXgSCAloCWAB2AFWB1MIWkDYB SuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABjlt7d48AAAQDAEcwRQIhAOu3nqvC YlZVoq1MVapphmiz+qi+ZqFy7MbwakRYDcDjAiBhaSiI0Evye9soxiwuLjCTculb 9SXK1QI1TL187QPPpQB3ACjigTj9gyFF6anWqnU3bYN3qIUSs8B/ckFIIdy96Yxm AAABjlt7eeQAAAQDAEgwRgIhANgLITjRkWfETtX0p0ipcYfBk+GF9osAL4Izb5qR ulUjAiEA0gh28CyoxiHXRD6BgCM9JTJqMhJ5M5I9QN/4qZZ+Pe0AdQDPEVbu1S58 r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAY5be3aXAAAEAwBGMEQCIGL1YLmb oQpKGUgq9RwdokYA94T0380bdq66SSOiDZMkAiA3C9s0G5Qhi8KetQrwGMh+IW1Q 1eYMNohysyBNoaMnwAB2AMz7D2qFcQll/pWbU87psnwi6YVcDZeNtql+VMD+TA2w AAABjlt7eXIAAAQDAEcwRQIgPBOt0BbJjY+vM6APrfy0MgvH9nlCWMIy8gJzDobz EBACIQCPvNAYRrsed6SLF0hzsvJAPVWEY+hpNMmAuJO0M+zZPwB2AE51oydcmhDD OFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjlt7eIQAAAQDAEcwRQIhAKz/r8G4 U19xSX4+0m6RtLGTnAJot4l8ivexuDLoEMTqAiAfT1rI/9XMj2d/wXFAPTcOTP0G a88VdgbXSACTsVweUDANBgkqhkiG9w0BAQsFAAOCAgEAYtlNGYmSb+lfj5G1wWRN y+YeGISnqpCBZVs+WyS+IyqhqCYe3k4FASL/ZUhB5uihhwcdYimQKWf6jQZXobEo 4SPK/ZUu5GewGxBnFdfrZ9SDYL0EjJtqZCJDkSnFQTOohMP7UGupn0UqRUjh+88M nv4NwrIOy+tQwFZm/tGTQqvSsLiHSpK1QsNXHHqlpr0UUpnvHta2OTbEg5gZYUIl 1SukKlSrvRmIf/nWKcEX3Nb4PlSzrVO0csxdSfyVzwLfVJOUKIB++62jVV3uYYe4 kAqz7h5hIiKVT+ExsPFxvcmiKz/fPtF4e7xmAK5bIzLn51lpNEOzFISUV0HPDSWX cZ6ljUUglC1soPUoYTnBVyg6XkzQtBF8rOGsh9oJY6P8ZTQbQIPJ9m2DZfQLX7Le bekeBDlFTSHPLrk7YoPPo/4AMhvv7CfEgedoNPVT1eNKzBTJhAw8EMNJRlGWfGuU ElMKo5iIP7H06azWEMEL3dIhgYGqkE5REZHeX2fGp/PsvOd3FlBiHCgRWma3aI3V 3ElxxhIVGkuPPXNPJXRHdFU8nUB5/HqLwssdEBQsn2Tp4VPo6tsCpfdcnLuf89n0 xVCoq01NOOsTkb7QKpuPgxSAz/gxDrtKJS/onB4+WpPvBMwRjO5DFQyjSnopWdhL +OqX+x0sf4kfUX5UWQbucro= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZBHOdqV/p9VrSFAhp4/ 7FGSSgjm0v+IgM3wNQVdWG0bU4aurrizO/rPKkKPN/ok1SxRQ2ynvMV+FwyMKBvw hiJvt4+fMmnTYfjeb1CWWJpMkJhFQAOhv/zXl4vY31Ch1TsQUgA8IRiEysQpRP2H vaqNaCUKvOvNvOQE/CZbrlEfYytT/qetOJ+Ocd+iwK6aGKLrZrEfYi9mEvXuH9Hq MmwLwYbqwaMggdJxTZMutyzMtmnUG58h2wRCDgTA8e6sfEzsQW++37Fn9maTTAW8 6EekgWngb8d0Tj1nAeEZPIPKra59nKGm7SWEeyVHYYGfgaso5jrq/FkCtSrbwFLE wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 658379994974384545966385879176979683122580136651 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 10:50:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-20 10:50:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sbc.empa.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22415326224151047751693888468779355774256131698165568173569874548344096063594216355794996556128870718839481141038585126086954517755752076363069684510159769044948787310241770703616485206149496588402682365860388091643907107506492949223415443469488744302517468169484180469252312685349482638075275786005934878064692422331944196610994834840481684261658393649772000348015498081915807922350729752336892329488990427123214253712293229505797885887200159784708223206089283880683424350245487497855139875043831288289639059514194198613191699808542464143971900078323508360535295588657330868113532542956399472386259737842663615022273 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-1b863385-f4a9-47fa-88a5-2a5abfd4a167' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-679723b2-8641-4642-8500-f6d2ff37e6ba' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sbc.empa.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sbc.empa.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 225ef19cb0899a0000006c2dd116942245f30b86 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ebbd7f49938cc9eeeca2baf71cd267f083b1eade . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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