m.hesge.ch
- HES-SO Genève -
Issued by SwissSign RSA TLS OV ICA 2021 - 1
About this certificate
This digital certificate with serial number 28:05:5e:dc:20:55:72:2d:ee:b8:92:d7:bb:19:05:5b:e9:88:a0:93 was issued on by SwissSign AG.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
HES-SO Genève
Organization:
HES-SO Genève
State / Province:
Genève
Locality: Carouge
Country: CH
Locality: Carouge
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 28:05:5e:dc:20:55:72:2d:ee:b8:92:d7:bb:19:05:5b:e9:88:a0:93Serial Number (int): 228479398018923499086615644139247282293322588307
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: d6:51:26:60:e9:0d:da:5d:26:a8:ec:7f:e0:aa:9e:30:e9:28:87:74
AuthorityKeyId: ac:d0:3a:c2:c2:57:55:91:69:11:cc:70:6a:59:38:8a:8c:ac:9c:3d
Fingerprint (sha1): 96:b6:f0:34:8e:5e:84:5a:54:d6:b1:05:93:0a:a8:4c:04:5b:c4:94
Fingerprint (sha256): c8:aa:9e:bf:e8:41:17:ae:05:cf:30:74:e0:42:bd:76:da:07:a7:d4:7f:ce:86:8d:99:21:71:20:38:09:a5:84
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D
Revocation information
OCSP Server: http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3DCRL Distribution Point: http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
CRL Distribution Point: ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate m.hesge.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for m.hesge.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
m.hesge.ch
autodiscover.hesge.ch
mail.hesge.ch
etu.hesge.ch
autodiscover.hesge.ch
mail.hesge.ch
etu.hesge.ch
Other certificates including the domain name hesge.ch
(limited to 100 certificates)
heds.prod.hesge.ch
goldorak.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
mail.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
goldorak.hesge.ch
hepiacloud.hesge.ch
m.hesge.ch
idp.hesge.ch
hepiacloud.hesge.ch
idp.hesge.ch
mail.ge.ch
*.hesge.ch
hepiacloud.hesge.ch
vdi.hesge.ch
hepiacloud.hesge.ch
hepiacloud.hesge.ch
candy.hesge.ch
idp.hesge.ch
goldorak.hesge.ch
m.hesge.ch
hepiacloud.hesge.ch
vpn.hesge.ch
*.hesge.ch
mail.ge.ch
m.hesge.ch
idp.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
*.hesge.ch
m.hesge.ch
*.hesge.ch
vdi.hesge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
mpp.hesge.ch
m.hesge.ch
goldorak.hesge.ch
head-mdm.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
goldorak.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
mail.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
goldorak.hesge.ch
hepiacloud.hesge.ch
m.hesge.ch
idp.hesge.ch
hepiacloud.hesge.ch
idp.hesge.ch
mail.ge.ch
*.hesge.ch
hepiacloud.hesge.ch
vdi.hesge.ch
hepiacloud.hesge.ch
hepiacloud.hesge.ch
candy.hesge.ch
idp.hesge.ch
goldorak.hesge.ch
m.hesge.ch
hepiacloud.hesge.ch
vpn.hesge.ch
*.hesge.ch
mail.ge.ch
m.hesge.ch
idp.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
*.hesge.ch
m.hesge.ch
*.hesge.ch
vdi.hesge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
mpp.hesge.ch
m.hesge.ch
goldorak.hesge.ch
head-mdm.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
Certificate
The complete raw certificate details for m.hesge.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKIzCCCAugAwIBAgIUKAVe3CBVci3uuJLXuxkFW+mIoJMwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjEgLSAxMB4XDTIyMDMwOTEy NTY0NloXDTIzMDMwOTEyNTY0NlowXzELMAkGA1UEBhMCQ0gxEDAOBgNVBAgMB0dl bsOodmUxEDAOBgNVBAcTB0Nhcm91Z2UxFzAVBgNVBAoMDkhFUy1TTyBHZW7DqHZl MRMwEQYDVQQDEwptLmhlc2dlLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA84A+Y2b+3X9+7CQk3TPXJe349Zsqay1gVJExPNNlZJI6FT9fLJMVzXcj leNWR8ko3KDo654+PjDHJzD+eppfmD6Id+ypcJxMbp3QU2IXOVhzMHPOC640A8iV ZfKWCaQk/oTa8CKmdurNDOWyTEPlBJnHcBLPC0LQpKE+fAIPKYaLZzszfyWZ/b0p yT9HBc6/ml9PsjFpoZrVhWMUgkBEA6pn1nANYcJ9fxGxK4ozf1TYFOvZagQZmCLB 3JfOLj1L1bgpYSpIJi8cz47emuwQbFzLdvVLRM1HrogD0QV45nZ7VDijOyuONfwM yKVv0AAM74Xact9iBew28RDHbUzfUQIDAQABo4IF5DCCBeAwSQYDVR0RBEIwQIIK bS5oZXNnZS5jaIIVYXV0b2Rpc2NvdmVyLmhlc2dlLmNogg1tYWlsLmhlc2dlLmNo ggxldHUuaGVzZ2UuY2gwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQU1lEmYOkN2l0mqOx/4KqeMOkoh3QwHwYD VR0jBBgwFoAUrNA6wsJXVZFpEcxwalk4ioysnD0wgf8GA1UdHwSB9zCB9DBHoEWg Q4ZBaHR0cDovL2NybC5zd2lzc3NpZ24ubmV0L0FDRDAzQUMyQzI1NzU1OTE2OTEx Q0M3MDZBNTkzODhBOENBQzlDM0QwgaiggaWggaKGgZ9sZGFwOi8vZGlyZWN0b3J5 LnN3aXNzc2lnbi5uZXQvQ049QUNEMDNBQzJDMjU3NTU5MTY5MTFDQzcwNkE1OTM4 OEE4Q0FDOUMzRCUyQ089U3dpc3NTaWduJTJDQz1DSD9jZXJ0aWZpY2F0ZVJldm9j YXRpb25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnQw bwYDVR0gBGgwZjBQBghghXQBWQIBAjBEMEIGCCsGAQUFBwIBFjZodHRwczovL3Jl cG9zaXRvcnkuc3dpc3NzaWduLmNvbS9Td2lzc1NpZ25fQ1BTX1RMUy5wZGYwCAYG BACPegEHMAgGBmeBDAECAjCBxgYIKwYBBQUHAQEEgbkwgbYwZAYIKwYBBQUHMAKG WGh0dHA6Ly9zd2lzc3NpZ24ubmV0L2NnaS1iaW4vYXV0aG9yaXR5L2Rvd25sb2Fk L0FDRDAzQUMyQzI1NzU1OTE2OTExQ0M3MDZBNTkzODhBOENBQzlDM0QwTgYIKwYB BQUHMAGGQmh0dHA6Ly9vY3NwLnN3aXNzc2lnbi5uZXQvQUNEMDNBQzJDMjU3NTU5 MTY5MTFDQzcwNkE1OTM4OEE4Q0FDOUMzRDCCAuYGCisGAQQB1nkCBAIEggLWBIIC 0gLQAHYAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAF/bsDb5gAA BAMARzBFAiEAtAAjziLPLhRWNXP/ljCAXZIYPLBygqbx4MJYUIYqaH8CIDDVlL1Z JlAmh6lZ4XPS4nYRRH/ccPgk9VCfm0OBaJUUAHYAb1N2rDHwMRnYmQCkURX/dxUc EdkCwQApBo2yCJo32RMAAAF/bsDa4gAABAMARzBFAiBceTXN4A+f6YY+UuxlNazA Obziep1kvXCtfwUAOO7XkAIhAIHcSUeQLlSATDq9h9wLfAgjKckLyQVE6SZCCc5U x0SLAHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAF/bsDaWwAA BAMASDBGAiEAmLzz7iZsvMWSS9WASdc4T7wbybUW8FPWdsiZJQwWtYcCIQCNEoFw iYMWG9ohSg7dn7Rh1ffaYJHmidCdy386BCNu9wB2AK33vvp8/xDIi509nB4+GGq0 Zyldz7EMJMqFhjTr3IKKAAABf27A2jsAAAQDAEcwRQIgP+URTcPDo6RZz+uiFzBq PPoiZjfQ+lGeyU5H2+hd1PACIQCtWsPRofscHtwqWUj4QJ82mPXoaPLJonJ5ypvY /h+xFgB1ALNzdwfhhFD4Y4bWBancEQlKeS2xZwwLh9zwAw55NqWaAAABf27A28MA AAQDAEYwRAIgMhSBlnmbVcjr937afhmZpZy32Dd/2Ibg+tzYxCuqSmUCIG6NNFJi ToXXaoJO92/GbwoHljONhI8NABcIM97+ThV6AHYA6D7Q2j71BjUy51covIlryQPT y9ERa+zraeF3fW0GvW4AAAF/bsDcGwAABAMARzBFAiAllaavwdx6CyOInSfjGV7w s5LNwyYwd1ShwyrbqQOtrgIhAMugXKnGnnVsTBav4fAwRz5p2AA3mh7+91cYgZq7 RrJDMA0GCSqGSIb3DQEBCwUAA4ICAQBFxKtAypaC3jJ1WjLEtubDBQ2s4Y4fgKt+ aPxZ6Unc3qmrLyZqDo4fNhbO3aDWszMUCsmjz3Ftqr/fNX7NXwCJ4I8n4N2i4keJ Kgl9nPaDS39kqIrwZuOoUxAPZ+oeWmeqtIx+RMsUg278rPHrfHk+aIK9uhjz4E9d PVDNXsyOpp5qzVCOfB3asYP0a8DEMKcCKzK065nR6Pphx0jsZ/szDMeSkWLaal69 l96phMBU/Tow9pMC7epY+PIzb6qQBoxWiO8qsCj7ETV/kx+YobCKfV8XQscEnULH AppFtF2glLjEbSLrEYrNb+sfES5iD9z3i5bEGfxVTq1IUzrOi2pq2PgsJSGYvZwr jaY+tKdOp5nnspv9hb1jhbCcLABIcTV2DqxiAfGghz0U8c/QvUTP0tZF1quFaZdm Y6SUkxI+LaEFBGvBSktDOlZ/xFDRXtuS3upe+l57wJKHVTIobEhw2Ay5VfarqHGi aC8AXvi0CX7eNz1yrgVFmQjGM/QXXh4aXCftbIDhVjInj+xSleHo+xXiqcmZW9sb O0WBR6zgY4TXs7X3kp/SbYYsIF4FZIPYhlovfgeaIwCtlIXZyKNs8NIIU6fvgyz/ t6Nzke0h/5oRCbCFzPMT5hqGPYXBx6xl5xQxMwkxhK6FVJkSTP+xm/VxQrGeARxp b9Ccp9ClOQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA84A+Y2b+3X9+7CQk3TPX Je349Zsqay1gVJExPNNlZJI6FT9fLJMVzXcjleNWR8ko3KDo654+PjDHJzD+eppf mD6Id+ypcJxMbp3QU2IXOVhzMHPOC640A8iVZfKWCaQk/oTa8CKmdurNDOWyTEPl BJnHcBLPC0LQpKE+fAIPKYaLZzszfyWZ/b0pyT9HBc6/ml9PsjFpoZrVhWMUgkBE A6pn1nANYcJ9fxGxK4ozf1TYFOvZagQZmCLB3JfOLj1L1bgpYSpIJi8cz47emuwQ bFzLdvVLRM1HrogD0QV45nZ7VDijOyuONfwMyKVv0AAM74Xact9iBew28RDHbUzf UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 228479398018923499086615644139247282293322588307 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-03-09 12:56:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-09 12:56:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Carouge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'HES-SO Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'm.hesge.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30739147434284437630590804656042589798403433718312217403123555876000725576233468252709545126239050764607279977101314508503506307025877678800184617125577497936561251397026316880946454740603699811876086412599254177692977405373923453603640095513879476187658364784731474543976018382541953735678676806333918659604638498932130349483580539507711489119301235752760928252139478494534149992630201818888289282041978183021163882326091210169715058652513674702265661253738292380665445639020453025862032645111483576705388266437690726217928671759719105679811047073090869128308015494395262710128596921094143058548936686931164936331089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'm.hesge.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.hesge.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.hesge.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'etu.hesge.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d6512660e90dda5d26a8ec7fe0aa9e30e9288774 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName acd03ac2c25755916911cc706a59388a8cac9c3d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=ACD03AC2C25755916911CC706A59388A8CAC9C3D%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (726 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (722 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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