*.hesge.ch
- HES-SO Genève -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 6e:f2:29:49:b6:e9:a5:79:63:ae:bd:62:d5:09:67:60:94:f4:8f:0e was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
HES-SO Genève
Organization:
HES-SO Genève
State / Province:
GE
Locality: Carouge
Country: CH
Locality: Carouge
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 6e:f2:29:49:b6:e9:a5:79:63:ae:bd:62:d5:09:67:60:94:f4:8f:0eSerial Number (int): 633389361816135402480453648658853203918110101262
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 74:31:0d:6b:e8:f2:46:7d:2d:71:9a:98:93:9c:86:9e:45:2e:e9:92
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): 0b:f2:2c:11:db:27:9e:ce:df:dc:81:18:1d:a5:8f:64:d7:1a:9b:0f
Fingerprint (sha256): ce:2e:6a:79:61:e9:02:2e:00:64:6b:3d:3d:bf:e1:5a:ff:43:99:6c:4f:85:56:4e:9e:98:3c:52:34:27:ff:03
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate *.hesge.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hesge.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hesge.ch
hesge.ch
hesge.ch
Other certificates including the domain name hesge.ch
(limited to 100 certificates)
heds.prod.hesge.ch
goldorak.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
mail.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
goldorak.hesge.ch
hepiacloud.hesge.ch
m.hesge.ch
idp.hesge.ch
hepiacloud.hesge.ch
idp.hesge.ch
mail.ge.ch
*.hesge.ch
hepiacloud.hesge.ch
vdi.hesge.ch
hepiacloud.hesge.ch
hepiacloud.hesge.ch
candy.hesge.ch
idp.hesge.ch
goldorak.hesge.ch
m.hesge.ch
hepiacloud.hesge.ch
vpn.hesge.ch
*.hesge.ch
mail.ge.ch
m.hesge.ch
idp.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
*.hesge.ch
m.hesge.ch
*.hesge.ch
vdi.hesge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
mpp.hesge.ch
m.hesge.ch
goldorak.hesge.ch
head-mdm.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
goldorak.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
mail.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
goldorak.hesge.ch
hepiacloud.hesge.ch
m.hesge.ch
idp.hesge.ch
hepiacloud.hesge.ch
idp.hesge.ch
mail.ge.ch
*.hesge.ch
hepiacloud.hesge.ch
vdi.hesge.ch
hepiacloud.hesge.ch
hepiacloud.hesge.ch
candy.hesge.ch
idp.hesge.ch
goldorak.hesge.ch
m.hesge.ch
hepiacloud.hesge.ch
vpn.hesge.ch
*.hesge.ch
mail.ge.ch
m.hesge.ch
idp.hesge.ch
*.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
*.hesge.ch
m.hesge.ch
*.hesge.ch
vdi.hesge.ch
cucmuserlabo000-ms.ceti.etat-ge.ch
mpp.hesge.ch
m.hesge.ch
goldorak.hesge.ch
head-mdm.hesge.ch
hepiacloud.hesge.ch
*.hesge.ch
Certificate
The complete raw certificate details for *.hesge.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIuDCCBqCgAwIBAgIUbvIpSbbppXljrr1i1QlnYJT0jw4wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTIzMDUwODA5 NDEzOFoXDTI0MDUwODA5NDEzOFowWjELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAkdF MRAwDgYDVQQHDAdDYXJvdWdlMRcwFQYDVQQKDA5IRVMtU08gR2Vuw6h2ZTETMBEG A1UEAwwKKi5oZXNnZS5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMfQd6lK4UBT53VkKyiUC1My6T3Q91cCC2W/4PfSMd9Yilmr9kSUilji9vSM5N5t FGnhzr9Hnsruw1VV468PHNFJiLMfmYQeDRjChyYyPI6KuzKESJjV3cdNMcYUrkEJ jC4GsQUKjqTKO44NM4n0hyb1eWObQm0NXnaEF2ajyznCSizg8W917iAoUVVxK58L 7r0uFieXHn5zW7Z+Gq3g4q0Cxg1S0u5hdLGdB6yIyvqK1aU3RspwMeOxqhex25Eb Dab8nar4lCmjvOOGQFBaeHg65iLbS4kdC+5DXY0lHSY0nKMGD/Hh4d4G7faj/YU3 HYroWMIW6+OHg1vKktgOihkCAwEAAaOCBH4wggR6MIGyBggrBgEFBQcBAQSBpTCB ojBMBggrBgEFBQcwAoZAaHR0cDovL2FpYS5zd2lzc3NpZ24uY2gvYWlyLTBmMmJm OWE1LWRkMzctNDhjOS1hODViLTEyYWNkY2I4YmU0NTBSBggrBgEFBQcwAYZGaHR0 cDovL29jc3Auc3dpc3NzaWduLmNoL3NpZ24vb2NzLWFhY2NjZWQ1LTY2ZTgtNDA2 OS05YjFiLWZkMjlhYjczZWZlYzBvBgNVHSAEaDBmMAgGBmeBDAECAjAIBgYEAI96 AQcwUAYIYIV0AVkCAQIwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5 LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMFEGA1UdHwRKMEgw RqBEoEKGQGh0dHA6Ly9jcmwuc3dpc3NzaWduLmNoL2NkcC05NmI2MmY1YS02Yjcz LTRkYTQtODdmNy1jZTQwMDJjMWNkMzQwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMA4GA1UdDwEB/wQEAwIFoDAfBgNVHREEGDAWggoqLmhlc2dlLmNoggho ZXNnZS5jaDAdBgNVHQ4EFgQUdDENa+jyRn0tcZqYk5yGnkUu6ZIwHwYDVR0jBBgw FoAUfG8KbxMP2YwkbyY081xrQ223I7YwggJtBgorBgEEAdZ5AgQCBIICXQSCAlkC VwB1AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABh/q88CMAAAQD AEYwRAIgNC+J9RprMjxsrgQpwtMesKSlQfs0ci/RzlZb+SQjuEgCIHultbJZM/6h u3Ci+SOEvUvdv7ueZ3jRD414MmV4yYBjAHUAc9meiRtMlnigIH1HneayxhzQUV5x GSqMa4AQesF3crUAAAGH+rzyqAAABAMARjBEAiBD+PM+qATiIMV899ePIoLzw8y0 IwOsyvfS+OPwTXI7swIgUUxmSG03/33K2YI+lAwSEb3iGDnMVIHQC3hBTcn0oVYA dwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYf6vPPrAAAEAwBI MEYCIQDodKVgF8jsI7DBi56aHoL86RdYu1uOrTEUUPzQZwZmGgIhAM5mKhFoowIT xUQci6Y/BXltfvO6pqAOE0klgFATEa7QAHUA7s3QZNXbGs7FXLedtM0TojKHRny8 7N7DUUhZRnEftZsAAAGH+rz3PAAABAMARjBEAiBnNia2ojrnmXFbdO2FEIjFRhmd mfb+zweYQ7w16pLb8gIgQz+8SlerQijl2Ai5Kf9DQXLyg5jRgNyTOmHXDHFZ7TwA dwCHT7UNwCnZkx3lc+nyiZ6ORTOzktOLCkYldL8P7rL8HgAAAYf6vPvxAAAEAwBI MEYCIQCBq/ZJ4D9FlttT3IJunhPPIgFCJUu/LWmf8Xd3AkbPegIhAOBS8Hll0GCw ccqGT/ru33rodpxfUVxNPWheh5gjHU7wMA0GCSqGSIb3DQEBCwUAA4ICAQB1YoFd c5yrttlkcnOQhNvZSCxdZK+tZAXWIw/LaXtlZObzbie5sXgvNuaXFQ9s2Kz0A0go 6oos3CZuxzayT9Uv9lDOFJ+KHXKX7ue9RSOL0ZLiAB2LrV5FK9X5C8P7fpMlzmCq e9YIRMt+zrw5xIPKT24X+7lZh8XyBUy5CK+KicTyFkdYr/GDAzRh5+8asWJ01uI+ wocP9hgbGxMu+NTlqZplv24/ReOCDxJ3QNqF8+9jdH1FWiggumcPNVNQ7NsarIME XtbDrY+y4l6tJt9buBBNsQBke37ZmVQrjaw5A33keLkpxQscTGlQIzWL4rO2uWPw yCWI+7S/Z7VjMsX1OSfvwX4gypRsuETxNV/6Qxdihul+OHyehT3YATo4t/BxLCPN Ovck1FyB1jzzDTmhNFL6gWFeMVIJA2+Xxdl7OAEvFoEhKqMtmFzQ5t5dD5LM5MpQ 6CXf+lYbsBCu4NIY5+5SAhixfeHb0RCmnoHeehaLvdthCV1fZxtr/Yxy2LIDFv9b oZe7DIW8cUtv58YgmbRwQXJYB4KbE/n/Of2g2Ah1k8snuCTNFzJO4oKKG/o9zr7U KaHrqezo1EwBRSKYragOAmulerZlzkvn42MTH7gHjKEs03KR2Yc8AsX5d8sXFRE3 7Ir2rb8eAFC3JjW0Xen1A3imBQAT4fO61wZL9w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9B3qUrhQFPndWQrKJQL UzLpPdD3VwILZb/g99Ix31iKWav2RJSKWOL29Izk3m0UaeHOv0eeyu7DVVXjrw8c 0UmIsx+ZhB4NGMKHJjI8joq7MoRImNXdx00xxhSuQQmMLgaxBQqOpMo7jg0zifSH JvV5Y5tCbQ1edoQXZqPLOcJKLODxb3XuIChRVXErnwvuvS4WJ5cefnNbtn4areDi rQLGDVLS7mF0sZ0HrIjK+orVpTdGynAx47GqF7HbkRsNpvydqviUKaO844ZAUFp4 eDrmIttLiR0L7kNdjSUdJjScowYP8eHh3gbt9qP9hTcdiuhYwhbr44eDW8qS2A6K GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 633389361816135402480453648658853203918110101262 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-08 09:41:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-08 09:41:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Carouge' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'HES-SO Genève' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.hesge.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25224221807849647962413996414111908066337250849481618677070804598259474534113260301151629742246949702823480914764954371694145549446651606565937730837115178231023745901943005940268994467377051901182984923340844613396383872068742637504381715701103875464761464187731417021536117617378432735506132088611694995566221703155749943554695586132416284795475498507261108655793361484435355863290873329679332208266469693063010078607172797565062794900584501879962733172305650912189458879068740181299083450382474918259923420142355102522683177878597297748151431899381947437741734903297416175740989874865407965707543572768600747837977 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hesge.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hesge.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 74310d6be8f2467d2d719a98939c869e452ee992 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (605 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (601 bytes) 02570075005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000187fabcf02300000403004630440220342f89f51a6b323c6cae0429c2d31eb0a4a541fb34722fd1ce565bf92423b84802207ba5b5b25933fea1bb70a2f92384bd4bddbfbb9e6778d10f8d78326578c9806300750073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b500000187fabcf2a80000040300463044022043f8f33ea804e220c57cf7d78f2282f3c3ccb42303accaf7d2f8e3f04d723bb30220514c66486d37ff7dcad9823e940c1211bde21839cc5481d00b78414dc9f4a156007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab00000187fabcf3eb0000040300483046022100e874a56017c8ec23b0c18b9e9a1e82fce91758bb5b8ead311450fcd06706661a022100ce662a1168a30213c5441c8ba63f05796d7ef3baa6a00e13492580501311aed0007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000187fabcf73c00000403004630440220673626b6a23ae799715b74ed851088c546199d99f6fecf079843bc35ea92dbf20220433fbc4a57ab4228e5d808b929ff434172f28398d180dc933a61d70c7159ed3c007700874fb50dc029d9931de573e9f2899e8e4533b392d38b0a462574bf0feeb2fc1e00000187fabcfbf1000004030048304602210081abf649e03f4596db53dc826e9e13cf220142254bbf2d699ff177770246cf7a022100e052f07965d060b071ca864ffaeedf7ae8769c5f515c4d3d685e8798231d4ef0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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