sonrail.empa.ch
Issued by SwissSign Server Silver CA 2014 - G22
About this certificate
This digital certificate with serial number 7c:72:24:9d:ac:fb:80:a5:63:bc:02:dd:81:b2:b3:9f:eb:74:d7:a3 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=sonrail.empa.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 7c:72:24:9d:ac:fb:80:a5:63:bc:02:dd:81:b2:b3:9f:eb:74:d7:a3Serial Number (int): 710460330231346833037703116639082743744618092451
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 22:6f:ad:8e:77:8f:e4:05:10:58:b0:6a:21:2f:fc:a2:50:c6:91:90
AuthorityKeyId: db:bc:bf:82:18:59:dc:69:fa:f8:ab:aa:83:4d:77:1d:0b:b0:8b:d8
Fingerprint (sha1): 63:8e:5f:cc:d7:a4:06:fb:85:10:83:04:80:4f:d5:48:bf:24:e8:8f
Fingerprint (sha256): dc:3e:18:c2:aa:da:eb:6b:95:3e:b5:c3:b7:33:8d:b5:7c:63:88:cd:e6:3c:e2:3d:63:6c:14:59:e0:2a:bb:05
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8
Revocation information
OCSP Server: http://silver-server-g2.ocsp.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8CRL Distribution Point: http://crl.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8
CRL Distribution Point: ldap://directory.swisssign.net/CN=DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate sonrail.empa.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sonrail.empa.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sonrail.empa.ch
www.sonrail.empa.ch
www.sonrail.empa.ch
Other certificates including the domain name empa.ch
(limited to 100 certificates)
certest-win.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
Certificate
The complete raw certificate details for sonrail.empa.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHdzCCBl+gAwIBAgIUfHIknaz7gKVjvALdgbKzn+t016MwDQYJKoZIhvcNAQEL BQAwVDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEuMCwGA1UE AxMlU3dpc3NTaWduIFNlcnZlciBTaWx2ZXIgQ0EgMjAxNCAtIEcyMjAeFw0yMDAx MDcxMTU5MTVaFw0yMjAxMDcxMTU5MTVaMBoxGDAWBgNVBAMTD3NvbnJhaWwuZW1w YS5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALTeUJTUo46JiSBL /bPOkwBQc6SRiZKdoHPDACVzE9UnjcKzil8HOMqOr3bnkAlg+S4hSJ3F9+y52eeK 70TzBFbUdR7gPHsvpEClvNiG1sQkvQAzI0WngeWVAsARjbVSmIyKjMp5eQBBCasf GhBexp4gnuhGjdzDZCCflkekHM1yOUayPxWd/nO0pG5oqY4X1MbWC0C+i7CAYF// 8rpsxmPy1McidkCtsk6SO2IhQOsaneMREBQzFMxVjbcQvmODWI9S2h4E1v29n74Z 1RYLYtnMyJ4UxwOiaZlL2ZbiphipiGBSFIvA+aUYWKEIUJbT3i8PeGoOUqSsJBXw BXo+5vUCAwEAAaOCBHkwggR1MC8GA1UdEQQoMCaCD3NvbnJhaWwuZW1wYS5jaIIT d3d3LnNvbnJhaWwuZW1wYS5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMB0GA1UdDgQWBBQib62Od4/kBRBYsGohL/yiUMaR kDAfBgNVHSMEGDAWgBTbvL+CGFncafr4q6qDTXcdC7CL2DCB/wYDVR0fBIH3MIH0 MEegRaBDhkFodHRwOi8vY3JsLnN3aXNzc2lnbi5uZXQvREJCQ0JGODIxODU5REM2 OUZBRjhBQkFBODM0RDc3MUQwQkIwOEJEODCBqKCBpaCBooaBn2xkYXA6Ly9kaXJl Y3Rvcnkuc3dpc3NzaWduLm5ldC9DTj1EQkJDQkY4MjE4NTlEQzY5RkFGOEFCQUE4 MzRENzcxRDBCQjA4QkQ4JTJDTz1Td2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRl UmV2b2NhdGlvbkxpc3Q/YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Q b2ludDB1BgNVHSAEbjBsMFYGCWCFdAFZAQMBDDBJMEcGCCsGAQUFBwIBFjtodHRw Oi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbi1TaWx2ZXItQ1At Q1BTLnBkZjAIBgZngQwBAgEwCAYGBACPegEGMIHXBggrBgEFBQcBAQSByjCBxzBk BggrBgEFBQcwAoZYaHR0cDovL3N3aXNzc2lnbi5uZXQvY2dpLWJpbi9hdXRob3Jp dHkvZG93bmxvYWQvREJCQ0JGODIxODU5REM2OUZBRjhBQkFBODM0RDc3MUQwQkIw OEJEODBfBggrBgEFBQcwAYZTaHR0cDovL3NpbHZlci1zZXJ2ZXItZzIub2NzcC5z d2lzc3NpZ24ubmV0L0RCQkNCRjgyMTg1OURDNjlGQUY4QUJBQTgzNEQ3NzFEMEJC MDhCRDgwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoBaAB1AG9Tdqwx8DEZ2JkApFEV /3cVHBHZAsEAKQaNsgiaN9kTAAABb3/fm3MAAAQDAEYwRAIgLCaJx+C9vOgenhFF Tdbly3amqoXmeMgmPDEr55BiMcUCIBiFbgR/i6hlJFHjNnbfIeFaPRzqHAqMIgTE 0fNItvaYAHYAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZkNo4e0YUAAAFvf9+d vgAABAMARzBFAiEA0QBcygeIpgjZM9CEZqJZ3t/kAYCuXYj/pX+XL9q5SjYCIENn cRorBjXbcd7hEgbdUoq6QsYq24nyzrU7jDo6rXBTAHcA7ku9t3XOYLrhQmkfq+Ge ZqMPfl+wctiDAMR7iXqo/csAAAFvf9+isAAABAMASDBGAiEA4YcjeJFZcuMo9Z3V o9c1IDJ3wN8JY9KqsbUquSPg6OoCIQDfEy8Rdf+zhSI2ieKqYyujaE6NHeVTuAJO d7KlAm9PhjANBgkqhkiG9w0BAQsFAAOCAQEAiP0FQ0/7oKrSGhc/TxC7dkrJ9epR feW0MGMQhjnKAh+k6NuNfL3cE/qcWJ8j3Vp2+SpmRGbwByI50EzdowJLkTguHZxA gl6b7iGYFnqRdFKl1GVtwEJCiRJPxHHF1o6tmJk2Y3m1TuK6W8KlLW56VgBEt7dA Xbkq8ndRz2Nwy5JpB4SUkgZTsT0nQDnuwMD2RHVFKYNIOmMu5RvDVrwESVLaew+b cxgFcQYvIF+ie9D0PBugj+wItm/1qw4M7txRaXvIfBhQfXDQBEm6LkBnvRD61Z/M 4CfZFDF8n4la/YD2iptVJM212RNyXlUvTpB4wEXIhq4YXK0a1iDsHQ25NA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtN5QlNSjjomJIEv9s86T AFBzpJGJkp2gc8MAJXMT1SeNwrOKXwc4yo6vdueQCWD5LiFIncX37LnZ54rvRPME VtR1HuA8ey+kQKW82IbWxCS9ADMjRaeB5ZUCwBGNtVKYjIqMynl5AEEJqx8aEF7G niCe6EaN3MNkIJ+WR6QczXI5RrI/FZ3+c7SkbmipjhfUxtYLQL6LsIBgX//yumzG Y/LUxyJ2QK2yTpI7YiFA6xqd4xEQFDMUzFWNtxC+Y4NYj1LaHgTW/b2fvhnVFgti 2czInhTHA6JpmUvZluKmGKmIYFIUi8D5pRhYoQhQltPeLw94ag5SpKwkFfAFej7m 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 710460330231346833037703116639082743744618092451 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign Server Silver CA 2014 - G22' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-07 11:59:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-01-07 11:59:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sonrail.empa.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22832522393331206139946904011919466308790135741984297769282800609179746389851488490645124410853191814597040819325229628536222118131381644538849750129928927885654786805245727407563993151162466654389480172289036899663928548391216713618103347042142074395449766637812451854959172217921752760609793333345910979413768967390161827039033182729987326950177646863356918906949840679922385583667298915513577074021576902602271594826713655466305023688819054933606783114547345432571272172179630803350234564354053377849030000871547815468576081373498758493349623251849102111962622884022389521406519151697792090296596452504988630836981 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sonrail.empa.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sonrail.empa.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 226fad8e778fe4051058b06a212ffca250c69190 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName dbbcbf821859dc69faf8abaa834d771d0bb08bd8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.1.3.1.12 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://repository.swisssign.com/SwissSign-Silver-CP-CPS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (202 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://silver-server-g2.ocsp.swisssign.net/DBBCBF821859DC69FAF8ABAA834D771D0BB08BD8' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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