test.empa.ch
Issued by SwissSign RSA TLS DV ICA 2021 - 1
About this certificate
This digital certificate with serial number 4c:6b:cb:f6:10:16:60:1e:b1:74:76:a0:35:b8:ca:a4:da:f4:d9:99 was issued on by SwissSign AG.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=test.empa.ch
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 4c:6b:cb:f6:10:16:60:1e:b1:74:76:a0:35:b8:ca:a4:da:f4:d9:99Serial Number (int): 436287245843744818405327421700200220362395670937
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: c9:50:62:37:d8:72:45:5d:77:f0:8c:c3:a6:f0:7e:33:90:5b:f7:02
AuthorityKeyId: 3c:9e:52:79:03:63:6f:4f:9c:81:1b:d3:28:70:0c:24:5a:ea:a5:87
Fingerprint (sha1): 6a:0b:26:d2:a3:bd:c5:9b:20:6b:8a:a0:6e:57:a3:8e:18:f8:d8:10
Fingerprint (sha256): e4:fa:23:2c:04:68:da:fc:80:3a:a4:0f:28:59:1c:1e:e4:32:fc:5d:a5:43:91:5d:88:d3:72:c2:3d:b0:48:f4
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587
Revocation information
OCSP Server: http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587CRL Distribution Point: http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587
CRL Distribution Point: ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate test.empa.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for test.empa.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
test.empa.ch
www.test.empa.ch
www.test.empa.ch
Other certificates including the domain name empa.ch
(limited to 100 certificates)
certest-win.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
sonrail.empa.ch
certest-win.empa.ch
events.empa.ch
events.empa.ch
sonroad18.empa.ch
sontram.empa.ch
sonrail.empa.ch
sip.empa.ch
sonroad18.empa.ch
sbc.empa.ch
sonrail.empa.ch
events.empa.ch
sonroad18.empa.ch
test2.empa.ch
events.empa.ch
events.empa.ch
*.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
*.empa.ch
sontram.empa.ch
certest-win.empa.ch
*.empa.ch
sip.empa.ch
*.empa.ch
sontram.empa.ch
sip.empa.ch
events.empa.ch
adobesync.empa.ch
*.empa.ch
*.empa.ch
certest-win.empa.ch
sonroad18.empa.ch
events.empa.ch
test.empa.ch
*.empa.ch
sontram.empa.ch
test2.empa.ch
sip.empa.ch
certest-win.empa.ch
*.empa.ch
adobesync.empa.ch
sontram.empa.ch
sbc.empa.ch
sonrail.empa.ch
*.empa.ch
*.empa.ch
sonroad18.empa.ch
test.empa.ch
sonrail.empa.ch
sontram.empa.ch
sonroad18.empa.ch
Certificate
The complete raw certificate details for test.empa.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIIyzCCBrOgAwIBAgIUTGvL9hAWYB6xdHagNbjKpNr02ZkwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRFYgSUNBIDIwMjEgLSAxMB4XDTIyMDUyMzA5 Mzc0OVoXDTIzMDUyMzA5Mzc0OVowFzEVMBMGA1UEAxMMdGVzdC5lbXBhLmNoMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFDHr8vewq3C2ZX1AEXBYCJF WN6pArnxMucykJnfHlsGlBo1iurkC1rDDxpBFjxWYi/WAW3ffbKANubvmTQB3sax VyMVwB1WhV+JH5x326KxhVlMl+mVCgV5DDzY7hZVsv63xoYkSYvclcXdM7xtkksw 4Tc6UO13aTLsMLJar5MW8QhHzXVI/sPEpReKHZp5y4UD5gVpb9ZcPqTOpuEoxWTK w/o0S+72Ku7jUoECZbN+Eqhhs/pTq7fiQ+iB45keh7fKsL0SIvd4XzyXmM67dKJ4 ac/UfeS3yLGcRRNbrlcUrA18mmZBWj33WbzwUVg9H3xU++zGds//0WhME+jK9wID AQABo4IE1DCCBNAwKQYDVR0RBCIwIIIMdGVzdC5lbXBhLmNoghB3d3cudGVzdC5l bXBhLmNoMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwHQYDVR0OBBYEFMlQYjfYckVdd/CMw6bwfjOQW/cCMB8GA1UdIwQYMBaA FDyeUnkDY29PnIEb0yhwDCRa6qWHMIH/BgNVHR8EgfcwgfQwR6BFoEOGQWh0dHA6 Ly9jcmwuc3dpc3NzaWduLm5ldC8zQzlFNTI3OTAzNjM2RjRGOUM4MTFCRDMyODcw MEMyNDVBRUFBNTg3MIGooIGloIGihoGfbGRhcDovL2RpcmVjdG9yeS5zd2lzc3Np Z24ubmV0L0NOPTNDOUU1Mjc5MDM2MzZGNEY5QzgxMUJEMzI4NzAwQzI0NUFFQUE1 ODclMkNPPVN3aXNzU2lnbiUyQ0M9Q0g/Y2VydGlmaWNhdGVSZXZvY2F0aW9uTGlz dD9iYXNlP29iamVjdENsYXNzPWNSTERpc3RyaWJ1dGlvblBvaW50MG8GA1UdIARo MGYwUAYIYIV0AVkCAQEwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5 LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMAgGBgQAj3oBBjAI BgZngQwBAgEwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsGAQUFBzAChlhodHRwOi8v c3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC8zQzlFNTI3 OTAzNjM2RjRGOUM4MTFCRDMyODcwMEMyNDVBRUFBNTg3ME4GCCsGAQUFBzABhkJo dHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0LzNDOUU1Mjc5MDM2MzZGNEY5QzgxMUJE MzI4NzAwQzI0NUFFQUE1ODcwggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AG9T dqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABgPBHqXcAAAQDAEcwRQIg ZntQJLloIuNPsfWu1gLPSQh4BcJIyoc5W9M4Byfa8jUCIQDgLl8wy/eAZm0KhGvA sNChA7H0GP+MvKNFNcfcYeGfxQB2AHoyjFTYty22IOo44FIe6YQWcDIThU070ivB OlejUutSAAABgPBHqRoAAAQDAEcwRQIgHqtroO98CIb6Ksz8UU6SvX/o4AERTASD X6QNXrfARz0CIQD8JZ8SwUHVwjGYXVvHyq80kAVOyumkWxgSkEkBiAj0vwB2AK33 vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABgPBHqOwAAAQDAEcwRQIg alSuj0y7fZUnCZWLs7guG92ea05UYHHbQKZVMHEsMicCIQD9Zfz/CLG3ei9s6bQ/ jKAvLyzONt9zYU8atGS6Prj7NgB2AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nh d31tBr1uAAABgPBHqSwAAAQDAEcwRQIhAO2bUKZOaZxaPgRn8SSkNb8WCAOFp3sm GvmNSk9EwYA+AiBE6UEOF0nEyl7w3LV5+GX/1pN4/o6j1G38nL4hAKMUiDANBgkq hkiG9w0BAQsFAAOCAgEAcFXShuBcis9qSACtzNhur2bKws6GAFuvOCN6Uyv0MsiK GT9cIXAN2E7PnBsl7ApNUR3bHVNCGW3IvVzobWekttd3nAQxitw5eemAwRpwSbay beE1ExaR5sThKE5LUnXqcQRoFF/C8iXFBjNpsPs3tK9MIxQ2EuMcY0xLY+5svtL3 zZQPDSR/34+XZ3iiqocgODxp8XUYv5KAWTciDCRY5Jhre+pMHwxFjsdyO0Tn0Oco qECDTaji8njQqJWxFp9bWOQBIpoNAlIdCiYukpvBZ/5PwRqh/iV2lcYYoSybwLIM giamIo5jwDC2Px3erYZDoASoGRbdnPmnMWikBrkafqPLoE7qIJD0VbtLM4q1sjSr PxA/0HbZHjh5AUR/UCXzYlZMI25tGPj8XGqWTQuh5Plz2Fypx53jtdligQrcSWhf h4xGs4I7BQNpYQyP9CnVFwVYmOqdoSw26H/9oqqWnSUxh4/gyy8f3LTznj0sbm/y 6SBWmbjn+FHsfp1lNA5qC9hXAdFuntnV5zjwDL70KGac6noDQdeWa5GgCMTh1cbA YydMxI+thlkt6WF0kaA+7jkGLeJHsaocqff7VPE69sW7wURgLRpb0UQ0GC24a9nr xeluysyqk3WNsbmQylJOYzCi0pc/9b+RY3SfsgDAR5K2rroOmi1l0AafnV+yuY0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFDHr8vewq3C2ZX1AEXB YCJFWN6pArnxMucykJnfHlsGlBo1iurkC1rDDxpBFjxWYi/WAW3ffbKANubvmTQB 3saxVyMVwB1WhV+JH5x326KxhVlMl+mVCgV5DDzY7hZVsv63xoYkSYvclcXdM7xt kksw4Tc6UO13aTLsMLJar5MW8QhHzXVI/sPEpReKHZp5y4UD5gVpb9ZcPqTOpuEo xWTKw/o0S+72Ku7jUoECZbN+Eqhhs/pTq7fiQ+iB45keh7fKsL0SIvd4XzyXmM67 dKJ4ac/UfeS3yLGcRRNbrlcUrA18mmZBWj33WbzwUVg9H3xU++zGds//0WhME+jK 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 436287245843744818405327421700200220362395670937 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS DV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-23 09:37:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-23 09:37:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'test.empa.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23267682229306742865127003321815360486398932723302105416423522088086771102882659284690561130767191379061060214571370458901647992016762854829431139933377937409372382317214581319146178131727433834601284871245543128776912725274402222589806658322665395716687547721540331057969303596336262184387041659716769948295437727495347194096886657517579296318397134996439180182752698736579873870321723812278214259252833128121056416046882059380081727847929525290315944445167980289927796224061240798432323537636114296591184599225810047443459109541704947645991721292868527708631921580093481456295841094107228521278525408111769623775991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.empa.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.test.empa.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c9506237d872455d77f08cc3a6f07e33905bf702 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3c9e527903636f4f9c811bd328700c245aeaa587 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=3C9E527903636F4F9C811BD328700C245AEAA587%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.6 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/3C9E527903636F4F9C811BD328700C245AEAA587' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (486 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (482 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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