www.niggli.ch

Issued by RapidSSL SHA256 CA - G4

About this certificate


This digital certificate with serial number 36:36 was issued on by GeoTrust Inc. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

www.niggli.ch

GeoTrust Inc.

Organization: GeoTrust Inc.

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 36:36
Serial Number (int): 13878
Serial Number lenght: 14 bits, 2 octets

SubjectKeyId:
AuthorityKeyId: f3:b5:56:0c:c4:09:b0:b4:cf:1f:aa:f9:dd:23:56:f0:77:e8:a1:f9

Fingerprint (sha1): fe:85:62:f9:cb:1a:b5:0a:f2:14:69:19:a8:72:d6:25:e2:bb:6c:72
Fingerprint (sha256): ec:38:9a:18:3f:b2:f4:0e:0a:64:24:60:f7:d8:3a:eb:11:3a:33:bb:84:3e:e9:d7:27:47:8a:67:cc:de:c0:28

Issuing Certificate URL: http://gz.symcb.com/gz.crt

Revocation information

OCSP Server: http://gz.symcd.com
CRL Distribution Point: http://gz.symcb.com/gz.crl

Check the revocation status for the current certificate on www.niggli.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.niggli.ch
niggli.ch

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgICNjYwDQYJKoZIhvcNAQELBQAwRzELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xIDAeBgNVBAMTF1JhcGlkU1NMIFNIQTI1 NiBDQSAtIEc0MB4XDTE1MTEwOTA5MzQwMVoXDTE3MDEwOTExMDUyM1owGDEWMBQG A1UEAxMNd3d3Lm5pZ2dsaS5jaDCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBAMGMvS+xWOdiJrnjwaB0B8T2TITIRsUll91bUnUUT4r5Ke3iH+xZLyxCTwgE EjfZYU6VFLUDqsK1turBW80j+szgil6C2FOtlXK8Xnf82roDSLsZAsSAtUMPvxrr sD0m6RIv+JZo8ZHKkVhNxKa2FG/k01iF4ZFWRJtanJf/97KOvF0/2VLRQ27sDO8X kboxVMnxU1+s9t5E8qAAuHFerrAHcmow5lgg4vFOBTrRwN9vGDfbIbvJC/TMtD5f COmLBO6FYO5Qpp6qmGbimrGL0+X4M13q0CC1fCM+aqtMfVvzhs2ZzUiB8AkUzdvc cIJS5KLEVsOIUCe1vDBzWJoGhHGwmwRJFu6m8WvgKCYm7+axkcaPD7klPxgFOBtX R2e5zD7soiAHDuxF0MFRQSvLqT/xondSnFvtt3BC4PQObfqmNo6m2uplF9AtfjJC jVm7ob+wCNhdQfExWpYXe6ssYqk4vfOkNhybA3acDm/ngDvkCkHuyH8+RLarAJpp jngZMVAQoF/uZrwEoEdsudpTGCbCKSWJO/g8xRb6Y++iM1ufZShXPlZaWwopNrWd NmV+CaGQ50JyYY7lW6kIwKoGSREA2bCdkLHfo4UH+lhmBNjQA8J7QCi4+P+pRgOt 9rfxcFujX//GKwJVmepIL+idXfHHMrE9yWSajWJ6z6urlTWxAgMBAAGjggFQMIIB TDAfBgNVHSMEGDAWgBTztVYMxAmwtM8fqvndI1bwd+ih+TBXBggrBgEFBQcBAQRL MEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9nei5zeW1jZC5jb20wJgYIKwYBBQUHMAKG Gmh0dHA6Ly9nei5zeW1jYi5jb20vZ3ouY3J0MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwIwYDVR0RBBwwGoINd3d3Lm5pZ2ds aS5jaIIJbmlnZ2xpLmNoMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9nei5zeW1j Yi5jb20vZ3ouY3JsMAwGA1UdEwEB/wQCMAAwQQYDVR0gBDowODA2BgZngQwBAgEw LDAqBggrBgEFBQcCARYeaHR0cHM6Ly93d3cucmFwaWRzc2wuY29tL2xlZ2FsMA0G CSqGSIb3DQEBCwUAA4IBAQCqAM0eFrUYP7VsY7K6Ujxp6qs+QhvMeA91Sy05O5bB lux7edp/B/Us1nQ22GQqOb5tnPCYtIpDoJEJHRrkg8m+Z7iLvVe19q9QlHQIlYKA mpnHU1wd8BM+7N1QKkI1gf0EjtEODujXcbBb2fOj0XxwX2yc1gO8kcCn1ca5aejb pWJ2n9q185zeWXJvyPxWWM1TzBlE5KKdxSHan4hEHBpuA2UizMEgS5iXPYyyGZbK IBBHGlJIhY+awkzee9tNQeG0ANcsm7DnCS6Tv5my8+yJyl3Cfg2iBj2cg6NSx/ey voU7ImS9udAP17c8TdRAUUmnUWRbcGp+YuEs2AJmHign -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwYy9L7FY52ImuePBoHQH xPZMhMhGxSWX3VtSdRRPivkp7eIf7FkvLEJPCAQSN9lhTpUUtQOqwrW26sFbzSP6 zOCKXoLYU62Vcrxed/zaugNIuxkCxIC1Qw+/GuuwPSbpEi/4lmjxkcqRWE3EprYU b+TTWIXhkVZEm1qcl//3so68XT/ZUtFDbuwM7xeRujFUyfFTX6z23kTyoAC4cV6u sAdyajDmWCDi8U4FOtHA328YN9shu8kL9My0Pl8I6YsE7oVg7lCmnqqYZuKasYvT 5fgzXerQILV8Iz5qq0x9W/OGzZnNSIHwCRTN29xwglLkosRWw4hQJ7W8MHNYmgaE cbCbBEkW7qbxa+AoJibv5rGRxo8PuSU/GAU4G1dHZ7nMPuyiIAcO7EXQwVFBK8up P/Gid1KcW+23cELg9A5t+qY2jqba6mUX0C1+MkKNWbuhv7AI2F1B8TFalhd7qyxi qTi986Q2HJsDdpwOb+eAO+QKQe7Ifz5EtqsAmmmOeBkxUBCgX+5mvASgR2y52lMY JsIpJYk7+DzFFvpj76IzW59lKFc+VlpbCik2tZ02ZX4JoZDnQnJhjuVbqQjAqgZJ EQDZsJ2Qsd+jhQf6WGYE2NADwntAKLj4/6lGA632t/FwW6Nf/8YrAlWZ6kgv6J1d 8ccysT3JZJqNYnrPq6uVNbECAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 13878 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-09 09:34:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-09 11:05:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.niggli.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 789614137405774436842134843704767959692649105847336020583112284622989350309102294379751758774413385015179272820648208922682480090140126588914243249867391560457448264435887913815104111019735253318038359906489600878441224444060606984239276532128787923582157548357520536379568523106620972928063788856189243339559856011517166504150462031829465031741806869775886073961880956047457878410008745033994307546127910596241045424783736598342749316821397613153664664752654887381603184289751959530749250949059289861468428581537169748875692801410313917291871347747831893180089922120079035383478271431184064545894335637085225073571131061454916759491197379850955027591537659617575098833331534576945861805888879130566997142013150844956459654045758229049033354770384881752378818168778494970273558295835108098818989948913076144396680036648860605401287712933172724222544275930862268298048018399154298609260884732100432781283952840077971770967038011460396255042719094420228540527824559914196001624737475385372722697881740485580999833816263335753539490054586509807717693255127224852497288160468626784180062762984932260268047575939453793685410906938789492667617916844082359995350371262284967239663327159332963891006937766734207636890827379393150812893296049 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f3b5560cc409b0b4cf1faaf9dd2356f077e8a1f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.niggli.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'niggli.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gz.symcb.com/gz.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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