www.thalia.ch

Issued by DOUGLAS Group IS CA - G1

About this certificate


This digital certificate with serial number 18:fb:2b:e2:00:00:00:00:02:31 was issued on by DOUGLAS Holding AG .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • WARNING: Certificate contains a Authority Info Access Issuer with an non-preferred scheme ([ldap])
  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • ERROR: Certificate contains a CRL with an non-preferred scheme ([ldap])

Orell Fuessli Thalia AG

Organization: Orell Fuessli Thalia AG
Organization unit: IT-buch.de
State / Province: Basel-Stadt
Locality: Basel
Country: CH

DOUGLAS Holding AG

Organization: DOUGLAS Holding AG
State / Province: Basel-Stadt
Locality: Basel
Country: CH

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 18:fb:2b:e2:00:00:00:00:02:31
Serial Number (int): 117970090441260950094385
Serial Number lenght: 77 bits, 10 octets

SubjectKeyId: 1a:6a:96:1e:ed:ae:45:1d:bc:7c:a6:76:73:a3:f6:13:6d:7c:b3:ad
AuthorityKeyId: fb:b0:e1:6c:f1:3e:f8:de:50:67:ad:15:fd:7b:05:b8:65:03:4b:25

Fingerprint (sha1): 3d:4b:40:b4:f7:51:20:80:78:c0:5e:45:99:1b:f1:27:6d:7f:44:6c
Fingerprint (sha256): c8:fe:18:2a:f6:e4:22:a9:79:6a:e4:f4:97:58:73:ce:8f:a6:03:87:27:cc:0e:b4:a4:3e:0a:55:bc:74:8c:30

Issuing Certificate URL: ldap:///CN=DOUGLAS%20Group%20IS%20CA%20-%20G1,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=rd,DC=local?cACertificate?base?objectClass=certificationAuthority

Revocation information

CRL Distribution Point: ldap:///CN=DOUGLAS%20Group%20IS%20CA%20-%20G1,CN=pki-infra,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=rd,DC=local?certificateRevocationList?base?objectClass=cRLDistributionPoint

Check the revocation status for the current certificate on www.thalia.ch
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: www.thalia.ch

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIHJzCCBQ+gAwIBAgIKGPsr4gAAAAACMTANBgkqhkiG9w0BAQUFADBNMQswCQYD VQQGEwJERTEbMBkGA1UEChMSRE9VR0xBUyBIb2xkaW5nIEFHMSEwHwYDVQQDExhE T1VHTEFTIEdyb3VwIElTIENBIC0gRzEwHhcNMTQwNDI4MTExMjIzWhcNMTcwNDI3 MTExMjIzWjCBgjELMAkGA1UEBhMCQ0gxFDASBgNVBAgTC0Jhc2VsLVN0YWR0MQ4w DAYDVQQHEwVCYXNlbDEgMB4GA1UEChMXT3JlbGwgRnVlc3NsaSBUaGFsaWEgQUcx EzARBgNVBAsTCklULWJ1Y2guZGUxFjAUBgNVBAMTDXd3dy50aGFsaWEuY2gwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/xvoBGzeVIlGfA/h/68nUfRNH 2/nId0GOqzd9a27do7dYhsQtzkbimfExNL82GxSHfWhshj5TS9ApIHGW+zOFmoEE XVHa1Q9leuXrL7sGFFeJiV/vlioohFG6VajbYn/9VFQOkTnIrlRWFHQmANxcAx/E bD9kdJHnKQMKe7DmcNDayyL+ykAUu2aufU7gLw8p0E+NY+uTUHgZBWbOAykcZV2q XJopz9vBnJ0+ioyqbNdohTwtU3ONDg2GTOMjqPKA/2OAiZgHAG2JTrShqF5EV4cI sSDBXj9Bp3PPE4EN0THLnvDx+QiFAspvU4l3C4lEJjO7Q1XV80S5pTTPCVvJAgMB AAGjggLRMIICzTAYBgNVHREEETAPgg13d3cudGhhbGlhLmNoMB0GA1UdDgQWBBQa apYe7a5FHbx8pnZzo/YTbXyzrTAfBgNVHSMEGDAWgBT7sOFs8T743lBnrRX9ewW4 ZQNLJTCCARwGA1UdHwSCARMwggEPMIIBC6CCAQegggEDhoHIbGRhcDovLy9DTj1E T1VHTEFTJTIwR3JvdXAlMjBJUyUyMENBJTIwLSUyMEcxLENOPXBraS1pbmZyYSxD Tj1DRFAsQ049UHVibGljJTIwS2V5JTIwU2VydmljZXMsQ049U2VydmljZXMsQ049 Q29uZmlndXJhdGlvbixEQz1yZCxEQz1sb2NhbD9jZXJ0aWZpY2F0ZVJldm9jYXRp b25MaXN0P2Jhc2U/b2JqZWN0Q2xhc3M9Y1JMRGlzdHJpYnV0aW9uUG9pbnSGNmh0 dHA6Ly9wa2kuZGhhZy5uZXQvR3JvdXBDQS9ET1VHTEFTX0dyb3VwX0lTX0NBX0cx LmNybDCB0QYIKwYBBQUHAQEEgcQwgcEwgb4GCCsGAQUFBzAChoGxbGRhcDovLy9D Tj1ET1VHTEFTJTIwR3JvdXAlMjBJUyUyMENBJTIwLSUyMEcxLENOPUFJQSxDTj1Q dWJsaWMlMjBLZXklMjBTZXJ2aWNlcyxDTj1TZXJ2aWNlcyxDTj1Db25maWd1cmF0 aW9uLERDPXJkLERDPWxvY2FsP2NBQ2VydGlmaWNhdGU/YmFzZT9vYmplY3RDbGFz cz1jZXJ0aWZpY2F0aW9uQXV0aG9yaXR5MAsGA1UdDwQEAwIFoDA+BgkrBgEEAYI3 FQcEMTAvBicrBgEEAYI3FQiFmZ9wh7HECIPdhRCBxtEGgaPMaYE0gv6lF4begnkC AWQCAQUwEwYDVR0lBAwwCgYIKwYBBQUHAwEwGwYJKwYBBAGCNxUKBA4wDDAKBggr BgEFBQcDATANBgkqhkiG9w0BAQUFAAOCAgEAbHGhswiN5cw4oyzKRWv98slj70Ld 7GLGjDYtfxKQztBaf1u+oPZeu+owrB+HSpA5rjK/nhibj4E293kOgg/hz1QfQGWQ OMo5OANgmQ9hwDQEzFj7w/pGFPVR2HINrs31RptZxG8thrzZcaW4d28Q3gQzAV07 3S16rz6bukqAyVDCTfWgj0XU/mJ0PXy215gdGxykFqPiNzCnkGl2UrVs4LD6SmLR uXgjQHEHkPxKC9ZIFH7IelUbeR0w8hW1WtOO9Zho+QrniWzz1P3nhWHjZ3XMlZl2 Q8c/jkiUp4s280a3RaDCC2tm0j+6n0rXjM2SgosO1cFMZn/pTHBCzyfzzVehVSj3 WecLeDPmGilm6DYyNrxpUI6KjP0sIf6W3MVIdA+pqHHZlmwOyuvDxKGZOnOhm/pG K2r0UHAHHGYG+lJRkk+PtgvF/XMYhUtxcuUQo+i7nrsBUREP2YNqbkIMN8R0Cfym /HRTpHFU2x6sxv3U7KObNterax85uatLLM8mNE+bGkSflXVZIpEZk9Dk86pVHXaG Otl3nDQtJ+JfhgfLdfaZ8jss3KWr99T7U52Wx7WzvOH+NrqTrgw41R//Jjzsn+5N P2Sdu6nN7bq7IEx19WtZRN+VbxVH/50lQj3QOzCkVSpH7XpnCBTb11ZGPBquWNMb rorltImUEn6/rgk= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8b6ARs3lSJRnwP4f+vJ 1H0TR9v5yHdBjqs3fWtu3aO3WIbELc5G4pnxMTS/NhsUh31obIY+U0vQKSBxlvsz hZqBBF1R2tUPZXrl6y+7BhRXiYlf75YqKIRRulWo22J//VRUDpE5yK5UVhR0JgDc XAMfxGw/ZHSR5ykDCnuw5nDQ2ssi/spAFLtmrn1O4C8PKdBPjWPrk1B4GQVmzgMp HGVdqlyaKc/bwZydPoqMqmzXaIU8LVNzjQ4NhkzjI6jygP9jgImYBwBtiU60oahe RFeHCLEgwV4/QadzzxOBDdExy57w8fkIhQLKb1OJdwuJRCYzu0NV1fNEuaU0zwlb yQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 117970090441260950094385 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOUGLAS Holding AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DOUGLAS Group IS CA - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-28 11:12:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-27 11:12:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel-Stadt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Basel' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Orell Fuessli Thalia AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT-buch.de' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.thalia.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24209635256755512842478022425137969990548949182378517118114784177414676525008667514891203154018187213345474680497634037376708611661992730037938190807190309199159732054762681607954364898105951488408645933070806551199637755919476181609632743628159631468052178842731371550290285901763143231829983402109227293846424745949391978998770567103061136868770561380703004363684146428848684780438549389521940614371062998318443413287820120241321568087565254512033240301379692264996126306403600776952927247970303296161512395022548222541783359931849887996926902912281520994185029187013215267032671744803200486383469495667054887918537 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.thalia.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1a6a961eedae451dbc7ca67673a3f6136d7cb3ad . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName fbb0e16cf13ef8de5067ad15fd7b05b865034b25 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (275 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap:///CN=DOUGLAS%20Group%20IS%20CA%20-%20G1,CN=pki-infra,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=rd,DC=local?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.dhag.net/GroupCA/DOUGLAS_Group_IS_CA_G1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (196 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap:///CN=DOUGLAS%20Group%20IS%20CA%20-%20G1,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=rd,DC=local?cACertificate?base?objectClass=certificationAuthority' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.10899440.15491592.7815824.3254406.2680425.180.6263447.14123385 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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