uaasapp3rsa.post.ch

- Die Schweizerische Post AG -

Issued by SwissSign RSA TLS OV ICA 2022 - 1

About this certificate

This digital certificate with serial number 41:0e:d3:25:17:a6:eb:4d:f9:a1:70:79:c3:2e:86:a7:b9:87:69:d2 was issued on by SwissSign AG.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Die Schweizerische Post AG

Organization: Die Schweizerische Post AG
State / Province: BE
Locality: Bern
Country: CH

SwissSign AG

Organization: SwissSign AG
Country: CH

This certificate will expire on

Certificate Details

Serial Number (hex): 41:0e:d3:25:17:a6:eb:4d:f9:a1:70:79:c3:2e:86:a7:b9:87:69:d2
Serial Number (int): 371415003850547113011553591758007887441739344338
Serial Number lenght: 159 bits, 20 octets

SubjectKeyId: 06:e3:f2:56:ef:55:6a:8f:fb:c6:65:ee:01:f7:f1:ad:38:20:ef:17
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6

Fingerprint (sha1): 3d:36:3b:b4:54:31:6d:9b:04:a2:42:5f:93:0a:b4:99:ed:01:05:d3
Fingerprint (sha256): 01:b0:5b:76:a5:bc:a0:6e:a8:7c:4e:87:ab:8e:36:b4:5c:c3:36:47:2f:29:0b:97:13:a5:26:56:ed:22:4e:ba

Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45

Revocation information

OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec
CRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34

Check the revocation status for certificate uaasapp3rsa.post.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for uaasapp3rsa.post.ch

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

uaasapp3rsa.post.ch

Other certificates including the domain name post.ch

(limited to 100 certificates)
fakeext.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
digitaler-posteingang.post.ch
swisspostmobile.apis-int.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
ddstest.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
crypto-stamp.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
vgk.apis-test.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
uaasapp3rsa.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
uaasapp3rsadev2.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
salt-aboint.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
kurepo.apis-test.post.ch
cockpitint2.post.ch
dev.post.ch
apitest.post.ch
mp24hub.apis.post.ch
servicetest.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
spimr1.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
aaw.apis-test.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch

Certificate

The complete raw certificate details for uaasapp3rsa.post.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 371415003850547113011553591758007887441739344338
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 08:58:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-28 08:58:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Die Schweizerische Post AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uaasapp3rsa.post.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 962142046541793800448642603163316714891575126586837548802509274516766982020903269054460623396128425301707695725229477478263445889764733275235862601052079142524578222355858226362409129711419584955846883968339654987429491343612256250261780150209612372405157684543060378073107691082173634021274297611066519991909232885057137412587846855070102473252264673082710709330532102091513786407823351151718145433920492027770483983308621230903188022247586384546474739886593975566232711499528269159805362154197868046461178381662364782074247825888591228033798986534584056536084839567496687404565076117454549897766478123114513503585089206023577540928864123181048318032193779368959627322746539935844282094923631009293816910042542321381755630254243382871729983898433951123843369169450678260250172338213093023310022479555358362885644778480139519883395135586925691653681114039896505963914023983073806211319060395530978228926405962522181372723818332330615241657122922429755434020518209245565447497345116012907605982110613694681626816694979901347589393231151339387731086739993707677221554155011708259629420058318787338476414315844349931487610313562013033699931652798366185248704264267349228849273097872351502272997018637138131684834321938325015423223394053
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uaasapp3rsa.post.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							06e3f256ef556a8ffbc665ee01f7f1ad3820ef17
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (600 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER asn1: structure error: integer not minimally-encoded
<nil>
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 76772601583043008926366886761560953535458191658630696940637149574526379876965
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:0|false] reserved for BER 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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