uaasapp3rsadev2.post.ch

- Die Schweizerische Post AG -

Issued by SwissSign RSA TLS OV ICA 2022 - 1

About this certificate

This digital certificate with serial number 39:4c:07:ba:9e:18:ee:5d:c2:eb:5e:e1:71:75:9a:4c:d1:0f:f1:bb was issued on by SwissSign AG.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Die Schweizerische Post AG

Organization: Die Schweizerische Post AG
State / Province: BE
Locality: Bern
Country: CH

SwissSign AG

Organization: SwissSign AG
Country: CH

This certificate will expire on

Certificate Details

Serial Number (hex): 39:4c:07:ba:9e:18:ee:5d:c2:eb:5e:e1:71:75:9a:4c:d1:0f:f1:bb
Serial Number (int): 327108003860716422956977610418303007562071536059
Serial Number lenght: 158 bits, 20 octets

SubjectKeyId: a4:54:a3:33:77:ff:35:d0:53:70:ea:53:c1:c8:08:fa:bf:81:26:d0
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6

Fingerprint (sha1): 10:48:95:7e:e4:91:86:37:c6:d4:25:f4:a0:9e:88:74:21:ff:d0:16
Fingerprint (sha256): 01:d4:35:22:9a:88:fb:58:dd:e8:e0:fe:e4:8a:e7:f9:6e:7a:18:2b:47:20:18:a4:c4:04:fe:8d:ec:99:d2:c9

Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45

Revocation information

OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec
CRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34

Check the revocation status for certificate uaasapp3rsadev2.post.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for uaasapp3rsadev2.post.ch

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

uaasapp3rsadev2.post.ch

Other certificates including the domain name post.ch

(limited to 100 certificates)
fakeext.post.ch
zwab-int.post.ch
moodle.pa.post.ch
mova.post.ch
webfocus.post.ch
digitaler-posteingang.post.ch
swisspostmobile.apis-int.post.ch
securepost.post.ch
filialemitpartner.post.ch
moodle.pa.post.ch
e-collaboration-int.post.ch
jobs-int.post.ch
m-extranet.post.ch
xray.tools.post.ch
ddstest.post.ch
directpoint.post.ch
places.post.ch
new.post.ch
mapservice.post.ch
crypto-stamp.post.ch
wohnen-franklinplatz.post.ch
wwwsc.post.ch
gandalf.apis.post.ch
billingonline-dev.post.ch
dh-auth.apis.post.ch
cinfoni-germany.innovation.post.ch
vgk.apis-test.post.ch
loginint.post.ch
file-intpa-cms.post.ch
agentur-int.post.ch
gitit.post.ch
zubofi.apis-dev.post.ch
ef-testix.post.ch
transport-service.post.ch
directpoint.post.ch
ci-euw1.ireland.delivery.aimatch.net
accountint2.post.ch
address.apis-test.post.ch
docucenterint.post.ch
ci-euw1.ireland.delivery.aimatch.net
msmgateway-int.post.ch
uaasapp3rsa.post.ch
epostoffice3.post.ch
static.post.ch
location-poste-martigny.post.ch
uaasapp3rsadev2.post.ch
crypto-stamp.post.ch
gabi.apis-test.post.ch
nemoauth-test.post.ch
sorryrpz-int.post.ch
webservices-cashlog-int.post.ch
accountint1.post.ch
static.post.ch
cbt.externint.post.ch
wohnen-zollikofen.post.ch
directdayint.post.ch
apis.post.ch
gw.incamail-dev.post.ch
mx3.post.ch
salt-aboint.post.ch
ci-euw1.ireland.delivery.aimatch.net
postweb.post.ch
orgtool-int.post.ch
die-post-kann-mehrint.post.ch
erpcorp.apis-int.post.ch
schreibenint.post.ch
nemoint.post.ch
postzone.extern.post.ch
news-intern.post.ch
kurepo.apis-test.post.ch
cockpitint2.post.ch
dev.post.ch
apitest.post.ch
mp24hub.apis.post.ch
servicetest.post.ch
mobilecodeservice.apis.post.ch
vsc.apis.post.ch
stb-test.innovation.post.ch
spimr1.post.ch
pccweb.apitest.post.ch
webtransferint.post.ch
agentur-int.post.ch
www.post.ch
laborsendungen.post.ch
facetoface.post.ch
ci-euw1.ireland.delivery.aimatch.net
ci-euw1.ireland.delivery.aimatch.net
digitaler-posteingangint.post.ch
e-mobilityint.post.ch
fdsbc.post.ch
tresorit.post.ch
aaw.apis-test.post.ch
gw.incamail-dev.post.ch
gewinnende-worte.post.ch
accountint2.post.ch
rasns01.post.ch
ident.apis-dev.post.ch
test.post.ch
e-commerce.post.ch
salt-aboint.post.ch

Certificate

The complete raw certificate details for uaasapp3rsadev2.post.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 327108003860716422956977610418303007562071536059
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 06:57:19 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-27 06:57:19 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'BE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bern'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Die Schweizerische Post AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uaasapp3rsadev2.post.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 625096630451758190976832055683522010443750796236192528713186673658179873937471079073963471532870530466640285495561442732236353962051382769599880246210140556776240098678606067003821847659144815033591021809827656582472631912296355318589185296817064932308168949924106705244600155399390681713680894829091764229798078758478095344728005433318235277441996767028167482240790226186960472028562055638382663898366590991869216630216619859860031477716887965166464841891670122498145329346949573613081398656243369486914404917267306110381218677573997621632443291274629244545628625940599953672059460528323996306135585242328912154228998027154029641362741881225235500155114981383304955784165141092067309080004641418535973212920274994575777590321977151954846440861229258231877838747495702132416246430477515663673639565460223625994928212768610418355856157955119595853660836154450827455846912849663058234457241605777183279281418675482109205297546853762884419385949510961254345585746694353593992662628382279755428016523472726278129194836651802022707190321757256517401606046046495090399357337006058322519878145778924050694679012380062365182524452436350384872901933805542928651926016039188189204669897289122601640794120502666819869919550892346153898427383533
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uaasapp3rsadev2.post.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a454a33377ff35d05370ea53c1c808fabf8126d0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (605 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (601 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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