www.bksh.ch

Issued by GeoTrust Secure Site Starter DV SSL CA - G1

About this certificate


This digital certificate with serial number 32:5b was issued on by GeoTrust, Inc. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

www.bksh.ch

GeoTrust, Inc.

Organization: GeoTrust, Inc.
Organization unit: Domain Validated SSL

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 32:5b
Serial Number (int): 12891
Serial Number lenght: 14 bits, 2 octets

SubjectKeyId:
AuthorityKeyId: 25:99:72:41:80:a8:4e:d1:07:fa:81:b3:a1:42:b8:8a:20:08:3c:05

Fingerprint (sha1): c2:8b:d2:7b:cd:00:d8:c2:28:7f:6d:7e:f0:2c:f8:d2:a8:41:97:8f
Fingerprint (sha256): 82:bd:d3:97:46:6e:56:82:0b:0a:61:25:2c:cf:93:fd:49:15:1f:ff:ab:57:c7:fb:f2:0c:43:f8:a6:bc:1a:33

Issuing Certificate URL: http://fa.symcb.com/fa.crt

Revocation information

OCSP Server: http://fa.symcd.com
CRL Distribution Point: http://fa.symcb.com/fa.crl

Check the revocation status for the current certificate on www.bksh.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.bksh.ch
bksh.ch

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIEcDCCA1igAwIBAgICMlswDQYJKoZIhvcNAQELBQAwezELMAkGA1UEBhMCVVMx FzAVBgNVBAoTDkdlb1RydXN0LCBJbmMuMR0wGwYDVQQLExREb21haW4gVmFsaWRh dGVkIFNTTDE0MDIGA1UEAxMrR2VvVHJ1c3QgU2VjdXJlIFNpdGUgU3RhcnRlciBE ViBTU0wgQ0EgLSBHMTAeFw0xNTExMTAwODMzMTNaFw0xNjExMTIwNTQ2MTRaMBYx FDASBgNVBAMTC3d3dy5ia3NoLmNoMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA0XGxMnsrsQQ6YxmA5xCy1kdKYQaG1fJbAAt2Q8q09b5EEj+UjnJZSRdb 5OxvG4tuYctz3JlzbMpXXf94B/0QFUgsADqWvEsrMsAh69pYWA6q5yK/ydpejlTC o1OzRWlxwvfpirCWnV1yHOkUELeZDKhIRdzS1YUOrd7FK+jDZQbFrDODVi7V+hdY eoaNr1mnjBZ883sg1ENxicG4OZxENCINtgZpw3Bo3xkoNEYXhFMcHGC/zSUlbRqI SrFPbFa+0vdcGQz7pWRU5Fvkd9SHm7iFv1XGOwcMfkjVXErTcMYUbGX+CEiMV560 Srg/8XNVFpyarAVu1iocrpGZXrLRcwIDAQABo4IBYTCCAV0wHwYDVR0jBBgwFoAU JZlyQYCoTtEH+oGzoUK4iiAIPAUwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzAB hhNodHRwOi8vZmEuc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vZmEuc3lt Y2IuY29tL2ZhLmNydDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMB8GA1UdEQQYMBaCC3d3dy5ia3NoLmNoggdia3NoLmNoMCsG A1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9mYS5zeW1jYi5jb20vZmEuY3JsMAwGA1Ud EwEB/wQCMAAwVgYDVR0gBE8wTTBLBgZngQwBAgEwQTA/BggrBgEFBQcCARYzaHR0 cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2Fs MA0GCSqGSIb3DQEBCwUAA4IBAQAlOpWq4PNf4UU/a6k85EMlO/+WU+Mvw+pdQGhA 4KfBBCuIJclzH//nAAidIq9NDAMnQL5S9GVuKJyFBWWDUtNs/FwaAWwJxQG2pJVe SnjxBxBmLBcHzzQruG9II0iJMH72jk6+QkL+GpHPcbMWqjNLvvyQXVkOdo2LDP4U EGvZ4RB00nLTuh3V8nPTJxIi5NyZOuFi0lZsssfxDYjRZ/z+exIQGao24+mfKSIt hzblMHqNEEiFIY/4Y4qKL6fm2n9N+1ypLT0eQKPVdmKyOVJ6IvrOnESvKsZeMZwT JJ6GNaq8QcGe4MAPySpJmhNAaNFIP6jRGzKRUF8rVa6bRSMg -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0XGxMnsrsQQ6YxmA5xCy 1kdKYQaG1fJbAAt2Q8q09b5EEj+UjnJZSRdb5OxvG4tuYctz3JlzbMpXXf94B/0Q FUgsADqWvEsrMsAh69pYWA6q5yK/ydpejlTCo1OzRWlxwvfpirCWnV1yHOkUELeZ DKhIRdzS1YUOrd7FK+jDZQbFrDODVi7V+hdYeoaNr1mnjBZ883sg1ENxicG4OZxE NCINtgZpw3Bo3xkoNEYXhFMcHGC/zSUlbRqISrFPbFa+0vdcGQz7pWRU5Fvkd9SH m7iFv1XGOwcMfkjVXErTcMYUbGX+CEiMV560Srg/8XNVFpyarAVu1iocrpGZXrLR cwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12891 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Secure Site Starter DV SSL CA - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-10 08:33:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-12 05:46:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bksh.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26439869439676466860801789316025375246090268076759818140084782353885307329191655055365897189900621080246264073449137054326655045191664823872032581478873376438482743243501658772236864357440979054979680343749874354391019922333080758351153072795719495604499744269301675451619964006584925501467854762360550542311900454754301182625669870864349087741495262960849488228205623777512838584451016996127444923934016109613065876259585036517496948231581243903026564304590272698605967762641872215514447313405013949716679509750511123199177704440100711105149543847180857825125368782763933571362211507329057745309578951171017702297971 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2599724180a84ed107fa81b3a142b88a20083c05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fa.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fa.symcb.com/fa.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bksh.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bksh.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fa.symcb.com/fa.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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