www.ukb.ch
- Urner Kantonalbank -
Issued by SwissSign RSA TLS EV ICA 2022 - 1
About this certificate
This digital certificate with serial number 54:66:84:c6:34:6d:c4:30:b4:a7:c5:7c:3b:66:07:dc:a1:32:7e:87 was issued on by SwissSign AG.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Urner Kantonalbank
Company registration number:
CHE-108.954.665
Organization: Urner Kantonalbank
Organization: Urner Kantonalbank
Address:
Bahnhofplatz 1
Postal code: 6460
State / Province: UR
Locality: Altdorf
Country: CH
Postal code: 6460
State / Province: UR
Locality: Altdorf
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 54:66:84:c6:34:6d:c4:30:b4:a7:c5:7c:3b:66:07:dc:a1:32:7e:87Serial Number (int): 481841467026794081643934012093937456928313736839
Serial Number lenght: 159 bits, 20 octets
SubjectKeyId: 05:13:f6:b0:7c:97:d2:e5:e8:d6:ca:e0:99:44:51:87:c8:26:32:ac
AuthorityKeyId: 49:52:df:30:86:92:59:5f:34:9c:25:48:24:ab:c0:eb:d1:06:f2:d6
Fingerprint (sha1): 09:06:09:33:9d:09:33:e7:d6:65:6a:a0:bb:ed:ae:e0:63:a3:90:22
Fingerprint (sha256): 52:f5:fd:5a:fc:6c:22:6b:6d:f6:66:e1:c0:86:7d:a9:43:33:fd:3e:2c:df:f8:89:38:be:26:96:0c:e2:f3:34
Issuing Certificate URL: http://aia.swisssign.ch/air-20350159-813d-4532-b988-8519eca57650
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-9fdd910e-b9ff-4b2f-be38-2e93708c1b36
Check the revocation status for certificate www.ukb.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ukb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ukb.ch
www.urkb.ch
ukb.ch
urkb.ch
www.urkb.ch
ukb.ch
urkb.ch
Other certificates including the domain name ukb.ch
(limited to 100 certificates)
www.ukb.ch
fintest-wwwsec.ukb.ch
gast.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.privasphere.com
twint-test.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
ukb00ncs104-e.ukb.ch
satellite-test.ukb.ch
gast.ukb.ch
twint-test.ukb.ch
fintest-e-banking.ukb.ch
dialog.sbb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
www.ukb.ch
ot.ukb.ch
ssl.ukb.ch
ot.ukb.ch
ukb00ucc114.ukb.ch
securemail.ukb.ch
eroeffnung-test.ukb.ch
satellite.ukb.ch
www.privasphere.com
ukb00ncs106-e.ukb.ch
securemail.ukb.ch
www.privasphere.com
gast.ukb.ch
www.ukb.ch
autodiscover.ukb.ch
ot.ukb.ch
autodiscover.ukb.ch
eroeffnung-test.ukb.ch
dialog.sbb.ch
ukb00ucc114.ukb.ch
www.ukb.ch
fintest-dev-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
www.privasphere.com
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
ssl.ukb.ch
ukb00ncs104-e.ukb.ch
gast.ukb.ch
wwwsec.ukb.ch
ukb00ucc114.ukb.ch
www.ukb.ch
eroeffnung.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
ukb00ucc114.ukb.ch
twint.ukb.ch
www.privasphere.com
www.ukb.ch
identifikation-test.ukb.ch
twint-test.ukb.ch
www.privasphere.com
dialog.sbb.ch
gast.ukb.ch
dialog.sbb.ch
ukbhb01mx01-e.urkb.ch
ukb00ucc114.ukb.ch
fintest-dev-wwwsec.ukb.ch
ssl.ukb.ch
satellite-test.ukb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.privasphere.com
ssl.ukb.ch
autodiscover.ukb.ch
www.ukb.ch
gast.ukb.ch
ukbhb01mx01-e.urkb.ch
identifikation-test.ukb.ch
autodiscover.ukb.ch
fintest-e-banking.ukb.ch
twint.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
zukunftsbild.ukb.ch
zukunftsbild.ukb.ch
eroeffnung.ukb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
ukb00ucc114.ukb.ch
ssl.ukb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
ukb00ncs106-e.ukb.ch
ukb00ucc114.ukb.ch
ukb00ncs106-e.ukb.ch
www.privasphere.com
satellite.ukb.ch
ukb00ncs104-e.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
gast.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.privasphere.com
twint-test.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
ukb00ncs104-e.ukb.ch
satellite-test.ukb.ch
gast.ukb.ch
twint-test.ukb.ch
fintest-e-banking.ukb.ch
dialog.sbb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
www.ukb.ch
ot.ukb.ch
ssl.ukb.ch
ot.ukb.ch
ukb00ucc114.ukb.ch
securemail.ukb.ch
eroeffnung-test.ukb.ch
satellite.ukb.ch
www.privasphere.com
ukb00ncs106-e.ukb.ch
securemail.ukb.ch
www.privasphere.com
gast.ukb.ch
www.ukb.ch
autodiscover.ukb.ch
ot.ukb.ch
autodiscover.ukb.ch
eroeffnung-test.ukb.ch
dialog.sbb.ch
ukb00ucc114.ukb.ch
www.ukb.ch
fintest-dev-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
www.privasphere.com
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
ssl.ukb.ch
ukb00ncs104-e.ukb.ch
gast.ukb.ch
wwwsec.ukb.ch
ukb00ucc114.ukb.ch
www.ukb.ch
eroeffnung.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
ukb00ucc114.ukb.ch
twint.ukb.ch
www.privasphere.com
www.ukb.ch
identifikation-test.ukb.ch
twint-test.ukb.ch
www.privasphere.com
dialog.sbb.ch
gast.ukb.ch
dialog.sbb.ch
ukbhb01mx01-e.urkb.ch
ukb00ucc114.ukb.ch
fintest-dev-wwwsec.ukb.ch
ssl.ukb.ch
satellite-test.ukb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.privasphere.com
ssl.ukb.ch
autodiscover.ukb.ch
www.ukb.ch
gast.ukb.ch
ukbhb01mx01-e.urkb.ch
identifikation-test.ukb.ch
autodiscover.ukb.ch
fintest-e-banking.ukb.ch
twint.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
zukunftsbild.ukb.ch
zukunftsbild.ukb.ch
eroeffnung.ukb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
ukb00ucc114.ukb.ch
ssl.ukb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
ukb00ncs106-e.ukb.ch
ukb00ucc114.ukb.ch
ukb00ncs106-e.ukb.ch
www.privasphere.com
satellite.ukb.ch
ukb00ncs104-e.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
Certificate
The complete raw certificate details for www.ukb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIJWzCCB0OgAwIBAgIUVGaExjRtxDC0p8V8O2YH3KEyfocwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRVYgSUNBIDIwMjIgLSAxMB4XDTIzMTAyNTEz MzgyNVoXDTI0MTAyNTEzMzgyNVowgeoxEzARBgsrBgEEAYI3PAIBAxMCQ0gxFDAS BgsrBgEEAYI3PAIBAgwDVXJpMR0wGwYDVQQPDBRQcml2YXRlIE9yZ2FuaXphdGlv bjELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAlVSMRAwDgYDVQQHDAdBbHRkb3JmMQ0w CwYDVQQREwQ2NDYwMRcwFQYDVQQJDA5CYWhuaG9mcGxhdHogMTEbMBkGA1UECgwS VXJuZXIgS2FudG9uYWxiYW5rMRgwFgYDVQQFEw9DSEUtMTA4Ljk1NC42NjUxEzAR BgNVBAMTCnd3dy51a2IuY2gwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2dE2sz0skJTCytSJMeVVP0J27g9j7sR/+ikV1iZp5/LTFEfOMYC89a0pevd7N IrFYLDlkrnBbwyseTj+M7dEmRKH3u9y4V1lK+ff4OuizsjoRMso/vgii0dA0Cd0R SLmNoo3fMvPzeHZhDnccGm2z/LvEXltomcXhVgAWWvSX+04a4F37fLvl0GXYSNSo HatlgsdmmQrDZ41bTKFRf7wXxIH/vxuu0JTaGRNvs8A+bkEDJK0nIOaqg65agQNW MrYOBT6QhCVTDAiXbp7rzS31f3bL43E9NOb94xIil4iJheAizGqqwmbIU80oqpFn JhbGRkqn1OgjKRl7HIq08qAZAgMBAAGjggSQMIIEjDCBsgYIKwYBBQUHAQEEgaUw gaIwTAYIKwYBBQUHMAKGQGh0dHA6Ly9haWEuc3dpc3NzaWduLmNoL2Fpci0yMDM1 MDE1OS04MTNkLTQ1MzItYjk4OC04NTE5ZWNhNTc2NTAwUgYIKwYBBQUHMAGGRmh0 dHA6Ly9vY3NwLnN3aXNzc2lnbi5jaC9zaWduL29jcy1hYWNjY2VkNS02NmU4LTQw NjktOWIxYi1mZDI5YWI3M2VmZWMwbgYDVR0gBGcwZTAHBgVngQwBATAIBgYEAI96 AQQwUAYIYIV0AVkCAQMwRDBCBggrBgEFBQcCARY2aHR0cHM6Ly9yZXBvc2l0b3J5 LnN3aXNzc2lnbi5jb20vU3dpc3NTaWduX0NQU19UTFMucGRmMFEGA1UdHwRKMEgw RqBEoEKGQGh0dHA6Ly9jcmwuc3dpc3NzaWduLmNoL2NkcC05ZmRkOTEwZS1iOWZm LTRiMmYtYmUzOC0yZTkzNzA4YzFiMzYwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMA4GA1UdDwEB/wQEAwIFoDAzBgNVHREELDAqggp3d3cudWtiLmNoggt3 d3cudXJrYi5jaIIGdWtiLmNoggd1cmtiLmNoMB0GA1UdDgQWBBQFE/awfJfS5ejW yuCZRFGHyCYyrDAfBgNVHSMEGDAWgBRJUt8whpJZXzScJUgkq8Dr0Qby1jCCAmwG CisGAQQB1nkCBAIEggJcBIICWAJWAHUAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgX L6OqHQcT0wwAAAGLZw7RZQAABAMARjBEAiArRu9eLRiUc5ozPQy+ZjHGO8TpTvJz p86nwonJEv8kXAIgdcVeSwmcI1Qy+4DMSPbBGpo03DdcQPO+zps1nhx6+g4AdgDa tr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYtnDuGlAAAEAwBHMEUC IQDptH2sLZDsqGTXym9ObyqR0ErCZy9buCS811kfGluQ9wIgQlqCvIrZeFtXJffT E2V2M1eQPYWpQo6NNYv/snj8CdwAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIK n+ZnTFo6dAAAAYtnDuJoAAAEAwBHMEUCIEewYacaSrpNjOWGKN7sMWo9JIr/FjZd hQKqbMkSgW8eAiEA29EwNIgYZk4DrxyiBcTHd8kTriecM8ks1ARVBOkg0Y4AdQDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYtnDuUzAAAEAwBGMEQC IFwWFtzU8ePKxEZWPMKdPM0dgRCdefqICA8C0P9a0+snAiBYXt+CpIfIZw4B7Gy5 CAXPINIoeMkIQ+ltIcADPa/eOQB2AIdPtQ3AKdmTHeVz6fKJno5FM7OS04sKRiV0 vw/usvweAAABi2cO6TAAAAQDAEcwRQIgDJYeUmX1+0wqHl7F7qIomekKjQuA9tXn rNNTGGRufzsCIQChgxr84bTB+ATgEI3JpuICwIQw4by5cXB6vNkgnFN0KzANBgkq hkiG9w0BAQsFAAOCAgEATI140eBCxHPKLHKHphdCN5Lljmc2Nwvhd2vqmpJD1B69 gD18NwrNCr3XvKpRDL9xdlPzmXzGZ2SnLx2lb5+kp15LQGAjszuLMJ30MaE5VVwg 2tMIE4pSPks5zkGuOSpLa/FAmOLZ1XylA5+z6bpgkMyFDfqsldFEFjVEhGGRsVY3 9H5o7UhxRti7tjIK56KlNAIe1Z1QIb0FOCbVdZYGDodtOrjKbNwhkOpHa4Ps1+QV LgiHEv+IOpSnprOejXY0FYmLT6gfXpiihG7VzCwFM1AbsGnFkQfS7oUcf9cLpqIt mQJUsNowegSPWwkqbc2whC7x+OwpSlAdaR4eWTeWHn7AheGe7BC5qnUcCR0OPbAJ go9ezyRnjeYtlsyF5UyKvmUkr+YLsJOFYd/QKacR+4UG240nPHMj7mZvB10RHO+k N/MDyr0GlC/4tdCEiJQ9yvidQqqQcVAYjD/3qHAQMRJHU/dEyyHSGkNwoxwSbp8H amAB75m4vcobYm6ndC8Le+oYLn77eeoXc/BS5YX4nRVGL1aiVI09MA4rl5AX7NRr bY5Tr7QzeJJWdbDptCORpA2LKA4VY0ZRsyEAC8is1V/ZTrdFnb9ei6Zyz2TTGeZt vywNFojdFNBkG2MZfWCvP2BSLNaJH/ZbZK0YLQARyFXzaz2zq3+N4izRVBcAcyw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtnRNrM9LJCUwsrUiTHlV T9Cdu4PY+7Ef/opFdYmaefy0xRHzjGAvPWtKXr3ezSKxWCw5ZK5wW8MrHk4/jO3R JkSh97vcuFdZSvn3+Dros7I6ETLKP74IotHQNAndEUi5jaKN3zLz83h2YQ53HBpt s/y7xF5baJnF4VYAFlr0l/tOGuBd+3y75dBl2EjUqB2rZYLHZpkKw2eNW0yhUX+8 F8SB/78brtCU2hkTb7PAPm5BAyStJyDmqoOuWoEDVjK2DgU+kIQlUwwIl26e680t 9X92y+NxPTTm/eMSIpeIiYXgIsxqqsJmyFPNKKqRZyYWxkZKp9ToIykZexyKtPKg GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 481841467026794081643934012093937456928313736839 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS EV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-25 13:38:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-25 13:38:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Uri' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'UR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Altdorf' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '6460' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Bahnhofplatz 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Urner Kantonalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CHE-108.954.665' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ukb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23032722856810545276784903332284075399105157691839970660043009390546275869125873409486483962138614965585850754656073571369878522269741047694950965141101454686842341076383441869106934950243897893319274120469942388570215051658333175703918585004249171540784660645467953278454275257234897095314211123658823774606879512837460479400299491253588565469485079064378872476846848252699741799640501790439384043571537443570157541893237792852879567971918417321964622221072585214199004116110079480554417235685424458915560592190407873012225859560181936890337033686029349922894568434648342318866849565096459810109220748030581155209241 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-20350159-813d-4532-b988-8519eca57650' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-9fdd910e-b9ff-4b2f-be38-2e93708c1b36' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'urkb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0513f6b07c97d2e5e8d6cae099445187c82632ac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4952df308692595f349c254824abc0ebd106f2d6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (604 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (600 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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