datashare.snb.ch

- Schweizerische Nationalbank -

Issued by SwissSign RSA TLS OV ICA 2022 - 1

About this certificate

This digital certificate with serial number 69:34:45:2f:14:7c:33:8d:ad:98:d3:0d:03:4f:fe:29:0e:aa:51:3a was issued on by SwissSign AG.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Schweizerische Nationalbank

Organization: Schweizerische Nationalbank
State / Province: ZH
Locality: Zurich
Country: CH

SwissSign AG

Organization: SwissSign AG
Country: CH

This certificate will expire on

Certificate Details

Serial Number (hex): 69:34:45:2f:14:7c:33:8d:ad:98:d3:0d:03:4f:fe:29:0e:aa:51:3a
Serial Number (int): 600609696455056729542909361260163408610674233658
Serial Number lenght: 159 bits, 20 octets

SubjectKeyId: d3:f8:0c:44:a5:e8:af:4e:ae:a4:38:ec:6f:05:bb:d3:24:54:df:c9
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6

Fingerprint (sha1): 02:41:85:29:4f:95:ba:db:a2:58:6b:b3:ca:18:78:44:4b:df:ed:b9
Fingerprint (sha256): 75:46:71:8a:cd:f5:0c:c0:32:07:1e:de:0d:02:5c:a1:3b:eb:f8:36:7d:9e:a4:47:b8:61:a8:bb:9a:1f:ed:de

Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45

Revocation information

OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec
CRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34

Check the revocation status for certificate datashare.snb.ch

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for datashare.snb.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

datashare.snb.ch

Other certificates including the domain name snb.ch

(limited to 100 certificates)
remotemail.snb.ch
bbuem.snb.ch
mailb.snb.ch
ras.snb.ch
rastest.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
rastest.snb.ch
sip3.snb.ch
mailz.snb.ch
bbuem.snb.ch
sip.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
meet.snb.ch
datasharedev.snb.ch
vcse.snb.ch
ras.snb.ch
data.snb.ch
recruiting.snb.ch
ras-betest.snb.ch
rastest.snb.ch
ras.snb.ch
sip3.snb.ch
surveys.snb.ch
sip.snb.ch
ras.snb.ch
sip.snb.ch
ras.snb.ch
testgold.snb.ch
remotemail.snb.ch
testgold.snb.ch
sip3.snb.ch
vcse.snb.ch
ras2.snb.ch
wlanportal1.snb.ch
data.test.snb.ch
sip.snb.ch
vcse.snb.ch
testswiss.snb.ch
testgold.snb.ch
bbuem.snb.ch
data.snb.ch
surveys-usertest.snb.ch
wlanportal1.snb.ch
secmail.snb.ch
ras.snb.ch
surveys.snb.ch
wlanportal1.snb.ch
mailb.snb.ch
snb.ch
surveys.snb.ch
datashare.snb.ch
ras.snb.ch
alert.snb.ch
ras.snb.ch
data.snb.ch
secmail.snb.ch
sip2.snb.ch
rastest.snb.ch
secmail.snb.ch
rastest.snb.ch
sip3.snb.ch
remotez.snb.ch
snb.ch
testgold.snb.ch
testgold.snb.ch
datasharedev.snb.ch
vcse.snb.ch
bbuem.snb.ch
secmail.snb.ch
mailz.snb.ch
rastest.snb.ch
ras.snb.ch
ras.snb.ch
sip3.snb.ch
remote.snb.ch
vcse.snb.ch
securemail.snb.ch
ras.snb.ch
surveys.snb.ch
rastest.snb.ch
ras.snb.ch
testgold.snb.ch
webstats.snb.ch
securemail.snb.ch
surveys-usertest.snb.ch
snb.ch
careers.snb.ch
ras2.snb.ch
datasharedev.snb.ch
testgold.snb.ch
datasharedev.snb.ch
alert.snb.ch
snb.ch

Certificate

The complete raw certificate details for datashare.snb.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml4qz80jsLh/CyolGG1S
AKA489KDt4F9WW+K63xVDg4DW111KBa8rd7pElJFOP36chk0Gw7gApd3CxICgsMy
g4xyQscsB2/kpDb0/hji2EhkZoh2D1mNFfeU3xpObXl4utUPwbM6enusT9je1vmw
5gTPgAAxiCoHh5JzlvvNxOhGVj3ueZboR7MU9zQkhSGY6k2+iVc8AD0LbAEyCb3N
hCRFsnsCbkX+zGr2Lj59Jg6ats/kVf2cCkbCJ1LekmWEjbtQAnmOAYonAJOgTCXu
YIXMjGxewihI/XjPquiYbeuS5vCr3FK/8bYmgC7LXoVpQUJTMmlsycuGqKMhMXoS
VQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 600609696455056729542909361260163408610674233658
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-16 10:09:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-16 10:09:24 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ZH'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Zurich'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Schweizerische Nationalbank'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'datashare.snb.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19487134558189847819514499598050933565099002353426869937287160736524707860835851664021537805568111423706312277839125037920923441515878045111942813737053167466321269111442125878188520659268401034812158080557285555103660217740119292340837336937175199182826045164322063293798150241525428637113169566886010120017844842970517710145262241356776147052847502591729101199324416933582972689424035584485780091354253141908853398882523357503712752847679007911400024893647518273473041865118156881936433394457713099372550147191899827309543567869869056735587373304557806643726434313529642207582721827176431005018781503057944999760469
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'datashare.snb.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d3f80c44a5e8af4eaea438ec6f05bbd32454dfc9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (479 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		003827732d56266664d9c40a481829b1c7905d8307e38977f5bdffd4b366b3e22ac4a88a2ddbf49322995967e82a3ef2584ef162eca3e92bc39b44c82ed4d3c5e658c33c49c749dbb8a363b2c0879236272790138214bdf74869118341ee09e5331f141018043b8a8d5c739fcdccb3cdfba0286e4e8932933daa9cc6eb81b97d160aec2041b217e9392a2b2cba9858dfc7d977aae4d476d792a837185e848d810f6ecf55812df9fc9d441611c9b039799f03c55ff11488c9362e4eede806d366524deddb860e556f3ca3b55706ec9c6779408bab6fb8f90e6353485304e5ce0a13550daa542a818e683bbdce7b6fc7bd0ea9b6c7773e823c63c22df5f9528d48c7deb4feae0ad4109ac9ca4191de26204b65b2620779683acd1fedad0201ed8312adbf6d8fc320a4ed26def32c62d458b6641b275e2314ae0adda357a9768ef6260bb54edb957f4e6733f675e53288806a78beb8a3c9467db4d897ee8444448068dc89fd40115d4b9d211eba31f4189b36a1943124e32a917bb7d704f10696e691a19d54a35f2bc4d05e5e579f4b40db775f3410a533c4063eeb6c5b97a3abd9298b5b557cb6d043bd6e71b10e6afbc9d43a05515773f1275afd7023489be51aceae1fe822f9451ec5993556294f1efde9c1cbad073bf5f43c57f9319588f5f8492e4d82379d770312a52b0b470587dc73347de253a9536788c9f6c8a533c28fd3