ukbhb01mx01-e.urkb.ch
- Urner Kantonalbank -
Issued by SwissSign RSA TLS OV ICA 2022 - 1
About this certificate
This digital certificate with serial number 2c:4b:f4:5f:99:44:e0:85:a7:85:f1:2b:ea:ad:28:94:06:9f:00:7e was issued on by SwissSign AG.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Urner Kantonalbank
Organization:
Urner Kantonalbank
State / Province:
UR
Locality: Altdorf
Country: CH
Locality: Altdorf
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate will expire on
Certificate Details
Serial Number (hex): 2c:4b:f4:5f:99:44:e0:85:a7:85:f1:2b:ea:ad:28:94:06:9f:00:7eSerial Number (int): 252889437734460456181624566624596468906124574846
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 16:80:8b:08:d0:32:f7:7c:17:3c:6c:38:fd:d9:7f:b1:1c:c6:fb:ae
AuthorityKeyId: 7c:6f:0a:6f:13:0f:d9:8c:24:6f:26:34:f3:5c:6b:43:6d:b7:23:b6
Fingerprint (sha1): 4b:ae:cf:d0:81:23:a5:c7:bf:69:c4:89:97:5d:8a:be:b4:5d:c7:84
Fingerprint (sha256): a7:62:23:29:51:26:a3:50:aa:82:98:dd:cf:ee:97:f5:bc:35:da:83:92:2a:58:81:f3:5c:1e:41:93:86:43:6b
Issuing Certificate URL: http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45
Revocation information
OCSP Server: http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efecCRL Distribution Point: http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34
Check the revocation status for certificate ukbhb01mx01-e.urkb.ch
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ukbhb01mx01-e.urkb.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ukbhb01mx01-e.urkb.ch
ukbhb01mx02-e.ukb.ch
ukbhb01mx02-e.urkb.ch
ukbhb01mx01-e.ukb.ch
ukbhb01mx02-e.ukb.ch
ukbhb01mx02-e.urkb.ch
ukbhb01mx01-e.ukb.ch
Other certificates including the domain name urkb.ch
(limited to 100 certificates)
www.ukb.ch
fintest-wwwsec.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
fintest-e-banking.ukb.ch
ukbhb01mx01-e.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
www.urkb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
ibdemo.urkb.ch
www.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-e-banking.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
mobilebanking.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.urkb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
www.urkb.ch
ssl.urkb.ch
fintest-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
wwwsec.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
fintest-e-banking.ukb.ch
ukbhb01mx01-e.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
www.urkb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
ibdemo.urkb.ch
www.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-e-banking.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
mobilebanking.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.urkb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
www.urkb.ch
ssl.urkb.ch
fintest-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
wwwsec.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
Certificate
The complete raw certificate details for ukbhb01mx01-e.urkb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKCzCCB/OgAwIBAgIULEv0X5lE4IWnhfEr6q0olAafAH4wDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgT1YgSUNBIDIwMjIgLSAxMB4XDTI0MDMwNTEz MTc1OFoXDTI1MDMwNTEzMTc1OFowaTELMAkGA1UEBhMCQ0gxCzAJBgNVBAgMAlVS MRAwDgYDVQQHDAdBbHRkb3JmMRswGQYDVQQKDBJVcm5lciBLYW50b25hbGJhbmsx HjAcBgNVBAMTFXVrYmhiMDFteDAxLWUudXJrYi5jaDCCAiIwDQYJKoZIhvcNAQEB BQADggIPADCCAgoCggIBAKdXbPe2RFO2PhxK7YtkEl2lpRXkErywLNdtQ17pGQCs XkA5rNf7/2UvsbrNJSubqVhir6wEeVnpNeQJiyHg7E1FbFRIJCH25g7ZVbdd/YJ+ mjBMydoKZQ+Q+ef2AHm2QI5oDIS1ancvnxZU6uWJDvjUUJILKhdFbVOvONqJBqYB lILvthTiP4HmhJfwjho/v5zY5H+NzJn0nP8FUQOd/03pPGezFit/ZIk1waktljCX ZJUPmBUaR21YI6ffvfyxNtsRbYLlBXpGMnUUK9P4vVpINzgTsorVdEYFI0nLWvk4 qlwpfDElpEiibQNQLlem1WOmQkiI8U0NFM/y8ZepfDoqojmUByfTHHSN24d3x1Nd 6w1mGdH9cMou7CP0UhA0olu6zLbU81sSxkZQgsv463hurFq6met2f+hyRLybLAB7 BcT/g4XVhsVCzI+2xpXfedMCdFq7XKoyeleYdVy1QZNQN5YKIJwfuIq8STm3srr/ FOL8jrBxjN9SXilB23JHzynE/UtiwRYWsabK2Kk0jNldgSEjROg9QRgi7hPe9suS J5hgY6kdsToGJTYiz+XFHwQhlT6UTJ8FPBqGAoNdtU0e49p0yZZU7o7BJR9l2XP5 UFgiMZ5QuKbOL44OVyklCW8PfIRECrS9uhsa9C6zX+seZEjHxWO+nJbt5i0txmsJ AgMBAAGjggTCMIIEvjCBsgYIKwYBBQUHAQEEgaUwgaIwTAYIKwYBBQUHMAKGQGh0 dHA6Ly9haWEuc3dpc3NzaWduLmNoL2Fpci0wZjJiZjlhNS1kZDM3LTQ4YzktYTg1 Yi0xMmFjZGNiOGJlNDUwUgYIKwYBBQUHMAGGRmh0dHA6Ly9vY3NwLnN3aXNzc2ln bi5jaC9zaWduL29jcy1hYWNjY2VkNS02NmU4LTQwNjktOWIxYi1mZDI5YWI3M2Vm ZWMwbwYDVR0gBGgwZjAIBgZngQwBAgIwCAYGBACPegEHMFAGCGCFdAFZAgECMEQw QgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9yeS5zd2lzc3NpZ24uY29tL1N3 aXNzU2lnbl9DUFNfVExTLnBkZjBRBgNVHR8ESjBIMEagRKBChkBodHRwOi8vY3Js LnN3aXNzc2lnbi5jaC9jZHAtOTZiNjJmNWEtNmI3My00ZGE0LTg3ZjctY2U0MDAy YzFjZDM0MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAOBgNVHQ8BAf8E BAMCBaAwYwYDVR0RBFwwWoIVdWtiaGIwMW14MDEtZS51cmtiLmNoghR1a2JoYjAx bXgwMi1lLnVrYi5jaIIVdWtiaGIwMW14MDItZS51cmtiLmNoghR1a2JoYjAxbXgw MS1lLnVrYi5jaDAdBgNVHQ4EFgQUFoCLCNAy93wXPGw4/dl/sRzG+64wHwYDVR0j BBgwFoAUfG8KbxMP2YwkbyY081xrQ223I7YwggJtBgorBgEEAdZ5AgQCBIICXQSC AlkCVwB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABjg7Dh18A AAQDAEcwRQIhALNK2Gm6wN4vn6wLEtekibQM8pwR1ZR8jyPyeLAqRjSgAiBuqlEl mvhuB2UVP/AnsxpE0rG5vCdgPTBMF4Io1nLLTAB1ACjigTj9gyFF6anWqnU3bYN3 qIUSs8B/ckFIIdy96YxmAAABjg7DiPkAAAQDAEYwRAIgQ2GeY8dIjz6KbPxoStb9 UcqQpYUrtMisnF7eCxN/AB4CIHtUksocDCqSTwlvbiwhM/CAP6GC9dYcpytAZB0/ qX6NAHYAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGODsOF5wAA BAMARzBFAiEAxclk+GuT88TaciD5KPXJ0e5h8bkr96Jsu44W6Htx8tYCIE4sebda fa6OooEiYdgP45PcuVapO79ygcv6E+/jvTyVAHYAzPsPaoVxCWX+lZtTzumyfCLp hVwNl422qX5UwP5MDbAAAAGODsOGNgAABAMARzBFAiEA/Rqbgq0/+Tk0gd9JpFwa HGOvGzsiNffu70BXKqK5zYACIH3yBiOf+TrPMCgJtZyQzNzyiXU+4QgjXqwAGN+R a2KlAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGODsOGHAAA BAMARzBFAiAu7l10XLcny2zTQez8K7nMPMg0dbIXg3d5quWEiM+KJQIhAIrmhhyr L8ttdIuAt4EuswoVjNBNFmP391CEQbdR1TkzMA0GCSqGSIb3DQEBCwUAA4ICAQBD Dej3bLVTWS9jQ+dtJ7y6vKEIFD67oM6I2hthBcobCFCIum003Gn/Na9SEjzchXud 9ZqKw74QblCvgDpyAplwShed/y/nkCUo6Ee8hsN2jxNF7whbzNHxqOYmXWWECgJd jtoaC9v6wEagcUmYYnPeR1BXfMI5nD++fkrLUoHTHtb6dGLNc6no4aBmZMJay++/ nX/f+xvqT3P2kRPTLv63qPqobDMaRpD7Z+GKhtZzrkIgR0SB73A+dpyPT2vRpGaY Qlrru/1iTgsWEjtEmudUqTaer8zNwetp7LnT0MoJvuHPXKDw3pxZ6vu+6fbvCGdB DZmrMI31svO6E9ykMINUHPuoasmZXLGYEW74SwLbh+hil6oO3XrnUlB9HdRGc6ao 0uOMvehH2GqvCIn3j3iY88+GOR1lsVoeNsygeGWfrtUimS1IzncMNzPJTFkQMSmm Y/6hdzZxa54CsHILyCrXY2NAtc5WtJLd9SKHStJOj3cXLcpFPQJAMdwjvPJscoI6 495u0Nbhx5gyrG2Ed+S8BkjK2tCsWRXMNBB+lIzrg7OpkZCgQJntS9aDtR1R6KvK iNO0C+/0JNpFAOnHsGG0xfhm3y31/jaeRHp6JdynCTAbA7sVcIMl7UTHgMX3Lis2 xusF+pfYFSP6IuI2ZWHd4DNEh+U4c9x0GqAV0t4Vvw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp1ds97ZEU7Y+HErti2QS XaWlFeQSvLAs121DXukZAKxeQDms1/v/ZS+xus0lK5upWGKvrAR5Wek15AmLIeDs TUVsVEgkIfbmDtlVt139gn6aMEzJ2gplD5D55/YAebZAjmgMhLVqdy+fFlTq5YkO +NRQkgsqF0VtU6842okGpgGUgu+2FOI/geaEl/COGj+/nNjkf43MmfSc/wVRA53/ Tek8Z7MWK39kiTXBqS2WMJdklQ+YFRpHbVgjp9+9/LE22xFtguUFekYydRQr0/i9 Wkg3OBOyitV0RgUjScta+TiqXCl8MSWkSKJtA1AuV6bVY6ZCSIjxTQ0Uz/Lxl6l8 OiqiOZQHJ9McdI3bh3fHU13rDWYZ0f1wyi7sI/RSEDSiW7rMttTzWxLGRlCCy/jr eG6sWrqZ63Z/6HJEvJssAHsFxP+DhdWGxULMj7bGld950wJ0WrtcqjJ6V5h1XLVB k1A3lgognB+4irxJObeyuv8U4vyOsHGM31JeKUHbckfPKcT9S2LBFhaxpsrYqTSM 2V2BISNE6D1BGCLuE972y5InmGBjqR2xOgYlNiLP5cUfBCGVPpRMnwU8GoYCg121 TR7j2nTJllTujsElH2XZc/lQWCIxnlC4ps4vjg5XKSUJbw98hEQKtL26Gxr0LrNf 6x5kSMfFY76clu3mLS3GawkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 252889437734460456181624566624596468906124574846 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS OV ICA 2022 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-05 13:17:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-05 13:17:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'UR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Altdorf' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Urner Kantonalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ukbhb01mx01-e.urkb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 682693784179422918616688556832520634531743279797033431451595206336708008100859610308904903120288796368780879958007158580326192234462568975533925989694665483594402351531577903991267621672508889624648634027400397103247201698910506903651719587145734162390144276636378542580247217352830672665381551052857388218346905815833162937461094065995512049135205322562007377732782766586776046821580150842825609760562458325254452292527742853491889683222666210504521343690263688742747166336875583451037684342532769702383906952781074178892661428591789401013289358688270401656738346451993218576502858354751016852482192602462785590244477516697866816502814924292837259590059826026833572275461177552180679929804468242330249164838744477410560580475608002131159206315324659278617201899900153392310863613149730118159158325101372771602298386507596310505481551831283368566881890487492352668137283308666854109359645219930259429302610682445581571150481740089693312732113314031541178524537900039421541210427438301529913474493801203897972258605874039321312538568506930195693867999015187234432499927449371781628940987715597510296039917758163036580411932003118595779094213326434456164801654681983127098969632241554770691275586859195586907537617917606281688753007369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (165 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.swisssign.ch/air-0f2bf9a5-dd37-48c9-a85b-12acdcb8be45' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.ch/sign/ocs-aaccced5-66e8-4069-9b1b-fd29ab73efec' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.ch/cdp-96b62f5a-6b73-4da4-87f7-ce4002c1cd34' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx01-e.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx02-e.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx02-e.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ukbhb01mx01-e.ukb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 16808b08d032f77c173c6c38fdd97fb11cc6fbae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7c6f0a6f130fd98c246f2634f35c6b436db723b6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (605 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (601 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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