wwwsec.urkb.ch
- Urner Kantonalbank -
Issued by SwissSign RSA TLS EV ICA 2021 - 1
About this certificate
This digital certificate with serial number 3e:b8:7d:2c:61:92:21:76:0c:fd:e6:1b:88:a4:79:83:9c:84:56:e6 was issued on by SwissSign AG.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Urner Kantonalbank
Company registration number:
CHE-108.954.665
Organization: Urner Kantonalbank
Organization: Urner Kantonalbank
Address:
Bahnhofstrasse 1
Postal code: 6460
State / Province: UR
Locality: Altdorf
Country: CH
Postal code: 6460
State / Province: UR
Locality: Altdorf
Country: CH
SwissSign AG
Organization:
SwissSign AG
Country:
CH
This certificate has expire since
Certificate Details
Serial Number (hex): 3e:b8:7d:2c:61:92:21:76:0c:fd:e6:1b:88:a4:79:83:9c:84:56:e6Serial Number (int): 358071669045467169317564499657731119835295012582
Serial Number lenght: 158 bits, 20 octets
SubjectKeyId: 38:4e:10:7d:e2:3e:62:2b:cd:e8:38:c6:14:dc:64:24:cf:0c:5e:cd
AuthorityKeyId: da:34:d4:8e:10:23:f4:6a:2d:6c:b4:1f:f3:28:11:de:5e:01:c4:de
Fingerprint (sha1): 0d:77:da:fc:93:72:ff:63:dc:d6:34:3a:b3:49:a1:e6:26:1b:2f:19
Fingerprint (sha256): eb:d2:d1:13:84:81:ed:1e:8b:ba:2c:06:8a:5c:1b:fc:74:ed:15:dd:63:55:72:44:de:e4:47:89:87:50:45:4a
Issuing Certificate URL: http://swisssign.net/cgi-bin/authority/download/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE
Revocation information
OCSP Server: http://ocsp.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DECRL Distribution Point: http://crl.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE
CRL Distribution Point: ldap://directory.swisssign.net/CN=DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint
Check the revocation status for certificate wwwsec.urkb.ch
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for wwwsec.urkb.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
wwwsec.urkb.ch
e-banking.ukb.ch
mobilebanking.ukb.ch
mobilebanking.urkb.ch
activation.ukb.ch
activation.urkb.ch
cronto.ukb.ch
cronto.urkb.ch
e-banking.ukb.ch
mobilebanking.ukb.ch
mobilebanking.urkb.ch
activation.ukb.ch
activation.urkb.ch
cronto.ukb.ch
cronto.urkb.ch
Other certificates including the domain name urkb.ch
(limited to 100 certificates)
www.ukb.ch
fintest-wwwsec.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
fintest-e-banking.ukb.ch
ukbhb01mx01-e.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
www.urkb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
ibdemo.urkb.ch
www.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-e-banking.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
mobilebanking.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.urkb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
www.urkb.ch
ssl.urkb.ch
fintest-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
wwwsec.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
fintest-dev-wwwsec.ukb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
fintest-e-banking.ukb.ch
ukbhb01mx01-e.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
www.urkb.ch
www.ukb.ch
fintest-e-banking.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
www.ukb.ch
wwwsec.ukb.ch
ibdemo.urkb.ch
www.ukb.ch
wwwsec.ukb.ch
wwwsec.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-dev-wwwsec.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.ukb.ch
www.urkb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
fintest-e-banking.ukb.ch
wwwsec.ukb.ch
ukbhb01mx01-e.urkb.ch
mobilebanking.urkb.ch
www.ukb.ch
fintest-wwwsec.ukb.ch
wwwsec.urkb.ch
ukbhb01mx01-e.urkb.ch
www.ukb.ch
www.privasphere.com
ukbhb01mx01-e.urkb.ch
fintest-wwwsec.ukb.ch
www.ukb.ch
www.ukb.ch
ukbhb01mx01-e.urkb.ch
www.urkb.ch
ssl.urkb.ch
fintest-wwwsec.ukb.ch
fintest-e-banking.ukb.ch
wwwsec.urkb.ch
www.privasphere.com
wwwsec.urkb.ch
www.ukb.ch
Certificate
The complete raw certificate details for wwwsec.urkb.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIINjCCBh6gAwIBAgIUPrh9LGGSIXYM/eYbiKR5g5yEVuYwDQYJKoZIhvcNAQEL BQAwUDELMAkGA1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzEqMCgGA1UE AxMhU3dpc3NTaWduIFJTQSBUTFMgRVYgSUNBIDIwMjEgLSAxMB4XDTIyMDQyMDA4 NDMxNloXDTIzMDQyMDA4NDMxNlowge8xEzARBgsrBgEEAYI3PAIBAxMCQ0gxEzAR BgsrBgEEAYI3PAIBAhMCVVIxGDAWBgNVBAUTD0NIRS0xMDguOTU0LjY2NTEdMBsG A1UEDxMUUHJpdmF0ZSBPcmdhbml6YXRpb24xCzAJBgNVBAYTAkNIMQswCQYDVQQI EwJVUjEQMA4GA1UEBxMHQWx0ZG9yZjENMAsGA1UEERMENjQ2MDEZMBcGA1UECRMQ QmFobmhvZnN0cmFzc2UgMTEbMBkGA1UEChMSVXJuZXIgS2FudG9uYWxiYW5rMRcw FQYDVQQDEw53d3dzZWMudXJrYi5jaDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAKueVmuDp88MlBM7Ve/eid4F7OnySp8Jh8XNWWkMnShXy1as2UtPnDvL 7D0M2za2/uHIi3m/g81SB8ETMw0PEgASf/kCwkW1h/Elze3sUjXeepHYWqt7Ap/b ugpLbsNWUnszc+kDeAe+kScLVPz+fCfB3DkdWQaih5w7t5wSsbPAn5SEsaRpWLvg A/5nd4SQHeTrgDOSk64gItzSDAD1HFdqoOQwZQut2vOIRIKR3S4+xPvSsu7PFkAf dW7XdGvHbEgRpNKRIaKZgHohybc8YcM7+SrvALbxqAnyh87qrj4iXwuqxfnEGzoW XDmTpZZ+fgomshxHyMf9iaqoTDjMQskCAwEAAaOCA2YwggNiMIGgBgNVHREEgZgw gZWCDnd3d3NlYy51cmtiLmNoghBlLWJhbmtpbmcudWtiLmNoghRtb2JpbGViYW5r aW5nLnVrYi5jaIIVbW9iaWxlYmFua2luZy51cmtiLmNoghFhY3RpdmF0aW9uLnVr Yi5jaIISYWN0aXZhdGlvbi51cmtiLmNogg1jcm9udG8udWtiLmNogg5jcm9udG8u dXJrYi5jaDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMB0GA1UdDgQWBBQ4ThB94j5iK83oOMYU3GQkzwxezTAfBgNVHSMEGDAW gBTaNNSOECP0ai1stB/zKBHeXgHE3jCB/wYDVR0fBIH3MIH0MEegRaBDhkFodHRw Oi8vY3JsLnN3aXNzc2lnbi5uZXQvREEzNEQ0OEUxMDIzRjQ2QTJENkNCNDFGRjMy ODExREU1RTAxQzRERTCBqKCBpaCBooaBn2xkYXA6Ly9kaXJlY3Rvcnkuc3dpc3Nz aWduLm5ldC9DTj1EQTM0RDQ4RTEwMjNGNDZBMkQ2Q0I0MUZGMzI4MTFERTVFMDFD NERFJTJDTz1Td2lzc1NpZ24lMkNDPUNIP2NlcnRpZmljYXRlUmV2b2NhdGlvbkxp c3Q/YmFzZT9vYmplY3RDbGFzcz1jUkxEaXN0cmlidXRpb25Qb2ludDBuBgNVHSAE ZzBlMFAGCGCFdAFZAgEDMEQwQgYIKwYBBQUHAgEWNmh0dHBzOi8vcmVwb3NpdG9y eS5zd2lzc3NpZ24uY29tL1N3aXNzU2lnbl9DUFNfVExTLnBkZjAIBgYEAI96AQQw BwYFZ4EMAQEwgcYGCCsGAQUFBwEBBIG5MIG2MGQGCCsGAQUFBzAChlhodHRwOi8v c3dpc3NzaWduLm5ldC9jZ2ktYmluL2F1dGhvcml0eS9kb3dubG9hZC9EQTM0RDQ4 RTEwMjNGNDZBMkQ2Q0I0MUZGMzI4MTFERTVFMDFDNERFME4GCCsGAQUFBzABhkJo dHRwOi8vb2NzcC5zd2lzc3NpZ24ubmV0L0RBMzRENDhFMTAyM0Y0NkEyRDZDQjQx RkYzMjgxMURFNUUwMUM0REUwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcN AQELBQADggIBADCDsnKvxLYZZPyi/iN4HO8IoPYrRQKE2SIpsSXidLup+P0iV8Rb 544lMuUiuL1/4pYybemR0QO6uF6+FbP84Ofji2AcqohVgIhvcXM0JHC7pNr5jb6P +Ua2hq8xbQYpO0X8q0oC4zqVgYwCsC17LmijVczBzO6hMEdAzCjgMLnXyFwTxqPY EaHwqVb7aWVwNj4CSgr5DLoCrxq1RJnCeG74lzdrgnXri2s2utfzbM7/N94kkSr2 ugORJWVSsvT1eGo8pkM4N5AI2iVEnYjg+PwXfpdCftcbMtGyS12izGARkPhlZyrk 1NDV5hGRZGv5JGF5PQsLNg5XNsH0+FMGGYF0ZJXKAw4SRYdQhFCH+lQSeILWgJv9 4vBgICypZBBv08vnGsXBsdE7cQ0kEoZAABJOaPn+a6kNkRcQi8PjfX13nUcBk2P1 UFp1F3tEN4CoK6noAQ97fXB0St6sfZ2Jnt7zpOrj3HpFNOk5a1B3MiUhzk1HwALg jchXM/0cjC3RrAk5WprcNlU1M9yG58YNUtbNifyizPwBreFaE6sS7P7+obeQqJfR vQaWR4oX5KgEunzPHkjwzx0dgBinqVI+2xMNxqhwPr8WQPJGWUlblNkFkxgBsP0M xUu2wu4O8tc98afecNNuJdsJk5Tdhy6kUMtM1H9C3Hnum9Z9l3mrwrSr -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq55Wa4OnzwyUEztV796J 3gXs6fJKnwmHxc1ZaQydKFfLVqzZS0+cO8vsPQzbNrb+4ciLeb+DzVIHwRMzDQ8S ABJ/+QLCRbWH8SXN7exSNd56kdhaq3sCn9u6Cktuw1ZSezNz6QN4B76RJwtU/P58 J8HcOR1ZBqKHnDu3nBKxs8CflISxpGlYu+AD/md3hJAd5OuAM5KTriAi3NIMAPUc V2qg5DBlC63a84hEgpHdLj7E+9Ky7s8WQB91btd0a8dsSBGk0pEhopmAeiHJtzxh wzv5Ku8AtvGoCfKHzuquPiJfC6rF+cQbOhZcOZOlln5+CiayHEfIx/2JqqhMOMxC yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 358071669045467169317564499657731119835295012582 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign AG' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SwissSign RSA TLS EV ICA 2021 - 1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-04-20 08:43:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-20 08:43:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CHE-108.954.665' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CH' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Altdorf' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '6460' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Bahnhofstrasse 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Urner Kantonalbank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'wwwsec.urkb.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21664829318976928460648672110316657151845466043583978844783168563915272677954809313261895497668587732365879668195116833508615078697503502374667925310239180823188745505211530952259067108643669121635727673336895792526516473040351090018067183689316819018000091342375818931829268246815636512651557769034530804605723970261902190548155202259601092070959650145745098270598235216480196256312600832198432171303697121676478773434269713145900495660836018091091597436093142656984080729485457196522333917941420886941122675238773385645653021685635905322098032685698899825095905774323131692410538332749642165971711067351645955048137 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (152 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwsec.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'e-banking.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobilebanking.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mobilebanking.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activation.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activation.urkb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cronto.ukb.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cronto.urkb.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 384e107de23e622bcde838c614dc6424cf0c5ecd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName da34d48e1023f46a2d6cb41ff32811de5e01c4de . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://directory.swisssign.net/CN=DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE%2CO=SwissSign%2CC=CH?certificateRevocationList?base?objectClass=cRLDistributionPoint' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.756.1.89.2.1.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repository.swisssign.com/SwissSign_CPS_TLS.pdf' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 0.4.0.2042.1.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (185 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://swisssign.net/cgi-bin/authority/download/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.swisssign.net/DA34D48E1023F46A2D6CB41FF32811DE5E01C4DE' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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