certificates
 
 
usually, the jar files of all non-developmental builds are signed with the BoarderZone Quality Assurance certificate.
this allows to grant specific privileges for these applications as one might deem appropriate, by defining them in a security policy.
please see the Java documentation on how to accomplish this.

the certificate used for signing can be downloaded in the download section.

for a quick reference, the main properties of all the involved certificates are listed below (this output was created with the BoarderZone KeyStoreTool):

=========================================================================
Alias:        bz-root-ca
Entry:        trusted certificate at position 2
Added:        2017-05-30 - 07:56:32.984 +0200
Certificate:  X.509v3 RSA 4096 bits certificate => VERIFIED
- Serial-No.: 0xb1fcf1624767e62e
- Signature:  SHA256withRSA
Subject DN:   CN=BoarderZone Root CA, O=BoarderZone.net, L=Zuerich, C=CH
Issuer DN:    CN=BoarderZone Root CA, O=BoarderZone.net, L=Zuerich, C=CH
Validity:     not before: 2015-02-06 - 02:10:54.000 +0100
              not after:  2035-02-06 - 02:10:54.000 +0100
Key usage:    CA:max-path-length=2, Key certificate sign, CRL sign
Fingerprints:
         MD5: 4C:4D:C6:B4:E7:9B:7D:99:23:1A:C0:60:69:77:A1:28
       SHA-1: E0:DB:BC:CD:44:DB:3F:49:0D:0C:F8:A7:3D:AB:F5:CC:E4:66:3B:8F
=========================================================================
Alias:        bz-trust-ca
Entry:        trusted certificate at position 3
Added:        2017-05-30 - 07:57:02.432 +0200
Certificate:  X.509v3 RSA 4096 bits certificate => VERIFIED
- Serial-No.: 0xb1fcf1624767e62f
- Signature:  SHA256withRSA
Subject DN:   CN=BoarderZone Trust CA, O=BoarderZone.net, L=Zuerich, C=CH
Issuer DN:    CN=BoarderZone Root CA, O=BoarderZone.net, L=Zuerich, C=CH
Validity:     not before: 2015-02-06 - 02:11:19.000 +0100
              not after:  2025-02-06 - 02:11:19.000 +0100
Key usage:    CA:max-path-length=1, Key certificate sign, CRL sign
Fingerprints:
         MD5: 6B:2B:12:88:C8:F9:55:01:62:CA:4C:7C:AC:03:85:74
       SHA-1: DB:35:80:57:B9:BE:5B:CD:E3:03:D1:35:55:9F:98:7A:32:14:8A:81
=========================================================================
Alias:        bz-qa
Entry:        trusted certificate at position 1
Added:        2017-05-30 - 07:57:24.520 +0200
Certificate:  X.509v3 RSA 2048 bits certificate => VERIFIED
- Serial-No.: 0xedcbea09dff155f3
- Signature:  SHA256withRSA
Subject DN:   EMAILADDRESS=qa@boarderzone.net, CN=Quality Assurance,
              O=BoarderZone.net, L=Zuerich, C=CH
Issuer DN:    CN=BoarderZone Trust CA, O=BoarderZone.net, L=Zuerich, C=CH
Validity:     not before: 2015-02-06 - 02:11:45.000 +0100
              not after:  2019-02-06 - 02:11:45.000 +0100
Key usage:    no-CA, Digital signature, Non-repudiation
- Extended:   Code signing
Fingerprints:
         MD5: 9B:83:F0:81:91:01:44:6F:E0:2E:AB:F2:FC:5A:76:9D
       SHA-1: E3:E5:75:41:71:A1:88:0A:81:DF:74:C4:F2:DD:75:9A:C1:69:0F:89
=========================================================================