certificates
 
 
usually, the jar files of all non-developmental builds are signed with the BoarderZone Quality Assurance certificate.
this allows to grant specific privileges for these applications as one might deem appropriate, by defining them in a security policy.
please see the Java documentation on how to accomplish this.

the certificate used for signing can be downloaded in the download section.

for a quick reference, the main properties of all the involved certificates are listed below (this output was created with the BoarderZone KeyStoreTool):

=========================================================================
Alias:        bz-root-ca
Entry:        trusted certificate at position 1
Added:        2015-03-30 - 18:21:48.166 +0200
Certificate:  X.509v3 RSA 4096 bits certificate => VERIFIED
- Serial-No.: 0xb1fcf1624767e62e
- Signature:  SHA256withRSA
Subject DN:   CN=BoarderZone Root CA, O=BoarderZone.net, L=Zuerich, C=CH
Issuer DN:    CN=BoarderZone Root CA, O=BoarderZone.net, L=Zuerich, C=CH
Validity:     not before: 2015-02-06 - 02:10:54.000 +0100
              not after:  2035-02-06 - 02:10:54.000 +0100
Key usage:    CA:max-path-length=2, Key certificate sign, CRL sign
Fingerprints:
         MD5: 4C:4D:C6:B4:E7:9B:7D:99:23:1A:C0:60:69:77:A1:28
       SHA-1: E0:DB:BC:CD:44:DB:3F:49:0D:0C:F8:A7:3D:AB:F5:CC:E4:66:3B:8F
=========================================================================
Alias:        bz-trust-ca
Entry:        trusted certificate at position 3
Added:        2015-03-30 - 18:22:04.733 +0200
Certificate:  X.509v3 RSA 4096 bits certificate => VERIFIED
- Serial-No.: 0xb1fcf1624767e62f
- Signature:  SHA256withRSA
Subject DN:   CN=BoarderZone Trust CA, O=BoarderZone.net, L=Zuerich, C=CH
Issuer DN:    CN=BoarderZone Root CA, O=BoarderZone.net, L=Zuerich, C=CH
Validity:     not before: 2015-02-06 - 02:11:19.000 +0100
              not after:  2025-02-06 - 02:11:19.000 +0100
Key usage:    CA:max-path-length=1, Key certificate sign, CRL sign
Fingerprints:
         MD5: 38:3A:29:8E:21:A1:91:B3:16:76:41:AF:8E:0F:2B:E8
       SHA-1: D3:56:7D:68:7C:A3:A7:F9:B4:D8:A5:0A:88:76:FB:37:6F:D0:B7:88
=========================================================================
Alias:        bz-qa
Entry:        trusted certificate at position 2
Added:        2015-03-30 - 18:22:29.896 +0200
Certificate:  X.509v3 RSA 2048 bits certificate => VERIFIED
- Serial-No.: 0xedcbea09dff155f3
- Signature:  SHA256withRSA
Subject DN:   EMAILADDRESS=qa@boarderzone.net, CN=Quality Assurance,
              O=BoarderZone.net, L=Zuerich, C=CH
Issuer DN:    CN=BoarderZone Trust CA, O=BoarderZone.net, L=Zuerich, C=CH
Validity:     not before: 2015-02-06 - 02:11:45.000 +0100
              not after:  2019-02-06 - 02:11:45.000 +0100
Key usage:    no-CA, Digital signature, Non-repudiation, Key encipherment
- Extended:   Code signing,
              Microsoft Individual Code Signing (authenticode),
              Microsoft Commercial Code Signing (authenticode)
Fingerprints:
         MD5: 9E:04:44:D1:74:21:75:89:BA:B2:60:2D:99:71:D8:98
       SHA-1: D4:D2:57:B0:D7:DF:F4:19:E7:26:84:21:6B:1E:E3:B3:D5:C9:77:DE
=========================================================================