DV SSL/TLS Certificate for astom.cz

Certificate is witin its validity period

Issued by DigiCert Inc (Encryption Everywhere DV TLS CA - G2)

About the astom.cz DV SSL/TLS Certificate

This certificate with serial number 09:12:5a:b5:f3:f4:c0:7a:9a:ef:7c:2b:0c:41:05:51 for astom.cz was issued on by DigiCert Inc.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for astom.cz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

DigiCert Inc

Organization: DigiCert Inc
Organizational unit: www.digicert.com
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 09:12:5a:b5:f3:f4:c0:7a:9a:ef:7c:2b:0c:41:05:51
Serial Number (int): 12058353138180357728235659869322020177
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 6b:b1:45:e8:58:fd:6c:f9:e9:47:e3:38:1e:68:24:f9:ae:3a:0d:48
Authority Key Identifier: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6

Fingerprint (SHA-1): 09:3a:0a:f8:09:27:b6:64:14:b8:a2:73:e5:24:27:0c:a9:8a:95:c8
Fingerprint (SHA-256): b6:22:75:a2:6c:87:d0:56:48:2e:02:bf:a2:dd:5a:91:a6:6d:23:6f:ad:aa:8a:12:4a:40:fc:d6:e8:a0:61:aa

Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt

Revocation Information

OCSP Server: http://ocsp.digicert.com

Check the revocation status for certificate astom.cz
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for astom.cz

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

astom.cz

X.509 Certificate

The complete raw X.509 certificate details for astom.cz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF5zCCBM+gAwIBAgIQCRJatfP0wHqa73wrDEEFUTANBgkqhkiG9w0BAQsFADBu
MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3
d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg
RFYgVExTIENBIC0gRzIwHhcNMjUwNjE5MDAwMDAwWhcNMjYwNjE4MjM1OTU5WjAT
MREwDwYDVQQDEwhhc3RvbS5jejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBALPa7n7kGgkPjC0bGNMzYWGEpDCIDa/BsQpOSDeLr72VT2X2uolil0jOA2UP
paH6eRva0ixouTSMeOc9HtQUGqId3dKi1LL+L+3v8VkA4Em0/b8XhUmxAZyvmiLk
vKdXJ7KvnYSEUXCcTdRM9ijH8oGJx52uV14kv30CGoQPR8nLuQYXPGcU6pZCxw9h
8OWxTtAfUegz6m/5UG5jf9HTcijYtEj1GKGp67SVu7G6RA1I49gwO9Aku7jx99Jh
ytP92FLu18NxKcpY+FCv5Re4lkBRUuZ71ZQGVMVgqXTAHvnduf472+Ec2rMAJXgD
dZrgUCVl1LKY6B5K8YR837fVEScCAwEAAaOCAtowggLWMB8GA1UdIwQYMBaAFHjf
kZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBRrsUXoWP1s+elH4zgeaCT5rjoN
SDATBgNVHREEDDAKgghhc3RvbS5jejA+BgNVHSAENzA1MDMGBmeBDAECATApMCcG
CCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/
BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBgAYIKwYBBQUH
AQEEdDByMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wSgYI
KwYBBQUHMAKGPmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9FbmNyeXB0aW9u
RXZlcnl3aGVyZURWVExTQ0EtRzIuY3J0MAwGA1UdEwEB/wQCMAAwggF9BgorBgEE
AdZ5AgQCBIIBbQSCAWkBZwB2AA5XlLzzrqk+MxssmQez95Dfm8I9cTIl3SGpJaxh
xU4hAAABl4j9HBIAAAQDAEcwRQIgKdUQo5k0aIdDdP84299rMjIBLOPArhog5sI+
pbmQZC4CIQDgTgJh7a32fa+D4J38I7NW5A3thTARCureZwd/cKbYpwB1AGQRxGyk
EuyniRyiAi4AvKtPKAfUHjUnq+r+1QPJfc3wAAABl4j9HEIAAAQDAEYwRAIgDI9j
rK2vnT69VAqvO/DQS66wz2lI5z9nnUUJbFN+EiUCIByFdKGLN/dXX1vxvPaA28xl
0DCI27uq9CSIWxSvvVmJAHYASZybad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd
+MMAAAGXiP0cWAAABAMARzBFAiBkQJdCC27DyycDReiZ6iyyBHzvvRQwKtozDiu5
nzI+6QIhAKBSEr+Vw7UQFvouMtAp2vDyfMZq2gD3lhDBH2SieNfmMA0GCSqGSIb3
DQEBCwUAA4IBAQCnhzYxrunS7+Q3nK2k2G6wfKp4XDpDjuXLQMrAEwX2YSBdKFjn
tu/EiSmp5d9HBR7flTiQaLCwkEg6dlHCDGx0SNoXU1ZCq87HMEVnQ2eFDc6NvWmO
UwaCv3/CrsCt5LGIQnLIocR0trHdOqA0/hSidEPL12J/QlWP/udcTQNrSMvcriV3
cFGwWLxYLiklndyIxGxE3twoQyVTW1D5WlE6Z1u8Tq6bd3q2loF3wiOFUn8Witwc
ogpObAwPAI6OeV3E0bQ3EM0rLsU9abqEJfINqqoGxM+wMidmUnmI+2yPgxpC5zAO
Pj1yLmhSGGzi+Pnk97dNavmX/LEvrw05C+xH
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9rufuQaCQ+MLRsY0zNh
YYSkMIgNr8GxCk5IN4uvvZVPZfa6iWKXSM4DZQ+lofp5G9rSLGi5NIx45z0e1BQa
oh3d0qLUsv4v7e/xWQDgSbT9vxeFSbEBnK+aIuS8p1cnsq+dhIRRcJxN1Ez2KMfy
gYnHna5XXiS/fQIahA9Hycu5Bhc8ZxTqlkLHD2Hw5bFO0B9R6DPqb/lQbmN/0dNy
KNi0SPUYoanrtJW7sbpEDUjj2DA70CS7uPH30mHK0/3YUu7Xw3Epylj4UK/lF7iW
QFFS5nvVlAZUxWCpdMAe+d25/jvb4RzaswAleAN1muBQJWXUspjoHkrxhHzft9UR
JwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 12058353138180357728235659869322020177
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-19 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-06-18 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'astom.cz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22704615796267372163478134768119652292140287174557581803263719512721468259319589669475732341509437872858411127771512951164525360572515857541261776826394080176712807308803119685651763083436928824959746382975389637786246647674624546028061812125949846850647963714848126626504752544211646579715468402829852354513736615635338563726738382695617227484373553775557774729844670976738180199466047646304650400908359508504304660382762421287449969292987706312832730527201673092093152018197602193619540099683054525223720139940990431506142605998157902996068124255134819451949320256238639477183313553745820948517521253760926605447463
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6bb145e858fd6cf9e947e3381e6824f9ae3a0d48
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'astom.cz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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