odok.cz
- Úřad vlády České republiky -
Issued by GeoTrust EV RSA CA G2
About this certificate
This digital certificate with serial number 01:5f:5b:97:88:3c:9a:be:a9:73:f4:40:64:9e:36:ab was issued on by DigiCert Inc.
With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Úřad vlády České republiky
Company registration number:
00006599
Organization: Úřad vlády České republiky
Organization: Úřad vlády České republiky
Locality:
Praha
Country: CZ
Country: CZ
DigiCert Inc
Organization:
DigiCert Inc
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:5f:5b:97:88:3c:9a:be:a9:73:f4:40:64:9e:36:abSerial Number (int): 1824353902235424099947674635924813483
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: a4:59:76:37:f3:9a:f2:e2:98:90:71:44:26:b5:5c:ef:23:52:c0:06
AuthorityKeyId: 28:d2:cf:ee:09:84:75:dd:b5:b2:b5:bf:3c:d5:a0:c6:73:88:5d:1f
Fingerprint (sha1): 63:51:e9:ae:37:f8:4f:ea:cf:43:5c:66:6b:03:e1:81:9f:5e:e0:c0
Fingerprint (sha256): 02:8e:41:73:0e:6d:c5:1b:5d:c8:2b:3e:5a:35:3a:f9:e5:df:50:fc:87:88:de:df:18:10:3a:5b:b5:d4:4f:5a
Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/GeoTrustEVRSACAG2.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustEVRSACAG2.crl
Check the revocation status for certificate odok.cz
16
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for odok.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
odok.cz
icm.odok.cz
www.odok.cz
albatros.odok.cz
kormoran.odok.cz
proxy.odok.cz
test.odok.cz
proxytest.odok.cz
edata.odok.cz
icm.gov.cz
kormoran.gov.cz
albatros.gov.cz
www.odok.gov.cz
albatros.odok.gov.cz
kormoran.odok.gov.cz
odok.gov.cz
icm.odok.cz
www.odok.cz
albatros.odok.cz
kormoran.odok.cz
proxy.odok.cz
test.odok.cz
proxytest.odok.cz
edata.odok.cz
icm.gov.cz
kormoran.gov.cz
albatros.gov.cz
www.odok.gov.cz
albatros.odok.gov.cz
kormoran.odok.gov.cz
odok.gov.cz
Other certificates including the domain name odok.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for odok.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHtzCCBp+gAwIBAgIQAV9bl4g8mr6pc/RAZJ42qzANBgkqhkiG9w0BAQsFADBE MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMR4wHAYDVQQDExVH ZW9UcnVzdCBFViBSU0EgQ0EgRzIwHhcNMjQwMjIxMDAwMDAwWhcNMjUwMjIwMjM1 OTU5WjCBnTETMBEGCysGAQQBgjc8AgEDEwJDWjEaMBgGA1UEDwwRR292ZXJubWVu dCBFbnRpdHkxETAPBgNVBAUTCDAwMDA2NTk5MQswCQYDVQQGEwJDWjEOMAwGA1UE BxMFUHJhaGExKDAmBgNVBAoMH8OaxZlhZCB2bMOhZHkgxIxlc2vDqSByZXB1Ymxp a3kxEDAOBgNVBAMTB29kb2suY3owggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDPcghkGcpO+Y1w4F85Ts1jqoigdrwzmUn2xRrrm54VPeaYL4sCPFliwdfp TKbdE1vR3fN7cK1aUoyWy1KLfbIA09G5c+5Kzy+fQFmO0zMlKFLFPxjOiyXODaaq lvhvO/gIauY3299wc5Wc+QU5U7+EYmYH4ZhvIxMpcFnsdHC1EkjPrBT75xFggEZs xbD1J9YTZa1P9FmyeCknKz1BrwR1SeyyO6gk5TANEFGOHcq5hi1EStmygNUd0jAU fGcxOSPOnFgv7Qd8sJtIYyTYbwV/UVgLU2cpqiA+9876ZRseoTim3v17yQIUiKNX e1bohhb27vu1IkfguiOYGLwkPBKjAgMBAAGjggRJMIIERTAfBgNVHSMEGDAWgBQo 0s/uCYR13bWytb881aDGc4hdHzAdBgNVHQ4EFgQUpFl2N/Oa8uKYkHFEJrVc7yNS wAYwggEKBgNVHREEggEBMIH+ggdvZG9rLmN6ggtpY20ub2Rvay5jeoILd3d3Lm9k b2suY3qCEGFsYmF0cm9zLm9kb2suY3qCEGtvcm1vcmFuLm9kb2suY3qCDXByb3h5 Lm9kb2suY3qCDHRlc3Qub2Rvay5jeoIRcHJveHl0ZXN0Lm9kb2suY3qCDWVkYXRh Lm9kb2suY3qCCmljbS5nb3YuY3qCD2tvcm1vcmFuLmdvdi5jeoIPYWxiYXRyb3Mu Z292LmN6gg93d3cub2Rvay5nb3YuY3qCFGFsYmF0cm9zLm9kb2suZ292LmN6ghRr b3Jtb3Jhbi5vZG9rLmdvdi5jeoILb2Rvay5nb3YuY3owSgYDVR0gBEMwQTALBglg hkgBhv1sAgEwMgYFZ4EMAQEwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5kaWdp Y2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2NybDMuZGlnaWNl cnQuY29tL0dlb1RydXN0RVZSU0FDQUcyLmNybDA0oDKgMIYuaHR0cDovL2NybDQu ZGlnaWNlcnQuY29tL0dlb1RydXN0RVZSU0FDQUcyLmNybDBzBggrBgEFBQcBAQRn MGUwJAYIKwYBBQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTA9BggrBgEF BQcwAoYxaHR0cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0dlb1RydXN0RVZSU0FD QUcyLmNydDAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgA dgBOdaMnXJoQwzhbbNTfP1LrHfDgjhuNacCx+mSxYpo53wAAAY3MZOuHAAAEAwBH MEUCIQCPeAqubvqBqXKxlXa3+mH8yzb81f/+3Xau8OAOuVsjwQIgKl42cSlGEyHY CG7/oT4XUb5cMi9tRvKqhFCNMd+/z6kAdQB9WR4S4XgqexxhZ3xe/fjQh1wUoE6V nrkDL9kOjC55uAAAAY3MZOuLAAAEAwBGMEQCIGrrbV5+7E+v1izPg/u37LKBjOdc Vj0MIG6eFT77B+O2AiBi/TYBNZW0XDlcuBF3lJ40PwVXVfjLcuexO29NXkriIQB3 AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45QAAABjcxk67YAAAQDAEgw RgIhAMXJi7JmMrhKJ6CrmnA9svHqW3J0S5AfN2FRN0mySdL5AiEAsPSqQOFQ88m1 qYxuT0e2uBMpl4HyU22a6T43OT8Q+vcwDQYJKoZIhvcNAQELBQADggEBAFMTuJhv qF79NIipVYX+62U5VU5+Hrag7Ra2vbT8PsVPGC8b1KFFY1YDCiMVE53XQ1eBgPnE /yrxnfZj6yMkGiDOIm7aikRA9buqbKqvSnsJZ0G5rDt9jqhE3ljfVVjn8KhvBLJ8 FBIV2b2IAOcjI4yXYsv0+4o1tYVKm78qzlBvDPe0j/yLeItlJ+i21RWgzP900je4 QoqcXJyH0PlyKo0cFtg5e58HNVwKj4u/kQakRi2jQa1y64QavcZGGOKDIGZ1sk+X 8zjWfQgB0IVBkgR5SrZFeveHQCBDKBjRnZj/bH0IY4uxYTFvBV0B+mYIIunGGnO9 BBVYn4TrSGbc0OI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3IIZBnKTvmNcOBfOU7N Y6qIoHa8M5lJ9sUa65ueFT3mmC+LAjxZYsHX6Uym3RNb0d3ze3CtWlKMlstSi32y ANPRuXPuSs8vn0BZjtMzJShSxT8Yzoslzg2mqpb4bzv4CGrmN9vfcHOVnPkFOVO/ hGJmB+GYbyMTKXBZ7HRwtRJIz6wU++cRYIBGbMWw9SfWE2WtT/RZsngpJys9Qa8E dUnssjuoJOUwDRBRjh3KuYYtRErZsoDVHdIwFHxnMTkjzpxYL+0HfLCbSGMk2G8F f1FYC1NnKaogPvfO+mUbHqE4pt79e8kCFIijV3tW6IYW9u77tSJH4LojmBi8JDwS owIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1824353902235424099947674635924813483 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust EV RSA CA G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '00006599' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Úřad vlády České republiky' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'odok.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26187560786300633226124997277316891014653402569741811653328800469240281581945764613571876210241278044865218297419118133058135292545925718369964485590454857328840645006421682507624529238497626293070615025596913665223950409177118662795100007135904252345983373378433601467586900498241322136652604184742863468598441664419991033114766029785286006030949143471538901400466996239117689178472002071409479183397855757528532801835879116610402927447324840304256405208860753356205056153637968448717096699196388100931986844318179970880951587051743688008817418262406786428419671704086281495140541339021950700559836461555112658866851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 28d2cfee098475ddb5b2b5bf3cd5a0c673885d1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a4597637f39af2e29890714426b55cef2352c006 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (257 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icm.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albatros.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kormoran.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proxy.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'proxytest.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edata.odok.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icm.gov.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kormoran.gov.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albatros.gov.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.odok.gov.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albatros.odok.gov.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kormoran.odok.gov.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odok.gov.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustEVRSACAG2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustEVRSACAG2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 01680076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018dcc64eb8700000403004730450221008f780aae6efa81a972b19576b7fa61fccb36fcd5fffedd76aef0e00eb95b23c102202a5e367129461321d8086effa13e1751be5c322f6d46f2aa84508d31dfbfcfa90075007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000018dcc64eb8b000004030046304402206aeb6d5e7eec4fafd62ccf83fbb7ecb2818ce75c563d0c206e9e153efb07e3b6022062fd36013595b45c395cb81177949e343f055755f8cb72e7b13b6f4d5e4ae221007700e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018dcc64ebb60000040300483046022100c5c98bb26632b84a27a0ab9a703db2f1ea5b72744b901f3761513749b249d2f9022100b0f4aa40e150f3c9b5a98c6e4f47b6b813299781f2536d9ae93e37393f10faf7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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