onlinechat2.nic.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:cb:29:34:92:b7:e8:d2:c2:ea:3f:8a:c1:72:d4:d7:33:18 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=onlinechat2.nic.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:cb:29:34:92:b7:e8:d2:c2:ea:3f:8a:c1:72:d4:d7:33:18Serial Number (int): 330468949603297684575177624770144938439448
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 96:86:a0:c2:d0:6f:fe:ca:ad:a4:01:4f:2d:8e:b2:c8:17:8a:e6:43
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2c:68:fb:8f:56:82:4f:a1:da:bd:bf:07:d6:2f:3d:a3:e2:4c:3d:1d
Fingerprint (sha256): 04:5b:ba:97:b5:98:e3:79:46:3b:e4:9f:59:95:8a:c9:de:4d:d5:6e:ab:d0:5e:4e:58:15:c2:8b:60:0b:f0:fc
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate onlinechat2.nic.cz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for onlinechat2.nic.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
onlinechat2.nic.cz
Other certificates including the domain name nic.cz
(limited to 100 certificates)
sentry.labs.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
devpub.labs.nic.cz
mirrors.nic.cz
nic.cz
zonemaster.labs.nic.cz
mojeid.regtest.nic.cz
stats.nic.cz
cz-test.dsdng.nic.cz
rdap.nic.cz
stork.nic.cz
odvr.nic.cz
public.nic.cz
gitlab.labs.nic.cz
sentry.labs.nic.cz
dscng.labs.nic.cz
stats.labs.nic.cz
katalogrouteru.cz
mirrors.nic.cz
haas.nic.cz
onlinechat2.nic.cz
ethercalc.labs.nic.cz
mail.nic.cz
whois.nic.cz
redmine.labs.nic.cz
nextcloud.labs.nic.cz
rdap.nic.cz
mail.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
devpub.labs.nic.cz
mailing.nic.cz
stats.nic.cz
gitlab.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
test-ipv6.nic.cz
stork.nic.cz
mailing.akademie.nic.cz
kalendar.nic.cz
ethercalc.labs.nic.cz
blog.nic.cz
gitlab.labs.nic.cz
eidasnode-test.nic.cz
netmetr-control.labs.nic.cz
intranet.nic.cz
haas.nic.cz
akademie.nic.cz
kalendar.nic.cz
mojeid.fred.nic.cz
moodle.nic.cz
katalogrouteru.cz
lettie.labs.nic.cz
nic.cz
howl.labs.nic.cz
mdm.nic.cz
ext-mattermost.nic.cz
bobek.nic.cz
secure.nic.cz
yangson.labs.nic.cz
mirror-r-01.nic.cz
yangson.labs.nic.cz
sentry.labs.nic.cz
onlinechat2.nic.cz
nic.cz
dnscheck.labs.nic.cz
gitlab.nic.cz
jetscreen.labs.nic.cz
webid.labs.nic.cz
nic.cz
akademie.nic.cz
mailing-mojeid.nic.cz
devpub.labs.nic.cz
api.nic.cz
gitweb.labs.nic.cz
public.nic.cz
blog.nic.cz
kalendar.nic.cz
kalendar.nic.cz
akademie.nic.cz
yangson.labs.nic.cz
piwik.nic.cz
dnscheck.labs.nic.cz
sophie.labs.nic.cz
epp.nic.cz
akademie.nic.cz
howl.labs.nic.cz
bobek.nic.cz
katalogrouteru.cz
intranet.nic.cz
labs.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
sentry.labs.nic.cz
csp.nic.cz
howl.labs.nic.cz
piwik.nic.cz
akademie.nic.cz
onlinechat.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
devpub.labs.nic.cz
mirrors.nic.cz
nic.cz
zonemaster.labs.nic.cz
mojeid.regtest.nic.cz
stats.nic.cz
cz-test.dsdng.nic.cz
rdap.nic.cz
stork.nic.cz
odvr.nic.cz
public.nic.cz
gitlab.labs.nic.cz
sentry.labs.nic.cz
dscng.labs.nic.cz
stats.labs.nic.cz
katalogrouteru.cz
mirrors.nic.cz
haas.nic.cz
onlinechat2.nic.cz
ethercalc.labs.nic.cz
mail.nic.cz
whois.nic.cz
redmine.labs.nic.cz
nextcloud.labs.nic.cz
rdap.nic.cz
mail.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
devpub.labs.nic.cz
mailing.nic.cz
stats.nic.cz
gitlab.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
test-ipv6.nic.cz
stork.nic.cz
mailing.akademie.nic.cz
kalendar.nic.cz
ethercalc.labs.nic.cz
blog.nic.cz
gitlab.labs.nic.cz
eidasnode-test.nic.cz
netmetr-control.labs.nic.cz
intranet.nic.cz
haas.nic.cz
akademie.nic.cz
kalendar.nic.cz
mojeid.fred.nic.cz
moodle.nic.cz
katalogrouteru.cz
lettie.labs.nic.cz
nic.cz
howl.labs.nic.cz
mdm.nic.cz
ext-mattermost.nic.cz
bobek.nic.cz
secure.nic.cz
yangson.labs.nic.cz
mirror-r-01.nic.cz
yangson.labs.nic.cz
sentry.labs.nic.cz
onlinechat2.nic.cz
nic.cz
dnscheck.labs.nic.cz
gitlab.nic.cz
jetscreen.labs.nic.cz
webid.labs.nic.cz
nic.cz
akademie.nic.cz
mailing-mojeid.nic.cz
devpub.labs.nic.cz
api.nic.cz
gitweb.labs.nic.cz
public.nic.cz
blog.nic.cz
kalendar.nic.cz
kalendar.nic.cz
akademie.nic.cz
yangson.labs.nic.cz
piwik.nic.cz
dnscheck.labs.nic.cz
sophie.labs.nic.cz
epp.nic.cz
akademie.nic.cz
howl.labs.nic.cz
bobek.nic.cz
katalogrouteru.cz
intranet.nic.cz
labs.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
sentry.labs.nic.cz
csp.nic.cz
howl.labs.nic.cz
piwik.nic.cz
akademie.nic.cz
onlinechat.nic.cz
Certificate
The complete raw certificate details for onlinechat2.nic.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA8spNJK36NLC6j+KwXLU1zMYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAyMTgwODAwMTRaFw0x OTA1MTkwODAwMTRaMB0xGzAZBgNVBAMTEm9ubGluZWNoYXQyLm5pYy5jejCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALbWNw4gRAfIc7giJWgwmEfVLOHk KreLiD1cvmmVhFtBNdJLgqfh8boy9pD/VnEUN9OYnll+2ng9Y6Kx1+CH7TdEsf01 NmaxuSLbZ9K2+W7PNbwtN7XgutVSccg3U1tPpqib3m5GYZKIe3N8cTyb50D+SDKM 7yI10jSs+//YTtVuYE95R+OVtmtdW4S0z/O42oUoa5LUftNDLJmL5TrhPJRAL5wK i1uTFV99/e1DHVSUGtn3GtUjzfajEMCGwc1oCf6VuqDP5m6ksKbDOLSwXWZNzoCd LvazsglTxyvezu9+pWP3JHq1AqWcbn2bosz/uTPJMjHu06dNdr/985uK8WnPv/PH Wkm2AUUzzF3b4t5e5AVm0x0aQRhQyNYhMmhiVIGokx3qSZqunFMvAUhZd4q736tU rYf/qPOUFAAf4KNg5Oinlmwxyr4J9MNy6WewQPMbhcOIiZSKdpaTPNTa+s1YZm7n C7mB4R7/+nrXHt/lw8SUbfBHIPzNKIQ/VWVEXfhpzDE5uWn+KyiJTIXLr+UC0fW2 2aDbwCERH55wSvNE/BzMse8LV2EFeK9+p5a873JPQdANcqXeKZ5KKMTxn2w165PO zgy48q4R0JY80MeRoeD8NYdYDl7RYhkhr/5bHAYMjyR1LUskdvSteFiwx52O9uuq RvIGhV6/JtyQA+WlAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FJaGoMLQb/7KraQBTy2OssgXiuZDMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISb25saW5lY2hhdDIu bmljLmN6MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFo/9WZ4QAABAMARjBEAiAYZanXjLUeZZBv4dx62hbPMOKV7RniSQ/yR0RMQdMZ iQIgBjT6mgwd20l9ytX4oIH/pJ3p6zQi9zaD4+XXZpIy4bYAdgApPFGWVMg5Zbqq UPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWj/1ZoZAAAEAwBHMEUCIEf78AE7iXRb Nh13pqMEm556oxyPWAhG5SQ5JgmpkRnCAiEA5iS9JYWqAPwqM7vURlK/hCw2J9Gu 49IYISlxQBBRMecwDQYJKoZIhvcNAQELBQADggEBAI83b8eITSQ/B7rGjzhJaDHE icfIuCs9kIdLcxrCwW6dVbDHpSxZbmblmr6sx9xOPTnXM3NKhCsYYdRdEaI3b4c/ ovXAlYaxWWkT2of3lS/3FR9M67VGxGqkH3hjDyUfsY9yMOLQsjnR8RZnbNmZV2rp WzyzWgdNtg5XDV8zPqeCAAQvAXnZqEJp+71RRMsM3Lp23U9VxcJCkAKcVKwHX9aG BuitsOHZJHQBTIEybtpwVdwEGuX9o3R0e6Mu7C9bQW5fRWtOx731pyFl4JNCbdrj opZV2ZtbEtZXDnQvFqifeuews//aLauejBKmhdC36CPdNIaLFI1y/329NtApVAQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAttY3DiBEB8hzuCIlaDCY R9Us4eQqt4uIPVy+aZWEW0E10kuCp+HxujL2kP9WcRQ305ieWX7aeD1jorHX4Ift N0Sx/TU2ZrG5Ittn0rb5bs81vC03teC61VJxyDdTW0+mqJvebkZhkoh7c3xxPJvn QP5IMozvIjXSNKz7/9hO1W5gT3lH45W2a11bhLTP87jahShrktR+00MsmYvlOuE8 lEAvnAqLW5MVX3397UMdVJQa2fca1SPN9qMQwIbBzWgJ/pW6oM/mbqSwpsM4tLBd Zk3OgJ0u9rOyCVPHK97O736lY/ckerUCpZxufZuizP+5M8kyMe7Tp012v/3zm4rx ac+/88daSbYBRTPMXdvi3l7kBWbTHRpBGFDI1iEyaGJUgaiTHepJmq6cUy8BSFl3 irvfq1Sth/+o85QUAB/go2Dk6KeWbDHKvgn0w3LpZ7BA8xuFw4iJlIp2lpM81Nr6 zVhmbucLuYHhHv/6etce3+XDxJRt8Ecg/M0ohD9VZURd+GnMMTm5af4rKIlMhcuv 5QLR9bbZoNvAIREfnnBK80T8HMyx7wtXYQV4r36nlrzvck9B0A1ypd4pnkooxPGf bDXrk87ODLjyrhHQljzQx5Gh4Pw1h1gOXtFiGSGv/lscBgyPJHUtSyR29K14WLDH nY7266pG8gaFXr8m3JAD5aUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 330468949603297684575177624770144938439448 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-18 08:00:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-19 08:00:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'onlinechat2.nic.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 745908975051297739760938206586509164485739394202646961871488781288507062378910809554015488839168191337311110182227816548244640337329687988753858566390923166449006738646494029964056351688987483291863882685920084503519199230081473974864275823397644284178699564225996232496667871566563749289946287363436732857682606996477372462685427488769173423677623606727272930162769532248117915878977181886706606507339557030345205189173357743564862175817941146243011018453762218213802017206986237620153478013706930755428056914473143362251654265283024130133819211228188692964590627703443359056961561436938300748472826330365988788165834700843290723643379346686607005327442650286123747765352562599001836801482487047227659882408123474363240172004347096857415503705946518393002817134871583783575143038710292266968393253937397952966949444316447444479335559600241412997512650940033428244047456970041797003067086390614267205381803042217738086801121992896159100427947384297952557933676025703432636454462344104338779275800611733563172692496397951555575892537078511604201255239857547064647696031363351236035402943651902117253816438515410436305097227066061315420337095705507164739032069538144466377318806710396698830968573138995107060199316907524802631239460261 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9686a0c2d06ffecaada4014f2d8eb2c8178ae643 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'onlinechat2.nic.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000168ffd599e1000004030046304402201865a9d78cb51e65906fe1dc7ada16cf30e295ed19e2490ff247444c41d3198902200634fa9a0c1ddb497dcad5f8a081ffa49de9eb3422f73683e3e5d7669232e1b6007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000168ffd59a190000040300473045022047fbf0013b89745b361d77a6a3049b9e7aa31c8f580846e524392609a99119c2022100e624bd2585aa00fc2a33bbd44652bf842c3627d1aee3d21821297140105131e7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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