cms.gov.cz

- Ministerstvo vnitra CR -

Issued by I.CA - Standard root certificate

About this certificate

This digital certificate with serial number 1d:b3:b0 was issued on by Prvni certifikacni autorita a.s..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
  • Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
  • Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
  • Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
  • The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
  • Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)

Ministerstvo vnitra CR

Company registration number: ICA - 805605
Organization: Ministerstvo vnitra CR
Organization unit: odbor provozu informacnich technoligii a komunikace
State / Province: Czech republic
Locality: Prague
Country: CZ

Prvni certifikacni autorita a.s.

Organization: Prvni certifikacni autorita a.s.
Country: CZ

This certificate has expire since

Certificate Details

Serial Number (hex): 1d:b3:b0
Serial Number (int): 1946544
Serial Number lenght: 21 bits, 3 octets

SubjectKeyId: f5:86:23:b9:e9:e2:5a:a3:99:b9:e8:df:ba:43:0b:03:0b:4f:f0:34
AuthorityKeyId: eb:37:a4:be:b9:6f:60:17:fb:d3:ff:2d:60:e1:04:1e:af:cf:c6:d3

Fingerprint (sha1): bd:6e:fc:60:84:bf:b2:cf:fd:f6:c1:65:35:68:cf:9b:b9:92:0f:9d
Fingerprint (sha256): 06:b1:86:be:7b:73:f2:57:4b:87:cf:87:10:d0:99:1e:50:02:fa:2a:6e:d4:05:aa:f1:e6:d6:fd:87:da:91:0c


Revocation information

CRL Distribution Point: http://scrldp1.ica.cz/sica08.crl
CRL Distribution Point: http://scrldp2.ica.cz/sica08.crl

Check the revocation status for certificate cms.gov.cz

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cms.gov.cz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Content Commitment
Key Encipherment
Data Encipherment

Extended Key Usages

Extensions

5 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name gov.cz

(limited to 100 certificates)
copernicus.gov.cz
zony-idsjk.kraj-jihocesky.gov.cz
ctu.gov.cz
rpp-ais.egon.gov.cz
odok.cz
eru.gov.cz
ov.gov.cz
data.gov.cz
pruvodce.udh.gov.cz
cms.gov.cz
ov.gov.cz
data.mvcr.gov.cz
portal.gov.cz
smlouvy.gov.cz
rpp-aism-pub-test.egon.gov.cz
cert-externalauthapi.caais-test-int.gov.cz
irop.gov.cz
data.gov.cz
upv.gov.cz
frs.gov.cz
digitalnicesko.gov.cz
zakony.gov.cz
vzdelavani.gov.cz
data.mvcr.gov.cz
slovnik.gov.cz
voda.gov.cz
*.gov.cz
geoportal.gov.cz
xn--slovnk-7va.gov.cz
data.kraj-jihocesky.gov.cz
testrs.gov.cz
rpp-ais-test.egon.gov.cz
twist-gp.kraj-jihocesky.gov.cz
mids.gov.cz
zony.kraj-jihocesky.gov.cz
www.gov.cz
code.gov.cz
viap1p.ros-iais.egon.gov.cz
vea801.gov.cz
desu.gov.cz
viap1t.ros-iais.egon.gov.cz
biap1t.ros-iais.egon.gov.cz
opendata.gov.cz
ext-mattermost.nic.cz
ria.gov.cz
admin.gov.cz
rrtv.gov.cz
*.szpi.gov.cz
covid.gov.cz
www.gov.cz
vea801.gov.cz
zony.kraj-jihocesky.gov.cz
*.kraj-jihocesky.gov.cz
spektrum.ctu.gov.cz
vyzkum.gov.cz
razr-pub.egon.gov.cz
testrs.gov.cz
ra.gov.cz
mids.gov.cz
archi.gov.cz
zds.kraj-jihocesky.gov.cz
nap.gov.cz
rpp-opendata-test.egon.gov.cz
cms.gov.cz
opendata.gov.cz
rpp-aism.egon.gov.cz
museion.kraj-jihocesky.gov.cz
prod.frs.gov.cz
tsl.gov.cz
isnipi.gov.cz
testrs.gov.cz
vea801.gov.cz
rpp-ais.egon.gov.cz
www.snsu.cz
tsl.gov.cz
uohs.cz
registrace.udh.gov.cz
gov.cz
admin.pruvodcepripojenim.gov.cz
vyzkum.gov.cz
smlouvy.gov.cz
rpp-aism-pub.egon.gov.cz
brvpn.ros.egon.gov.cz
uzsvm.cz
scitani.gov.cz
eru.gov.cz
mids.gov.cz
obcan.portal.gov.cz
upv.gov.cz
voda.gov.cz
code.gov.cz
ares.gov.cz
chciidentitu.gov.cz
biap1t.ros-iais.egon.gov.cz
viap1p.ros-iais.egon.gov.cz
czechtourism.gov.cz
anonymizace.gov.cz
*.kraj-jihocesky.gov.cz
mk.gov.cz
isdv.upv.gov.cz

Certificate

The complete raw certificate details for cms.gov.cz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtIiajCdX2ZgeIf6ki+B/
1v2UnvsY8IRotxMszO6WKBZgAG8d8zyjWpMzelk/xHWJR4zfrZVYZmCYXproKlur
jNc5tIwb2f3/sBI4BBCal429CbVdwLUkzyTXbi9JUQg2Drq0jxq1WKOUs23Ge2Rv
tJqdHyrVZVu1bKovh8Quh6JiPpMod6V+Ry++qa3xhFVmRkvL+TxcTXydKY2uROsf
LEgyX7Jyx1nGeGxuM3K3ureFOwM9+IrB+DD6NkJCvnS1gRptf/b+ZrZvjVD5ukmm
Ii6UJZdnFVDoxkft/g4w+aNLSX4g0A+ALI1aPLLoT3CNgpD2i2O8k7opUOipW2Xo
5QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 1946544
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'I.CA - Standard root certificate'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Prvni certifikacni autorita a.s.'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-03-25 11:27:07 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-25 11:27:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cms.gov.cz'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Czech republic'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Prague'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ministerstvo vnitra CR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'odbor provozu informacnich technoligii a komunikace'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICA - 805605'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22790256689499387133777661848967082578860146134033955070875003058790386635765296615721740642295929789935962766050760122832433723819018519421901403339797825644955210294796891633864034742098304455505298386619210392214530320399899282915508383156020943626332243857274296998475398124221543122106351472180258309067664065830850838981673956742902838263099466289694881449166174969429063693955547898701962974481759184267005360027370141852584379790152662690674010541122644962174990535925927338658268127638904684730234346930368454556896142032594745553428997155961885917843258785310953603538573775765848440928503421915734263326949
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName eb37a4beb96f6017fbd3ff2d60e1041eafcfc6d3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f58623b9e9e25aa399b9e8dfba430b030b4ff034
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23624.1.1.1.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits)
							04f0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://scrldp1.ica.cz/sica08.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://scrldp2.ica.cz/sica08.crl'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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