akademie.nic.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:57:ae:f7:36:db:e5:38:a3:e1:33:92:b2:7f:0a:56:b0:86 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=akademie.nic.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:57:ae:f7:36:db:e5:38:a3:e1:33:92:b2:7f:0a:56:b0:86Serial Number (int): 291173992998665046454303848434591428161670
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d4:89:51:60:64:64:6d:ab:6a:61:64:24:d7:55:2a:ae:a8:f1:5c:4b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f6:0c:14:79:2a:c4:d1:48:6c:a1:da:97:60:cc:7e:bf:0a:b5:0d:38
Fingerprint (sha256): 0b:f1:51:1f:6e:89:94:39:ba:e9:f3:fb:2e:e2:dd:06:95:09:38:77:bd:b8:c7:2f:fb:57:6a:64:e8:d5:3d:51
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate akademie.nic.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for akademie.nic.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
akademie.nic.cz
www.akademie.nic.cz
www.akademie.nic.cz
Other certificates including the domain name nic.cz
(limited to 100 certificates)
sentry.labs.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
devpub.labs.nic.cz
mirrors.nic.cz
nic.cz
zonemaster.labs.nic.cz
mojeid.regtest.nic.cz
stats.nic.cz
cz-test.dsdng.nic.cz
rdap.nic.cz
stork.nic.cz
odvr.nic.cz
public.nic.cz
gitlab.labs.nic.cz
sentry.labs.nic.cz
dscng.labs.nic.cz
stats.labs.nic.cz
katalogrouteru.cz
mirrors.nic.cz
haas.nic.cz
onlinechat2.nic.cz
ethercalc.labs.nic.cz
mail.nic.cz
whois.nic.cz
redmine.labs.nic.cz
nextcloud.labs.nic.cz
rdap.nic.cz
mail.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
devpub.labs.nic.cz
mailing.nic.cz
stats.nic.cz
gitlab.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
test-ipv6.nic.cz
stork.nic.cz
mailing.akademie.nic.cz
kalendar.nic.cz
ethercalc.labs.nic.cz
blog.nic.cz
gitlab.labs.nic.cz
eidasnode-test.nic.cz
netmetr-control.labs.nic.cz
intranet.nic.cz
haas.nic.cz
akademie.nic.cz
kalendar.nic.cz
mojeid.fred.nic.cz
moodle.nic.cz
katalogrouteru.cz
lettie.labs.nic.cz
nic.cz
howl.labs.nic.cz
mdm.nic.cz
ext-mattermost.nic.cz
bobek.nic.cz
secure.nic.cz
yangson.labs.nic.cz
mirror-r-01.nic.cz
yangson.labs.nic.cz
sentry.labs.nic.cz
onlinechat2.nic.cz
nic.cz
dnscheck.labs.nic.cz
gitlab.nic.cz
jetscreen.labs.nic.cz
webid.labs.nic.cz
nic.cz
akademie.nic.cz
mailing-mojeid.nic.cz
devpub.labs.nic.cz
api.nic.cz
gitweb.labs.nic.cz
public.nic.cz
blog.nic.cz
kalendar.nic.cz
kalendar.nic.cz
akademie.nic.cz
yangson.labs.nic.cz
piwik.nic.cz
dnscheck.labs.nic.cz
sophie.labs.nic.cz
epp.nic.cz
akademie.nic.cz
howl.labs.nic.cz
bobek.nic.cz
katalogrouteru.cz
intranet.nic.cz
labs.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
sentry.labs.nic.cz
csp.nic.cz
howl.labs.nic.cz
piwik.nic.cz
akademie.nic.cz
onlinechat.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
devpub.labs.nic.cz
mirrors.nic.cz
nic.cz
zonemaster.labs.nic.cz
mojeid.regtest.nic.cz
stats.nic.cz
cz-test.dsdng.nic.cz
rdap.nic.cz
stork.nic.cz
odvr.nic.cz
public.nic.cz
gitlab.labs.nic.cz
sentry.labs.nic.cz
dscng.labs.nic.cz
stats.labs.nic.cz
katalogrouteru.cz
mirrors.nic.cz
haas.nic.cz
onlinechat2.nic.cz
ethercalc.labs.nic.cz
mail.nic.cz
whois.nic.cz
redmine.labs.nic.cz
nextcloud.labs.nic.cz
rdap.nic.cz
mail.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
devpub.labs.nic.cz
mailing.nic.cz
stats.nic.cz
gitlab.nic.cz
bgpcrunch.labs.nic.cz
nic.cz
test-ipv6.nic.cz
stork.nic.cz
mailing.akademie.nic.cz
kalendar.nic.cz
ethercalc.labs.nic.cz
blog.nic.cz
gitlab.labs.nic.cz
eidasnode-test.nic.cz
netmetr-control.labs.nic.cz
intranet.nic.cz
haas.nic.cz
akademie.nic.cz
kalendar.nic.cz
mojeid.fred.nic.cz
moodle.nic.cz
katalogrouteru.cz
lettie.labs.nic.cz
nic.cz
howl.labs.nic.cz
mdm.nic.cz
ext-mattermost.nic.cz
bobek.nic.cz
secure.nic.cz
yangson.labs.nic.cz
mirror-r-01.nic.cz
yangson.labs.nic.cz
sentry.labs.nic.cz
onlinechat2.nic.cz
nic.cz
dnscheck.labs.nic.cz
gitlab.nic.cz
jetscreen.labs.nic.cz
webid.labs.nic.cz
nic.cz
akademie.nic.cz
mailing-mojeid.nic.cz
devpub.labs.nic.cz
api.nic.cz
gitweb.labs.nic.cz
public.nic.cz
blog.nic.cz
kalendar.nic.cz
kalendar.nic.cz
akademie.nic.cz
yangson.labs.nic.cz
piwik.nic.cz
dnscheck.labs.nic.cz
sophie.labs.nic.cz
epp.nic.cz
akademie.nic.cz
howl.labs.nic.cz
bobek.nic.cz
katalogrouteru.cz
intranet.nic.cz
labs.nic.cz
moodle.nic.cz
dnssec-validator.labs.nic.cz
sentry.labs.nic.cz
csp.nic.cz
howl.labs.nic.cz
piwik.nic.cz
akademie.nic.cz
onlinechat.nic.cz
Certificate
The complete raw certificate details for akademie.nic.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFjCCBP6gAwIBAgISA1eu9zbb5Tij4TOSsn8KVrCGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA2MjAwNzAwMDBaFw0x NzA5MTgwNzAwMDBaMBoxGDAWBgNVBAMTD2FrYWRlbWllLm5pYy5jejCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAMWph4lCBTbobqKAlPBD8MzIpkIIOp0C 3JLpD6uKsZOD6bcCdB/1MHXqfMW/8IWbYUM5S68VSWLj4pQqwiyKY6al34q6allJ CDwro2+2nBGpx05+3QsW4Ip/fMjseGFq5xPbaY5IttBaKsX+oCHNfPktvyOC3TmY RSwTeypgQTQWTTGcaNj250Xn9X4gKwyR0lD/B5VAshjELCKN4ui8KBQ0aOJWmKFZ oNb8qKd5YWVD8dTi8b01uIUOXr+c0iLu2slviYaFTBRfe9C5PyljjeBhR4RNgOh/ b/qanLBNPqieuDsbTk3jtLH7Fg6Uu+YoppX/dCVPtXtGAy+K5CN3gN4UKcuHK8Je y0pytnhInd+cvJIjGEYWlhLD9zKmJIWzx88meKNLUUB5rMzRx4ZL5teC58rbudMu iyKe153pStOxclLUi6fenEyLHrIy8R1cE/0GmXZ8Z2bMicxhhaxiZJ3jmuI6XHm2 gnsQQCApEOhqj80lHWZDMUmUMOCbtXhgL1dZ64pXWgmJS7aETCAniFCAXENInjtz Ro+vwaTyj5RVa0Ft6mlYe2mwRv53yLWvv0jLuA4bnDcSfmSEEqAl6sEB343xcE0m stSE9JHGgg3w7HoBr9E/DERwh++TDAgEqe3rgqHrMK5G7Q6XT1PeOjlVZeD6x6uu QFSaCbM+ewNrAgMBAAGjggIkMIICIDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNSJ UWBkZG2ramFkJNdVKq6o8VxLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wLwYDVR0RBCgwJoIPYWthZGVtaWUubmljLmN6 ghN3d3cuYWthZGVtaWUubmljLmN6MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHm BgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkg b25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkg aW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQg YXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcN AQELBQADggEBAEJS8Vf9sq9Zuzn1kVn4xfuNEaF19oCSSXhVBetKEbf/6Q8rC6gQ iFizw2aEUAPjN9I8Yu+WGeg7KUt8CmsJXBh2KNmqpv5K7jOiu3heg144CPWzIbZ4 jvRSqE2K2FOsiOPN5npxFCIVFTh7y2culz8PfBIwbRNkTF9VAlX7gaWcgwyizF6F Ssi8Va2hanGc+0dymoE8UE5JIfOGqr1dbNETIqiQvnPRvMSrC6bVSXkPdKYqjR64 u71utZcE46qkXDrIFhI1AbqJHXe4new/NIVoqpSEu+40vsqLtFCuGUIkr5UF9eYZ irXaeJKCjZv+InY8yCVZ58gt0e+gHzFxzms= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxamHiUIFNuhuooCU8EPw zMimQgg6nQLckukPq4qxk4PptwJ0H/Uwdep8xb/whZthQzlLrxVJYuPilCrCLIpj pqXfirpqWUkIPCujb7acEanHTn7dCxbgin98yOx4YWrnE9tpjki20Foqxf6gIc18 +S2/I4LdOZhFLBN7KmBBNBZNMZxo2PbnRef1fiArDJHSUP8HlUCyGMQsIo3i6Lwo FDRo4laYoVmg1vyop3lhZUPx1OLxvTW4hQ5ev5zSIu7ayW+JhoVMFF970Lk/KWON 4GFHhE2A6H9v+pqcsE0+qJ64OxtOTeO0sfsWDpS75iimlf90JU+1e0YDL4rkI3eA 3hQpy4crwl7LSnK2eEid35y8kiMYRhaWEsP3MqYkhbPHzyZ4o0tRQHmszNHHhkvm 14Lnytu50y6LIp7XnelK07FyUtSLp96cTIsesjLxHVwT/QaZdnxnZsyJzGGFrGJk neOa4jpcebaCexBAICkQ6GqPzSUdZkMxSZQw4Ju1eGAvV1nrildaCYlLtoRMICeI UIBcQ0ieO3NGj6/BpPKPlFVrQW3qaVh7abBG/nfIta+/SMu4DhucNxJ+ZIQSoCXq wQHfjfFwTSay1IT0kcaCDfDsegGv0T8MRHCH75MMCASp7euCoeswrkbtDpdPU946 OVVl4PrHq65AVJoJsz57A2sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291173992998665046454303848434591428161670 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-20 07:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-18 07:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'akademie.nic.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 806391521113478542102982065437133084271212140986801709385032150715610249643207489049732765063231421037606236256285359055824038210629298560484538118088083288052999747737552732399595030470711672792916538355581008365715875234064196921325383499886904765823276438087812111803982402645045584641260796938112478142642010342918782851930663373115011674256339504336815973564428601461658359815117686534108681056356231528927779360054027736986863892493543252440288032187357471945879454721366296966088967598766371735281893950004077823278795000411964349617063099504372923072211840198271909581541778818586681630353206560253950921984975081928942728623059698355032171473945029066480398276670876815911925629346621788391568001851287755297981164041243196701903045498982656056268651717735560499850792270650740469755317593999733560753422847520250795316227415890780611186254583755630552923422829708255295905688246577750569431968972949894937245693618942501148618406409657767513662816416819739884164007578798061898013212746800539792426911820615986210901158590724121002455837218781445263746562977790896640431677510387236731751211741588099237256469285021807073199136483650019267347354449956879104215740858126870624714977716004323079227380111540514342804251149163 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d489516064646dab6a616424d7552aaea8f15c4b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'akademie.nic.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.akademie.nic.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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