amusing.nm.cz
- Národní muzeum -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 4b:14:5e:4c:28:5e:43:90:62:8f:ae:33:44:d2:22:3b was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Národní muzeum
Organization:
Národní muzeum
State / Province:
Praha, Hlavní město
Locality: Praha 1 - Nové Město
Country: CZ
Locality: Praha 1 - Nové Město
Country: CZ
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 4b:14:5e:4c:28:5e:43:90:62:8f:ae:33:44:d2:22:3bSerial Number (int): 99797858201375839843350811042997477947
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 3c:4a:0f:64:38:ec:5b:8b:34:e6:12:61:36:7a:a5:ba:48:2a:1f:bc
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): d6:8e:e5:38:f5:d1:52:95:47:43:b2:39:0b:18:3d:1a:f1:50:df:9e
Fingerprint (sha256): 0b:f3:5d:05:1e:88:c9:c6:d5:c1:17:0f:69:f0:33:ef:aa:80:26:74:1d:b0:4a:31:fb:fe:b7:c9:00:37:94:2f
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate amusing.nm.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for amusing.nm.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amusing.nm.cz
www.amusing.nm.cz
www.amusing.nm.cz
Other certificates including the domain name nm.cz
(limited to 100 certificates)
nm.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
navigation-app.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
navigation-app.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
Certificate
The complete raw certificate details for amusing.nm.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHgzCCBWugAwIBAgIQSxReTCheQ5Bij64zRNIiOzANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjEwODEyMDAwMDAwWhcNMjIwODEyMjM1 OTU5WjCBgTELMAkGA1UEBhMCQ1oxHjAcBgNVBAgMFVByYWhhLCBIbGF2bsOtIG3E m3N0bzEfMB0GA1UEBwwWUHJhaGEgMSAtIE5vdsOpIE3Em3N0bzEZMBcGA1UECgwQ TsOhcm9kbsOtIG11emV1bTEWMBQGA1UEAxMNYW11c2luZy5ubS5jejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALyYNKR+UqQIILiYVBHDFhgamkmS5ENP RvQEyvg+OSS4qH9HGnQmU0sdTGAvbBOYmA2hAIdIgapq4nujxa0aZxyo7N3F1K9/ 5CEQtpHaZc3Lce562i0r4HLJ7r6myX0+RxKD/tRe5qC37/7WlCHd7CAi/V/nCdMZ vUkSi/n7aA/D8+ty4HIp8gOFfF1vqRXMTITRkMibNgy45bROHr1VmfX3mcehWGUZ GTqzPK1RJLwEUrZcD64j3LQWMDzg0NFPUXKBDHKh2+mG4tfkRuTxNtXORDapSJgr MfTkqMuR299TGhBSLMCH8AyYZeUMoEDU3r19D2NiYaUEg4IFvWbbgjMCAwEAAaOC AzEwggMtMB8GA1UdIwQYMBaAFG8dNUkQbDL6WaCevIroH5W+cXoMMB0GA1UdDgQW BBQ8Sg9kOOxbizTmEmE2eqW6SCofvDAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/ BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwSQYDVR0gBEIwQDA0 BgsrBgEEAbIxAQICTzAlMCMGCCsGAQUFBwIBFhdodHRwczovL3NlY3RpZ28uY29t L0NQUzAIBgZngQwBAgIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0cDovL0dFQU5ULmNy bC5zZWN0aWdvLmNvbS9HRUFOVE9WUlNBQ0E0LmNybDB1BggrBgEFBQcBAQRpMGcw OgYIKwYBBQUHMAKGLmh0dHA6Ly9HRUFOVC5jcnQuc2VjdGlnby5jb20vR0VBTlRP VlJTQUNBNC5jcnQwKQYIKwYBBQUHMAGGHWh0dHA6Ly9HRUFOVC5vY3NwLnNlY3Rp Z28uY29tMIIBfAYKKwYBBAHWeQIEAgSCAWwEggFoAWYAdQBGpVXrdfqRIDC1oolp 9PN9ESxBdL79SbiFq/L8cP5tRwAAAXs5P390AAAEAwBGMEQCIC8XkqR8I617DMIC X9LqKswVtqUucKCHVEMEhg9eg3OyAiAgxDGwURAoBBGFM9D3Dxe+gLlC35arHI3n NoadkoIVuwB1AEHIyrHfIkZKEMahOglCh15OMYsbA+vrS8do8JBilgb2AAABezk/ f0MAAAQDAEYwRAIgR5F8ZsWNh5VxtYN23EmEeRdojH9vGO2VX5QxNWvAIBYCIFaj 7GvFCU7eRdx1s9v4OBykXRiK1EJYwbuRI9SMs2cjAHYAKXm+8J45OSHwVnOfY6V3 5b5XfZxgCvj5TV0mXCVdx4QAAAF7OT9/DAAABAMARzBFAiEAwXEc/m4G2d+MtZZ1 Mmbjsr70SrxfsdjD3isKIDd+IcwCIErWYlLMI3A9rSgmqhox9FT1pX+w9iwg1RE9 O6wauwRgMCsGA1UdEQQkMCKCDWFtdXNpbmcubm0uY3qCEXd3dy5hbXVzaW5nLm5t LmN6MA0GCSqGSIb3DQEBDAUAA4ICAQAWhaFRh4Jzt1LCd2g34gc95RAZg+v6WH0Z ChuYiASPTMBg7HWI+DYMec3sBsztXiFycBBQfNOC31zuAQ1ykOuqjNlzR151Qf3S 7EZygRdJbTN8XGd0IS/B0xKSpzrDsYeJVJqxW8hx7TQEOaQKXrwMRDmehW/9Gr9G wlzNFPBk2nU0dDslhKKKVQauULi7q9OIRg7jkdq5ww9tTUOdX4BEOiuvK81JtDqR 4ef591EtbVbWXot0e0tXE5YQlA9JBmyn80oMJsvIYDqGOrZ0k6BUBzKhItDrijc8 yDFe1DVctAG0fwEt+D+BVw3L6CVT03uABdyAsT3mAXClnO+5rXln6S70+m+K3O0p zyJEpj7SSJuJr8m8aXvu/0juXOLaPQGzsavOBK4jGQEWbu2a8kg3VOESr4smSSpX Cx6nb/P9Ka01pNvGJNP76jOTN/FSXLOqEBggwHhAkfHv0ffd0RkvNv8KDx4oYals vFStnEg0CkvYZWK+ba7BmoGDxBtiBil7R2L9Vn/f/hT0Z/vdrkiguFh1/zHiKCI4 WjjP3wayAp7nneOqwoiy20RfZHcKzhUNWMhDZqtfVE1/Zab6DFf3tWUZqA2VkFnV wuN0XIZHKK9U32f4uPAYghqUuofmTiY+Dag0R51VDhxqCQ0dlJROzGyQI5bX1tuG aUxTVpmt1A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJg0pH5SpAgguJhUEcMW GBqaSZLkQ09G9ATK+D45JLiof0cadCZTSx1MYC9sE5iYDaEAh0iBqmrie6PFrRpn HKjs3cXUr3/kIRC2kdplzctx7nraLSvgcsnuvqbJfT5HEoP+1F7moLfv/taUId3s ICL9X+cJ0xm9SRKL+ftoD8Pz63LgcinyA4V8XW+pFcxMhNGQyJs2DLjltE4evVWZ 9feZx6FYZRkZOrM8rVEkvARStlwPriPctBYwPODQ0U9RcoEMcqHb6Ybi1+RG5PE2 1c5ENqlImCsx9OSoy5Hb31MaEFIswIfwDJhl5QygQNTevX0PY2JhpQSDggW9ZtuC MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 99797858201375839843350811042997477947 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-08-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-08-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Praha, Hlavní město' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Praha 1 - Nové Město' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Národní muzeum' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'amusing.nm.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23807856729576054529274669526345902878418777257206006567525762472707223976609514129765425659822149459446182067272662460328608703311704939931113335667119163553285120685860533102924532487318008969414834014351007821553109140988569273016552997749687800057220475454409001109891658864825450283170982179736414036935578750386889110231157783795452840832076745745203555496563345340255793939352098690128130194155960063381529571829627388469473684381088496829427170059940814764707202306492331498484224377489579686692652106649485289290248512147969593153466448779318134113573172710287958130702345019303932703546360239087960337383987 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c4a0f6438ec5b8b34e61261367aa5ba482a1fbc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amusing.nm.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amusing.nm.cz' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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