enterprise1.ui.itesco.cz
- Tesco Stores CR a.s. -
Issued by Entrust Certification Authority - L1M
About this certificate
This digital certificate with serial number 6c:d5:77:27:64:8a:e8:d8:ca:27:ca:9b:88:3e:39:c7 was issued on by Entrust, Inc..
With 23 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Tesco Stores CR a.s.
Company registration number:
45308314
Organization: Tesco Stores CR a.s.
Organization: Tesco Stores CR a.s.
Locality:
Praha 10
Country: CZ
Country: CZ
Entrust, Inc.
Organization:
Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2014 Entrust, Inc. - for authorized use only
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2014 Entrust, Inc. - for authorized use only
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 6c:d5:77:27:64:8a:e8:d8:ca:27:ca:9b:88:3e:39:c7Serial Number (int): 144664999503396437496906679766166157767
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 26:fe:ab:cf:d6:67:47:96:f0:3d:25:71:98:42:9a:26:ba:77:06:72
AuthorityKeyId: c3:f7:d0:b5:2a:30:ad:af:0d:91:21:70:39:54:dd:bc:89:70:c7:3a
Fingerprint (sha1): 7c:0f:f4:34:6a:89:60:35:55:8a:a8:96:5d:7c:9a:1c:d8:4d:eb:23
Fingerprint (sha256): 16:7f:e3:98:6e:8a:7a:74:74:72:d4:d9:de:3d:e0:da:c8:9c:d5:d8:9e:0e:0b:c6:07:47:44:9a:9f:c0:89:3a
Issuing Certificate URL: http://aia.entrust.net/l1m-chain256.cer
Revocation information
OCSP Server: http://ocsp.entrust.netCRL Distribution Point: http://crl.entrust.net/level1m.crl
Check the revocation status for certificate enterprise1.ui.itesco.cz
23
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for enterprise1.ui.itesco.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
enterprise1.ui.itesco.cz
ce-clubcard-admin-tool-ppe.ourtesco.com
s-ppe.itesco.sk
s-ppe.tesco.hu
tesco.pl
tescokvalita.cz
tescomagazin.cz
tescomagazin.hu
tescomagazin.sk
tescomagazine.cz
tescotechnologypoland.com
www.keycontentservice.com
www.mytbst.hu
www.polskajeweltaxstrategy.pl
www.tesco-mobile.cz
www.tesco.pl
www.tescomagazin.cz
www.tescomagazin.sk
www.tescomagazine.cz
www.tescopujcka.cz
www.tescotechnologypoland.com
www2.itesco.cz
zabezpeceni-ppe.itesco.cz
ce-clubcard-admin-tool-ppe.ourtesco.com
s-ppe.itesco.sk
s-ppe.tesco.hu
tesco.pl
tescokvalita.cz
tescomagazin.cz
tescomagazin.hu
tescomagazin.sk
tescomagazine.cz
tescotechnologypoland.com
www.keycontentservice.com
www.mytbst.hu
www.polskajeweltaxstrategy.pl
www.tesco-mobile.cz
www.tesco.pl
www.tescomagazin.cz
www.tescomagazin.sk
www.tescomagazine.cz
www.tescopujcka.cz
www.tescotechnologypoland.com
www2.itesco.cz
zabezpeceni-ppe.itesco.cz
Other certificates including the domain name itesco.cz
(limited to 100 certificates)
soutez-pedigree.itesco.cz
service.itesco.cz
enterprise.ui.itesco.cz
prihlaseni.itesco.cz
*.itesco.cz
www.tescocommunityfund.eu
tescovalue.sk
enterprise1.ui.itesco.cz
tescovalue.sk
service.itesco.cz
tescovalue.sk
origin-www.itesco.cz
zabezpeceni.itesco.cz
pomahame.itesco.cz
enterprise.ui.itesco.cz
prihlaseni.itesco.cz
prihlaseni.itesco.cz
tescovalue.sk
www.click-and-collect.cz
enterprise1.ui.itesco.cz
enterprise1.ui.itesco.cz
*.itesco.cz
nws.itesco.cz
predsevzeti.itesco.cz
origin-prihlaseni.itesco.cz
tescovalue.sk
www2.itesco.cz
clubcard.cz
m.nakup.itesco.cz
tescovalue.sk
vanoce2019.itesco.cz
zadostopujcku.itesco.cz
*.itesco.cz
soutez-pedigree.itesco.cz
card.tesco.com
enterprise1.ui.itesco.cz
nws.itesco.cz
corporate.itesco.cz
www.itesco.cz
*.itesco.cz
clubcard.cz
origin-prihlaseni.itesco.cz
tescovalue.sk
www2.itesco.cz
www-ppe.itesco.cz
enterprise.ui.itesco.cz
www2.itesco.cz
tescovalue.sk
card.tesco.com
clubcard.cz
card.tesco.com
enterprise.ui.itesco.cz
soutez-pedigree.itesco.cz
enterprise.ui.itesco.cz
tescovalue.sk
soutez-pedigree.itesco.cz
tescovalue.sk
prihlaseni.itesco.cz
predsevzeti.itesco.cz
card.tesco.com
enterprise.ui.itesco.cz
enterprise.ui.itesco.cz
mimoni.itesco.cz
enterprise1.ui.itesco.cz
predsevzeti.itesco.cz
tescovalue.sk
tescovalue.sk
tescovalue.sk
tescovalue.sk
origin-zabezpeceni.itesco.cz
kariera.itesco.cz
card.tesco.com
prihlaseni.itesco.cz
prihlaseni.itesco.cz
www.tescocommunityfund.eu
www.tescocommunityfund.eu
prihlaseni.itesco.cz
link.homecredit.cz
soutez-pedigree.itesco.cz
vanoce2019.itesco.cz
predsevzeti.itesco.cz
soutez-pedigree.itesco.cz
enterprise.ui.itesco.cz
soutez-pedigree.itesco.cz
www.click-and-collect.cz
predsevzeti.itesco.cz
tescovalue.sk
soutez-pedigree.itesco.cz
prihlaseni.itesco.cz
clubcard.cz
vanoce2019.itesco.cz
enterprise.ui.itesco.cz
www.click-and-collect.cz
service.itesco.cz
tescovalue.sk
prihlaseni.itesco.cz
card-ppe.tesco.com
enterprise.ui.itesco.cz
prihlaseni.itesco.cz
enterprise.ui.itesco.cz
service.itesco.cz
enterprise.ui.itesco.cz
prihlaseni.itesco.cz
*.itesco.cz
www.tescocommunityfund.eu
tescovalue.sk
enterprise1.ui.itesco.cz
tescovalue.sk
service.itesco.cz
tescovalue.sk
origin-www.itesco.cz
zabezpeceni.itesco.cz
pomahame.itesco.cz
enterprise.ui.itesco.cz
prihlaseni.itesco.cz
prihlaseni.itesco.cz
tescovalue.sk
www.click-and-collect.cz
enterprise1.ui.itesco.cz
enterprise1.ui.itesco.cz
*.itesco.cz
nws.itesco.cz
predsevzeti.itesco.cz
origin-prihlaseni.itesco.cz
tescovalue.sk
www2.itesco.cz
clubcard.cz
m.nakup.itesco.cz
tescovalue.sk
vanoce2019.itesco.cz
zadostopujcku.itesco.cz
*.itesco.cz
soutez-pedigree.itesco.cz
card.tesco.com
enterprise1.ui.itesco.cz
nws.itesco.cz
corporate.itesco.cz
www.itesco.cz
*.itesco.cz
clubcard.cz
origin-prihlaseni.itesco.cz
tescovalue.sk
www2.itesco.cz
www-ppe.itesco.cz
enterprise.ui.itesco.cz
www2.itesco.cz
tescovalue.sk
card.tesco.com
clubcard.cz
card.tesco.com
enterprise.ui.itesco.cz
soutez-pedigree.itesco.cz
enterprise.ui.itesco.cz
tescovalue.sk
soutez-pedigree.itesco.cz
tescovalue.sk
prihlaseni.itesco.cz
predsevzeti.itesco.cz
card.tesco.com
enterprise.ui.itesco.cz
enterprise.ui.itesco.cz
mimoni.itesco.cz
enterprise1.ui.itesco.cz
predsevzeti.itesco.cz
tescovalue.sk
tescovalue.sk
tescovalue.sk
tescovalue.sk
origin-zabezpeceni.itesco.cz
kariera.itesco.cz
card.tesco.com
prihlaseni.itesco.cz
prihlaseni.itesco.cz
www.tescocommunityfund.eu
www.tescocommunityfund.eu
prihlaseni.itesco.cz
link.homecredit.cz
soutez-pedigree.itesco.cz
vanoce2019.itesco.cz
predsevzeti.itesco.cz
soutez-pedigree.itesco.cz
enterprise.ui.itesco.cz
soutez-pedigree.itesco.cz
www.click-and-collect.cz
predsevzeti.itesco.cz
tescovalue.sk
soutez-pedigree.itesco.cz
prihlaseni.itesco.cz
clubcard.cz
vanoce2019.itesco.cz
enterprise.ui.itesco.cz
www.click-and-collect.cz
service.itesco.cz
tescovalue.sk
prihlaseni.itesco.cz
card-ppe.tesco.com
enterprise.ui.itesco.cz
prihlaseni.itesco.cz
enterprise.ui.itesco.cz
Certificate
The complete raw certificate details for enterprise1.ui.itesco.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIII2TCCB8GgAwIBAgIQbNV3J2SK6NjKJ8qbiD45xzANBgkqhkiG9w0BAQsFADCB ujELMAkGA1UEBhMCVVMxFjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsT H1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMxOTA3BgNVBAsTMChjKSAy MDE0IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25seTEuMCwG A1UEAxMlRW50cnVzdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAtIEwxTTAeFw0y NDAzMjAxMjM5NDNaFw0yNTA0MjAxMjM5NDJaMIGpMQswCQYDVQQGEwJDWjERMA8G A1UEBxMIUHJhaGEgMTAxEzARBgsrBgEEAYI3PAIBAxMCQ1oxHTAbBgNVBAoTFFRl c2NvIFN0b3JlcyBDUiBhLnMuMR0wGwYDVQQPExRQcml2YXRlIE9yZ2FuaXphdGlv bjERMA8GA1UEBRMINDUzMDgzMTQxITAfBgNVBAMTGGVudGVycHJpc2UxLnVpLml0 ZXNjby5jejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKcP4xD79/7S yNvceqYOER5+hgFlC3YeZ7IgkMErKjEE1/k+JhB8M8rP6vhOvzlC0B/NU2REPigm Gm0q0AGw+tD2QBXr7O91d+VnVEZw14PBZhKjp3Crdjqa9/mEbdeO2lKnMLH0hze6 S5Lhg5iyEn3y6RqznN5PKUaDLbDQx7cges9OwnFtHeZaXs1aRWAZuX5dFrCPAukC cXMvVdXg1hFomoJf2Iosqb7UMDag3cmSj5olNLt09RagUVcimEQ218HcNA0j86zp Cle8vhvsKVRlGQbkCmaOYIwOyXk34jOsxkVEw13Txu6yT26M6GJ2+ZEqbZcIH1/4 Wm94U3URjvUCAwEAAaOCBOgwggTkMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCb+ q8/WZ0eW8D0lcZhCmia6dwZyMB8GA1UdIwQYMBaAFMP30LUqMK2vDZEhcDlU3byJ cMc6MGgGCCsGAQUFBwEBBFwwWjAjBggrBgEFBQcwAYYXaHR0cDovL29jc3AuZW50 cnVzdC5uZXQwMwYIKwYBBQUHMAKGJ2h0dHA6Ly9haWEuZW50cnVzdC5uZXQvbDFt LWNoYWluMjU2LmNlcjAzBgNVHR8ELDAqMCigJqAkhiJodHRwOi8vY3JsLmVudHJ1 c3QubmV0L2xldmVsMW0uY3JsMIIB9gYDVR0RBIIB7TCCAemCGGVudGVycHJpc2Ux LnVpLml0ZXNjby5jeoInY2UtY2x1YmNhcmQtYWRtaW4tdG9vbC1wcGUub3VydGVz Y28uY29tgg9zLXBwZS5pdGVzY28uc2uCDnMtcHBlLnRlc2NvLmh1ggh0ZXNjby5w bIIPdGVzY29rdmFsaXRhLmN6gg90ZXNjb21hZ2F6aW4uY3qCD3Rlc2NvbWFnYXpp bi5odYIPdGVzY29tYWdhemluLnNrghB0ZXNjb21hZ2F6aW5lLmN6ghl0ZXNjb3Rl Y2hub2xvZ3lwb2xhbmQuY29tghl3d3cua2V5Y29udGVudHNlcnZpY2UuY29tgg13 d3cubXl0YnN0Lmh1gh13d3cucG9sc2thamV3ZWx0YXhzdHJhdGVneS5wbIITd3d3 LnRlc2NvLW1vYmlsZS5jeoIMd3d3LnRlc2NvLnBsghN3d3cudGVzY29tYWdhemlu LmN6ghN3d3cudGVzY29tYWdhemluLnNrghR3d3cudGVzY29tYWdhemluZS5jeoIS d3d3LnRlc2NvcHVqY2thLmN6gh13d3cudGVzY290ZWNobm9sb2d5cG9sYW5kLmNv bYIOd3d3Mi5pdGVzY28uY3qCGXphYmV6cGVjZW5pLXBwZS5pdGVzY28uY3owDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBLBgNV HSAERDBCMAcGBWeBDAEBMDcGCmCGSAGG+mwKAQIwKTAnBggrBgEFBQcCARYbaHR0 cHM6Ly93d3cuZW50cnVzdC5uZXQvcnBhMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFp AWcAdQDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAAAY5b3+ZZAAAE AwBGMEQCIDJeufmX6qDg7wq727ukaYL9cvcVNqRb/mXjAVF9/SIhAiA6QBMrOMQD QUYXI4A5oaxgZC3NCgrfGOaAWokwlhepFwB2AKLjCuRF772tm3447Udnd1PXgluE lNcrXhssxLlQpEfnAAABjlvf5lYAAAQDAEcwRQIgfMz8R58koskYyYZejrDxZozj wLpovoxgpPo8aU4XxKsCIQDam45QK9/GPAcKyh901xUratR2yd/hX4Mexfpmh2Rw 1wB2AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABjlvf5moAAAQD AEcwRQIhANDKLYTLBRSGtQnly4QWG0jbPmcGK6fvJ9+TcI2dT3t/AiBQILrFXeuE IQhnqQcoCzV8jX2rsT7W7YptmxwA3XuR7DANBgkqhkiG9w0BAQsFAAOCAQEAIVPL xIyg7QX0CDe/dwgMtApuaelaIO6q1WQFn173vChvQps2dKDRnzCbbUawitDpZ/qq JJzpDyAieiJEjxYqHNgGhTgy+o4SxgQuApnz8pTXHYqgEGfJjKLYNC2t9F7UaIWJ j7nc8hlnmXXnse5Dxkv7DAORBYR4PFzCq+YDVbkqtljlsm7EYhgH34PCgu8ZW8Yz ++ikotWoO61ICP1jlWGAZTVG9SKOnplHOk4wD6SlN1i6GxpZkZfEI8a3ccb+JCe1 eUa8vb17tbEgCAYLQc3kbUwfWqRL9NFhJ9uMihh8E6cqKurkRrOx4wPt+e7zf1vI Nd/yQITQQGf3B991kw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApw/jEPv3/tLI29x6pg4R Hn6GAWULdh5nsiCQwSsqMQTX+T4mEHwzys/q+E6/OULQH81TZEQ+KCYabSrQAbD6 0PZAFevs73V35WdURnDXg8FmEqOncKt2Opr3+YRt147aUqcwsfSHN7pLkuGDmLIS ffLpGrOc3k8pRoMtsNDHtyB6z07CcW0d5lpezVpFYBm5fl0WsI8C6QJxcy9V1eDW EWiagl/YiiypvtQwNqDdyZKPmiU0u3T1FqBRVyKYRDbXwdw0DSPzrOkKV7y+G+wp VGUZBuQKZo5gjA7JeTfiM6zGRUTDXdPG7rJPbozoYnb5kSptlwgfX/hab3hTdRGO 9QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 144664999503396437496906679766166157767 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2014 Entrust, Inc. - for authorized use only' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1M' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 12:39:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-20 12:39:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha 10' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tesco Stores CR a.s.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '45308314' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'enterprise1.ui.itesco.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21089631090121954030194998220612093136152300830796179572707504277200396115901314445656720580017244646527942224213368446604015376629178899797611156094144226424161464988147318322552992254261186505015805006057265846611327188596315132247500809736504537522654984187253796202318763903370833797790431551580209798309898651103652106933494552250449305166144417762848014287484329118598961032472335783585994892408768247921230893430762587998701224810352350102215632167662008626803238582037602989857285973469015130045799308693683401272331213289878236668604928358640191825305907458438982725512273793380504007995801833473774023970549 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 26feabcfd6674796f03d257198429a26ba770672 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c3f7d0b52a30adaf0d9121703954ddbc8970c73a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1m-chain256.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1m.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (493 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterprise1.ui.itesco.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ce-clubcard-admin-tool-ppe.ourtesco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's-ppe.itesco.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 's-ppe.tesco.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tesco.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tescokvalita.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tescomagazin.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tescomagazin.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tescomagazin.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tescomagazine.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tescotechnologypoland.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.keycontentservice.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mytbst.hu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.polskajeweltaxstrategy.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tesco-mobile.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tesco.pl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tescomagazin.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tescomagazin.sk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tescomagazine.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tescopujcka.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tescotechnologypoland.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www2.itesco.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zabezpeceni-ppe.itesco.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.2 (Entrust EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.entrust.net/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 0167007500e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000018e5bdfe65900000403004630440220325eb9f997eaa0e0ef0abbdbbba46982fd72f71536a45bfe65e301517dfd222102203a40132b38c403414617238039a1ac60642dcd0a0adf18e6805a89309617a917007600a2e30ae445efbdad9b7e38ed47677753d7825b8494d72b5e1b2cc4b950a447e70000018e5bdfe656000004030047304502207cccfc479f24a2c918c9865e8eb0f1668ce3c0ba68be8c60a4fa3c694e17c4ab022100da9b8e502bdfc63c070aca1f74d7152b6ad476c9dfe15f831ec5fa66876470d70076004e75a3275c9a10c3385b6cd4df3f52eb1df0e08e1b8d69c0b1fa64b1629a39df0000018e5bdfe66a0000040300473045022100d0ca2d84cb051486b509e5cb84161b48db3e67062ba7ef27df93708d9d4f7b7f02205020bac55deb84210867a907280b357c8d7dabb13ed6ed8a6d9b1c00dd7b91ec . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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