rd-gw.nm.cz
- Národní muzeum -
Issued by GEANT OV RSA CA 4
About this certificate
This digital certificate with serial number 16:9b:b3:93:f4:9c:4c:15:97:b1:65:76:f2:37:02:91 was issued on by GEANT Vereniging.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Národní muzeum
Organization:
Národní muzeum
Address:
Václavské náměstí 1700/68
Postal code: 11000
State / Province: Praha, Hlavní město
Locality: Praha 1 - Nové Město
Country: CZ
Postal code: 11000
State / Province: Praha, Hlavní město
Locality: Praha 1 - Nové Město
Country: CZ
GEANT Vereniging
Organization:
GEANT Vereniging
Country:
NL
This certificate has expire since
Certificate Details
Serial Number (hex): 16:9b:b3:93:f4:9c:4c:15:97:b1:65:76:f2:37:02:91Serial Number (int): 30051464193903284854602526959324299921
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: ba:86:6b:e1:ec:74:aa:24:15:08:32:fc:b2:63:0d:ab:21:65:68:4f
AuthorityKeyId: 6f:1d:35:49:10:6c:32:fa:59:a0:9e:bc:8a:e8:1f:95:be:71:7a:0c
Fingerprint (sha1): f9:1f:d8:02:bb:e5:80:d3:3a:73:d1:6b:80:ba:74:c1:6e:95:e7:6b
Fingerprint (sha256): 35:79:03:91:87:ed:c7:07:a0:ef:98:20:bd:9d:4e:39:01:90:6f:d1:7e:bf:91:5c:49:24:30:ea:00:53:05:01
Issuing Certificate URL: http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt
Revocation information
OCSP Server: http://GEANT.ocsp.sectigo.comCRL Distribution Point: http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl
Check the revocation status for certificate rd-gw.nm.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rd-gw.nm.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rd-gw.nm.cz
www.rd-gw.nm.cz
www.rd-gw.nm.cz
Other certificates including the domain name nm.cz
(limited to 100 certificates)
nm.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
navigation-app.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
mbssceny.opac.nm.cz
rezervace.benesovavila.nm.cz
kanesh.nm.cz
kanesh.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
vademecum.nm.cz
intro.nm.cz
nm.opac.nm.cz
vavobd.nm.cz
kanesh.nm.cz
cmhdok.opac.nm.cz
kanesh.nm.cz
nm.cz
stt.opac.nm.cz
npm.opac.nm.cz
nm.cz
npm.opac.nm.cz
prazskestopyantoninadvoraka.nm.cz
kanesh.nm.cz
sumerian.nm.cz
nm.cz
cmhdok.opac.nm.cz
posta.nm.cz
antonindvorak.nm.cz
kanesh.nm.cz
amusing.nm.cz
publikace.nm.cz
nm.cz
botanika.opac.nm.cz
android-app.nm.cz
amusing.nm.cz
intro.nm.cz
mbssceny.opac.nm.cz
entomologie.opac.nm.cz
oncd.opac.nm.cz
kanesh.nm.cz
kerio.nm.cz
edukace.benesovavila.nm.cz
grepo.nm.cz
mbs.opac.nm.cz
botanika.opac.nm.cz
publikace.nm.cz
botanika.opac.nm.cz
cmh.opac.nm.cz
nm.cz
*.opac.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
intro.nm.cz
helpdesk.nm.cz
zbraslav.opac.nm.cz
kanesh.nm.cz
csds.opac.nm.cz
eshop.nm.cz
posta.nm.cz
odtvs.opac.nm.cz
antonindvorak.nm.cz
stt.opac.nm.cz
odtvs.opac.nm.cz
zbraslav.opac.nm.cz
odtvs.opac.nm.cz
bedrichsmetana.nm.cz
rad.nm.cz
*.opac.nm.cz
navigation-app.nm.cz
mad.opac.nm.cz
no.opac.nm.cz
t.mailkit.com
no.opac.nm.cz
navigation-app.nm.cz
admin.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
ms.nm.cz
kanesh.nm.cz
amusing.nm.cz
mad.opac.nm.cz
npm.opac.nm.cz
antonindvorak.nm.cz
onedrive.nm.cz
p.pozvanky.nm.cz
intro.nm.cz
helpdesk.nm.cz
rezervace.pamatnikpalackeho.nm.cz
t.mailkit.com
prazskestopyantoninadvoraka.nm.cz
amusing.nm.cz
intro.nm.cz
t.mailkit.com
oncd.opac.nm.cz
ms.nm.cz
rd-gw.nm.cz
onedrive.nm.cz
mbs.opac.nm.cz
helpdesk.nm.cz
mad.opac.nm.cz
muzeum3000.nm.cz
oncd.opac.nm.cz
Certificate
The complete raw certificate details for rd-gw.nm.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBDOgAwIBAgIQFpuzk/ScTBWXsWV28jcCkTANBgkqhkiG9w0BAQwFADBE MQswCQYDVQQGEwJOTDEZMBcGA1UEChMQR0VBTlQgVmVyZW5pZ2luZzEaMBgGA1UE AxMRR0VBTlQgT1YgUlNBIENBIDQwHhcNMjEwMjE3MDAwMDAwWhcNMjIwMjE3MjM1 OTU5WjCBuDELMAkGA1UEBhMCQ1oxDjAMBgNVBBETBTExMDAwMR4wHAYDVQQIDBVQ cmFoYSwgSGxhdm7DrSBtxJtzdG8xHzAdBgNVBAcMFlByYWhhIDEgLSBOb3bDqSBN xJtzdG8xJzAlBgNVBAkMHlbDoWNsYXZza8OpIG7DoW3Em3N0w60gMTcwMC82ODEZ MBcGA1UECgwQTsOhcm9kbsOtIG11emV1bTEUMBIGA1UEAxMLcmQtZ3cubm0uY3ow ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD0ePYzHFaq1Z3bytzZGXV z6P+/QXAbaASnxu521VnTpgseyoozu1NZUtnnecynseMd3B6WfBCmb+QNPOxsUVU zvKfk30zx5wz7Ni5A/TnnvoGm/APkTSOBAbv/j0xbdQhWGVU1QzShQHLwpoKZw/u MfgHgfxboiD9kFORzDYn2TjWURioqdXZ1ZPkLyLQsojb1X6sp3FHZ1rhZYmJxkiY UqO0LXO2tgw3pWDaQREGY0TPd8VBKvDXtIpwMAWITL6UprkVfD3MvkOxKMz3HE5A HjTmW8PzHbFc9KzzlDlJ/QTNQlyU0Maall5cU9GTbXY6LG+BPFoLRmyd+xQiuVTX AgMBAAGjggHCMIIBvjAfBgNVHSMEGDAWgBRvHTVJEGwy+lmgnryK6B+VvnF6DDAd BgNVHQ4EFgQUuoZr4ex0qiQVCDL8smMNqyFlaE8wDgYDVR0PAQH/BAQDAgWgMAwG A1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1Ud IARCMEAwNAYLKwYBBAGyMQECAk8wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0 aWdvLmNvbS9DUFMwCAYGZ4EMAQICMD8GA1UdHwQ4MDYwNKAyoDCGLmh0dHA6Ly9H RUFOVC5jcmwuc2VjdGlnby5jb20vR0VBTlRPVlJTQUNBNC5jcmwwdQYIKwYBBQUH AQEEaTBnMDoGCCsGAQUFBzAChi5odHRwOi8vR0VBTlQuY3J0LnNlY3RpZ28uY29t L0dFQU5UT1ZSU0FDQTQuY3J0MCkGCCsGAQUFBzABhh1odHRwOi8vR0VBTlQub2Nz cC5zZWN0aWdvLmNvbTATBgorBgEEAdZ5AgQDAQH/BAIFADAnBgNVHREEIDAeggty ZC1ndy5ubS5jeoIPd3d3LnJkLWd3Lm5tLmN6MA0GCSqGSIb3DQEBDAUAA4ICAQB0 g/Um+ind10yXzxPyBXv1oFgalWHNK9kxiwlgqqBGqmwBt/A+aaWNAuT1baqt58jH RRA8cFQ/a/AL9EzaYliN7OycII7MgkTRI93hVqT6OdIqvaZM/95jkcYOm4exdQi0 GvzSNUCfkBoaN5KPuaO2+EciZSPCJzYL22z5c6jfMz4NjKQNaP04rfbXiECZq8zc //KSm7DNpD/uqPkeNEOndIb5iUQkgsmop6mO7Dr7zXu6Re4C/OhbUX62A1347H71 zC6B5AjmzOrgkx2fM5SgVRDu+pQ2kvuHSzHRoiNe0pnCw2s4RNaNiqMDRLgNrWwN O4bxrkxUrgXuoO/mksbBKl3/cp+ZV8dSCtIlIb91JPoj5zO2OBvZLTh92sDrPLMY akmiNk59YwUuXVJzI83ogoN6s55zSH+wVAFFMVU8UbfjMLTNBWRiX0akjySjnmbw HPtxgNyETQJAo4l8U/eHREOeG3QpLGA4t+mOOJ7FXELEL/cC1Qc59rRmzLQatv7W lMRE5AZKAUl37ufp42B6kFiBVJr4QDnrpHeoz6N1MOXFUXoBkPLnnVNDDFgy0Uoc A9BCqc3rf5RSdzdF3RX3uof1FVkZq4ZB3vzNBMetmuPtxxyMt1dZlRRSqy7L9Jlu +EA2TVLE+sFwEW6pbv2rQsBOjt2PDBBwjfA4RlNawg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9Hj2MxxWqtWd28rc2Rl 1c+j/v0FwG2gEp8budtVZ06YLHsqKM7tTWVLZ53nMp7HjHdwelnwQpm/kDTzsbFF VM7yn5N9M8ecM+zYuQP05576BpvwD5E0jgQG7/49MW3UIVhlVNUM0oUBy8KaCmcP 7jH4B4H8W6Ig/ZBTkcw2J9k41lEYqKnV2dWT5C8i0LKI29V+rKdxR2da4WWJicZI mFKjtC1ztrYMN6Vg2kERBmNEz3fFQSrw17SKcDAFiEy+lKa5FXw9zL5DsSjM9xxO QB405lvD8x2xXPSs85Q5Sf0EzUJclNDGmpZeXFPRk212OixvgTxaC0ZsnfsUIrlU 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 30051464193903284854602526959324299921 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT Vereniging' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEANT OV RSA CA 4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '11000' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Praha, Hlavní město' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Praha 1 - Nové Město' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Václavské náměstí 1700/68' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Národní muzeum' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rd-gw.nm.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24719970098134662238168779626751573026818101554563404841571755563685663428207477068755838634986319450260401215573453636060234014368622904136696109087582880996125350245650546223159011390664838286531022327779175461136066536446127439976987416481011331806990357969574516188118071799645730805785610667935011509586882961021966530229204622591764494153788574860607572983364615525660376368274305811429794845757628548907442940733156251483870673626982096720561587612899881885989292833216417058959810265894119735063116846829171981136159999856557882610951949179433744236388525213164134034117535600011417968937969629389748516246743 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6f1d3549106c32fa59a09ebc8ae81f95be717a0c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba866be1ec74aa24150832fcb2630dab2165684f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.79 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crl.sectigo.com/GEANTOVRSACA4.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.crt.sectigo.com/GEANTOVRSACA4.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://GEANT.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rd-gw.nm.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rd-gw.nm.cz' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 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