albatros.odok.cz

- Úřad vlády České republiky -

Issued by thawte SSL CA - G2

About this certificate

This digital certificate with serial number 2c:aa:16:78:42:76:5d:fd:9a:c2:71:a1:be:40:80:66 was issued on by thawte, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Úřad vlády České republiky

Organization: Úřad vlády České republiky
Organization unit: Praha
State / Province: CZECH REPUBLIC
Locality: Praha 1 - Mala Strana
Country: CZ

thawte, Inc.

Organization: thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 2c:aa:16:78:42:76:5d:fd:9a:c2:71:a1:be:40:80:66
Serial Number (int): 59369178021447108906271591963895562342
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60

Fingerprint (sha1): 4b:53:ef:90:b4:ad:65:a1:04:a8:ea:04:47:6e:60:e3:28:dd:26:35
Fingerprint (sha256): 41:13:9f:b4:4b:1b:13:e0:b3:b9:9e:24:d0:02:d7:e9:1e:4c:e9:f5:bb:be:c6:50:af:ae:d8:44:41:1f:b5:50

Issuing Certificate URL: http://tj.symcb.com/tj.crt

Revocation information

OCSP Server: http://tj.symcd.com
CRL Distribution Point: http://tj.symcb.com/tj.crl

Check the revocation status for certificate albatros.odok.cz

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for albatros.odok.cz

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

albatros.vlada.cz
albatros.odok.cz

Other certificates including the domain name odok.cz

(limited to 100 certificates)

Certificate

The complete raw certificate details for albatros.odok.cz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 59369178021447108906271591963895562342
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-20 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-19 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CZECH REPUBLIC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Praha 1 - Mala Strana'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Úřad vlády České republiky'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Praha'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'albatros.odok.cz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 956706548650701712860559169262159882360952609240209677935956545329950093283169202882556488944992474312985257569725851784613278787720051574342766099298538780368970415586902463030365851577658070034854151415529992659497570573313034801045116020464429094260916305348827131890566463409231492673096677468392263193884767099815646909841144880681342084995490837632642246465191900003936241240071572205815859753457844290382317332475530061712004372483321534686907925355564145053361711577092280516442229069624906359059534534653543910729161363859061188799572407838510719649386631721391942466334476407447370112667870456664490319913187832121510288042175532034635572856599712008596132051635221756888714645315475124297010238285645070585914480475746335739566462613555347952607706274808651268216024450756529049149107122282862880559256045644922466084848297464007175196617397129597355351665469329221301424153780416408637279005160216351667600032205041079229924709617891934799335817694888136407527233020313729403713860110657133635603169722890197955693371621693244964371787565681295624741979787688010311784893652671331140779932095595371791417562554474424630691192160577813271602051144476459329311637402861966320445313038239127080377546771030919088531670188759
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albatros.vlada.cz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'albatros.odok.cz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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