adfs.mpo.cz
- Ministry of Industry and Trade -
Issued by Thawte RSA CA 2018
About this certificate
This digital certificate with serial number 0b:52:58:30:7a:7d:b6:9a:47:82:b1:2e:31:67:c1:dd was issued on by DigiCert Inc.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Ministry of Industry and Trade
Organization:
Ministry of Industry and Trade
Locality:
Prague
Country: CZ
Country: CZ
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:52:58:30:7a:7d:b6:9a:47:82:b1:2e:31:67:c1:ddSerial Number (int): 15049064988940001741474162603884790237
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a3:9a:72:49:6e:15:75:fa:41:34:55:c0:9b:06:99:d4:a5:36:7a:1a
AuthorityKeyId: a3:c8:5e:65:54:e5:30:78:c1:05:ea:07:0a:6a:59:cc:b9:fe:de:5a
Fingerprint (sha1): d7:1c:0c:9e:fb:05:2b:8a:b1:c1:6e:15:b5:cc:33:7f:1c:cd:69:fe
Fingerprint (sha256): 43:85:4f:56:50:d7:8f:2b:5c:54:c0:55:10:1c:c8:66:c2:49:d0:4f:68:61:ae:73:38:cb:80:77:8d:9c:c9:9f
Issuing Certificate URL: http://cacerts.thawte.com/ThawteRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteRSACA2018.crl
Check the revocation status for certificate adfs.mpo.cz
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for adfs.mpo.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
adfs.mpo.cz
certauth.adfs.mpo.cz
enterpriseregistration.mpo.cz
certauth.adfs.mpo.cz
enterpriseregistration.mpo.cz
Other certificates including the domain name mpo.cz
(limited to 100 certificates)
druhotnasurovina.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
www.mpo.cz
miss.mpo.cz
trio.mpo.cz
cafe.mpo.cz
monitoring.mpo.cz
mis.mpo.cz
druhotnasurovina.mpo.cz
druhotnasurovina.cz
cafe.mpo.cz
registr.mpo.cz
druhotnasurovina.mpo.cz
monitoring.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
aimapa.mpo.cz
vykazy.mpo.cz
activesync.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
cafe.mpo.cz
aisportal.mpo.cz
adfs.mpo.cz
monitoring.mpo.cz
aisportal.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
foreigners.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
druhotnasurovina.cz
ais.mpo.cz
blockchain.mpo.cz
www.mpo.gov.cz
druhotnasurovina.mpo.cz
trio.mpo.cz
aimapa.mpo.cz
druhotnasurovina.cz
mapi.mpo.cz
www.mpo.cz
monitoring.mpo.cz
registr.mpo.cz
mpo.cz
www.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
trios.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
druhotnasurovina.mpo.cz
cafe.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
autodiscover.mpo.cz
www.mpo.cz
ews.mpo.cz
druhotnasurovina.mpo.cz
aimapa.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
druhotnasurovina.cz
elisportal.mpo.cz
druhotnasurovina.cz
vykazy.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
spintra.mpo.cz
foreigners.mpo.cz
www.mpo.cz
druhotnasurovina.cz
mis.mpo.cz
druhotnasurovina.cz
druhotnasurovina.cz
homeoffice.mpo.cz
tip.mpo.cz
miss.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
foreigners.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
owa.mpo.cz
cafe.mpo.cz
cafe.mpo.cz
vykazy.mpo.cz
trio.mpo.cz
blockchain.mpo.cz
www.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
forms.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
www.mpo.cz
miss.mpo.cz
trio.mpo.cz
cafe.mpo.cz
monitoring.mpo.cz
mis.mpo.cz
druhotnasurovina.mpo.cz
druhotnasurovina.cz
cafe.mpo.cz
registr.mpo.cz
druhotnasurovina.mpo.cz
monitoring.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
aimapa.mpo.cz
vykazy.mpo.cz
activesync.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
cafe.mpo.cz
aisportal.mpo.cz
adfs.mpo.cz
monitoring.mpo.cz
aisportal.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
foreigners.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
druhotnasurovina.cz
ais.mpo.cz
blockchain.mpo.cz
www.mpo.gov.cz
druhotnasurovina.mpo.cz
trio.mpo.cz
aimapa.mpo.cz
druhotnasurovina.cz
mapi.mpo.cz
www.mpo.cz
monitoring.mpo.cz
registr.mpo.cz
mpo.cz
www.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
trios.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
druhotnasurovina.mpo.cz
cafe.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
autodiscover.mpo.cz
www.mpo.cz
ews.mpo.cz
druhotnasurovina.mpo.cz
aimapa.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
druhotnasurovina.cz
elisportal.mpo.cz
druhotnasurovina.cz
vykazy.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
spintra.mpo.cz
foreigners.mpo.cz
www.mpo.cz
druhotnasurovina.cz
mis.mpo.cz
druhotnasurovina.cz
druhotnasurovina.cz
homeoffice.mpo.cz
tip.mpo.cz
miss.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
foreigners.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
owa.mpo.cz
cafe.mpo.cz
cafe.mpo.cz
vykazy.mpo.cz
trio.mpo.cz
blockchain.mpo.cz
www.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
forms.mpo.cz
Certificate
The complete raw certificate details for adfs.mpo.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHfzCCBmegAwIBAgIQC1JYMHp9tppHgrEuMWfB3TANBgkqhkiG9w0BAQsFADBc MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMRswGQYDVQQDExJUaGF3dGUgUlNBIENBIDIwMTgwHhcN MjIwNjEzMDAwMDAwWhcNMjMwNzE0MjM1OTU5WjBdMQswCQYDVQQGEwJDWjEPMA0G A1UEBxMGUHJhZ3VlMScwJQYDVQQKEx5NaW5pc3RyeSBvZiBJbmR1c3RyeSBhbmQg VHJhZGUxFDASBgNVBAMTC2FkZnMubXBvLmN6MIICIjANBgkqhkiG9w0BAQEFAAOC Ag8AMIICCgKCAgEA1hqND1Tz+VKfRHDv+nSUjdp5Tl6b82WkpCd+IgDp1Yqi/zsq BDCRL/p9beGwKpSpQpUt/yb7GMI8I0bX4VbdNBq2Aa/+tGERyrcS1F9d43Prv8/u 5lREBciVY8ZGhrzM1OZonIWBzlwVgZBpjXP7mLUFHltirLKn9EW8RO8NNKoKA7O6 yrg5rID0YErnYN1LbUYPf0QjoLa1NC2DPWuQrjQDT0gjhc66GG83qXE/M1M8h7RA VOPgRFOh0mfTGRTrvU+6t/svha9o0nZaYRYjaDd4+WeEcnlqw2p6HO+mZFeTAgvs opb8K6Fyr5aHZZNfCYwZL73zWimm0e0ZSvHi3pn1Z6DLxG8ls0Cb7TNv73NMEtlI 9Kn+U3Q2fZPAAC9FENFgUHhy+n4g+QwqU+vqnk7venEt76Dp/+7Lpp+EF2RQMP6k vVJVw+++UHqSzUzTAoWmlFSHVji/eE0q7Wkq9q88xmLvDX8JMp3kTUwByYKVHwPt GKlXHnx0epALdPsS+eOC/k97kukPP1+oRS7yI3l7mPzsP20iX3YT42u765XzrTca H8lg8WeWLVOkrEw7rfiRE7jTFBcK1yP6GlKyBUR8pPiPN08A7B6KbKDTQ9Y1QwSq EV1nw6vnmPyN4gaO8mublEPFLPvKX4PzEPFfeMKgeC1P7CwzPAlcJ4F23uMCAwEA AaOCAzowggM2MB8GA1UdIwQYMBaAFKPIXmVU5TB4wQXqBwpqWcy5/t5aMB0GA1Ud DgQWBBSjmnJJbhV1+kE0VcCbBpnUpTZ6GjBLBgNVHREERDBCggthZGZzLm1wby5j eoIUY2VydGF1dGguYWRmcy5tcG8uY3qCHWVudGVycHJpc2VyZWdpc3RyYXRpb24u bXBvLmN6MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NkcC50aGF3dGUuY29tL1Ro YXd0ZVJTQUNBMjAxOC5jcmwwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEF BQcCARYbaHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMG8GCCsGAQUFBwEBBGMw YTAkBggrBgEFBQcwAYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDkGCCsGAQUF BzAChi1odHRwOi8vY2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZVJTQUNBMjAxOC5j cnQwCQYDVR0TBAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHYA6D7Q2j71 BjUy51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGBXECcDwAABAMARzBFAiBGD+V5 QYl3GwLmhzwKjQ8sh1nL3tAZOcEFufr15hWkpQIhAOZnxMRkjS94RM69yVP4iQvy P2oSM/MdqB8qcKK0eUF2AHYANc8ZG7+xbFe/D61MbULLu7YnICZR6j/hKu+oA8M7 1kwAAAGBXECcLQAABAMARzBFAiEAkDhOC7BJ3hYMXRa070m8WssGJlrOI0dwvU/U EalDlA0CICwLplr8HzNJXjKUz+Tb7GhLcEjOu/b89yJwU2Jw/LreAHYAtz77JN+c Tbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGBXECcJgAABAMARzBFAiEA44F6 QoYQvj0ygj81otPvdNJmt1iWeHn4Jpb78hFy068CIDrX1EGEJI+C17C6h1nNFdgM Q/CWSSNhb6NyImU8mJvnMA0GCSqGSIb3DQEBCwUAA4IBAQCTqAsqtS5LtCSfM+4g yqAQKMybTwHt9R85UbCrPbFB0AF5qLG4GC++PdtlKY9zisLxOukpReX58cYdyZCd KIq/ym1oeIJX/C+9QOa3eiIbAAJlgWLBnW5ZzPFD5G3BuHvtMyhdRYxeta8hHyG3 XUf+ouYHSp1MlVXxcZ1R0UjC4ju80kvQ/1RSAMyccl5orQ5UogS2FXyqMTzA+Rbf c18Vx9x6f0i3YFM/hMkN9nAc11vdxm6M1bCWGn8lZAENhhgmLmhKFM6lL1ZlXtWL tiOOHNHGb70KWCMUI/8LNnDddRUAPI/kbPCDPK32/n+af83ebTn8lz/4VyfrP5rF vc0K -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1hqND1Tz+VKfRHDv+nSU jdp5Tl6b82WkpCd+IgDp1Yqi/zsqBDCRL/p9beGwKpSpQpUt/yb7GMI8I0bX4Vbd NBq2Aa/+tGERyrcS1F9d43Prv8/u5lREBciVY8ZGhrzM1OZonIWBzlwVgZBpjXP7 mLUFHltirLKn9EW8RO8NNKoKA7O6yrg5rID0YErnYN1LbUYPf0QjoLa1NC2DPWuQ rjQDT0gjhc66GG83qXE/M1M8h7RAVOPgRFOh0mfTGRTrvU+6t/svha9o0nZaYRYj aDd4+WeEcnlqw2p6HO+mZFeTAgvsopb8K6Fyr5aHZZNfCYwZL73zWimm0e0ZSvHi 3pn1Z6DLxG8ls0Cb7TNv73NMEtlI9Kn+U3Q2fZPAAC9FENFgUHhy+n4g+QwqU+vq nk7venEt76Dp/+7Lpp+EF2RQMP6kvVJVw+++UHqSzUzTAoWmlFSHVji/eE0q7Wkq 9q88xmLvDX8JMp3kTUwByYKVHwPtGKlXHnx0epALdPsS+eOC/k97kukPP1+oRS7y I3l7mPzsP20iX3YT42u765XzrTcaH8lg8WeWLVOkrEw7rfiRE7jTFBcK1yP6GlKy BUR8pPiPN08A7B6KbKDTQ9Y1QwSqEV1nw6vnmPyN4gaO8mublEPFLPvKX4PzEPFf eMKgeC1P7CwzPAlcJ4F23uMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15049064988940001741474162603884790237 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Prague' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ministry of Industry and Trade' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'adfs.mpo.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 873466950445533545120952338366865839560363792743825291418159338402657779567734192721915445198691251229461507624818999146469708479091760764269490157599136139139078575014863765265540284936636064433551756738473809699679197017934280446829059162009170591450673052256898963005502943774538287474860131930636064278795863966473940053941118744113236212441974491783616940415464517817818423799771254040198493096422691981731615589146162611834825191082913805316579080646193723846444279642284379940961398898879103818703566796024617287374376986274855170832540569118358248821059303432293784592788996029953475374221620968811356195230802645091280547353837705138726769351811121530799930505662621540301424710802937616242266776774953614256082135765780819802663639939996998730741759861538441969466580217324945639754278605785337475434640209953114646985816361176551860783706295252909657969038671220083398116261356871715416900950364435879337838792896749949323464273042008868408751420089597600256439352147456756822032178219894413588877551143636352570086099717994258095810040251376921502161409864268345098478445275454515605471382322382607646895116211416552556776656872906493806597215667433998752759055953066837679898980227915873588766344667427208733008537771747 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a3c85e6554e53078c105ea070a6a59ccb9fede5a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a39a72496e1575fa413455c09b0699d4a5367a1a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfs.mpo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'certauth.adfs.mpo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enterpriseregistration.mpo.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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