msdnaa.sh.cvut.cz

Issued by TERENA SSL CA 2

About this certificate


This digital certificate with serial number 8a:a8:6e:c8:3d:0e:ff:77:72:b4:a9:7d:a7:48:1f:f5 was issued on by TERENA .

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

msdnaa.sh.cvut.cz

Organization unit: Domain Control Validated

TERENA

Organization: TERENA

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 8a:a8:6e:c8:3d:0e:ff:77:72:b4:a9:7d:a7:48:1f:f5
Serial Number (int): 184308016220137863006390398713325953013
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 04:74:63:08:94:34:4e:f8:a7:65:f2:c1:b5:78:7d:25:f6:c1:6e:db
AuthorityKeyId: 5b:d0:8a:1c:9a:32:5b:e0:b5:dd:96:54:1b:e1:86:28:b0:fd:b6:bd

Fingerprint (sha1): f9:be:c7:70:aa:7b:93:80:75:c8:84:69:f5:3a:e5:f3:14:6d:ef:46
Fingerprint (sha256): 18:d4:58:72:26:13:28:07:d1:cd:b2:9f:66:1e:5f:5d:12:d8:83:3b:e0:f1:09:d0:73:2d:ec:97:ef:dd:4c:5b

Issuing Certificate URL: http://crt.usertrust.com/TERENASSLCA2.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.usertrust.com/TERENASSLCA2.crl

Check the revocation status for the current certificate on msdnaa.sh.cvut.cz
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

msdnaa.sh.cvut.cz
chimera.sh.cvut.cz
pegas.sh.cvut.cz

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIRAIqobsg9Dv93crSpfadIH/UwDQYJKoZIhvcNAQELBQAw ZDELMAkGA1UEBhMCTkwxFjAUBgNVBAgTDU5vb3JkLUhvbGxhbmQxEjAQBgNVBAcT CUFtc3RlcmRhbTEPMA0GA1UEChMGVEVSRU5BMRgwFgYDVQQDEw9URVJFTkEgU1NM IENBIDIwHhcNMTUwMTI2MDAwMDAwWhcNMTgwMTI1MjM1OTU5WjA/MSEwHwYDVQQL ExhEb21haW4gQ29udHJvbCBWYWxpZGF0ZWQxGjAYBgNVBAMTEW1zZG5hYS5zaC5j dnV0LmN6MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1unbH7CX8xVU yxXfqGjd298NRcSv6xwk8ZymKGxGxo6mgsL7JYTAFzwfO5pDy9CEOCOWSyIpqfD0 divfecga45LNxureY9E/yLmtOATm/2+sXmNjtTxrzdaFnrtkKjAiO0jNj1Aweeq2 HlfxuAHJDtiRqHO0DXNi3Xhkbq/075UT6/qYZ9C8/eN8bIkSPSsAcbP7dCBmsSrD IJe9MvhDR3RY98r4RIv8vHl/kJjuv1DDf/4ixXZeZYS5OIihYxbxXuKD1kXF27l+ jtxqb2fACFmjk9LQzbLLPBG/AK0bjW0mW2jK8WGHK2RkfogdPSiez0p5PC7V8iod BPRM6QWBeFGbvv0QrvdXBwyfR5mrAEMPVy0sB9w1sJJWtaIQFjZiheF/Tk0N4ukA usK1bCHS/MOgHuyZLUTCX0k0TJThZ20SNPGnlo9ihyMPPq1BbquQzay+CN2GO5z8 mOefag+p7H0a9OZ/KNEbl3cGbUXeX+hsh1hboulsdDunBCMpZZRkHAYcBFixpUWr goWzOKUexhJzahB+Y2nk0m3SC55LuIsYvVW1yccfBA3mHv9Rw4zmtS77LEw+7iY7 laRaxXZIvEV2iIeUTutIJlPpqKtAAgNVbQCLifeaHOnUfIB/PUebSzNNPb+hAAW2 qyc6WC5oRe2Iza95FoesM/hMYSJsTlkCAwEAAaOCAZMwggGPMB8GA1UdIwQYMBaA FFvQihyaMlvgtd2WVBvhhiiw/ba9MB0GA1UdDgQWBBQEdGMIlDRO+Kdl8sG1eH0l 9sFu2zAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwIgYDVR0gBBswGTANBgsrBgEEAbIxAQICHTAIBgZn gQwBAgEwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybC51c2VydHJ1c3QuY29t L1RFUkVOQVNTTENBMi5jcmwwbAYIKwYBBQUHAQEEYDBeMDUGCCsGAQUFBzAChilo dHRwOi8vY3J0LnVzZXJ0cnVzdC5jb20vVEVSRU5BU1NMQ0EyLmNydDAlBggrBgEF BQcwAYYZaHR0cDovL29jc3AudXNlcnRydXN0LmNvbTBCBgNVHREEOzA5ghFtc2Ru YWEuc2guY3Z1dC5jeoISY2hpbWVyYS5zaC5jdnV0LmN6ghBwZWdhcy5zaC5jdnV0 LmN6MA0GCSqGSIb3DQEBCwUAA4IBAQAHlycX7BHHtn5DrdRHoDIW4bKvbqyO7CJw A3WDlAtoOjQ1zbWeltvWbaw6jzTP+6NSLPDIk1LPhps0a080Uf5Ig/IN0OmxFs40 494s5AfvW2Rb7jJduQorqfiJmuW8uajEfOZkIGEdyMUw4QIFXfCKZaYk/SrrHcOJ sp43XD4hJJPlxpnxSKK7mLFexaO3OvWwYu2wt+gfhsD9uOSIso0Q2QoLRS/GS7A1 Gy45Xq8cOKawfizNzh7i+VstTuTr2uWiVd9+f02G24IzX59kcRhHOiZ7BqHDydgU mdAvBu8UupquqaWq1MlNjkHLFK/B+DEwkXtHcbe5D+c3ipWCK352 -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1unbH7CX8xVUyxXfqGjd 298NRcSv6xwk8ZymKGxGxo6mgsL7JYTAFzwfO5pDy9CEOCOWSyIpqfD0divfecga 45LNxureY9E/yLmtOATm/2+sXmNjtTxrzdaFnrtkKjAiO0jNj1Aweeq2HlfxuAHJ DtiRqHO0DXNi3Xhkbq/075UT6/qYZ9C8/eN8bIkSPSsAcbP7dCBmsSrDIJe9MvhD R3RY98r4RIv8vHl/kJjuv1DDf/4ixXZeZYS5OIihYxbxXuKD1kXF27l+jtxqb2fA CFmjk9LQzbLLPBG/AK0bjW0mW2jK8WGHK2RkfogdPSiez0p5PC7V8iodBPRM6QWB eFGbvv0QrvdXBwyfR5mrAEMPVy0sB9w1sJJWtaIQFjZiheF/Tk0N4ukAusK1bCHS /MOgHuyZLUTCX0k0TJThZ20SNPGnlo9ihyMPPq1BbquQzay+CN2GO5z8mOefag+p 7H0a9OZ/KNEbl3cGbUXeX+hsh1hboulsdDunBCMpZZRkHAYcBFixpUWrgoWzOKUe xhJzahB+Y2nk0m3SC55LuIsYvVW1yccfBA3mHv9Rw4zmtS77LEw+7iY7laRaxXZI vEV2iIeUTutIJlPpqKtAAgNVbQCLifeaHOnUfIB/PUebSzNNPb+hAAW2qyc6WC5o Re2Iza95FoesM/hMYSJsTlkCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 184308016220137863006390398713325953013 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Noord-Holland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amsterdam' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TERENA SSL CA 2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-01-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'msdnaa.sh.cvut.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 876770584652263351912626853838839707312781935036241559656689075532931628761321152976706004366112459445564968321396507281846958880064840143622472644067476226575587849102677348611852870972623063338744936991271548317541592270613802962387555933261154191715881276276629839567069061304253070500997455133323429895054509367239406717851535524697887741687564278115910369367870580061076587653593249363892652856026123315974779466323520423916390468309295192592284079096999459132750921452366764381660216075683616565368561719681252523899549510690522597459409616994581820346529239377519785854478827648746504091061237190129312184203986832204906583419895093900255605503138371910223618355136118665649005921884587107454769253334348992146396923488849180347271985860270970438132050922862730099635191627113228168044170851339921125085292966376054547721327438412805908703298691328776520946923301939197179169903258143626766125675721318449750846308058708273887608911288031824115892438498788870139791414974685426201592778123279494677314377966562768169129888267037442543356363599365041557671357422051573420325057990572072554608135994416126243671300311591222221536316939792848161895091449887065070806377770297397587638505376825554406258420458816422239711624187481 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5bd08a1c9a325be0b5dd96541be18628b0fdb6bd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0474630894344ef8a765f2c1b5787d25f6c16edb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.29 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/TERENASSLCA2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (96 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/TERENASSLCA2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'msdnaa.sh.cvut.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chimera.sh.cvut.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pegas.sh.cvut.cz' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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