www.mpo.cz
- Ministerstvo průmyslu a obchodu -
Issued by Thawte EV RSA CA 2018
About this certificate
This digital certificate with serial number 0c:85:0e:b7:92:c8:13:45:ec:90:bc:41:ab:e0:3f:93 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Ministerstvo průmyslu a obchodu
Company registration number:
Government Entity
Organization: Ministerstvo průmyslu a obchodu
Organization: Ministerstvo průmyslu a obchodu
Locality:
Praha 1
Country: CZ
Country: CZ
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:85:0e:b7:92:c8:13:45:ec:90:bc:41:ab:e0:3f:93Serial Number (int): 16641609929519001395874108673028538259
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a8:68:f2:1f:79:86:84:68:10:a8:43:83:f4:14:34:fb:41:fb:13:c1
AuthorityKeyId: e7:01:fc:0c:16:18:ca:7d:b2:8c:ec:87:27:a3:6f:61:81:3b:84:39
Fingerprint (sha1): b9:a1:82:2c:9d:86:a2:67:ab:30:12:60:46:f1:75:c2:07:f4:8f:5b
Fingerprint (sha256): 5f:d0:4a:b9:7f:04:ab:b5:b9:19:a6:c1:e6:f0:95:2b:f3:f1:d3:7b:06:1d:0b:07:50:48:6d:8f:18:ca:4f:db
Issuing Certificate URL: http://cacerts.thawte.com/ThawteEVRSACA2018.crt
Revocation information
OCSP Server: http://status.thawte.comCRL Distribution Point: http://cdp.thawte.com/ThawteEVRSACA2018.crl
Check the revocation status for certificate www.mpo.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mpo.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mpo.cz
mpo.cz
mpo.cz
Other certificates including the domain name mpo.cz
(limited to 100 certificates)
druhotnasurovina.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
www.mpo.cz
miss.mpo.cz
trio.mpo.cz
cafe.mpo.cz
monitoring.mpo.cz
mis.mpo.cz
druhotnasurovina.mpo.cz
druhotnasurovina.cz
cafe.mpo.cz
registr.mpo.cz
druhotnasurovina.mpo.cz
monitoring.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
aimapa.mpo.cz
vykazy.mpo.cz
activesync.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
cafe.mpo.cz
aisportal.mpo.cz
adfs.mpo.cz
monitoring.mpo.cz
aisportal.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
foreigners.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
druhotnasurovina.cz
ais.mpo.cz
blockchain.mpo.cz
www.mpo.gov.cz
druhotnasurovina.mpo.cz
trio.mpo.cz
aimapa.mpo.cz
druhotnasurovina.cz
mapi.mpo.cz
www.mpo.cz
monitoring.mpo.cz
registr.mpo.cz
mpo.cz
www.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
trios.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
druhotnasurovina.mpo.cz
cafe.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
autodiscover.mpo.cz
www.mpo.cz
ews.mpo.cz
druhotnasurovina.mpo.cz
aimapa.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
druhotnasurovina.cz
elisportal.mpo.cz
druhotnasurovina.cz
vykazy.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
spintra.mpo.cz
foreigners.mpo.cz
www.mpo.cz
druhotnasurovina.cz
mis.mpo.cz
druhotnasurovina.cz
druhotnasurovina.cz
homeoffice.mpo.cz
tip.mpo.cz
miss.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
foreigners.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
owa.mpo.cz
cafe.mpo.cz
cafe.mpo.cz
vykazy.mpo.cz
trio.mpo.cz
blockchain.mpo.cz
www.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
forms.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
www.mpo.cz
miss.mpo.cz
trio.mpo.cz
cafe.mpo.cz
monitoring.mpo.cz
mis.mpo.cz
druhotnasurovina.mpo.cz
druhotnasurovina.cz
cafe.mpo.cz
registr.mpo.cz
druhotnasurovina.mpo.cz
monitoring.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
aimapa.mpo.cz
vykazy.mpo.cz
activesync.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
cafe.mpo.cz
aisportal.mpo.cz
adfs.mpo.cz
monitoring.mpo.cz
aisportal.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
foreigners.mpo.cz
druhotnasurovina.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
druhotnasurovina.cz
ais.mpo.cz
blockchain.mpo.cz
www.mpo.gov.cz
druhotnasurovina.mpo.cz
trio.mpo.cz
aimapa.mpo.cz
druhotnasurovina.cz
mapi.mpo.cz
www.mpo.cz
monitoring.mpo.cz
registr.mpo.cz
mpo.cz
www.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
trios.mpo.cz
adfs.mpo.cz
foreigners.mpo.cz
foreigners.mpo.cz
cafe.mpo.cz
druhotnasurovina.mpo.cz
cafe.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
autodiscover.mpo.cz
www.mpo.cz
ews.mpo.cz
druhotnasurovina.mpo.cz
aimapa.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
trio.mpo.cz
monitoring.mpo.cz
druhotnasurovina.cz
elisportal.mpo.cz
druhotnasurovina.cz
vykazy.mpo.cz
monitoring.mpo.cz
foreigners.mpo.cz
miss.mpo.cz
spintra.mpo.cz
foreigners.mpo.cz
www.mpo.cz
druhotnasurovina.cz
mis.mpo.cz
druhotnasurovina.cz
druhotnasurovina.cz
homeoffice.mpo.cz
tip.mpo.cz
miss.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
foreigners.mpo.cz
monitoring.mpo.cz
vykazy.mpo.cz
owa.mpo.cz
cafe.mpo.cz
cafe.mpo.cz
vykazy.mpo.cz
trio.mpo.cz
blockchain.mpo.cz
www.mpo.cz
druhotnasurovina.cz
monitoring.mpo.cz
forms.mpo.cz
Certificate
The complete raw certificate details for www.mpo.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHLjCCBhagAwIBAgIQDIUOt5LIE0XskLxBq+A/kzANBgkqhkiG9w0BAQsFADBf MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR4wHAYDVQQDExVUaGF3dGUgRVYgUlNBIENBIDIwMTgw HhcNMjAwMjI2MDAwMDAwWhcNMjIwNTI3MTIwMDAwWjCBrDEaMBgGA1UEDwwRR292 ZXJubWVudCBFbnRpdHkxEzARBgsrBgEEAYI3PAIBAxMCQ1oxGjAYBgNVBAUTEUdv dmVybm1lbnQgRW50aXR5MQswCQYDVQQGEwJDWjEQMA4GA1UEBxMHUHJhaGEgMTEp MCcGA1UECgwgTWluaXN0ZXJzdHZvIHByxa9teXNsdSBhIG9iY2hvZHUxEzARBgNV BAMTCnd3dy5tcG8uY3owggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp PC3ceva2g/MPROHL6t/hkzbdiqomH0iCp0RMekMedkwKF9NqbmQA3Kg+jnHXFG65 7+Eac65VQYMNCWfcCl3BZb2mUPHbHtKGohspUYfSt1D3UKn8unpw5fSy1AIqKOvV CYdDHiB2HnvMVg+517+UC3ReSq287A6H4lIf6uRAsM06j0klzlsJWKtpKlw7VvAd 1DlGJFYGPjTx2QVFjkbehnOLdDQQe2+UJkG1GuzZmP9XjtHXQS5FE78r5gpKVFiv 90WoTTYLgCM0Dx0Iwl3gNAHC3Uh8q3nV1hYH+84fJqfv4fCGDlLzk+cLc9ct6k4k 6bX2OFxdEYPM3VmeCb8nAgMBAAGjggOWMIIDkjAfBgNVHSMEGDAWgBTnAfwMFhjK fbKM7Icno29hgTuEOTAdBgNVHQ4EFgQUqGjyH3mGhGgQqEOD9BQ0+0H7E8EwHQYD VR0RBBYwFIIKd3d3Lm1wby5jeoIGbXBvLmN6MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPAYDVR0fBDUwMzAxoC+gLYYraHR0 cDovL2NkcC50aGF3dGUuY29tL1RoYXd0ZUVWUlNBQ0EyMDE4LmNybDBLBgNVHSAE RDBCMDcGCWCGSAGG/WwCATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdp Y2VydC5jb20vQ1BTMAcGBWeBDAEBMHEGCCsGAQUFBwEBBGUwYzAkBggrBgEFBQcw AYYYaHR0cDovL3N0YXR1cy50aGF3dGUuY29tMDsGCCsGAQUFBzAChi9odHRwOi8v Y2FjZXJ0cy50aGF3dGUuY29tL1RoYXd0ZUVWUlNBQ0EyMDE4LmNydDAJBgNVHRME AjAAMIIB9wYKKwYBBAHWeQIEAgSCAecEggHjAeEAdgCkuQmQtBhYFIe7E6LMZ3AK PDWYBPkb37jjd80OyA3cEAAAAXCBGvfAAAAEAwBHMEUCIQCuHMfPENLTlFJ4Bi5X 7sc5ivEHoRd+rJyNI4sdYKkQbAIgWsxK8FEmDxwCM6Ruk9fRE1iJZeASqXcse40K ekVIRX0AdwBWFAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAXCBGvgT AAAEAwBIMEYCIQCR0lWR7Ydx9a7cK+s6msA61tfdCFTCl+NF5PAkxkA63AIhAMCO Wm/ZfXOSxC6k7S0pUmmEqhRCIFt9os3TiwGLDQ4GAHYAu9nfvB+KcbWTlCOXqpJ7 RzhXlQqrUugakJZkNo4e0YUAAAFwgRr3tAAABAMARzBFAiB9SuTN88CmEdApeap0 lcwt1KD7a2ki4bHZeWTChtz0BwIhAIv1i2ffu/YIJfCz3/aRjTHh+z420ed6HU6R bQ/VhNwYAHYAh3W/51l8+IxDmV+9827/Vo1HVjb/SrVgwbTq/16ggw8AAAFwgRr5 JQAABAMARzBFAiAgvvE/hxyUGrtVB2go0MLouP3JzWmozkdx9P3FlFKeogIhAJ// VaGxBLqNLm04jwpSYg4rm9gnzz2kpcYAAuutErxVMA0GCSqGSIb3DQEBCwUAA4IB AQAULQva8zKYOaF8bRRfIm+MDWd3/P2TVb0nT0bBF5KPueurv3+MN99OQMYM7tNk hBB0/tSs5RuPfrUWaJfFIEXjk/5I3SMVpXxspZMJ9woO0Tb05MYvvKx4/k1RB1hv GVzkqFEC2TatCw0yjJaxvvjm5/6tgAMgVmCdDtu/qWaftu4UtdG97kaT4EK1CVXe 6XRrZe6kXgjU91QH6QKGC2ecXz6KcD/0eajDnrdNNk8Z10ndzTDFp6xxEbgd5NOf yo9FeiTWWBExN6+hdgMgx75F0uaEDcC7fSIf5Lknml3hdtIROCwMb1iZ5v1brc34 3Mv6clmKYer2xcef6xfUEMnP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTwt3Hr2toPzD0Thy+rf 4ZM23YqqJh9IgqdETHpDHnZMChfTam5kANyoPo5x1xRuue/hGnOuVUGDDQln3Apd wWW9plDx2x7ShqIbKVGH0rdQ91Cp/Lp6cOX0stQCKijr1QmHQx4gdh57zFYPude/ lAt0XkqtvOwOh+JSH+rkQLDNOo9JJc5bCViraSpcO1bwHdQ5RiRWBj408dkFRY5G 3oZzi3Q0EHtvlCZBtRrs2Zj/V47R10EuRRO/K+YKSlRYr/dFqE02C4AjNA8dCMJd 4DQBwt1IfKt51dYWB/vOHyan7+Hwhg5S85PnC3PXLepOJOm19jhcXRGDzN1Zngm/ JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16641609929519001395874108673028538259 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte EV RSA CA 2018' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-27 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Government Entity' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Praha 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ministerstvo průmyslu a obchodu' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mpo.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21363948981935165021042228485081899327224263929521980922863120219118590073654052438838244460614699299484925777557029802788918905763139293596608757155179848049590955930102512625139820130008518826062653130549185483633344884375904831062536113394144009906591940790325368333819017752996103025695290884292524856514782917855957280769083152917830075499143858346178887594564637513784034733502943515917223934932959216244582538732439536193214831003868249397213891032891727203632348146171953980843091757498578393574048175477528352118187693853608492804274059470031239833486425341517541032226109105482243091265456162402562044706599 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName e701fc0c1618ca7db28cec8727a36f61813b8439 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a868f21f7986846810a84383f41434fb41fb13c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mpo.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mpo.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cdp.thawte.com/ThawteEVRSACA2018.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://status.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.thawte.com/ThawteEVRSACA2018.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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