reader.glow.cz
Issued by R3
About this certificate
This digital certificate with serial number 04:c1:52:5b:92:73:4f:b7:57:a8:f2:18:e8:4d:30:98:ee:ca was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=reader.glow.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:c1:52:5b:92:73:4f:b7:57:a8:f2:18:e8:4d:30:98:ee:caSerial Number (int): 414233112707818311591266744118312514940618
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: cc:9f:a7:79:ea:90:ab:41:e7:36:43:4b:be:98:d9:77:4a:dc:0e:31
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 80:8d:67:f1:f4:28:4f:3f:a5:04:b4:42:67:85:e0:ed:59:74:94:00
Fingerprint (sha256): 7c:93:e3:57:19:60:33:5a:e1:14:7e:9e:88:e8:3d:0a:18:2f:65:e0:25:73:dd:b1:cd:4b:85:31:8f:a6:de:9b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate reader.glow.cz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for reader.glow.cz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
reader.glow.cz
Other certificates including the domain name glow.cz
(limited to 100 certificates)
hamu.prob-amu.glow.cz
*.glow.cz
ranec.glow.cz
majak.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
t.glow.cz
webmail.glow.cz
oko2.glow.cz
www.glow.cz
www.glow.cz
reader.glow.cz
hamu.prob-amu.glow.cz
w.glow.cz
famu.prob-amu.glow.cz
doosancms.online.rev-doosan.glow.cz
webmail.glow.cz
reader.glow.cz
www.glow.cz
altmail.glow.cz
2itwiki.glow.cz
git.glow.cz
adastracorp.com
git.glow.cz
mail.glow.cz
altmail.glow.cz
adastra-web-sk.prob-prod.glow.cz
amu.prob-amu.glow.cz
mail.glow.cz
ranec.glow.cz
ranec.glow.cz
webmail.glow.cz
reader.glow.cz
jabber.glow.cz
adastra-web-sk.prob-prod.glow.cz
webmail.glow.cz
webmail.glow.cz
www.glow.cz
mail.glow.cz
mail.glow.cz
ranec.glow.cz
www.glow.cz
altmail.glow.cz
sekac.glow.cz
altmail.glow.cz
www.glow.cz
www.glow.cz
t.glow.cz
www.glow.cz
adastra-web-sk.prob-prod.glow.cz
tmobile-spolecenska-odpovednost.prob-prod.glow.cz
sekac.glow.cz
webmail.glow.cz
hamu.prob-amu.glow.cz
www.glow.cz
ranec.glow.cz
amu.prob-amu.glow.cz
webmail.glow.cz
2itwiki.glow.cz
webmail.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
altmail.glow.cz
sekac.glow.cz
doosancms.online.rev-doosan.glow.cz
altmail.glow.cz
www.glow.cz
mail.glow.cz
hamu.prob-amu.glow.cz
www.glow.cz
*.glow.cz
obrik.glow.cz
majak.glow.cz
hamu.prob-amu.glow.cz
altmail.glow.cz
webmail.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
w.glow.cz
obrik.glow.cz
webmail.glow.cz
webmail.glow.cz
webmail.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
www.glow.cz
webmail.glow.cz
adastracorp.com
reader.glow.cz
sekac.glow.cz
mail.glow.cz
www.glow.cz
t.glow.cz
reader.glow.cz
www.glow.cz
majak.glow.cz
obrik.glow.cz
ranec.glow.cz
dev.glow.cz
adastra-web-sk.prob-prod.glow.cz
*.glow.cz
ranec.glow.cz
majak.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
t.glow.cz
webmail.glow.cz
oko2.glow.cz
www.glow.cz
www.glow.cz
reader.glow.cz
hamu.prob-amu.glow.cz
w.glow.cz
famu.prob-amu.glow.cz
doosancms.online.rev-doosan.glow.cz
webmail.glow.cz
reader.glow.cz
www.glow.cz
altmail.glow.cz
2itwiki.glow.cz
git.glow.cz
adastracorp.com
git.glow.cz
mail.glow.cz
altmail.glow.cz
adastra-web-sk.prob-prod.glow.cz
amu.prob-amu.glow.cz
mail.glow.cz
ranec.glow.cz
ranec.glow.cz
webmail.glow.cz
reader.glow.cz
jabber.glow.cz
adastra-web-sk.prob-prod.glow.cz
webmail.glow.cz
webmail.glow.cz
www.glow.cz
mail.glow.cz
mail.glow.cz
ranec.glow.cz
www.glow.cz
altmail.glow.cz
sekac.glow.cz
altmail.glow.cz
www.glow.cz
www.glow.cz
t.glow.cz
www.glow.cz
adastra-web-sk.prob-prod.glow.cz
tmobile-spolecenska-odpovednost.prob-prod.glow.cz
sekac.glow.cz
webmail.glow.cz
hamu.prob-amu.glow.cz
www.glow.cz
ranec.glow.cz
amu.prob-amu.glow.cz
webmail.glow.cz
2itwiki.glow.cz
webmail.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
altmail.glow.cz
sekac.glow.cz
doosancms.online.rev-doosan.glow.cz
altmail.glow.cz
www.glow.cz
mail.glow.cz
hamu.prob-amu.glow.cz
www.glow.cz
*.glow.cz
obrik.glow.cz
majak.glow.cz
hamu.prob-amu.glow.cz
altmail.glow.cz
webmail.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
w.glow.cz
obrik.glow.cz
webmail.glow.cz
webmail.glow.cz
webmail.glow.cz
www.glow.cz
hamu.prob-amu.glow.cz
www.glow.cz
webmail.glow.cz
adastracorp.com
reader.glow.cz
sekac.glow.cz
mail.glow.cz
www.glow.cz
t.glow.cz
reader.glow.cz
www.glow.cz
majak.glow.cz
obrik.glow.cz
ranec.glow.cz
dev.glow.cz
adastra-web-sk.prob-prod.glow.cz
Certificate
The complete raw certificate details for reader.glow.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgISBMFSW5JzT7dXqPIY6E0wmO7KMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjUwMjA5NDdaFw0yMzEyMjQwMjA5NDZaMBkxFzAVBgNVBAMT DnJlYWRlci5nbG93LmN6MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA 2Bv2g9yumEw55XY/N7kkvjPJ9vD/XVwhv07WGzzrE9bmlop7qMeiP+aL/wGYMRBt f+K2XTDxdZaw/bkv+1eahWFuUap+TDCoc6Uz+wApJSM5KVicuDXCnqdN8mmNYBJN nEBgsL2Dg0UvjO9Xo0EdOGrCpwS1PIREjF69kkYEEjq0w/NgC0KUJ+iGA7xw0svX B45qIJIYEnVRqg+kJb47c9FDZq5I91Dz7zoTTIomxl6sxZaGRE0mU77ZxkqocOe3 OQNcQFlHe1QJpntWrfUkxaH3OCelKdxqWBu488AUBmUPUkUOn7f6DPMJk7lR66vU tLR8SoQHlmddtr1V90cfYesp5teHoURzbeuGAMuzoF994mzGNPX99N+/LZcPV1US 12tAlWmJE2GhkWHHym9Rm2nMvK5LaVmpmiKZU0uFO/qsFew41ZtmEnf1AD4bG1yc ErOvWn+8+YMka4ksGZT+LNaaAZM+chffgGMAKFGozn5O4k2k/qN/8CvORBKyKOVB iXXJJ3xUyG4Nddhxq8pShjpfmHyx55rJLl3C7pPBcKJ3kzuFmljVxxIJe3YFLqGJ /pGnuVIBx8HwwckWtZQ/jykp3aokAp2i/1+GJlzAT34maNkKP+uXI5kFcJueTy5H rgZDJ+LNhv5g1aJPO7ckd3hAN3EaMq1koJWCdp58zQMCAwEAAaOCAhAwggIMMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUzJ+neeqQq0HnNkNLvpjZd0rcDjEwHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wGQYDVR0RBBIwEIIOcmVhZGVyLmdsb3cuY3owEwYD VR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwB6MoxU 2LcttiDqOOBSHumEFnAyE4VNO9IrwTpXo1LrUgAAAYrKUIEwAAAEAwBIMEYCIQDE rtb2MbSIh8U8lebK0V9ICjpSsCsvuC1WspTTk5xh8AIhANoEL2wq7pV5fnCZkGg6 ta45jDda5B9cv/EnH8f3EMjdAHUA6D7Q2j71BjUy51covIlryQPTy9ERa+zraeF3 fW0GvW4AAAGKylCBmgAABAMARjBEAiA0vVHc+e46onOdFIGqLGWvd+XX7wXy2aod OSVO1lWT+gIgBgZsLvfyUbaBEh9u+elRqy6SzY6ZAsYxeE24lPZUm84wDQYJKoZI hvcNAQELBQADggEBAG2568yX1ZwWd7i8mWHxiZtzBOTOGYuNT4aGet8YwtZx64Gq nPGHnll9doN+3KUa0LuY+GskWGBUqmvuQGIRrGjx0yrF1ke7S7TPpNimRxs1h+kw Zet4+EOx0mqDB2Sm1Rs4OI64D4COc74UwxOsX7K+cWuP/jA2q9gCC4hS4AZbVwa3 kt0ElFQcjw4rNWcsGD6J8gTJCuuJKywCftS3Mia0V93y4gsmEGL3Tjp0RaoiLggs vUE/umlWQV/Tisp5ak1KobPOgTYTp4HV6mZmAc6DAiDSLMBDp4OgBBfrF9aisWtm UX/cEWVjQkRt9c/q8AgH/Uvn2F9+RnKYHVH3E7I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2Bv2g9yumEw55XY/N7kk vjPJ9vD/XVwhv07WGzzrE9bmlop7qMeiP+aL/wGYMRBtf+K2XTDxdZaw/bkv+1ea hWFuUap+TDCoc6Uz+wApJSM5KVicuDXCnqdN8mmNYBJNnEBgsL2Dg0UvjO9Xo0Ed OGrCpwS1PIREjF69kkYEEjq0w/NgC0KUJ+iGA7xw0svXB45qIJIYEnVRqg+kJb47 c9FDZq5I91Dz7zoTTIomxl6sxZaGRE0mU77ZxkqocOe3OQNcQFlHe1QJpntWrfUk xaH3OCelKdxqWBu488AUBmUPUkUOn7f6DPMJk7lR66vUtLR8SoQHlmddtr1V90cf Yesp5teHoURzbeuGAMuzoF994mzGNPX99N+/LZcPV1US12tAlWmJE2GhkWHHym9R m2nMvK5LaVmpmiKZU0uFO/qsFew41ZtmEnf1AD4bG1ycErOvWn+8+YMka4ksGZT+ LNaaAZM+chffgGMAKFGozn5O4k2k/qN/8CvORBKyKOVBiXXJJ3xUyG4Nddhxq8pS hjpfmHyx55rJLl3C7pPBcKJ3kzuFmljVxxIJe3YFLqGJ/pGnuVIBx8HwwckWtZQ/ jykp3aokAp2i/1+GJlzAT34maNkKP+uXI5kFcJueTy5HrgZDJ+LNhv5g1aJPO7ck d3hAN3EaMq1koJWCdp58zQMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 414233112707818311591266744118312514940618 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 02:09:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-24 02:09:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'reader.glow.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 881648739322334010834642612553805155458976079973381977405519533516229313927838280911735828144382352252025621461260775604850597226309812542497963945103401739598707595436333818386054252149209342286367481367854517267963603312375405677197975163646375997912804469501607729102181017924265525629302381937093088936596314189616627161426976214716794749306119184250017283966143097856842874875072354668605270682470593102892915324414642464515647661036071889605484763708286950000272830961652386336332302331158337068758123411506978492461760478544386066629424842444568993668404514281198720969745716467439486947819220944840762336521326904276265964598040237262811686496105041411924893639108076048295519182567066663776398243982276170294534853833820991750381860038578932012501182252109483947753980712563290933192520314498322791092028059338793522936005398242216391305955094589163015904747910342923960978924037782834791974118149141901892182810743320131257927623346111448462692817054122048682992874704076767509915374590679335903862077201634619535012702511219415656344267588933953572736316488052591584526520221922680056860911514108303647213173325010490811879523244599577473707256902263498655541645130653306029684320825521708618624722860294737261649653976323 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cc9fa779ea90ab41e736434bbe98d9774adc0e31 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reader.glow.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aca5081300000040300483046022100c4aed6f631b48887c53c95e6cad15f480a3a52b02b2fb82d56b294d3939c61f0022100da042f6c2aee95797e709990683ab5ae398c375ae41f5cbff1271fc7f710c8dd007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aca50819a0000040300463044022034bd51dcf9ee3aa2739d1481aa2c65af77e5d7ef05f2d9aa1d39254ed65593fa022006066c2ef7f251b681121f6ef9e951ab2e92cd8e9902c631784db894f6549bce . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006db9ebcc97d59c1677b8bc9961f1899b7304e4ce198b8d4f86867adf18c2d671eb81aa9cf1879e597d76837edca51ad0bb98f86b24586054aa6bee406211ac68f1d32ac5d647bb4bb4cfa4d8a6471b3587e93065eb78f843b1d26a830764a6d51b38388eb80f808e73be14c313ac5fb2be716b8ffe3036abd8020b8852e0065b5706b792dd0494541c8f0e2b35672c183e89f204c90aeb892b2c027ed4b73226b457ddf2e20b261062f74e3a7445aa222e082cbd413fba6956415fd38aca796a4d4aa1b3ce813613a781d5ea666601ce830220d22cc043a783a00417eb17d6a2b16b66517fdc11656342446df5cfeaf00807fd4be7d85f7e4672981d51f713b2