iave.rwe.cz
- RWE IT Czech s.r.o. -
Issued by I.CA - Standard Certification Authority, 09/2009
About this certificate
This digital certificate with serial number 1e:69:66 was issued on by První certifikační autorita, a.s..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
- Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
- Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
- The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
RWE IT Czech s.r.o.
Company registration number:
ICA - 820557
Organization: RWE IT Czech s.r.o.
Organization unit: AKC
Organization: RWE IT Czech s.r.o.
Organization unit: AKC
Country:
CZ
První certifikační autorita, a.s.
Organization:
První certifikační autorita, a.s.
Organization unit: I.CA - Provider of Certification Services
Organization unit: I.CA - Provider of Certification Services
Country:
CZ
This certificate has expire since
Certificate Details
Serial Number (hex): 1e:69:66Serial Number (int): 1993062
Serial Number lenght: 21 bits, 3 octets
SubjectKeyId: 1a:29:24:3c:73:1b:0f:00:98:1c:84:b6:0d:28:b4:c8:d9:10:45:6c
AuthorityKeyId: c1:4c:38:94:d5:80:86:48:d9:22:90:2c:d3:ee:19:10:db:67:47:87
Fingerprint (sha1): 7e:8e:4f:6e:36:aa:1c:05:c0:f8:27:4a:d6:46:ba:84:22:7e:d3:30
Fingerprint (sha256): ac:f0:d4:5a:82:d4:2a:15:f5:1e:7c:e7:72:f6:e4:e6:93:90:b9:19:e4:a7:1e:19:aa:86:74:a3:76:94:25:6e
Revocation information
CRL Distribution Point: http://scrldp1.ica.cz/sica09.crlCRL Distribution Point: http://scrldp2.ica.cz/sica09.crl
Check the revocation status for certificate iave.rwe.cz
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for iave.rwe.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Key Agreement
Extended Key Usages
Extensions
5 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name rwe.cz
(limited to 100 certificates)
lyncweb.rwe.com
www.rwe.cz
lyncweb.rwe.com
vop.rwe.cz
sip.innogy.com
lyncweb.rwe.com
ets.rwe.cz
access02.rwe.com
gsn.rwe.cz
iave.rwe.cz
lyncweb.rwe.com
premium.rwe.cz
premium.rwe.cz
gsn.rwe.cz
gsnbackup.rwe.cz
svb-cross.rwe.cz
vop.rwe.cz
access02.rwe.com
*.rwe.cz
www.rwe.cz
lyncweb.rwe.com
www.rwe.cz
moje.rwe.cz
sip.innogy.com
lyncweb.rwe.com
lyncweb.rwe.com
iave.rwe.cz
onlineservis.rwe.cz
www.rwe.cz
svb-cross.rwe.cz
gsn.rwe.cz
ets-test.rwe.cz
vop.rwe.cz
ets.rwe.cz
www.rwe.cz
access02.rwe.com
lyncweb.rwe.com
www.rwe.cz
lyncweb.rwe.com
www.rwe.cz
premium.rwe.cz
vop.rwe.cz
ets.rwe.cz
lyncweb.rwe.com
lyncweb.rwe.com
ets.rwe.cz
iave.rwe.cz
www.rwe.cz
esb.rwe.cz
migrace.rwe.cz
www.rwe.cz
wallboard.rwe.cz
mdm.rwe.cz
lyncweb.rwe.com
lyncweb.rwe.com
svb-cross.rwe.cz
test-wms.rwe.cz
access02.rwe.com
iave.rwe.cz
lyncweb.rwe.com
sip.innogy.com
wallboard.rwe.cz
ets.rwe.cz
www.rwe.cz
iave.rwe.cz
www.rwe.cz
access02.rwe.com
lyncweb.rwe.com
gsn.rwe.cz
ets.rwe.cz
email.rwe.cz
www.rwe.cz
gsn.rwe.cz
iave.rwe.cz
wms.rwe.cz
www.rwe.cz
lyncweb.rwe.com
vop.rwe.cz
sip.innogy.com
lyncweb.rwe.com
ets.rwe.cz
access02.rwe.com
gsn.rwe.cz
iave.rwe.cz
lyncweb.rwe.com
premium.rwe.cz
premium.rwe.cz
gsn.rwe.cz
gsnbackup.rwe.cz
svb-cross.rwe.cz
vop.rwe.cz
access02.rwe.com
*.rwe.cz
www.rwe.cz
lyncweb.rwe.com
www.rwe.cz
moje.rwe.cz
sip.innogy.com
lyncweb.rwe.com
lyncweb.rwe.com
iave.rwe.cz
onlineservis.rwe.cz
www.rwe.cz
svb-cross.rwe.cz
gsn.rwe.cz
ets-test.rwe.cz
vop.rwe.cz
ets.rwe.cz
www.rwe.cz
access02.rwe.com
lyncweb.rwe.com
www.rwe.cz
lyncweb.rwe.com
www.rwe.cz
premium.rwe.cz
vop.rwe.cz
ets.rwe.cz
lyncweb.rwe.com
lyncweb.rwe.com
ets.rwe.cz
iave.rwe.cz
www.rwe.cz
esb.rwe.cz
migrace.rwe.cz
www.rwe.cz
wallboard.rwe.cz
mdm.rwe.cz
lyncweb.rwe.com
lyncweb.rwe.com
svb-cross.rwe.cz
test-wms.rwe.cz
access02.rwe.com
iave.rwe.cz
lyncweb.rwe.com
sip.innogy.com
wallboard.rwe.cz
ets.rwe.cz
www.rwe.cz
iave.rwe.cz
www.rwe.cz
access02.rwe.com
lyncweb.rwe.com
gsn.rwe.cz
ets.rwe.cz
email.rwe.cz
www.rwe.cz
gsn.rwe.cz
iave.rwe.cz
wms.rwe.cz
Certificate
The complete raw certificate details for iave.rwe.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEWjCCA0KgAwIBAgIDHmlmMA0GCSqGSIb3DQEBCwUAMIGrMQswCQYDVQQGEwJD WjE5MDcGA1UEAwwwSS5DQSAtIFN0YW5kYXJkIENlcnRpZmljYXRpb24gQXV0aG9y aXR5LCAwOS8yMDA5MS0wKwYDVQQKDCRQcnZuw60gY2VydGlmaWthxI1uw60gYXV0 b3JpdGEsIGEucy4xMjAwBgNVBAsMKUkuQ0EgLSBQcm92aWRlciBvZiBDZXJ0aWZp Y2F0aW9uIFNlcnZpY2VzMB4XDTE0MDkyMzA5NDg0NloXDTE1MDkyMzA5NDg0Nlow ZjELMAkGA1UEBhMCQ1oxFDASBgNVBAMMC2lhdmUucndlLmN6MRwwGgYDVQQKDBNS V0UgSVQgQ3plY2ggcy5yLm8uMQwwCgYDVQQLDANBS0MxFTATBgNVBAUTDElDQSAt IDgyMDU1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKfK/a7IRjxR e59027vECtmLLAe7e9u5AIWQi+NV+OeLT1aFpKyAXG4/1jUREILsDLIW/7+e0WXq WFKEPJUXcdY+G+KDUKjQXaoy7hLY5DEjOti7UJGtsPJ6G/ppS6gVSQ7ZoL+vlbk0 AxHxCMrqrx3COOzw1SGv81p9T4q+dHQkvY5rBaPHX3VFkFUKTCQ3ykY/nbiWxJ1v UPgS1+ukyJ9lrH1TYwBYJomH0MxOYEr+O0ZvU+wNt0HcE5YKU8PC3CAoUw0z61QP UaX2hRi5KxiSgaFnbqgpyldUnFPBjDU6waP2mE8bPYWBP0U1hZcin6+tiiAGZN/l vv/MKHBC+psCAwEAAaOByjCBxzAOBgNVHQ8BAf8EBAMCA/gwHwYDVR0jBBgwFoAU wUw4lNWAhkjZIpAs0+4ZENtnR4cwHQYDVR0OBBYEFBopJDxzGw8AmByEtg0otMjZ EEVsMBoGA1UdIAQTMBEwDwYNKwYBBAGBuEgBATwDATBZBgNVHR8EUjBQMCagJKAi hiBodHRwOi8vc2NybGRwMS5pY2EuY3ovc2ljYTA5LmNybDAmoCSgIoYgaHR0cDov L3NjcmxkcDIuaWNhLmN6L3NpY2EwOS5jcmwwDQYJKoZIhvcNAQELBQADggEBAH5X xf8ofb9MzehiZ77LQn2XeqYIwWXgltLZLaBgWmmvt/Xm4tZCVo9iIxUpKN5Arykk 3mIkuMmP3ofnUBZ0vtg/TFXoHIgoi9J3eAd/CXmmqJLT4w5bSt3JF5OdRXbKCMR8 0atrBk8v7rjup/FkzwpXA+WDMUynxEqEsvSGgt0nAF0XOJs/i5yWjeXcgTjnDW4+ +j5eTAPsa6keuk//7eHZuzoivOlMZpxcgSDO4Fjn79M+hfpbfiJxwE0UbIslUl+M 3rWUC4HgsEjoZNDniB4KyduLsKYn8VGRT/dgcuQXWVegcP506Pj5eYj+7ySKrTLA AZ9q/zYYT1hKrT958nA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8r9rshGPFF7n3Tbu8QK 2YssB7t727kAhZCL41X454tPVoWkrIBcbj/WNREQguwMshb/v57RZepYUoQ8lRdx 1j4b4oNQqNBdqjLuEtjkMSM62LtQka2w8nob+mlLqBVJDtmgv6+VuTQDEfEIyuqv HcI47PDVIa/zWn1Pir50dCS9jmsFo8dfdUWQVQpMJDfKRj+duJbEnW9Q+BLX66TI n2WsfVNjAFgmiYfQzE5gSv47Rm9T7A23QdwTlgpTw8LcIChTDTPrVA9RpfaFGLkr GJKBoWduqCnKV1ScU8GMNTrBo/aYTxs9hYE/RTWFlyKfr62KIAZk3+W+/8wocEL6 mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1993062 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'I.CA - Standard Certification Authority, 09/2009' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'První certifikační autorita, a.s.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'I.CA - Provider of Certification Services' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-09-23 09:48:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-23 09:48:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CZ' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'iave.rwe.cz' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'RWE IT Czech s.r.o.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'AKC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ICA - 820557' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21181895496622078561370940654707997429728002371057958860628875873031958317564878187508057705570067513782208032047287107415659322230740455091914427829534288104022305378772489199311833442369822075140913150796414996825249138932618501282117710239756640036130010084120322649417430328381312355493549862272818423924701455286886151424243598334677073460113273967735971566289979391959877894310620057852400259433836743507325626705638466278252747910711346254076985026832648652562738457980433778206230746420516370241925983939140615180904222806021973681983053919061407252850469829740330815689102859028817490260163551882867166608027 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03f8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c14c3894d5808648d922902cd3ee1910db674787 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1a29243c731b0f00981c84b60d28b4c8d910456c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23624.1.1.60.3.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://scrldp1.ica.cz/sica09.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://scrldp2.ica.cz/sica09.crl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007e57c5ff287dbf4ccde86267becb427d977aa608c165e096d2d92da0605a69afb7f5e6e2d642568f6223152928de40af2924de6224b8c98fde87e7501674bed83f4c55e81c88288bd27778077f0979a6a892d3e30e5b4addc917939d4576ca08c47cd1ab6b064f2feeb8eea7f164cf0a5703e583314ca7c44a84b2f48682dd27005d17389b3f8b9c968de5dc8138e70d6e3efa3e5e4c03ec6ba91eba4fffede1d9bb3a22bce94c669c5c8120cee058e7efd33e85fa5b7e2271c04d146c8b25525f8cdeb5940b81e0b048e864d0e7881e0ac9db8bb0a627f151914ff76072e4175957a070fe74e8f8f97988feef248aad32c0019f6aff36184f584aad3f79f270