*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 04:06:10:60:17:91:60:09:15:09:21:8f:81:0e:3b:2f was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:06:10:60:17:91:60:09:15:09:21:8f:81:0e:3b:2fSerial Number (int): 5348397896042035237943492965481462575
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 11:8e:37:e1:0f:cf:13:9a:73:6e:42:6f:b6:c6:50:95:16:99:ef:1c
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 28:d0:67:3d:a6:fc:2e:34:4b:33:ca:60:3d:63:ef:51:0a:f3:e7:7f
Fingerprint (sha256): 00:21:05:f0:58:7d:8b:70:81:e9:8b:3d:1d:8c:d7:f5:3c:81:f7:06:48:a7:07:6c:3e:23:cb:0c:7c:54:ca:fc
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.iam.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.tls.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.scram2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.scram.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.iam2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.tls2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.iam.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.tls.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.scram2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.scram.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.iam2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.tls2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
Other certificates including the domain name amazonaws.com.cn
(limited to 100 certificates)
s3.cn-northwest-1.amazonaws.com.cn
*.canary3496f720.utknk1.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary2f55c250.6yywj3.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary97dcd0c61386.gooyfy.c1.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.58m43m.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.test10.w2yetm.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc15b02e9.t88y5i.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1670079290cell.lvov73.c2.kafka.cn-north-1.amazonaws.com.cn
c3pset6uu6psf5z6b7djkishha.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.privatelinkcanary0.yc7ect.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary6e808f40ba73.d1i490.c1.kafka.cn-north-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.gtbmcn.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.y34xci.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryf335d056.0x21ts.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary5e3b98ead0b9.p9kn5h.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary-1e7d9f20e8d.now96m.c2.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary979ee1beda56.ozltwf.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary8ca93964.e4yfol.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.firefoxtbcreat.ik596e.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.3jua0u.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.on59qh.c2.kafka.cn-north-1.amazonaws.com.cn
3licg3hwbasqh2s3mbaa43e44i.cn-northwest-1.es.amazonaws.com.cn
*.canary862e4293447c.6fmord.c3.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary5da44687.qdje6s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1702011513.w5u9ni.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.testmskcluster2023.a264cu.c4.kafka.cn-north-1.amazonaws.com.cn
e3s4mcykgdqwskjt4yfnjcvplm.cn-northwest-1.es.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
zp33ldehjurut56qpvvyignwcu.cn-northwest-1.es.amazonaws.com.cn
*.canary57d54d81.adfjg6.c4.kafka.cn-northwest-1.amazonaws.com.cn
plqhkzwvsorvp6jvchirqsebia.cn-northwest-1.es.amazonaws.com.cn
*.canary-5bcd7f8b343.utol99.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary704b544ec27a.hx12kg.c3.kafka.cn-north-1.amazonaws.com.cn
*.testmskcluster2023.wwunyz.c4.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.luyjcw.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary102fc44a.ht1r7v.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary125b55277948.jiwgs2.c4.kafka.cn-north-1.amazonaws.com.cn
*.execute-api.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.gccanaryserver.e12zpj.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary9493e9acdbf0.65fkbb.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.j19l71.c3.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryf637fadfd1b3.dy1tv6.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.e8axaw.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-b1ddb9f.1oavs3.c1.kafka.cn-northwest-1.amazonaws.com.cn
pzm6mu3qqogtnhe43xvbgg5mqu.cn-north-1.es.amazonaws.com.cn
n6y7v4e7wbikszrkibyepwy7mi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserver.4yjciv.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
skylight-cm.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.gjyh6w.c4.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canarye81769aa.y3s17p.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary-ffa9908d722.6td4gt.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary8344e7dd5095.p7p3q4.c3.kafka.cn-north-1.amazonaws.com.cn
*.canarybbb126f0c041.8t96y8.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary5f1bda26d48a.ftpcz9.c2.kafka.cn-north-1.amazonaws.com.cn
*.canaryafa0e54a.ygb5o4.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
codedeploy-signer-cn-northwest-1.amazonaws.com.cn
twgpjwtbei6nsthlfpmzbl5hhy.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary0db4cb1e.oy6vos.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.5wt1zt.c3.kafka.cn-north-1.amazonaws.com.cn
*.gc-rc-sr-15867.xhwv4s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadca.xj55qc.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.kafkatos3withsasls.4llnmm.c3.kafka.cn-north-1.amazonaws.com.cn
hbn654jgaqpuftcce5yybvs2cy.cn-north-1.es.amazonaws.com.cn
uqoebdj5lch6aehczmdztetoha.cn-north-1.es.amazonaws.com.cn
*.gccanaryserverless.epmd6b.c4.kafka.cn-north-1.amazonaws.com.cn
*.gcsr1702033113.ld4gl7.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4668d574.oy05yh.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryc68700e9.0o7xf6.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc8c2a5ec.37n898.c3.kafka.cn-northwest-1.amazonaws.com.cn
lrb4qjbh4wegaeyxfz3zuh7zci.cn-north-1.es.amazonaws.com.cn
tqrfxciqkhie6arj7v3xglbvn4.cn-northwest-1.es.amazonaws.com.cn
k2226wmzqdmgdfmmzwgqbqqvce.cn-northwest-1.es.amazonaws.com.cn
*.canary119ddc562fd4.jbrsi0.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary1af0cacf.spzuhv.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserver.2ebxjt.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryef38f1ce.7hlf6n.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.j3a68q.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary7716982ec1b2.darevb.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.ey77of.c2.kafka.cn-northwest-1.amazonaws.com.cn
7q6ct4xfdbbgqsgnrt2qwbsk4m.cn-north-1.es.amazonaws.com.cn
*.canary6ed6e174.1ktht2.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4295856f.432mey.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary17b1d34638e3.rsf8dr.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary3496f720.utknk1.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary2f55c250.6yywj3.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary97dcd0c61386.gooyfy.c1.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.58m43m.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.test10.w2yetm.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc15b02e9.t88y5i.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1670079290cell.lvov73.c2.kafka.cn-north-1.amazonaws.com.cn
c3pset6uu6psf5z6b7djkishha.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.privatelinkcanary0.yc7ect.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary6e808f40ba73.d1i490.c1.kafka.cn-north-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.gtbmcn.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.y34xci.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryf335d056.0x21ts.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary5e3b98ead0b9.p9kn5h.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary-1e7d9f20e8d.now96m.c2.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary979ee1beda56.ozltwf.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary8ca93964.e4yfol.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.firefoxtbcreat.ik596e.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.3jua0u.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.on59qh.c2.kafka.cn-north-1.amazonaws.com.cn
3licg3hwbasqh2s3mbaa43e44i.cn-northwest-1.es.amazonaws.com.cn
*.canary862e4293447c.6fmord.c3.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary5da44687.qdje6s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1702011513.w5u9ni.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.testmskcluster2023.a264cu.c4.kafka.cn-north-1.amazonaws.com.cn
e3s4mcykgdqwskjt4yfnjcvplm.cn-northwest-1.es.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
zp33ldehjurut56qpvvyignwcu.cn-northwest-1.es.amazonaws.com.cn
*.canary57d54d81.adfjg6.c4.kafka.cn-northwest-1.amazonaws.com.cn
plqhkzwvsorvp6jvchirqsebia.cn-northwest-1.es.amazonaws.com.cn
*.canary-5bcd7f8b343.utol99.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary704b544ec27a.hx12kg.c3.kafka.cn-north-1.amazonaws.com.cn
*.testmskcluster2023.wwunyz.c4.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.luyjcw.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary102fc44a.ht1r7v.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary125b55277948.jiwgs2.c4.kafka.cn-north-1.amazonaws.com.cn
*.execute-api.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.gccanaryserver.e12zpj.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary9493e9acdbf0.65fkbb.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.j19l71.c3.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryf637fadfd1b3.dy1tv6.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.e8axaw.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-b1ddb9f.1oavs3.c1.kafka.cn-northwest-1.amazonaws.com.cn
pzm6mu3qqogtnhe43xvbgg5mqu.cn-north-1.es.amazonaws.com.cn
n6y7v4e7wbikszrkibyepwy7mi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserver.4yjciv.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
skylight-cm.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.gjyh6w.c4.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canarye81769aa.y3s17p.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary-ffa9908d722.6td4gt.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary8344e7dd5095.p7p3q4.c3.kafka.cn-north-1.amazonaws.com.cn
*.canarybbb126f0c041.8t96y8.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary5f1bda26d48a.ftpcz9.c2.kafka.cn-north-1.amazonaws.com.cn
*.canaryafa0e54a.ygb5o4.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
codedeploy-signer-cn-northwest-1.amazonaws.com.cn
twgpjwtbei6nsthlfpmzbl5hhy.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary0db4cb1e.oy6vos.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.5wt1zt.c3.kafka.cn-north-1.amazonaws.com.cn
*.gc-rc-sr-15867.xhwv4s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadca.xj55qc.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.kafkatos3withsasls.4llnmm.c3.kafka.cn-north-1.amazonaws.com.cn
hbn654jgaqpuftcce5yybvs2cy.cn-north-1.es.amazonaws.com.cn
uqoebdj5lch6aehczmdztetoha.cn-north-1.es.amazonaws.com.cn
*.gccanaryserverless.epmd6b.c4.kafka.cn-north-1.amazonaws.com.cn
*.gcsr1702033113.ld4gl7.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4668d574.oy05yh.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryc68700e9.0o7xf6.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc8c2a5ec.37n898.c3.kafka.cn-northwest-1.amazonaws.com.cn
lrb4qjbh4wegaeyxfz3zuh7zci.cn-north-1.es.amazonaws.com.cn
tqrfxciqkhie6arj7v3xglbvn4.cn-northwest-1.es.amazonaws.com.cn
k2226wmzqdmgdfmmzwgqbqqvce.cn-northwest-1.es.amazonaws.com.cn
*.canary119ddc562fd4.jbrsi0.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary1af0cacf.spzuhv.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserver.2ebxjt.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryef38f1ce.7hlf6n.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.j3a68q.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary7716982ec1b2.darevb.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.ey77of.c2.kafka.cn-northwest-1.amazonaws.com.cn
7q6ct4xfdbbgqsgnrt2qwbsk4m.cn-north-1.es.amazonaws.com.cn
*.canary6ed6e174.1ktht2.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4295856f.432mey.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary17b1d34638e3.rsf8dr.c4.kafka.cn-north-1.amazonaws.com.cn
Certificate
The complete raw certificate details for *.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgIQBAYQYBeRYAkVCSGPgQ47LzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwODAwMDAwMFoXDTI1MDEwNTIzNTk1OVowSzFJ MEcGA1UEAwxAKi5jYW5hcnkyYjlhODEwNi5zZmhpY3UuYzQua2Fma2EuY24tbm9y dGh3ZXN0LTEuYW1hem9uYXdzLmNvbS5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK/UixIwD+Cp1yj6WDe96y7kuNOGSYXLqB6a4p8Cpg+HlHzpl9cH 1nhUClh1umUSJg0JZqXpxrYgREvT4g+BD0newypLJW1OLj4DXPTelBK7yX93Q/MC gs9tf3mNKnK9EGIsVvCIeMLy1LBAxpLzciSJuHZsJeyXkFrsHrpFGUPzz04aMdaK zfFUbBrkZY+DI7/ZIxLX9PrUDaovzHNBx+6hYpMIZeU4DGB+bO1zflUlyRucb06t gwIB9CkuvO4vWCv5Sj4JIY3ZJAoAPe5M9DBIxNjYv61skXtblLT9C0hMRPZ2R0jS UfHH9gcHeiiIAXp6yik8apNsmBV8rni+35MCAwEAAaOCA10wggNZMB8GA1UdIwQY MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBQRjjfhD88TmnNuQm+2 xlCVFpnvHDCCAfoGA1UdEQSCAfEwggHtgkAqLmNhbmFyeTJiOWE4MTA2LnNmaGlj dS5jNC5rYWZrYS5jbi1ub3J0aHdlc3QtMS5hbWF6b25hd3MuY29tLmNugkQqLmlh bS5jYW5hcnkyYjlhODEwNi5zZmhpY3UuYzQua2Fma2EuY24tbm9ydGh3ZXN0LTEu YW1hem9uYXdzLmNvbS5jboJEKi50bHMuY2FuYXJ5MmI5YTgxMDYuc2ZoaWN1LmM0 LmthZmthLmNuLW5vcnRod2VzdC0xLmFtYXpvbmF3cy5jb20uY26CRyouc2NyYW0y LmNhbmFyeTJiOWE4MTA2LnNmaGljdS5jNC5rYWZrYS5jbi1ub3J0aHdlc3QtMS5h bWF6b25hd3MuY29tLmNugkYqLnNjcmFtLmNhbmFyeTJiOWE4MTA2LnNmaGljdS5j NC5rYWZrYS5jbi1ub3J0aHdlc3QtMS5hbWF6b25hd3MuY29tLmNugkUqLmlhbTIu Y2FuYXJ5MmI5YTgxMDYuc2ZoaWN1LmM0LmthZmthLmNuLW5vcnRod2VzdC0xLmFt YXpvbmF3cy5jb20uY26CRSoudGxzMi5jYW5hcnkyYjlhODEwNi5zZmhpY3UuYzQu a2Fma2EuY24tbm9ydGh3ZXN0LTEuYW1hem9uYXdzLmNvbS5jbjATBgNVHSAEDDAK MAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1h em9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwG A1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAKqY5HUkHgo99tij6Yc4RsE7cA+fkZrMQoOWBa3T2e1V7zkT9QXn1LjsAjDk leOjLu2x6z7PTZX68JmAVLH/tlqO8BJU8GXdCCc3xvj0o9RVs1renBLRKeQoGfFf F1zvBEhbFjPkoADIS9c0SBj1sR26/OCgfUU8fgHb/BtXPSWVPtqHOE4oQqaKnsP2 qtA8FJhZ/NEbI9j+9kMB2YD1AZWwd3FAz9K0w0wMxC7IENMO8uXyCqNeyhcMUxaa P7hHnlWFprQWDxEwS4YnEQcl5z17WNbm3qMgMvHapjbaQMnKKl7LvHL4l+JNgf39 pN9+WZV3rw6ZMY+ArfcNe48cayg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr9SLEjAP4KnXKPpYN73r LuS404ZJhcuoHprinwKmD4eUfOmX1wfWeFQKWHW6ZRImDQlmpenGtiBES9PiD4EP Sd7DKkslbU4uPgNc9N6UErvJf3dD8wKCz21/eY0qcr0QYixW8Ih4wvLUsEDGkvNy JIm4dmwl7JeQWuweukUZQ/PPThox1orN8VRsGuRlj4Mjv9kjEtf0+tQNqi/Mc0HH 7qFikwhl5TgMYH5s7XN+VSXJG5xvTq2DAgH0KS687i9YK/lKPgkhjdkkCgA97kz0 MEjE2Ni/rWyRe1uUtP0LSExE9nZHSNJR8cf2Bwd6KIgBenrKKTxqk2yYFXyueL7f kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5348397896042035237943492965481462575 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22196512350081654753032920605642137508432103963595201054498412568514293874839849818526616118830126664689123726619904270258590370600468163505780709688100730222880041643991152143147878931179287078673569507982935204206740140569717048965365506063488468548696020212025508378875652598932324568681593139836426087534119601180917981402972068947737332928720662628399040921304990272621935989283802050498091708195933316502120349165962708145241171701549781638743246489577387268583014729042533645106166169398481651162369277168908753568096802564834615674019934741450133741774143783088393534062316413351393855037740728842690754437011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 118e37e10fcf139a736e426fb6c650951699ef1c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (497 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iam.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tls.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scram2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scram.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iam2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tls2.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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