*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0c:af:4f:b0:fd:f9:be:10:87:19:9b:6a:0f:59:1b:de was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:af:4f:b0:fd:f9:be:10:87:19:9b:6a:0f:59:1b:deSerial Number (int): 16861004232779503870724408290743753694
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 84:09:7e:ca:3c:b4:7a:7c:9e:13:4e:35:0c:4c:75:b5:d7:5d:de:24
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): cd:56:56:e1:74:5b:1b:52:40:99:03:6b:76:56:52:0f:3a:00:d2:31
Fingerprint (sha256): 00:37:0b:8d:c3:bb:f2:c3:c5:00:c0:1d:f9:08:41:31:40:90:25:01:5d:6d:c8:18:d7:77:ba:51:9b:e0:aa:5d
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.scram.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.tls.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.scram2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.iam2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.iam.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.tls2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.scram.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.tls.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.scram2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.iam2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.iam.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.tls2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
Other certificates including the domain name amazonaws.com.cn
(limited to 100 certificates)
s3.cn-northwest-1.amazonaws.com.cn
*.canary3496f720.utknk1.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary2f55c250.6yywj3.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary97dcd0c61386.gooyfy.c1.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.58m43m.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.test10.w2yetm.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1670079290cell.lvov73.c2.kafka.cn-north-1.amazonaws.com.cn
c3pset6uu6psf5z6b7djkishha.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.privatelinkcanary0.yc7ect.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary6e808f40ba73.d1i490.c1.kafka.cn-north-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.canaryf335d056.0x21ts.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary5e3b98ead0b9.p9kn5h.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary-1e7d9f20e8d.now96m.c2.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary979ee1beda56.ozltwf.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary8ca93964.e4yfol.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.firefoxtbcreat.ik596e.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.3jua0u.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary862e4293447c.6fmord.c3.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.gcsr1702011513.w5u9ni.c1.kafka.cn-northwest-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
zp33ldehjurut56qpvvyignwcu.cn-northwest-1.es.amazonaws.com.cn
*.canary-5bcd7f8b343.utol99.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadca.luyjcw.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary102fc44a.ht1r7v.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary125b55277948.jiwgs2.c4.kafka.cn-north-1.amazonaws.com.cn
*.execute-api.cn-north-1.amazonaws.com.cn
*.canary9493e9acdbf0.65fkbb.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.j19l71.c3.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary-b1ddb9f.1oavs3.c1.kafka.cn-northwest-1.amazonaws.com.cn
pzm6mu3qqogtnhe43xvbgg5mqu.cn-north-1.es.amazonaws.com.cn
n6y7v4e7wbikszrkibyepwy7mi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserver.4yjciv.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
skylight-cm.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canarye81769aa.y3s17p.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary-ffa9908d722.6td4gt.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary8344e7dd5095.p7p3q4.c3.kafka.cn-north-1.amazonaws.com.cn
*.canarybbb126f0c041.8t96y8.c1.kafka.cn-north-1.amazonaws.com.cn
*.canaryafa0e54a.ygb5o4.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
codedeploy-signer-cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.cfnlaunchpadcanary.5wt1zt.c3.kafka.cn-north-1.amazonaws.com.cn
*.gc-rc-sr-15867.xhwv4s.c1.kafka.cn-northwest-1.amazonaws.com.cn
hbn654jgaqpuftcce5yybvs2cy.cn-north-1.es.amazonaws.com.cn
uqoebdj5lch6aehczmdztetoha.cn-north-1.es.amazonaws.com.cn
*.gcsr1702033113.ld4gl7.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4668d574.oy05yh.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
lrb4qjbh4wegaeyxfz3zuh7zci.cn-north-1.es.amazonaws.com.cn
tqrfxciqkhie6arj7v3xglbvn4.cn-northwest-1.es.amazonaws.com.cn
*.canary1af0cacf.spzuhv.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary7716982ec1b2.darevb.c4.kafka.cn-north-1.amazonaws.com.cn
7q6ct4xfdbbgqsgnrt2qwbsk4m.cn-north-1.es.amazonaws.com.cn
*.canary4295856f.432mey.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary17b1d34638e3.rsf8dr.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.cbo97l.c3.kafka.cn-northwest-1.amazonaws.com.cn
epiw22th55yg6svmdqamw7nktu.cn-north-1.es.amazonaws.com.cn
*.cfnlaunchpadcanary.bqj341.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary14c23cb5.wt916c.c2.kafka.cn-northwest-1.amazonaws.com.cn
kms.cn-north-1.amazonaws.com.cn
*.canaryd3951b25.9fkqtm.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-781c9418bc1.mms28h.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary-be1769827af.ejwa6m.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2c669bf2.jecmya.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canarycc433adb.ktcjtq.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.sik4mk.c3.kafka.cn-north-1.amazonaws.com.cn
cloudtrail-corvidae-id.cn-northwest-1.amazonaws.com.cn
*.gccanaryserver.p980l2.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-a6e8f5c.xwhdqa.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.0ziqyv.c3.kafka.cn-north-1.amazonaws.com.cn
expt7hswbbfpgj3zei5envhnzm.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
fxmtjhlhftna4ogayvwxjfvev4.cn-north-1.es.amazonaws.com.cn
r5cdyfzibtsx6zkuj6pn3hinx4.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
ehq4von7tc44pxdatg5tx75deq.cn-north-1.es.amazonaws.com.cn
*.canarycbadf0a25a6f.c13t3q.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary28af34e5.hizkp9.c2.kafka.cn-northwest-1.amazonaws.com.cn
izb3kgcjkhcfne33ynpyocpk4e.cn-north-1.es.amazonaws.com.cn
*.cfnlaunchpadcanary.8056tt.c4.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.idsfmo.c4.kafka.cn-northwest-1.amazonaws.com.cn
mwn6c4bqklrvipxyq5y6nmxvva.cn-northwest-1.es.amazonaws.com.cn
lare7de7o63jxm4ymboycp5wz4.cn-north-1.es.amazonaws.com.cn
aws-im-gamma-fe.cn-northwest-1.amazonaws.com.cn
cun6gihl4xbmwlsegn46trey7u.cn-northwest-1.es.amazonaws.com.cn
*.canaryae2bd822.nz273m.c2.kafka.cn-northwest-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.canary243e2408.p08fo4.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3496f720.utknk1.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary2f55c250.6yywj3.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary97dcd0c61386.gooyfy.c1.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.58m43m.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.test10.w2yetm.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1670079290cell.lvov73.c2.kafka.cn-north-1.amazonaws.com.cn
c3pset6uu6psf5z6b7djkishha.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.privatelinkcanary0.yc7ect.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary6e808f40ba73.d1i490.c1.kafka.cn-north-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.canaryf335d056.0x21ts.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary5e3b98ead0b9.p9kn5h.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary-1e7d9f20e8d.now96m.c2.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary979ee1beda56.ozltwf.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary8ca93964.e4yfol.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.firefoxtbcreat.ik596e.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.3jua0u.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary862e4293447c.6fmord.c3.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.gcsr1702011513.w5u9ni.c1.kafka.cn-northwest-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
zp33ldehjurut56qpvvyignwcu.cn-northwest-1.es.amazonaws.com.cn
*.canary-5bcd7f8b343.utol99.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadca.luyjcw.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary102fc44a.ht1r7v.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary125b55277948.jiwgs2.c4.kafka.cn-north-1.amazonaws.com.cn
*.execute-api.cn-north-1.amazonaws.com.cn
*.canary9493e9acdbf0.65fkbb.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.j19l71.c3.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary-b1ddb9f.1oavs3.c1.kafka.cn-northwest-1.amazonaws.com.cn
pzm6mu3qqogtnhe43xvbgg5mqu.cn-north-1.es.amazonaws.com.cn
n6y7v4e7wbikszrkibyepwy7mi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserver.4yjciv.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
skylight-cm.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canarye81769aa.y3s17p.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary-ffa9908d722.6td4gt.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary8344e7dd5095.p7p3q4.c3.kafka.cn-north-1.amazonaws.com.cn
*.canarybbb126f0c041.8t96y8.c1.kafka.cn-north-1.amazonaws.com.cn
*.canaryafa0e54a.ygb5o4.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
codedeploy-signer-cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.cfnlaunchpadcanary.5wt1zt.c3.kafka.cn-north-1.amazonaws.com.cn
*.gc-rc-sr-15867.xhwv4s.c1.kafka.cn-northwest-1.amazonaws.com.cn
hbn654jgaqpuftcce5yybvs2cy.cn-north-1.es.amazonaws.com.cn
uqoebdj5lch6aehczmdztetoha.cn-north-1.es.amazonaws.com.cn
*.gcsr1702033113.ld4gl7.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4668d574.oy05yh.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
lrb4qjbh4wegaeyxfz3zuh7zci.cn-north-1.es.amazonaws.com.cn
tqrfxciqkhie6arj7v3xglbvn4.cn-northwest-1.es.amazonaws.com.cn
*.canary1af0cacf.spzuhv.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary7716982ec1b2.darevb.c4.kafka.cn-north-1.amazonaws.com.cn
7q6ct4xfdbbgqsgnrt2qwbsk4m.cn-north-1.es.amazonaws.com.cn
*.canary4295856f.432mey.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary17b1d34638e3.rsf8dr.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.cbo97l.c3.kafka.cn-northwest-1.amazonaws.com.cn
epiw22th55yg6svmdqamw7nktu.cn-north-1.es.amazonaws.com.cn
*.cfnlaunchpadcanary.bqj341.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary14c23cb5.wt916c.c2.kafka.cn-northwest-1.amazonaws.com.cn
kms.cn-north-1.amazonaws.com.cn
*.canaryd3951b25.9fkqtm.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-781c9418bc1.mms28h.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary-be1769827af.ejwa6m.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2c669bf2.jecmya.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canarycc433adb.ktcjtq.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.sik4mk.c3.kafka.cn-north-1.amazonaws.com.cn
cloudtrail-corvidae-id.cn-northwest-1.amazonaws.com.cn
*.gccanaryserver.p980l2.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-a6e8f5c.xwhdqa.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.0ziqyv.c3.kafka.cn-north-1.amazonaws.com.cn
expt7hswbbfpgj3zei5envhnzm.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
fxmtjhlhftna4ogayvwxjfvev4.cn-north-1.es.amazonaws.com.cn
r5cdyfzibtsx6zkuj6pn3hinx4.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
ehq4von7tc44pxdatg5tx75deq.cn-north-1.es.amazonaws.com.cn
*.canarycbadf0a25a6f.c13t3q.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary28af34e5.hizkp9.c2.kafka.cn-northwest-1.amazonaws.com.cn
izb3kgcjkhcfne33ynpyocpk4e.cn-north-1.es.amazonaws.com.cn
*.cfnlaunchpadcanary.8056tt.c4.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.idsfmo.c4.kafka.cn-northwest-1.amazonaws.com.cn
mwn6c4bqklrvipxyq5y6nmxvva.cn-northwest-1.es.amazonaws.com.cn
lare7de7o63jxm4ymboycp5wz4.cn-north-1.es.amazonaws.com.cn
aws-im-gamma-fe.cn-northwest-1.amazonaws.com.cn
cun6gihl4xbmwlsegn46trey7u.cn-northwest-1.es.amazonaws.com.cn
*.canaryae2bd822.nz273m.c2.kafka.cn-northwest-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.canary243e2408.p08fo4.c1.kafka.cn-northwest-1.amazonaws.com.cn
Certificate
The complete raw certificate details for *.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgIQDK9PsP35vhCHGZtqD1kb3jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIwNTAwMDAwMFoXDTI1MDEwMjIzNTk1OVowSzFJ MEcGA1UEAwxAKi5jYW5hcnkzZGE0Y2I3Mi43MHBmOWkuYzIua2Fma2EuY24tbm9y dGh3ZXN0LTEuYW1hem9uYXdzLmNvbS5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANvZDxH0CnTqK4oRfDC9YEXgOiPpxdWUn/ITX+97s/jVZ7YcXsLg EiCPU9lhl2POsIfjaBt3VXLKd88UeoSXps7S4hRMJXj3MlUoQmXCw0NGspWVwkU4 wlru7aKMpr4aVNC8dJYmfqC81Ba3FlmE03b6jcZJzHZ5P4fL56VsjsYK8RX4caYs UZAjQrx6LAx1sxvmbwz+D0mwho6uwTC6cAK345Q8ltNqQOnaWTaw73zN+wq/U+BL v2XfWJz9HKbET8/1YQ+Iy6VBZ70QwoaaZVGFDuvlcE2ry3yU0Yrv1PDfv2VXoLJc R2PgaavlIuBeLBpWtbuQwV8xYcFSKnFxbJ0CAwEAAaOCA10wggNZMB8GA1UdIwQY MBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBSECX7KPLR6fJ4TTjUM THW1113eJDCCAfoGA1UdEQSCAfEwggHtgkAqLmNhbmFyeTNkYTRjYjcyLjcwcGY5 aS5jMi5rYWZrYS5jbi1ub3J0aHdlc3QtMS5hbWF6b25hd3MuY29tLmNugkYqLnNj cmFtLmNhbmFyeTNkYTRjYjcyLjcwcGY5aS5jMi5rYWZrYS5jbi1ub3J0aHdlc3Qt MS5hbWF6b25hd3MuY29tLmNugkQqLnRscy5jYW5hcnkzZGE0Y2I3Mi43MHBmOWku YzIua2Fma2EuY24tbm9ydGh3ZXN0LTEuYW1hem9uYXdzLmNvbS5jboJHKi5zY3Jh bTIuY2FuYXJ5M2RhNGNiNzIuNzBwZjlpLmMyLmthZmthLmNuLW5vcnRod2VzdC0x LmFtYXpvbmF3cy5jb20uY26CRSouaWFtMi5jYW5hcnkzZGE0Y2I3Mi43MHBmOWku YzIua2Fma2EuY24tbm9ydGh3ZXN0LTEuYW1hem9uYXdzLmNvbS5jboJEKi5pYW0u Y2FuYXJ5M2RhNGNiNzIuNzBwZjlpLmMyLmthZmthLmNuLW5vcnRod2VzdC0xLmFt YXpvbmF3cy5jb20uY26CRSoudGxzMi5jYW5hcnkzZGE0Y2I3Mi43MHBmOWkuYzIu a2Fma2EuY24tbm9ydGh3ZXN0LTEuYW1hem9uYXdzLmNvbS5jbjATBgNVHSAEDDAK MAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1h em9udHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwG A1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAIDVlMD5NTYtbEeLX4eZkT7mrRgbHc4bUhtvHIbVu8QpC1Ai23gjImOYu7jW hb+g7R9V8kmK7qRkKCNuNRYg/bXNDYCoOJglQuEILbhQwwuzM44Q/QYrcsOtXodg ftxyaFkzc+w5wxNXbIdYovHT8EWq4E9EfabiHvk8fXzJUvQArgaublX77ewPBiGv SO56D7/4Q2UvfE4T6ywISNyOrKwCVpl5o8vgkvfkHOhtqE5gwUwtPaAVs6WLCjD9 SfH/ujHgxxUU5wYhj3NjjukMzYMDjC72Vg1tGEB70XVKvn0mHmxFexeXqjBsC894 cAmq8WH3fKesqQFLVyiUBYh49lo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29kPEfQKdOorihF8ML1g ReA6I+nF1ZSf8hNf73uz+NVnthxewuASII9T2WGXY86wh+NoG3dVcsp3zxR6hJem ztLiFEwlePcyVShCZcLDQ0aylZXCRTjCWu7tooymvhpU0Lx0liZ+oLzUFrcWWYTT dvqNxknMdnk/h8vnpWyOxgrxFfhxpixRkCNCvHosDHWzG+ZvDP4PSbCGjq7BMLpw ArfjlDyW02pA6dpZNrDvfM37Cr9T4Eu/Zd9YnP0cpsRPz/VhD4jLpUFnvRDChppl UYUO6+VwTavLfJTRiu/U8N+/ZVegslxHY+Bpq+Ui4F4sGla1u5DBXzFhwVIqcXFs nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16861004232779503870724408290743753694 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27753224504503232833248788493858700194154319471654227880601526064066394310877917484277549875310111219298381306606007282117105870115377950366871764467043670532442390265001215923443669937479024085144434227892143966360560998414371473506740329386808061719296272555800097877946377327933696154416053998095667686504304395374083370221072867281586658110115199926521107056693951888584379874148878823620657824519902501501434061332681401693412301474150785728900726413379542532866273893291276552867987810659110649108612114691238851871994609659912185000984378269699420682737674769004021789718601305128490148774093095517978436398237 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 84097eca3cb47a7c9e134e350c4c75b5d75dde24 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (497 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scram.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tls.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scram2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iam2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iam.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tls2.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0080d594c0f935362d6c478b5f8799913ee6ad181b1dce1b521b6f1c86d5bbc4290b5022db7823226398bbb8d685bfa0ed1f55f2498aeea46428236e351620fdb5cd0d80a838982542e1082db850c30bb3338e10fd062b72c3ad5e87607edc7268593373ec39c313576c8758a2f1d3f045aae04f447da6e21ef93c7d7cc952f400ae06ae6e55fbedec0f0621af48ee7a0fbff843652f7c4e13eb2c0848dc8eacac02569979a3cbe092f7e41ce86da84e60c14c2d3da015b3a58b0a30fd49f1ffba31e0c71514e706218f73638ee90ccd83038c2ef6560d6d18407bd1754abe7d261e6c457b1797aa306c0bcf787009aaf161f77ca7aca9014b572894058878f65a