*.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 06:d0:a0:78:95:52:81:07:ed:2d:67:1f:5f:c4:8c:02 was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:d0:a0:78:95:52:81:07:ed:2d:67:1f:5f:c4:8c:02Serial Number (int): 9058620460413833075228271461546626050
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 8b:9c:33:ee:c0:12:10:a4:b4:f1:f3:a2:31:0b:6f:31:95:23:33:49
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): e0:f9:d7:27:42:b3:e7:70:55:fc:a1:b5:ee:7c:92:da:ad:64:96:9e
Fingerprint (sha256): 00:7f:bb:62:59:f8:5c:d2:0a:99:f1:11:24:ac:75:80:2f:6e:a0:7e:20:96:40:04:dc:c5:f2:23:47:20:b3:d8
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.scram.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.tls2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.scram2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.iam.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.iam2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.tls.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.scram.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.tls2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.scram2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.iam.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.iam2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
*.tls.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn
Other certificates including the domain name amazonaws.com.cn
(limited to 100 certificates)
s3.cn-northwest-1.amazonaws.com.cn
*.canary3496f720.utknk1.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary2f55c250.6yywj3.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary97dcd0c61386.gooyfy.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary1f8805e087c3.tu6a4r.c1.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.58m43m.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.test10.w2yetm.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc15b02e9.t88y5i.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1670079290cell.lvov73.c2.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
*.canarydc0870343556.cdq0tp.c2.kafka.cn-north-1.amazonaws.com.cn
c3pset6uu6psf5z6b7djkishha.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.privatelinkcanary0.yc7ect.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary6e808f40ba73.d1i490.c1.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.viojmz.c4.kafka.cn-northwest-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.gtbmcn.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.y34xci.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryf335d056.0x21ts.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary5e3b98ead0b9.p9kn5h.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary-1e7d9f20e8d.now96m.c2.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary979ee1beda56.ozltwf.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary8ca93964.e4yfol.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.firefoxtbcreat.ik596e.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.zsh5cr.c3.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadcanary.3jua0u.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.on59qh.c2.kafka.cn-north-1.amazonaws.com.cn
lrzaa5a42vhrigxno2r3eughse.cn-northwest-1.es.amazonaws.com.cn
3licg3hwbasqh2s3mbaa43e44i.cn-northwest-1.es.amazonaws.com.cn
*.canary862e4293447c.6fmord.c3.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary5da44687.qdje6s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1702011513.w5u9ni.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.testmskcluster2023.a264cu.c4.kafka.cn-north-1.amazonaws.com.cn
e3s4mcykgdqwskjt4yfnjcvplm.cn-northwest-1.es.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
zp33ldehjurut56qpvvyignwcu.cn-northwest-1.es.amazonaws.com.cn
*.canary57d54d81.adfjg6.c4.kafka.cn-northwest-1.amazonaws.com.cn
plqhkzwvsorvp6jvchirqsebia.cn-northwest-1.es.amazonaws.com.cn
*.canary-5bcd7f8b343.utol99.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary704b544ec27a.hx12kg.c3.kafka.cn-north-1.amazonaws.com.cn
*.testmskcluster2023.wwunyz.c4.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.luyjcw.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary102fc44a.ht1r7v.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary125b55277948.jiwgs2.c4.kafka.cn-north-1.amazonaws.com.cn
*.execute-api.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.gccanaryserver.e12zpj.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary9493e9acdbf0.65fkbb.c2.kafka.cn-north-1.amazonaws.com.cn
j7kfriwwuf7bdefxyldbbxn3xi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserverless.j19l71.c3.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryf637fadfd1b3.dy1tv6.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.e8axaw.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-b1ddb9f.1oavs3.c1.kafka.cn-northwest-1.amazonaws.com.cn
pzm6mu3qqogtnhe43xvbgg5mqu.cn-north-1.es.amazonaws.com.cn
n6y7v4e7wbikszrkibyepwy7mi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserver.4yjciv.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
skylight-cm.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.gjyh6w.c4.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canarye81769aa.y3s17p.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserver.lzzzoh.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary-ffa9908d722.6td4gt.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary8344e7dd5095.p7p3q4.c3.kafka.cn-north-1.amazonaws.com.cn
*.canarybbb126f0c041.8t96y8.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary5f1bda26d48a.ftpcz9.c2.kafka.cn-north-1.amazonaws.com.cn
*.canaryafa0e54a.ygb5o4.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
codedeploy-signer-cn-northwest-1.amazonaws.com.cn
twgpjwtbei6nsthlfpmzbl5hhy.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary0db4cb1e.oy6vos.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.5wt1zt.c3.kafka.cn-north-1.amazonaws.com.cn
*.gc-rc-sr-15867.xhwv4s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadca.xj55qc.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.kafkatos3withsasls.4llnmm.c3.kafka.cn-north-1.amazonaws.com.cn
hbn654jgaqpuftcce5yybvs2cy.cn-north-1.es.amazonaws.com.cn
uqoebdj5lch6aehczmdztetoha.cn-north-1.es.amazonaws.com.cn
*.gccanaryserverless.epmd6b.c4.kafka.cn-north-1.amazonaws.com.cn
*.gcsr1702033113.ld4gl7.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4668d574.oy05yh.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryc68700e9.0o7xf6.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc8c2a5ec.37n898.c3.kafka.cn-northwest-1.amazonaws.com.cn
lrb4qjbh4wegaeyxfz3zuh7zci.cn-north-1.es.amazonaws.com.cn
*.canary08a3ac708a5c.c8m005.c1.kafka.cn-north-1.amazonaws.com.cn
tqrfxciqkhie6arj7v3xglbvn4.cn-northwest-1.es.amazonaws.com.cn
k2226wmzqdmgdfmmzwgqbqqvce.cn-northwest-1.es.amazonaws.com.cn
*.canary119ddc562fd4.jbrsi0.c2.kafka.cn-north-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.canary3496f720.utknk1.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary2f55c250.6yywj3.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary97dcd0c61386.gooyfy.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary1f8805e087c3.tu6a4r.c1.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.58m43m.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.test10.w2yetm.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc15b02e9.t88y5i.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1670079290cell.lvov73.c2.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
*.canarydc0870343556.cdq0tp.c2.kafka.cn-north-1.amazonaws.com.cn
c3pset6uu6psf5z6b7djkishha.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.privatelinkcanary0.yc7ect.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary6e808f40ba73.d1i490.c1.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.viojmz.c4.kafka.cn-northwest-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.gtbmcn.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.y34xci.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryf335d056.0x21ts.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary5e3b98ead0b9.p9kn5h.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary-1e7d9f20e8d.now96m.c2.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canary979ee1beda56.ozltwf.c4.kafka.cn-north-1.amazonaws.com.cn
*.canary8ca93964.e4yfol.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.firefoxtbcreat.ik596e.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.zsh5cr.c3.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadcanary.3jua0u.c4.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserverless.on59qh.c2.kafka.cn-north-1.amazonaws.com.cn
lrzaa5a42vhrigxno2r3eughse.cn-northwest-1.es.amazonaws.com.cn
3licg3hwbasqh2s3mbaa43e44i.cn-northwest-1.es.amazonaws.com.cn
*.canary862e4293447c.6fmord.c3.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary5da44687.qdje6s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.gcsr1702011513.w5u9ni.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.testmskcluster2023.a264cu.c4.kafka.cn-north-1.amazonaws.com.cn
e3s4mcykgdqwskjt4yfnjcvplm.cn-northwest-1.es.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
zp33ldehjurut56qpvvyignwcu.cn-northwest-1.es.amazonaws.com.cn
*.canary57d54d81.adfjg6.c4.kafka.cn-northwest-1.amazonaws.com.cn
plqhkzwvsorvp6jvchirqsebia.cn-northwest-1.es.amazonaws.com.cn
*.canary-5bcd7f8b343.utol99.c2.kafka.cn-north-1.amazonaws.com.cn
*.canary2b9a8106.sfhicu.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.canary704b544ec27a.hx12kg.c3.kafka.cn-north-1.amazonaws.com.cn
*.testmskcluster2023.wwunyz.c4.kafka.cn-north-1.amazonaws.com.cn
*.cfnlaunchpadca.luyjcw.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary102fc44a.ht1r7v.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canary125b55277948.jiwgs2.c4.kafka.cn-north-1.amazonaws.com.cn
*.execute-api.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.gccanaryserver.e12zpj.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary9493e9acdbf0.65fkbb.c2.kafka.cn-north-1.amazonaws.com.cn
j7kfriwwuf7bdefxyldbbxn3xi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserverless.j19l71.c3.kafka.cn-north-1.amazonaws.com.cn
s3.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryf637fadfd1b3.dy1tv6.c2.kafka.cn-north-1.amazonaws.com.cn
*.gccanaryserver.e8axaw.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary-b1ddb9f.1oavs3.c1.kafka.cn-northwest-1.amazonaws.com.cn
pzm6mu3qqogtnhe43xvbgg5mqu.cn-north-1.es.amazonaws.com.cn
n6y7v4e7wbikszrkibyepwy7mi.cn-north-1.es.amazonaws.com.cn
*.gccanaryserver.4yjciv.c3.kafka.cn-northwest-1.amazonaws.com.cn
*.canary3da4cb72.70pf9i.c2.kafka.cn-northwest-1.amazonaws.com.cn
skylight-cm.cn-northwest-1.amazonaws.com.cn
*.gccanaryserverless.gjyh6w.c4.kafka.cn-north-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canarye81769aa.y3s17p.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.gccanaryserver.lzzzoh.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary-ffa9908d722.6td4gt.c3.kafka.cn-north-1.amazonaws.com.cn
*.canary8344e7dd5095.p7p3q4.c3.kafka.cn-north-1.amazonaws.com.cn
*.canarybbb126f0c041.8t96y8.c1.kafka.cn-north-1.amazonaws.com.cn
*.canary5f1bda26d48a.ftpcz9.c2.kafka.cn-north-1.amazonaws.com.cn
*.canaryafa0e54a.ygb5o4.c4.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
codedeploy-signer-cn-northwest-1.amazonaws.com.cn
twgpjwtbei6nsthlfpmzbl5hhy.cn-north-1.es.amazonaws.com.cn
canary.s3.cn-northwest-1.vpce.amazonaws.com.cn
*.canary0db4cb1e.oy6vos.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadcanary.5wt1zt.c3.kafka.cn-north-1.amazonaws.com.cn
*.gc-rc-sr-15867.xhwv4s.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.cfnlaunchpadca.xj55qc.c4.kafka.cn-northwest-1.amazonaws.com.cn
*.kafkatos3withsasls.4llnmm.c3.kafka.cn-north-1.amazonaws.com.cn
hbn654jgaqpuftcce5yybvs2cy.cn-north-1.es.amazonaws.com.cn
uqoebdj5lch6aehczmdztetoha.cn-north-1.es.amazonaws.com.cn
*.gccanaryserverless.epmd6b.c4.kafka.cn-north-1.amazonaws.com.cn
*.gcsr1702033113.ld4gl7.c1.kafka.cn-northwest-1.amazonaws.com.cn
*.canary4668d574.oy05yh.c2.kafka.cn-northwest-1.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
canary.s3.cn-north-1.vpce.amazonaws.com.cn
*.canaryc68700e9.0o7xf6.c2.kafka.cn-northwest-1.amazonaws.com.cn
*.canaryc8c2a5ec.37n898.c3.kafka.cn-northwest-1.amazonaws.com.cn
lrb4qjbh4wegaeyxfz3zuh7zci.cn-north-1.es.amazonaws.com.cn
*.canary08a3ac708a5c.c8m005.c1.kafka.cn-north-1.amazonaws.com.cn
tqrfxciqkhie6arj7v3xglbvn4.cn-northwest-1.es.amazonaws.com.cn
k2226wmzqdmgdfmmzwgqbqqvce.cn-northwest-1.es.amazonaws.com.cn
*.canary119ddc562fd4.jbrsi0.c2.kafka.cn-north-1.amazonaws.com.cn
s3.cn-north-1.amazonaws.com.cn
Certificate
The complete raw certificate details for *.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcDCCBVigAwIBAgIQBtCgeJVSgQftLWcfX8SMAjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIwNjAwMDAwMFoXDTI1MDEwNDIzNTk1OVowSzFJ MEcGA1UEAwxAKi5jcm9zc2FjY291bnRwbGNhbmEuZGNtMmsyLmMyLmthZmthLmNu LW5vcnRoLTEuYW1hem9uYXdzLmNvbS5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMRv6WSkI0JO3Y+4FjdbT77rgVAkQXFMpG/ZCl9csIihIUeTE60r jJETJS+ee3JyPc/4X6g7O15qxHgVcLg4G0OkNE6cAn7dUZdJrOkKmgwWt3Lhn5hy 3PgO4VvGW0klktl/gzTuA4+XyAK4ac7OgM90T54oZTGf6myxErBS2BzbKd8W6oyU g15m7SiLMFNK6XRsfPNz7dv/cPsFzG53EFTI5OvkQ5nd04c7JCsBB06qZGsdk0/0 8VowMX45NRshVNRhXxpzKJL2AojkZh6nOX5mT6hAVC1xT1zQBKIJ74eW/AmamFCh m8VS7Yiy+sHrsB/GS812aypRpJdlZRx+7MMCAwEAAaOCA10wggNZMB8GA1UdIwQY MBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBSLnDPuwBIQpLTx86Ix C28xlSMzSTCCAfoGA1UdEQSCAfEwggHtgkAqLmNyb3NzYWNjb3VudHBsY2FuYS5k Y20yazIuYzIua2Fma2EuY24tbm9ydGgtMS5hbWF6b25hd3MuY29tLmNugkYqLnNj cmFtLmNyb3NzYWNjb3VudHBsY2FuYS5kY20yazIuYzIua2Fma2EuY24tbm9ydGgt MS5hbWF6b25hd3MuY29tLmNugkUqLnRsczIuY3Jvc3NhY2NvdW50cGxjYW5hLmRj bTJrMi5jMi5rYWZrYS5jbi1ub3J0aC0xLmFtYXpvbmF3cy5jb20uY26CRyouc2Ny YW0yLmNyb3NzYWNjb3VudHBsY2FuYS5kY20yazIuYzIua2Fma2EuY24tbm9ydGgt MS5hbWF6b25hd3MuY29tLmNugkQqLmlhbS5jcm9zc2FjY291bnRwbGNhbmEuZGNt MmsyLmMyLmthZmthLmNuLW5vcnRoLTEuYW1hem9uYXdzLmNvbS5jboJFKi5pYW0y LmNyb3NzYWNjb3VudHBsY2FuYS5kY20yazIuYzIua2Fma2EuY24tbm9ydGgtMS5h bWF6b25hd3MuY29tLmNugkQqLnRscy5jcm9zc2FjY291bnRwbGNhbmEuZGNtMmsy LmMyLmthZmthLmNuLW5vcnRoLTEuYW1hem9uYXdzLmNvbS5jbjATBgNVHSAEDDAK MAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1h em9udHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUH MAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcw AoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwG A1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQAD ggEBAGiYn2BwGub868S9jOlR8H3y5nfti9kNMTqxdqcLMarf+PkS70h6HnARPZft TKI9H2EdlgH6mCrbVrcGceiSIvILFqlYSbdKuBv0ICPCb4qlHYMP+T/MagyjLQuy tsPEYTRnDMau0n7OXNo/aia1ilkinFK71gytSfShhOlM1KVRc4prodsnknMcJgEJ 6ZD2HghdweBhA43/PQ51Q/y0HSXvZeOFrjeV4i0jooPH8MC4ver1ZD5cL0tPpQpY 6PwSh+icuJ28c445xtl8XjJ3XvxGEu70HBgVBVXOGtZBYrMNHUG88mzx4yFnjkxs DA6bzQeQi7c4JWtnFZwCPGO77Mg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxG/pZKQjQk7dj7gWN1tP vuuBUCRBcUykb9kKX1ywiKEhR5MTrSuMkRMlL557cnI9z/hfqDs7XmrEeBVwuDgb Q6Q0TpwCft1Rl0ms6QqaDBa3cuGfmHLc+A7hW8ZbSSWS2X+DNO4Dj5fIArhpzs6A z3RPnihlMZ/qbLESsFLYHNsp3xbqjJSDXmbtKIswU0rpdGx883Pt2/9w+wXMbncQ VMjk6+RDmd3ThzskKwEHTqpkax2TT/TxWjAxfjk1GyFU1GFfGnMokvYCiORmHqc5 fmZPqEBULXFPXNAEognvh5b8CZqYUKGbxVLtiLL6weuwH8ZLzXZrKlGkl2VlHH7s wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9058620460413833075228271461546626050 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24797893485429090227071168593315115396711795328643132068274299172711929496341818094867396135263836191841164714124239081960501920212619682751997126107574216758778462510181703373586682844316375265577094419880472527424632958245174828346340849672222783481342912711066612952517630709595893445935537914746693001206545710124592489864597046665603716308863898249985160831852365064578721530758552423768513398616343840400224139652966399487984332304723140179683404092787866347232637512450629196602779848378043491215421112846776761046527928852112775285298160710056077007336157710175267425306791446923265029471258908298728871750851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8b9c33eec01210a4b4f1f3a2310b6f3195233349 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (497 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scram.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tls2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.scram2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iam.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.iam2.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tls.crossaccountplcana.dcm2k2.c2.kafka.cn-north-1.amazonaws.com.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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