*.w3d.awsmpsa.com

Issued by Amazon

About this certificate

This digital certificate with serial number 0f:2b:c5:15:b0:dd:d9:38:99:1b:9a:63:94:f3:b0:d3 was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.w3d.awsmpsa.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0f:2b:c5:15:b0:dd:d9:38:99:1b:9a:63:94:f3:b0:d3
Serial Number (int): 20165686054911627992477121767871328467
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 49:e0:c4:3a:a2:0f:cc:21:9e:2f:cb:4d:e2:39:38:8a:4a:b4:f4:cf
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): e3:1e:c9:f4:1f:15:8e:11:4e:57:35:d7:17:cc:29:e4:6e:b5:e2:55
Fingerprint (sha256): 00:99:f7:86:c9:fc:87:65:ec:e1:42:1e:49:5c:9d:02:91:1a:46:ff:f7:c9:59:ff:5d:20:d2:fc:28:63:f9:47

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.w3d.awsmpsa.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.w3d.awsmpsa.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.w3d.awsmpsa.com

Other certificates including the domain name awsmpsa.com

(limited to 100 certificates)
temp-engine.stockengine.awsmpsa.com
*.w3d.awsmpsa.com
dev-subscription.api.services-store.awsmpsa.com
pat-catalog.api.services-store.awsmpsa.com
dev-pcs.api.services-store.awsmpsa.com
dev-mynav.api.services-store.awsmpsa.com
*.awsmpsa.com
pat-cat.api.services-store.awsmpsa.com
origin-newenv-engine.stockengine.awsmpsa.com
*.cppv2.awsmpsa.com
preprod-fo.consuse.awsmpsa.com
trn-v3d.api.services-store.awsmpsa.com
*.gdpr-banner.awsmpsa.com
*.cppv2.awsmpsa.com
*.boostlev.awsmpsa.com
pprd-engine-api.stockengine.awsmpsa.com
dev-contract.api.services-store.awsmpsa.com
*.gdpr-blacklist.awsmpsa.com
api-log-incident-rp-rec.mym.awsmpsa.com
*.dev.sol.awsmpsa.com
dev-contrib.api.services-store.awsmpsa.com
origin-rec-engine-api.stockengine.awsmpsa.com
api-car-integ.mym.awsmpsa.com
*.gdpr-banner.awsmpsa.com
*.sepa.awsmpsa.com
ppr-cart.api.services-store.awsmpsa.com
pat-am.api.services-store.awsmpsa.com
integration-widget.stockengine.awsmpsa.com
ppr-corvet.api.services-store.awsmpsa.com
test-engine.stockengine.awsmpsa.com
eligibility.api.services-store.awsmpsa.com
*.lev.awsmpsa.com
ppr-mauv.api.services-store.awsmpsa.com
inf-subscription.api.services-store.awsmpsa.com
jenkins.boforms.awsmpsa.com
origin-prod-engine.gameday1.awsmpsa.com
ppr-mauv.api.services-store.awsmpsa.com
prod-engine-api.stockengine.awsmpsa.com
pat-context.api.services-store.awsmpsa.com
origin-integration-engine.stockengine.awsmpsa.com
origin-pprd-engine-api.stockengine.awsmpsa.com
dev-cat.api.services-store.awsmpsa.com
pcs.api.services-store.awsmpsa.com
fix-corvet.api.services-store.awsmpsa.com
*.savepartexchange.awsmpsa.com
trn-cart.api.services-store.awsmpsa.com
uat-catalog.api.services-store.awsmpsa.com
*.savepartexchange.awsmpsa.com
*.gdpr-banner.awsmpsa.com
neolane.api.services-store.awsmpsa.com
dev-accountreferential-2way.api.services-store.awsmpsa.com
jenkins.boforms.awsmpsa.com
pat-corvet.api.services-store.awsmpsa.com
fix-subscription.api.services-store.awsmpsa.com
generic-async-process.api.services-store.awsmpsa.com
pat-contrib.api.services-store.awsmpsa.com
generic-async-process.api.services-store.awsmpsa.com
uat-neolane.api.services-store.awsmpsa.com
ppr-neolane.api.services-store.awsmpsa.com
prod-fo.consuse.awsmpsa.com
pat-c1st.api.services-store.awsmpsa.com
ppr-cart.api.services-store.awsmpsa.com
dev-catalog.api.services-store.awsmpsa.com
*.lev.awsmpsa.com
inf-cat.api.services-store.awsmpsa.com
ppr-contract.api.services-store.awsmpsa.com
dev-accountreferential-2way.api.services-store.awsmpsa.com
api-log-incident-rp-integ.mym.awsmpsa.com
*.api.services-store.awsmpsa.com
origin-pprd-engine-api.stockengine.awsmpsa.com
*.brandbook.awsmpsa.com
uat-eligibility.api.services-store.awsmpsa.com
ppr-contrib.api.services-store.awsmpsa.com
ppr-pcs.api.services-store.awsmpsa.com
uat-eligibility.api.services-store.awsmpsa.com
uat-catalog.api.services-store.awsmpsa.com
trn-neolane.api.services-store.awsmpsa.com
prod-engine.gameday5.awsmpsa.com
pprd-engine-api.stockengine.awsmpsa.com
ppr-lead.api.services-store.awsmpsa.com
api-playin.awsmpsa.com
trn-contract.api.services-store.awsmpsa.com
api-car-integ.mym.awsmpsa.com
*.sol.awsmpsa.com
*.lev.awsmpsa.com
pat-accountreferential.api.services-store.awsmpsa.com
dev-neolane.api.services-store.awsmpsa.com
trn-cart.api.services-store.awsmpsa.com
api-log-incident-rp-integ.mym.awsmpsa.com
app-payments.api.services-store.awsmpsa.com
dev-contrib.api.services-store.awsmpsa.com
newenv-widget.stockengine.awsmpsa.com
dev-catalog.api.services-store.awsmpsa.com
ppr-subscription.api.services-store.awsmpsa.com
ppr-catalog.api.services-store.awsmpsa.com
*.gameday5.awsmpsa.com
*.lev.awsmpsa.com
inf-eligibility.api.services-store.awsmpsa.com
inf-catalog.api.services-store.awsmpsa.com
uat-pcs.api.services-store.awsmpsa.com

Certificate

The complete raw certificate details for *.w3d.awsmpsa.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmnU/LNaTimk0eeTfNz05
go8uVY7HKXHmkyUoFhMURGfviXHG0YXNz2/7LVAz5sOEdFbk5k3FlHEWiyZ57ssV
rOhdZeRIh/7LglDeIBG3FG9jv6rPYJLN1whuT85avwpd6ilCc2ZaOFLqTmc7pmAU
TjPYhxPahMlQxGIcaxdb3Jgsso23o8WRVmT3gJRLeNjWAlJ45ojHZ94Mmeavhhep
Hw6Lv70CtYZ485kLdfTi6cu/XMVY8C2GIVPy1MAU3DsQQsyQDEOTGmWRpe0giobw
BhtvSRCxLBCIUDSd0FKWONzn0P1eHAqXsHs9jBpYx4kop41Oilr6Ola9q9OJ4tVw
vwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 20165686054911627992477121767871328467
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-02 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-02 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.w3d.awsmpsa.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19498515505820562219145868809784916597034239168035824875742674351894047985162516315276761354843475538624301215550695883968996294520101414249853975762149898782701394821554629025346602825289050291008163849184875844359642126259446803547519110299468343219199316840157579639703751332029218641050433514176726752759227726936571834609941879965489837760118306204021985426010864043285638761509590398456376354979801748751241690675639113480520304292483811417299830082682973936314918561516086364567251091547665172808959801045958305673557445736466465856149013479209632008066530255012349309931724199432001508233809210864459767443647
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							49e0c43aa20fcc219e2fcb4de239388a4ab4f4cf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.w3d.awsmpsa.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016f63ad95e9000004030047304502207e5df4c2c831ae909d969058cea2702660701721b7cb57c32f0fc69e86adf3ab022100c4844afb541d23d6a0a529d47a742ddd784d67ceefbbe0c9021e13b6d5c829ca0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016f63ad96ae00000403004730450220329f5bb8d40027e6e6066bca84deb4b829b21e5dcabbd24cd0825170c81044ef02210087890dc641a437f6782ac3e88b898f6775608fb5859e39541e8b921193d0821f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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