*.cityofhope.org

Issued by Amazon

About this certificate

This digital certificate with serial number 09:f8:1d:02:2a:6a:08:57:7f:4f:26:65:fb:fd:e1:e7 was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.cityofhope.org

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 09:f8:1d:02:2a:6a:08:57:7f:4f:26:65:fb:fd:e1:e7
Serial Number (int): 13251329944442266977328630423835501031
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: ba:0e:b3:bd:a2:71:f6:dc:96:bd:49:d6:1c:c8:cb:1c:84:d6:2c:12
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): d2:74:f0:e7:75:9f:f8:19:43:ad:fb:82:d8:7d:b8:e9:7a:19:6a:01
Fingerprint (sha256): 02:c4:5d:6a:01:43:29:bd:fe:9b:48:cb:d5:d9:4a:f0:2a:2d:4c:0b:45:56:f6:1e:a5:30:a6:0e:3e:90:96:39

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.cityofhope.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.cityofhope.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.cityofhope.org

Other certificates including the domain name cityofhope.org

(limited to 100 certificates)
*.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
san-13-s10.tlsprovisioning.exacttarget.com
sni.cloudflaressl.com
*.cityofhope.org
sni.cloudflaressl.com
secure.cityofhope.org
ssl546023.cloudflaressl.com
apply.gradschool.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
*.cityofhope.org
*.cityofhope.org
www.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
ourhope.cityofhope.org
*.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
events.cityofhope.org
sni.cloudflaressl.com
cityshop.cityofhope.org
sni.cloudflaressl.com
*.cityofhope.org
sni.cloudflaressl.com
cme.cityofhope.org
ssl546022.cloudflaressl.com
ssl546026.cloudflaressl.com
breakthroughs.cityofhope.org
ourhope.cityofhope.org
apis.cityofhope.org
*.cityofhope.org
ourhope.cityofhope.org
ourhope.cityofhope.org
san-13-s10.tlsprovisioning.exacttarget.com
sni.cloudflaressl.com
secure.cityofhope.org
*.cityofhope.org
*.cityofhope.org
RECRUITING.CITYOFHOPE.ORG
*.cityofhope.org
secure.cityofhope.org
ourhope.cityofhope.org
sni.cloudflaressl.com
mask.stayclassy.org
ourhope.cityofhope.org
*.cityofhope.org
*.cityofhope.org
apply.gradschool.cityofhope.org
*.cityofhope.org
mask.stayclassy.org
sni.cloudflaressl.com
*.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl546026.cloudflaressl.com
sni.cloudflaressl.com
care.cityofhope.org
sni.cloudflaressl.com
cityshop.cityofhope.org
*.cityofhope.org
mask.stayclassy.org
secure.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
github.cityofhope.org
ourhope.cityofhope.org
github.cityofhope.org
*.cityofhope.org
sni.cloudflaressl.com
cityshop.cityofhope.org
ourhope.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
mask.stayclassy.org
sni.cloudflaressl.com
sni.cloudflaressl.com
dev-www.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
github.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl330954.cloudflaressl.com
san-13-s10.tlsprovisioning.exacttarget.com
ourhope.cityofhope.org
cme.cityofhope.org
apply.gradschool.cityofhope.org
github.cityofhope.org
ourhope.cityofhope.org
sni.cloudflaressl.com
*.cityofhope.org
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com

Certificate

The complete raw certificate details for *.cityofhope.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkfb2aMWMMaDL0mlrGWo
UYNzas2kWS6p9N8zSgN5HRtiPr0NlRJZ9dtOOtFRFKRimOw1e53ajrf8LPK9JVtx
ydnydWMQSQ7sF0Vuqrg4NWBucbx0AOihBBv5qwV4IXWsjEt6Qo+v2xX6CvKifpEx
fWxHD3k7AhHXebxjaoPQOaEjB+bSO/ASNAg9xCJNWMhPR62HOzwxG99Pf3PG6yR1
eTo2EAGvThR1jtLSD21resTrsFdFh4Bh6c+J+tCi/xyfxfy7iAmBPfEH/g52TR63
ypU/XT+SqnSGwvUq0JA3Raos1LJgdQ2P6iEFjDt3GItPzS6gL4pYf9TWjmAcz7bD
/QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 13251329944442266977328630423835501031
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-27 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-27 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.cityofhope.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25030619273121580020380382588489353069600184418396475684579271749098804381630829472275369444096213312878624543500152522810307413632953852377961093563682414292282408857923385595213761945773064610097620303102275394763070288364904815230504818117390047371872024086670763812670519806080241812645941066238910617837162217502559699964006478333560580904203119031792406049966909705464307631431797647224225400493600172303188506910370121104996507104834510361638048433198474358024256749877226750839665799874989516860347839968417919208782076439303187667097618715881865681174757330982689955187097487334199746418937527720993657111549
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ba0eb3bda271f6dc96bd49d61cc8cb1c84d62c12
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.cityofhope.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000017088c4768a0000040300463044022079aad5e774fc3c22cd0270eed9e4cc623203d47c3e967083f4b45733c760ae2f02206d6335e89cd02e2e18f97627d8241362245ead41d13f382843c85141fd7452d00076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000017088c476c40000040300473045022100efa806bba690256808f146ba43dd32fedb2479fff7c188e483ca0e5126023c9b02203224e09a32753c3aa9d0d00817b60906a8b6963c77883634dab0fd124e687ab8
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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