studio.mbed.com

Issued by Amazon RSA 2048 M01

About this certificate

This digital certificate with serial number 08:a3:b9:fa:28:23:a1:be:96:bb:24:9f:0d:04:8d:8e was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=studio.mbed.com

Amazon

Organization: Amazon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 08:a3:b9:fa:28:23:a1:be:96:bb:24:9f:0d:04:8d:8e
Serial Number (int): 11483940419460284625080501991052184974
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 39:d9:8c:f8:17:84:38:f4:94:ae:92:81:32:ed:0d:f4:fb:84:9e:c9
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85

Fingerprint (sha1): 14:82:81:7a:99:e0:ba:be:9f:18:7d:d2:7a:95:8c:fc:cf:60:c9:fa
Fingerprint (sha256): 03:22:1e:19:1b:5e:4b:47:82:2f:18:1f:98:f7:34:20:f5:15:c1:81:28:41:61:31:97:60:c9:c5:e1:ec:df:eb

Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer

Revocation information

OCSP Server: http://ocsp.r2m01.amazontrust.com
CRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl

Check the revocation status for certificate studio.mbed.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for studio.mbed.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

studio.mbed.com

Other certificates including the domain name mbed.com

(limited to 100 certificates)
*.test.mbed.com
yotta.mbed.com
*.test.mbed.com
studio.mbed.com
*.test.mbed.com
api.connector.mbed.com
docs.mbed.com
systemtest-radiator.mbedcloudtesting.com
mbed-www-media.mbed.com
forums.mbed.com
forums.mbed.com
media-cdn.partners.test.mbed.com
api.connector.mbed.com
forums.mbed.com
internal.mbed.com
*.mbed.com
studio.test.mbed.com
mbed-media.mbed.com
account.mbed.com
artifactory.mbed.com
*.mbed.com
*.mbed.com
forums.mbed.com
account.mbed.com
mbed-www-media.test.mbed.com
forums.mbed.com
labs.test.mbed.com
forums.mbed.com
account.mbed.com
forums.mbed.com
mbed-media.mbed.com
forums.mbed.com
account.test.mbed.com
account.mbed.com
account.mbed.com
*.test.mbed.com
labs.mbed.com
studio.mbed.com
*.test.mbed.com
*.mbed.com
forums.mbed.com
forums.mbed.com
labs.mbed.com
*.test.mbed.com
*.mbed.com
yotta.mbed.com
forums.mbed.com
simulator.mbed.com
*.test.mbed.com
accounts.mbed.com
mbed-www-media.mbed.com
*.mbed.com
studio.mbed.com
*.test.mbed.com
studio.mbed.com
forums.mbed.com
internal.test.mbed.com
*.dev.mbed.com
mbed-www-media.mbed.com
*.test.mbed.com
account.mbed.com
mbed-media.mbed.com
labs.mbed.com
forums.mbed.com
studio.mbed.com
*.mbed.com
systest-radiator.mbed.com
mbed-billing-sandbox.test.mbed.com
studio.mbed.com
*.mbed.com
*.test.mbed.com
mbed-www-media.test.mbed.com
*.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
studio-tmp.mbed.com
account.test.mbed.com
forums.mbed.com
*.test.mbed.com
api.connector.mbed.com
*.preview.mbed.com
*.preview.mbed.com
mbed-billing-sandbox.test.mbed.com
forums.mbed.com
account.mbed.com
mbed.com
accounts.mbed.com
assets.test.mbed.com
*.mbed.com
connector.mbed.com
yotta.mbed.com
forums.mbed.com
studio.mbed.com
simulator.mbed.com
mbed-media.mbed.com
mbed.com
*.test.mbed.com
*.test.mbed.com
*.mbed.com

Certificate

The complete raw certificate details for studio.mbed.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWUtY3QFS6AciJTQuv1B
/mB87CBQbW8n1UQfi/URYyBTr1/+HkHoBYhB7oTEA50BYmjcj5xtdNByJcrDmGB2
YOq+XbTRS/jxV3iqweurLWFrXoPhwx+4yAlpQB5VvBm1nhdvMtIk5HYdRzbp3kam
GphnbaqIIlwU2QUokuMTkkUDX1V/8M9enYOooqtW1kuvBlOslTSpXHg2OV+0qt+0
Rl1Omk4vu6nylwtiyNZ44bGuC/CBKTA+IIRnvVuZkjxd/gmKkJ7vao5ASMAj8K04
fIrqSwYHEcmQR4WO+V2T36PYVgIHXGUpwTor6ock8c4nBBsnZWII93V6a6WWvKwn
bQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 11483940419460284625080501991052184974
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-28 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-28 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'studio.mbed.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19869306265217002846083874824062132517801028362439636242495735756740541094474270471788614682819276773967335694825597162494232585575024195847026310574255007675952460410601661955106929596405398751651054967868315589187134534160221212414131700933705114798028669984415958738033299936243864855287549243742860264530264087873144873212783660285917321888305314114952481452080379823023710794704127009419884844274260456966650002150281937561721533728200011028190886383843932810240951146182173999847232134738494943216894863935593033865253245784279596905424202345433776964225724064321611568138401904838253190793477592585283392251757
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							39d98cf8178438f494ae928132ed0df4fb849ec9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'studio.mbed.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							0169007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018696d5569a00000403004830460221009c4987c23411cd2e602add953c2d9da7b27839b40f374fb56b2980ffe42aca1102210097f7ea02902699ef5eb8a32b57876a1c6230da97445d199605820f386dca53fa007500b3737707e18450f86386d605a9dc11094a792db1670c0b87dcf0030e7936a59a0000018696d557150000040300463044022011cbd4ca10dc38e2fe43c4f4df35711aece9936eba2c7a75fd13f64106341338022078b9ab0ba3709eee797b37aa28286a4ee1585ce32209c7c7e52916249f23bd79007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018696d556c10000040300483046022100eac6248dc606a5cd095f918dd168b3e8f2d9468e7b0f808229791ec0995f9054022100db40d0e22376f622130a72227a2dddc9c6a80966f541d5b672d24f1260f52fd0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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