*.perf2.dpa0.org

Issued by Amazon

About this certificate

This digital certificate with serial number 02:79:1c:8d:96:1d:ee:0b:69:91:71:61:3c:86:0a:19 was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.perf2.dpa0.org

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 02:79:1c:8d:96:1d:ee:0b:69:91:71:61:3c:86:0a:19
Serial Number (int): 3287303036551297102617953638325553689
Serial Number lenght: 122 bits, 16 octets

SubjectKeyId: e5:7b:07:47:a9:3a:25:86:88:a4:14:8c:28:d1:15:9a:27:c4:26:ce
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): e4:f7:98:96:ff:42:46:e2:61:15:e7:28:41:dc:53:be:3d:da:f8:5a
Fingerprint (sha256): 05:06:e4:9f:e6:70:3b:75:16:85:ef:42:36:bc:15:e8:dd:f9:fd:d9:47:e8:ee:2b:f3:b7:0b:be:ed:41:60:98

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.perf2.dpa0.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.perf2.dpa0.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.perf2.dpa0.org

Other certificates including the domain name dpa0.org

(limited to 100 certificates)
storage.dailydeploy.dpa0.org
storage.perf3.dpa0.org
morev01.dpa0.org
api.azdiotest2.dpa0.org
*.dailydeploy.dpa0.org
*.internal.geofftest.dpa0.org
api.perf1.dpa0.org
api.devsandbox.dpa0.org
*.dailydeploy.dpa0.org
dailydeploy.dpa0.org
*.internal.geofftest.dpa0.org
*.dailydeploy.dpa0.org
miwilliams01.dpa0.org
storage.azdiotest2.dpa0.org
storage.devsandbox.dpa0.org
miwilliams01.dpa0.org
storage.geofftest.dpa0.org
azdiotest2.dpa0.org
storage.geofftest.dpa0.org
*.internal.perf1.dpa0.org
api.chkumar.dpa0.org
*.internal.geofftest.dpa0.org
api.miwilliams01.dpa0.org
nbachkethi01.dpa0.org
storage.miwilliams01.dpa0.org
storage.staging.dpa0.org
*.internal.azdiotest2.dpa0.org
miwilliams01.dpa0.org
api.azdiotest2.dpa0.org
*.azdiotest2.dpa0.org
storage.pvk.dpa0.org
morev01.dpa0.org
api.azdiotest.dpa0.org
*.internal.jbackus02.dpa0.org
api.dailydeploy.region.dpa0.org
dailydeploy.dpa0.org
storage.dailydeploy.dpa0.org
api.perf2.dpa0.org
storage.vkumarhc.dpa0.org
api.azdiotest2.dpa0.org
*.internal.jbackus02.dpa0.org
api.perf1.dpa0.org
api.azdiotest.dpa0.org
api.dailydeploy.region.dpa0.org
*.internal.geofftest.dpa0.org
*.internal.morev02.dpa0.org
perf2.dpa0.org
api.pcheung.dpa0.org
api.geofftest2.dpa0.org
*.dailydeploy.dpa0.org
dailydeploy.dpa0.org
*.internal.chkumar.dpa0.org
api.geofftest2.dpa0.org
api.nbachkethi01.dpa0.org
api.perf3.dpa0.org
*.internal.morev01.dpa0.org
api.presandbox.region.dpa0.org
*.perf2.dpa0.org
storage.azdiotest.dpa0.org
*.internal.azdiotest.dpa0.org
*.internal.geofftest.dpa0.org
syslog.perf3.dpa0.org
api.geofftest.dpa0.org
api.chkumar.dpa0.org
syslog.vkumarhc.dpa0.org
api.azdiotest.dpa0.org
storage.perf1.dpa0.org
syslog.vkumarhc.dpa0.org
*.devsandbox.dpa0.org
*.crash.internal.dailydeploy.dpa0.org
api.azdiotest2.dpa0.org
storage.azdiotest.dpa0.org
api.rpanchal.dpa0.org
api.devsandbox.dpa0.org
dailydeploy.dpa0.org
*.crash.internal.chkumar.dpa0.org
storage.vkumarhc.dpa0.org
dailydeploy.dpa0.org
api.geofftest.dpa0.org
azdiotest2.dpa0.org
devsandbox.dpa0.org
automationtesting.dev.dpa0.org
api.jbackus02.dpa0.org
storage.perf2.dpa0.org
*.internal.ap2.dpa0.org
none.azdiotest2.dpa0.org
*.internal.perf3.dpa0.org
api.delta.prototype.dpa0.org
storage.jbackus02.dpa0.org
*.internal.miwilliams01.dpa0.org
*.internal.pvk.dpa0.org
*.dailydeploy.dpa0.org
storage.beta.prototype.dpa0.org
syslog.delta.prototype.dpa0.org
*.internal.jbackus01.dpa0.org
storage.playground.dpa0.org
api.jbackus01.dpa0.org
preprod.dpa0.org
*.internal.pvk.dpa0.org
storage.pvk.dpa0.org

Certificate

The complete raw certificate details for *.perf2.dpa0.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5vLszHW/OR8O6XS13+DZ
Bqa8fTxPNx0YObf/e91o+w6q4wo7DeFeSODBWmPrkDJXLd9V5fsaJUNw8b+1IHrg
d4Bd2uuqpgbRak3NbefIFW+ERsI18zV1bhekTyANv1EvJwOQc3FegQPUVQ/Gby38
a6eqQgkuecbkyd4cZNlUUcHmsZ9Mmc4PfMMKnNiKXJJ1qBhyBVVd+cuJFmiCv0Mb
MbzPaCRLsqDrcI0azwGVmn3ss87CJXdiID86vPMbUk2m5c0KZhQ4inhxaqeQgb5R
n/bWkNMafB4vlti8flvZUjSt/+EEDJEpLZY83G/Uyqw1+EBCrAYRwWTJAU6XnkPr
OwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 3287303036551297102617953638325553689
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-13 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.perf2.dpa0.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29154600921798400567989801484426268642162294623247098466404644683826443277077247068434518089394661833272366971862180631668660740575591064450924938969935223651092047560784170470660555689528927768392522931869711730714415705169013929407571602118210846001524740275216537963021901616512780991696507474774474853376463370219343016359121215163439944978292389814993738701375663973393064938137234350729239472276062899161500269299507199735045235738992548354519253048634177087360747939767909456896567390620265614835390782389605960983126769920271309562841780641908270931012889912977623830642977062992137913098565759851666577025851
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e57b0747a93a258688a4148c28d1159a27c426ce
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.perf2.dpa0.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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