vanity.fountainvalley.us003-rapididentity.com

Issued by Amazon RSA 2048 M03

About this certificate

This digital certificate with serial number 0b:36:cf:87:76:c2:5b:72:fa:c8:7b:ec:61:2f:1d:c9 was issued on by Amazon.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=vanity.fountainvalley.us003-rapididentity.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0b:36:cf:87:76:c2:5b:72:fa:c8:7b:ec:61:2f:1d:c9
Serial Number (int): 14906101175339045239619408144328760777
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 23:a7:c6:7a:cc:05:a6:bc:cd:29:cb:c8:b3:35:be:df:2f:7f:61:4a
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (sha1): 0a:da:7d:e7:d9:0a:49:bc:f3:89:23:70:2f:b0:48:08:8b:83:78:3e
Fingerprint (sha256): 09:e5:d1:5d:6d:04:64:0d:19:32:b6:67:ef:e0:fb:7f:82:14:e4:eb:bd:0b:ab:c2:c1:3b:da:8a:f6:e4:99:6d

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate vanity.fountainvalley.us003-rapididentity.com

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vanity.fountainvalley.us003-rapididentity.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

vanity.fountainvalley.us003-rapididentity.com
fvsd.us
iafd21f99663dc429493ea8ed38b0d605a.us003-rapididentity.com
*.fvsd.us
fountainvalley.us003-rapididentity.com

Other certificates including the domain name us003-rapididentity.com

(limited to 100 certificates)
vanity.fountainvalley.us003-rapididentity.com
portal.shenandoah.k12.va.us
sso.floydboe.net
vanity.shenandoahk12.us003-rapididentity.com
vanity.merrick.us003-rapididentity.com
vanity.pharosbx.us003-rapididentity.com
rapidid.jefferson.kyschools.us
vanity.cherokee.us003-rapididentity.com
vanity.escondido.us003-rapididentity.com
vanity.usd-test.us003-rapididentity.com
vanity.disd.us003-rapididentity.com
vanity.usd.us003-rapididentity.com
vanity.cherokee.us003-rapididentity.com
vanity.greeleyschools.us003-rapididentity.com
password.pacollege.edu
vanity.jefferson-uat.us003-rapididentity.com
vanity.jefferson.us003-rapididentity.com
password.pacollege.edu
vanity.willmar.us003-rapididentity.com
vanity.lasalle.us003-rapididentity.com
accounts-tst.mica.edu
portal.bccs286.org
portal.shenandoah.k12.va.us
rapidid.jefferson.kyschools.us
vanity.dallascollege.us003-rapididentity.com
portal.dallasisd.org
vanity.challenge.us003-rapididentity.com
vanity.hamilton.us003-rapididentity.com
vanity.disd.us003-rapididentity.com

Certificate

The complete raw certificate details for vanity.fountainvalley.us003-rapididentity.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArX/Sht3+6quAq1qxlJgV
T+KrqeJxwv6jw3nG1iZDO3ZTszvYF541QqeU65c/rmKfM6k5aYDhXkwUOvbYt2+E
fF4HVlbUuOJUvLE9TVtdhQVQW1RN8dZqvAvPbFAL8YEKEaWFQb6XCqGf/Z3noDFa
QaO6afM5gmDucIUDvtwVCb0eWx3ltY5TFecbDKvvLgjIo8FQ+bf9ZdHGk8IjMl85
YvmQIpBCYd6CpcAjzPEHp9tY6Nzv/bVX8yiaVLv3m9aUbZamey8go2aCAc6wh+VW
6f7SAI3RjlpIAx5mnNDzja+5oCSNPBmbICtsX4fKR87OZ40kkXJ6uaGwimLwbDWe
UQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 14906101175339045239619408144328760777
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-12 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vanity.fountainvalley.us003-rapididentity.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21902258319195586548007753214366386406086113865072661712340307634591560077403047146193367517258051627605874624365502426359817973977901940185367583661538356788770454301180057058808152414882888060921685184241885823240869917229210816285737407339464788803902189429750803112128234553286750694284011188213666545390327477754957718315193126952957038790440871991528767879099197085920063431625653746620302187406495309919232591332418176577877884022665123545935316336550325461914520565648178372697415615464448393741155531568820873634724302813105106374218519575481797491825601277786467725301117305027903994428168718433310666497617
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							23a7c67acc05a6bccd29cbc8b335bedf2f7f614a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (170 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vanity.fountainvalley.us003-rapididentity.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fvsd.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iafd21f99663dc429493ea8ed38b0d605a.us003-rapididentity.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.fvsd.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fountainvalley.us003-rapididentity.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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