www.chefconf.chef.io

Issued by Amazon

About this certificate

This digital certificate with serial number 06:e7:36:60:36:7d:2a:fb:27:9b:77:c0:e2:25:96:51 was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.chefconf.chef.io

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 06:e7:36:60:36:7d:2a:fb:27:9b:77:c0:e2:25:96:51
Serial Number (int): 9175891421916748209376200988874348113
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 16:ff:0a:f4:ae:4b:92:d0:d9:8c:2a:be:3e:84:92:3f:1a:48:34:40
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): d4:61:67:e4:17:37:71:f0:63:79:2a:1e:f3:b2:f2:0a:1d:aa:cb:18
Fingerprint (sha256): 0a:9c:49:40:cd:d3:82:d4:63:46:d6:33:cd:19:9f:28:7a:92:3a:0a:29:1a:8c:2a:fb:ed:79:aa:7f:0b:b8:20

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate www.chefconf.chef.io

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.chefconf.chef.io

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.chefconf.chef.io

Other certificates including the domain name chef.io

(limited to 100 certificates)
f4.shared.global.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
checkrstatus.com
g.ssl.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
f4.shared.global.fastly.net
5156937704407040-fe1.pantheonsite.io
teststack.saas.chef.io
hello.chef.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
3down.mit.edu
3down.mit.edu
statuspage.io
statuspage.io
g.ssl.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
5156937704407040-fe1.pantheonsite.io
statuspage.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
telemetry.es.chef.io
3down.mit.edu
f4.shared.global.fastly.net
f4.shared.global.fastly.net
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
statuspage.io
5653164804014080-fe1.pantheonsite.io
statuspage.io
dns-vetting1f.map.fastly.net
www.datadirect.com
dns-vetting1f.map.fastly.net
statuspage.io
5156937704407040-fe1.pantheonsite.io
statuspage.io
discourse.chef.io
5653164804014080-fe1.pantheonsite.io
3down.mit.edu
f4.shared.global.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
5156937704407040-fe1.pantheonsite.io
statuspage.io
*.opscode.com
5156937704407040-fe1.pantheonsite.io
5156937704407040-fe1.pantheonsite.io
www.chefconf.chef.io
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
kitchen.ci
5156937704407040-fe1.pantheonsite.io
id.learn.chef.io
f4.shared.global.fastly.net
statuspage.io
f4.shared.global.fastly.net
opscode.com
*.community.chef.io
5156937704407040-fe1.pantheonsite.io
3down.mit.edu
f4.shared.global.fastly.net
statuspage.io
statuspage.io
5653164804014080-fe1.pantheonsite.io
engage.empathways.org
statuspage.io
ebet.demo.chef.io
checkrstatus.com
dns-vetting1f.map.fastly.net
g.ssl.fastly.net
opscode.com
5156937704407040-fe1.pantheonsite.io
dns-vetting1f.map.fastly.net
f4.shared.global.fastly.net
dns-vetting1f.map.fastly.net
statuspage.io
checkrstatus.com
docs.chef.io
statuspage.io
statuspage.io
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
community-slack.chef.io
statuspage.io
3down.mit.edu
*.chef.io
3down.mit.edu
f4.shared.global.fastly.net
5653164804014080-fe1.pantheonsite.io
hello.chef.io
5156937704407040-fe1.pantheonsite.io
www.datadirect.com
statuspage.io
5653164804014080-fe1.pantheonsite.io
f4.shared.global.fastly.net
discourse.chef.io

Certificate

The complete raw certificate details for www.chefconf.chef.io in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLhiN5QLP5EdnpA/fa9s
ispLVJu7BFn7OvDCt1P44VlnOhzhLot41c2J+wONSaJNlqjfsw6kvT85Isp1Ca6M
UVV/ZqO3SqPP+42ANBMTZJZyBGH8xDMS6CjcX4q/abEcjJ86xMv3DZ8ROExVCpnE
1Ks+54RlQUfQknpHLxIjI7wWPonYOsYQ3Vx55D/Y1bp5npx3PayQle3x9A5SkmyA
gh3xceZRuM5IkyJT9LzzAaNqikLNqb0naocUDYQqTonYvNHKEWc5220adD1jccSX
3Steur6sFRCEc9+29FgTR4BQTfwoNeAV/IutKsSZmdWCh7oYORws6feEnTYegAXe
LwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 9175891421916748209376200988874348113
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-02 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.chefconf.chef.io'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22813817865657022818517652112135513982354862444669301616349876280116345726825187954047390129375760030361171513504980376878302222939085090046679573600645095985506506246596977939986463282811412068684698638359283135096942701570815443850134656620630761179449278923743406261141379070696138211636311716733187588115823902436664125341281893667012939377904485417544887107244528083968484594905236371160054754459681682329356029192586577662501702171579786281287138667175904659701117302237729791600889020156617911032989634315018290232848915374175690369758878001563446833692203101669429139350306643919919918002268713628751725190703
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							16ff0af4ae4b92d0d98c2abe3e84923f1a483440
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.chefconf.chef.io'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001680c2297430000040300463044022078c7269c6b52e4e0450fb8623d2890c448152b055dbe44465059cd845e9741b0022044e888c09ec4027c9764384545cae87818442d7f4528ac96513c2c9773da5e6c0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f000001680c229803000004030047304502205da04f0cf1f16746bc02b66d5ae27b7f877e1d2630fb9b38521466f0024749d602210094f60180dc28b5cb50e24fbdfbc1c485938106b6ebb98ace6a44028f3e798c8b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0002abffa392e95e8d2e31519a9c34fc6db3619d899b42023b7d4d1816debba08dbe4e50798639754789db0f37457929c9685669be960d6df010d940f8c0a5bfbb8a004fd9e5e715bdb7e60b8a84e391f7ed0aa766276226c4447a0c88aa0e048f88486c302459410d1dfe7d6a5302fe2b2febf8fe28812338ab726d3eb93993df038e5ed8ea77740692e3d271a46d6461ac77b5c56902a019040a145ec78e40556464e7b8f79d0da71fae4f495382ad4056bac16b8ee58db7280c26e9fa1486509bf6355982213314bcf1e92b6d58b0e5643b61c814851ea5755af0f65bf1cf6b8eab398a923a594b628eb45f0c97214ef475d6e0beee8483b7cd9ff6bf04d11f