hackerone-quarantine.app.qa.aws.dotdash.com

Issued by Amazon

About this certificate

This digital certificate with serial number 08:28:0e:21:20:3c:64:0a:a5:07:10:1f:64:a9:30:11 was issued on by Amazon.

With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=hackerone-quarantine.app.qa.aws.dotdash.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 08:28:0e:21:20:3c:64:0a:a5:07:10:1f:64:a9:30:11
Serial Number (int): 10841802418861062478947890903286099985
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 5f:3b:d5:00:2f:f2:7b:29:e4:8e:58:88:42:71:e2:6b:f0:2f:84:03
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): e3:e8:1d:41:51:f2:55:1d:89:84:f2:6e:33:13:e3:9f:a2:90:0a:a2
Fingerprint (sha256): 0a:bb:a0:68:0b:bb:a8:8a:60:e4:c6:83:b5:8a:24:2d:5c:bc:e7:22:c5:96:b0:54:07:e9:20:f7:d0:87:7b:34

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate hackerone-quarantine.app.qa.aws.dotdash.com

12

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for hackerone-quarantine.app.qa.aws.dotdash.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

hackerone-quarantine.app.qa.aws.dotdash.com
*.app.qa.aws.dotdash.com
*.qa.aws.dotdash.com
qa.aws.dotdash.com
*.dotdash.com
dotdash.com
*.external1.hackerone-quarantine.app.qa.aws.dotdash.com
*.external2.hackerone-quarantine.app.qa.aws.dotdash.com
*.external3.hackerone-quarantine.app.qa.aws.dotdash.com
*.internal1.hackerone-quarantine.app.qa.aws.dotdash.com
*.internal2.hackerone-quarantine.app.qa.aws.dotdash.com
*.internal3.hackerone-quarantine.app.qa.aws.dotdash.com

Other certificates including the domain name dotdash.com

(limited to 100 certificates)
continual.app.qa.aws.dotdash.com
disposable.app.qa.aws.dotdash.com
pe.app.qa.aws.dotdash.com
dotdash.map.fastly.net
*.dotdash.com
*.test.aws.dotdash.com
continual.app.qa.aws.dotdash.com
pe.app.qa.aws.dotdash.com
a-ue1.dotdash.com
disposable.app.qa.aws.dotdash.com
dotdash.map.fastly.net
dotdash.map.fastly.net
*.dotdash.com
about.com
dotdash.map.fastly.net
pe-adhoc-2.app.qa.aws.dotdash.com
local.dotdash.com
pe-batch.app.qa.aws.dotdash.com
link.dotdash.com
continual.app.prod.aws.dotdash.com
*.greenhouse.dotdash.com
local.dotdash.com
disposable.app.qa.aws.dotdash.com
continual.app.qa.aws.dotdash.com
a-ue1.dotdash.com
local.dotdash.com
hackerone-quarantine.app.qa.aws.dotdash.com
a-uw2.dotdash.com
*.about.com
*.dotdash.com
*.about.com
techblog.dotdash.com
*.about.com
local.dotdash.com
techblog.dotdash.com
*.about.com
*.ext1.use1.dotdash.com
*.dotdash.com
dotdash.map.fastly.net
pe-batch.app.qa.aws.dotdash.com
groceryserver-qa.dotdash.com
persistent.app.qa.aws.dotdash.com
a-ue1.dotdash.com
disposable.app.qa.aws.dotdash.com
dotdash.com
continual.app.qa.aws.dotdash.com
*.about.com
local.dotdash.com
link.dotdash.com
continual.app.qa.aws.dotdash.com
control.app.prod.aws.dotdash.com
continual.app.prod.aws.dotdash.com
central-control.app.prod.aws.dotdash.com
persistent.app.qa.aws.dotdash.com
local.dotdash.com
dotdash.map.fastly.net
*.about.com
dotdash.map.fastly.net
persistent.app.qa.aws.dotdash.com
link.dotdash.com
persistent.app.qa.aws.dotdash.com
disposable.app.qa.aws.dotdash.com
continual.app.prod.aws.dotdash.com
persistent.app.qa.aws.dotdash.com
*.ext1.usw2.dotdash.com
continual.app.prod.aws.dotdash.com
a-uw2.dotdash.com
continual.app.qa.aws.dotdash.com
persistent.app.qa.aws.dotdash.com
a-ue1.dotdash.com
continual.app.qa.aws.dotdash.com
persistent.app.qa.aws.dotdash.com
central-control.app.prod.aws.dotdash.com
pe.app.qa.aws.dotdash.com
persistent.app.qa.aws.dotdash.com
pe-adhoc-4.app.qa.aws.dotdash.com
local.dotdash.com
pe.app.qa.aws.dotdash.com
pe-batch.app.qa.aws.dotdash.com
local.dotdash.com
dotdash.map.fastly.net
qa.aws.dotdash.com
local.dotdash.com
dotdash.com
*.ops.k8s.use1.dotdash.com
*.about.com
a-ue1.dotdash.com
persistent.app.qa.aws.dotdash.com
*.qa.aws.about.com
dotdash.map.fastly.net
continual.app.prod.aws.dotdash.com
dotdash.map.fastly.net
control.app.qa.aws.dotdash.com
continual.app.prod.aws.dotdash.com
link.dotdash.com
*.qa.aws.about.com
persistent.app.qa.aws.dotdash.com
*.about.com
dotdash.map.fastly.net
disposable.app.qa.aws.dotdash.com

Certificate

The complete raw certificate details for hackerone-quarantine.app.qa.aws.dotdash.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAreiVE79uvD9f6Ynkb7jE
iR6aZBkEiSP745xpx1eZu2kEA7vnyLdzjWJieMmANs5ic7v/RC+QAOesDfNjnOGT
W9am0+4hpSndt3Ru5Ya2uKAcOfevgJ1Kv7x2SOIP0KRSpRv915SyCCZmybFwHacE
ZmIVB2T4DpQG6bu9LKz1tJWPp0VOHH3Xrz/8RZAzNBx5Z/aASEjjK9X9Q5WzC1P5
hbk9OaehurPacub3VWQuHLSzwptx31IPO1JnCkn6+jJVy0YQWBs3mjOQWHsHn10c
Nzo5fatVVCqvAkQmAT29cdVg9xtLrhkhBFmc45/xHLr8X2g3/nIJPNmA64KqbP8d
5wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10841802418861062478947890903286099985
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-24 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-24 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21953917381900038768016395371051208508044214773656758845983390170141662524316404301229312295578254688415534338882795178589691798513221486515067728250208534232049957013219077736441301315781359658515484621753559083659159231936594769548356123165107015877233509130897218033832295984982476324507906683138527754217723750132766746581387798898825767914554195180464431539227917321261698172272958178060781021449731428006872109214887574623202912659979660445377969345795007468756712937897821172320255832031607140152474217091657636711730513853753217150015254101651976285287679707882599450339970261127619202760189406932883411508711
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5f3bd5002ff27b29e48e58884271e26bf02f8403
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.external1.hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.external2.hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.external3.hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal1.hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal2.hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.internal3.hackerone-quarantine.app.qa.aws.dotdash.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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