rappi.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 0a:29:93:3f:ae:30:6a:99:8c:4c:30:3c:0f:d2:e6:d3 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=rappi.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0a:29:93:3f:ae:30:6a:99:8c:4c:30:3c:0f:d2:e6:d3
Serial Number (int): 13508150688543985407577489508022806227
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: a5:73:22:e9:c9:67:35:92:d7:52:8b:f6:5a:96:ff:85:7b:97:4a:eb
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 38:fd:4b:72:db:eb:76:6f:57:df:fb:10:fd:b8:f7:89:04:ea:26:81
Fingerprint (sha256): 0d:8a:fc:1d:5a:9a:82:8d:1f:f8:ff:9e:d4:0b:a2:e1:e1:55:d0:4f:c4:79:7f:8e:e9:0d:74:f1:1e:4c:4d:d9

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate rappi.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for rappi.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

rappi.com
*.rappi.com

Other certificates including the domain name rappi.com

(limited to 100 certificates)
auth.4business.dev.rappi.com
*.mxgrability.rappi.com
politicasinternas.rappi.com
co-ci.ops.rappi.com
nxt.camp
devops-devops.jhub.dev.rappi.com
*.dev.rappi.com
rappiscore.rappi.com
travel.rappi.com
rappiscore.rappi.com
status.rappi.com
login-integrations-manager.rappi.com
dev.rappi.com
*.rappi.com
promos.rappi.com
liamwalls.co.uk
promos.rappi.com
*.rappi.com
cpgs-ds.jhub.dev.rappi.com
cpgs-ds.jhub.dev.rappi.com
retool.rappi.com
*.rappi.com
rappiuniverse.rappi.com
promos.rappi.com
promos.rappi.com
astro.dev.rappi.com
*.security.rappi.com
citibank-se.dev.rappi.com
ops.wp.dev.rappi.com
login-integrations-manager.rappi.com
rappiscore.rappi.com
www.redmotoshn.com
negocios.kanjea.app
al-bitcoin.com
*.staging.rappi.com
rappiscore.rappi.com
auth.4business.dev.rappi.com
*.grability.rappi.com
devops-devops.jhub.dev.rappi.com
www.nate-fleming.com
politicasinternas.rappi.com
*.grability.rappi.com
myplaylist.info
citibank-se.dev.rappi.com
*.dev.rappi.com
rappi.com
promos.rappi.com
legal.rappi.com
design.rappi.com
promos.rappi.com
co-ci.ops.rappi.com
design.rappi.com
www.mdoch.com
retool.rappi.com
*.grability.rappi.com
magical-lab.com
*.grability.rappi.com
rappi.com
promos.rappi.com
sre-stress-testing.dev.rappi.com
legal.rappi.com
fs.security.rappi.com
go.rappi.com
*.staging.entrega.rappi.com
darkstore-api.dev.rappi.com
vpn.rappi.com
login-integrations-manager.rappi.com
login-integrations-manager.rappi.com
*.rappi.com
fluttery.co
*.staging.entrega.rappi.com
status.rappi.com
retool.rappi.com
*.dev.rappi.com
citibank.dev.rappi.com
dev.rappi.com
promos.rappi.com
wonderroot.musterd.io
*.rappi.com
demo.guestx.com
rappiscore.rappi.com
banein.com
games.2sgamix.com
sre-stress-testing.dev.rappi.com
promos.rappi.com
tiranga.realityreach.com
exito-billing.dev.rappi.com
citibank-se.rappi.com
rappiscore.rappi.com
politicasinternas.rappi.com
astro.dev.rappi.com
politicasinternas.rappi.com
promos.rappi.com
cpgs-ds.jhub.dev.rappi.com
help.partners.rappi.com
mykoriak.com
auth.4business.dev.rappi.com
switch.mangologic.com
www.sqco.app
retool.rappi.com

Certificate

The complete raw certificate details for rappi.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2fWoEK7KekmmDDlymOe
VYpjIOx9RT2C9amzAYRPKn8YEjJzYUhugRSu44zWnEFBBF0F0eZ8WKu/nhKbE8eD
tcK3cntRt6FIYD6lcWkjjdxkcy2hHACpQa1H6d6oY1SxI/Jq+hjwjdi+CuQ3+XvV
8uLYDZ52DV9r2TeeJ984gbh/KQBREWgW4AkiFJnpv8GQYXTdi55lXYPqyWvP5iSD
AoiH+0T/df+FhJifMUNib0aRpaRjnucmjhGV6ucv12bKzHZVUb44QkNWBRU0FDKL
BM2rSFyxuIGJNZa2qIcC85G6SVeTq4MDa6NRsU2+EEIbHbqwRT64pm/oIwEUEwE/
VQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 13508150688543985407577489508022806227
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-05 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-03 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rappi.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22647861203946599537807392460827042132359563189991751796138697102199779518295969257276597063487261725812072713974681601817078531140386834449333434693690299322141431558779753191107322104163595367368695039885414229905982631411396968999470468127077011397950062063246536958674185526168296762553300346631973960338294433876108029014499589333061131877825409638673083848235539904857185622157842941505323403663253431061061863319654555895890538268364352031832752959255330002647671407278970950091458015348515721241182884903890109657711790701662835088828089215214205589643828145917331533893588128457008538197154171080733123231573
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a57322e9c9673592d7528bf65a96ff857b974aeb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rappi.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.rappi.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							0169007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018a64d9a6f9000004030047304502210093cdecce4ccd2fb0e420ea923b144dc23a938d0b73d7739d3f1f68a4735afd9b0220610dc92f63b83088fdd4165bbf83b0c123c055964a28c52744ae7457031f82a900770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018a64d9a7390000040300483046022100dbfc3444f4d89b54444bc5e8913f831c9948fa30ede791a1f6acf51bd175212f022100e7c0e0a4224aca23bf74743e5b7f90b8503e5f8acc08517e2a3609296a71f507007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018a64d9a6e100000403004730450220704b29cb745e645a60a72ad74e34cc03a67ce309cbe97cbfb1ccfb38c2d7a756022100ec3e20ca6b247b099b7d97310371616c37c41aeda0e09f183c9a177293c0f0c6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002fba61f66053777160653087878b934a53ccc85ffb32b2f9b06093b37a96a96724737d86e2d3054effaab237c27f2c8a3ac31d9c30b424544cdea0ddcbe788c333094e503bc6a44c24067c94e842847b80ee05065efcca023fa437a1fcac89f29439a4530f6d7d12abbb10cdd8a748ecfd5458c587710df6d29755c7275de38e00b5a395bddb513696197e9f753f6ea36ae59e6db4927723683e9bc5eb5d86c5184d870e19bfda42439ab522c1f09d0a31fe6290f7c0d817e90ebb075e54964aed127126d9d3887d822ff9cdb6bd2750fcdf8346d7d4065f273892c1fcadacefb281c84ab17426fd4aaad31009426f604339526c948128685304f56a33aa6957