store.turningtechnologies.com

Issued by Amazon

About this certificate

This digital certificate with serial number 0a:65:26:1a:8e:13:f6:32:99:c8:ff:ca:5f:f2:a9:9d was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=store.turningtechnologies.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0a:65:26:1a:8e:13:f6:32:99:c8:ff:ca:5f:f2:a9:9d
Serial Number (int): 13817474776029344074645593618988050845
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 3c:0b:d7:a3:cf:14:d3:bc:00:eb:03:75:e0:a4:7e:34:0d:61:31:52
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): ff:38:35:99:97:51:72:53:df:c0:b3:35:ea:f7:1a:bc:dc:97:e8:11
Fingerprint (sha256): 0e:80:3c:7a:75:2a:5c:8b:00:15:95:92:6e:be:81:0c:2a:3e:70:52:52:e0:9d:10:8f:cb:47:30:91:b0:20:eb

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate store.turningtechnologies.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for store.turningtechnologies.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

store.turningtechnologies.com
www.store.turningtechnologies.com

Other certificates including the domain name turningtechnologies.com

(limited to 100 certificates)
uwgb.turningtechnologies.com
polling.turningtechnologies.com
ithelpdesk.turningtechnologies.com
student.turningtechnologies.com
rebates.turningtechnologies.com
ucmercedtest.turningtechnologies.com
laurentian.turningtechnologies.com
jira-service-management.status.atlassian.com
utm.turningtechnologies.com
jira-service-management.status.atlassian.com
web-store-consumer.turningtechnologies.com
gradebook.dev.turningtechnologies.com
uww.turningtechnologies.com
account-api.turningtechnologies.com
devryu.turningtechnologies.com
rebates.turningtechnologies.com
signup.turningtechnologies.com
polling.turningtechnologies.com
jira-service-management.status.atlassian.com
polling.turningtechnologies.com
polling.turningtechnologies.com
kingstontest.turningtechnologies.com
jira-service-management.status.atlassian.com
content.turningtechnologies.com
auc.turningtechnologies.com
blinn.turningtechnologies.com
oregonstate.turningtechnologies.com
weatherfordtest.turningtechnologies.com
saintmarys.turningtechnologies.com
admin-dojo360.turningtechnologies.com
polling.turningtechnologies.com
jira-service-management.status.atlassian.com
api.turningtechnologies.com
jira-service-management.status.atlassian.com
student.turningtechnologies.com
lms-integration.turningtechnologies.com
wilkes.turningtechnologies.com
assets-dojo360.turningtechnologies.com
ursinus.turningtechnologies.com
store-api.turningtechnologies.com
store.turningtechnologies.com
villanova.turningtechnologies.com
www.turningtechnologies.com
kingstontest.turningtechnologies.com
bolt.turningtechnologies.com
sni.cloudflaressl.com
uthscsa.turningtechnologies.com
user-server-consumer.turningtechnologies.com
uga.turningtechnologies.com
account.turningtechnologies.com
pgnotification.turningtechnologies.com
calu.turningtechnologies.com
turningtechnologies.com
sakai.turningtechnologies.com
go.turningtechnologies.com
knowbly-main-api.turningtechnologies.com
esu.turningtechnologies.com
connect.turningtechnologies.com
briarcliff.turningtechnologies.com
npm.turningtechnologies.com
murraystate.turningtechnologies.com
dartmouth.turningtechnologies.com
www.turningtechnologies.com
content.turningtechnologies.com
admin.turningtechnologies.com
alfredu.turningtechnologies.com
polling.turningtechnologiessg.net
bscc.turningtechnologies.com
uw.turningtechnologies.com
msun.turningtechnologies.com
uncc.turningtechnologies.com
ucdenver.turningtechnologies.com
responseware.turningtechnologies.com
results.turningtechnologies.com
polling.turningtechnologies.com
csun.turningtechnologies.com
neo.turningtechnologies.com
iu.turningtechnologies.com
webreg.turningtechnologies.com
templeu.turningtechnologies.com
store.turningtechnologies.com
jira-service-management.status.atlassian.com
email.turningtechnologies.com
ttcu.turningtechnologies.com
jira-service-management.status.atlassian.com
sni.cloudflaressl.com
jira.turningtechnologies.com
scheduling.turningtechnologies.com
build.turningtechnologies.com
upenn.turningtechnologies.com
content.turningtechnologies.com
umc.turningtechnologies.com
uiowa.turningtechnologies.com
uga.turningtechnologies.com
turningtechnologies.com
sni.cloudflaressl.com
uwm.turningtechnologies.com
uakron.turningtechnologies.com
uiowa.turningtechnologies.com
rebates.turningtechnologies.com

Certificate

The complete raw certificate details for store.turningtechnologies.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwP7CMfoS9rvUwnrHsgR8
f1Q9WZ4d4/odCAzN4BHNUoBnEGdhsj/cFL1O8dCDcQqLy5BuemjIgos9vnbhQcrE
Uwvf6tvG7iQ3uOe1Bp82lCgl5wR5xHJ4yHxT5qF7OvqDCab6dkivKbjzejUjQ+5c
yfDBDbsSlJ24nLEya036avrdd+b3SUq0QKgUzubnI4rFq6GeP/FK986FwWkaomjP
YRTIiYU1eIBHLGuLEBvW/Q72ViHwNEx8tw7RZHZSUbqScfgQTvKC+oEX1eVjuS25
AvMPvFXsX3E+ohbJa5Iu3fcUYvRPKyCrc+2AeNLrV2R+DAb6FCpBJxfsQ9J2MCqy
nwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 13817474776029344074645593618988050845
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-11 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-11 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'store.turningtechnologies.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24363380689008471829129468641020193390810153034227621484046263111918809037698282498381023245399026691547036875686343331033457715231901660178515992787626698021433043498828346234626153718559296001807601841788735638854154063085129745582236030840589742667495012350419173383324720352006491813201143272674705800866972336407478846814898484247423005802335479859219870120064720734110682922433726380787714197108085290381410945780068699084650165615163924317191553025772594081668328909205852733087931731952810453343179591293354683196597508300471618890567323644067099983304282982543792711719464742769438769348136637406539300909727
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3c0bd7a3cf14d3bc00eb0375e0a47e340d613152
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'store.turningtechnologies.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.store.turningtechnologies.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000164874cd9fb000004030047304502210083bdce9482e98587a15009c7015d3390bb501174f11e69d118dd022a5e50a2d102205aae2cee28244b608d567029e33abb6b42ded62bb92bc3a1e5607ba03e976f190076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000164874cdad00000040300473045022069747c58f4c99971c6032c7771ae1e010a642d7df2c36d53d4d6d446be8d505b022100aef7cf981981d523d172f6b07a809376e3eb2030c9e1ed4fdedb2edf9d25abc6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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