*.insightmonk.com

Issued by Amazon

About this certificate

This digital certificate with serial number 0b:e7:20:02:21:9a:4b:27:6d:d4:64:39:99:43:13:21 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.insightmonk.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0b:e7:20:02:21:9a:4b:27:6d:d4:64:39:99:43:13:21
Serial Number (int): 15821577733918796471262998716892779297
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 93:b5:7b:d7:61:68:3b:25:4a:0d:21:ea:43:b4:49:9f:f9:8b:b0:09
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 35:2c:26:8d:ed:be:e2:f9:db:da:a2:29:20:4d:fd:6f:2d:cf:42:ce
Fingerprint (sha256): 19:c1:5e:a0:53:d2:57:c7:75:6c:49:96:09:b5:80:f4:1b:53:c7:06:2d:f4:f2:40:32:ce:a5:16:16:e1:f3:ec

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl

Check the revocation status for certificate *.insightmonk.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.insightmonk.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.insightmonk.com
insightmonk.com

Other certificates including the domain name insightmonk.com

(limited to 100 certificates)
*.insightmonk.com
*.insightmonk.com
api3-dev.insightmonk.com
insightmonk.com
api.insightmonk.com
admins.insightmonk.com
admins.insightmonk.com
insightmonk.com
analytics.dataviss.com
*.insightmonk.com
insightmonk.com
*.insightmonk.com
reports-dev.insightmonk.com
beta.insightmonk.com
insightmonk.com
*.insightmonk.com
insightmonk.com
api3-dev.insightmonk.com
insightmonk.com
api3-dev.insightmonk.com
community-api.staging.insightmonk.com
insightmonk.com
insightmonk.com
api.insightmonk.com
analytics.insightmonk.com
insightmonk.com
*.insightmonk.com

Certificate

The complete raw certificate details for *.insightmonk.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmoBPAKiewi4HnLTD3pE
j2wTjVBtXrRmhu/uej3gYQ6aAZrPCevLSI+eUMghkVmvz6eepVYA9IACt/oXPnHJ
dB6QXj94+n6Sk2POCgCFvu8AS+JbwgHNlUllH4F3i8xGwWUcIBuYrnasTieogo1m
n8FUTCJExQhBCVv2RYT1pqNUickziiBqp0qDMnOOZA6llsVsGgYMLEdpmSkSvlm9
L2/HbxCuLdBvPqZJpD+4x7e83xVkf0xcy8oA2/zPFBK3uAUVh/aekFxVmL820kUP
Sr5fGWO/VzRm/VR1ZaTIs3ElRSErj9ZQHig1kdugUj7wQdjqmO7eESpyGhmjVrod
yQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15821577733918796471262998716892779297
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-10 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.insightmonk.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19997925110571736712517735431906430128681997273836664327618030702511822666753936412520065160087887976181634475750570685795987126051081665337540595290896446110337983502706530720870897149708842008436380129503142731802002556235378100817889591778201364501226152192006420670689930711126299325824719019294392528755897329025600073236025676997143160130566452381183767283210721393991834524023716599756805414145309124090369109692219027381064806443780581588501042795374513642623168298558392082281863282645194771493395789464030663117380042239665517378103239168872411669622414466127145340251009182922984065816261183677248241802697
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							93b57bd761683b254a0d21ea43b4499ff98bb009
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.insightmonk.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'insightmonk.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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