DV SSL/TLS Certificate for activities.tokapp.net

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the activities.tokapp.net DV SSL/TLS Certificate

This certificate with serial number 0c:5a:cf:68:7c:98:7d:08:af:db:23:d6:39:c2:a5:26 for activities.tokapp.net was issued on by Amazon.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for activities.tokapp.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 0c:5a:cf:68:7c:98:7d:08:af:db:23:d6:39:c2:a5:26
Serial Number (int): 16422249403764470739166581033873351974
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 5f:32:5d:34:ff:e4:59:af:01:08:6a:1d:fd:a5:7c:c5:11:81:46:1a
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): ea:6a:c5:67:4d:2c:45:9d:51:5d:83:90:73:a0:df:fc:6b:44:a1:77
Fingerprint (SHA-256): de:61:0f:fa:ea:29:9d:52:36:0d:1b:69:56:ef:af:94:e4:3b:14:07:2b:9e:2c:18:f5:89:6b:31:a6:61:d3:ff

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate activities.tokapp.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for activities.tokapp.net

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for activities.tokapp.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGDTCCBPWgAwIBAgIQDFrPaHyYfQiv2yPWOcKlJjANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAzMB4XDTI0MTExMzAwMDAwMFoXDTI1MTIxMzIzNTk1OVowIDEe
MBwGA1UEAxMVYWN0aXZpdGllcy50b2thcHAubmV0MIIBIjANBgkqhkiG9w0BAQEF
AAOCAQ8AMIIBCgKCAQEAqfibUpfUyhF9SxErR1pCfuNeZXDuFFWrOa09krCGv10x
3K44RgnuAIr5TbPXrdQ3nOdMmxw522rRa8df+uL00CUqVlxAomfdJD8jiDK1oojo
7S2WQDOc9FrYrca66YIPvdbfYpYgMYoUxd8nbIP/kuTQifsUEHyouLtdihYyNIxh
9OFAhtvncw7hyodBhCUrNpLDWy0KRGdeGfzp8c6tBFpedXK5EaVJ+00EhjW8WZlS
rnTt6wmmTLVJju8XS8dSZ1+uqFGWgF0kcEDfUOFG6rzE2+tJrgxnUbfW2StA8iX/
5Zw+E1PFayD+eJHv2OPLwJe7Cw6D0dB5WTClYGoPaQIDAQABo4IDJTCCAyEwHwYD
VR0jBBgwFoAUVdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFF8yXTT/5Fmv
AQhqHf2lfMURgUYaMFcGA1UdEQRQME6CFWFjdGl2aXRpZXMudG9rYXBwLm5ldII1
MmE1N2o3OGdnc254dDM5ZGhteXU4eGZzNXdrZXlqdC5hY3Rpdml0aWVzLnRva2Fw
cC5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud
JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRw
Oi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUH
AQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVz
dC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3Qu
Y29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4E
ggFqAWgAdwDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZMjDssE
AAAEAwBIMEYCIQD/Adoa/srJcehHOUI+zb5AuVtJ70eKYwl8JHTDcbn5lAIhAKl5
m7yLNmgvjcSvrfJcjvsndX3Cj4G0BpXpsUfiOQaiAHYAfVkeEuF4KnscYWd8Xv34
0IdcFKBOlZ65Ay/ZDowuebgAAAGTIw7K/gAABAMARzBFAiEApqANZXrxKLvB8Gkv
h6ZUss/wHkC8dkZh/611nhqAdBoCIDwWCVjySJInc3GjrLWHu9XOBu+wboT3e+V1
jh/bedfhAHUA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGTIw7L
DAAABAMARjBEAiBW+RimuyROKCtZ6hTOiXXtYN1fpGRVFwamO/XbniSHlAIgZXuX
4+ueBpZd3hZpbLY6J7UHExegt2lRoA8GcCafJTcwDQYJKoZIhvcNAQELBQADggEB
AJ+p+PTLl3OSkeYIfqQDbMq7NRJw8XTqLfci073cz+FzMXFGnzKzAixkEZrYdC/r
FKSEzr9wsQhC6x0Z8FqVWoYUfYeY8R5BJKgNYRr0lu8n8o/pwacqg9IpHjtaz2sA
g/nvMtPYjJxDGefiG8vbMxx9HkqhKAEwANIkoZHii/GquLN4MZt2zSTlywEEWYWn
9kUX21fiDwO8IYqZp/+lV5Fhw9icK8fbJv8qr37tu9uqTcIcDOefV8elccVTjshg
Fr1abcr/yyWCkWXjpFivAKgRvhxKyWy7J1/l/yZgrPKVScFcvLCIQDpHJHqOxtqk
fOGYT8DaeDFMBxHJR/r8WfI=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfibUpfUyhF9SxErR1pC
fuNeZXDuFFWrOa09krCGv10x3K44RgnuAIr5TbPXrdQ3nOdMmxw522rRa8df+uL0
0CUqVlxAomfdJD8jiDK1oojo7S2WQDOc9FrYrca66YIPvdbfYpYgMYoUxd8nbIP/
kuTQifsUEHyouLtdihYyNIxh9OFAhtvncw7hyodBhCUrNpLDWy0KRGdeGfzp8c6t
BFpedXK5EaVJ+00EhjW8WZlSrnTt6wmmTLVJju8XS8dSZ1+uqFGWgF0kcEDfUOFG
6rzE2+tJrgxnUbfW2StA8iX/5Zw+E1PFayD+eJHv2OPLwJe7Cw6D0dB5WTClYGoP
aQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 16422249403764470739166581033873351974
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-12-13 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'activities.tokapp.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21456866086430744196836246295550274706565392031402630913857900523641597229478093554553274726987043849962477295417134349491647863849128975916590211048785756213515645095222509059005798916149732058543662493956348969505718777525562975775305076794990600861691116502189989653823592318938353487288846806245173725721975818245897256282746345595414109678961475813879562057869868250693621094057361066659067135968646174188713505654156201821277073215456548320638801532429965972757704822722327158263204580377844859580079944023825163609714844407596053471615975195741378685069390674735426170243225184795447951684917667776434314809193
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5f325d34ffe459af01086a1dfda57cc51181461a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'activities.tokapp.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2a57j78ggsnxt39dhmyu8xfs5wkeyjt.activities.tokapp.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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