*.ci.wearable-dev.spectrum.net

Issued by Amazon RSA 2048 M03

About this certificate

This digital certificate with serial number 0a:ab:5b:68:2b:3d:8e:36:3e:fb:a8:84:56:4f:fe:db was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=*.ci.wearable-dev.spectrum.net

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0a:ab:5b:68:2b:3d:8e:36:3e:fb:a8:84:56:4f:fe:db
Serial Number (int): 14182016673043719513033958544139878107
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: dc:a9:fd:b2:f1:98:c8:f9:fa:9d:35:fb:a9:94:40:82:ca:80:6f:2b
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (sha1): 9a:b6:1d:61:89:8c:6a:61:90:d2:0b:83:80:cf:f7:8b:b1:3c:0e:23
Fingerprint (sha256): 23:f5:05:38:e8:56:88:13:bd:f6:1e:37:a5:7b:fe:e1:cc:30:9c:6e:21:49:52:85:1f:05:14:7b:a3:90:3a:63

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate *.ci.wearable-dev.spectrum.net

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.ci.wearable-dev.spectrum.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.ci.wearable-dev.spectrum.net
ci.wearable-dev.spectrum.net

Other certificates including the domain name spectrum.net

(limited to 100 certificates)
privacy.portals.spectrum.net
device-stage3.cmstage.spectrum.net
mail.charter.net
api-private.cm.spectrum.net
self-care.portals.spectrum.net
device.cmdev.spectrum.net
*.prd.spectrum.net
*.pi.spectrum.net
activate-uat.spectrum.net
aviatrix-lab.scratch.spectrum.net
report.cm.spectrum.net
device.cm.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
*.pi.spectrum.net
report.cm.spectrum.net
*.scl.spectrum.net
*.stage.tau.spectrum.net
artifactory.scratch.spectrum.net
esim-api.cmstage.spectrum.net
report-qa.cmdev.spectrum.net
pci.spectrum.net
wifiprofile.spectrum.net
api.spectrum.net
ci-private-api.cmdev.spectrum.net
*.spectrum.net
preprod.idp.aws.spectrum.net
*.cmdev.spectrum.net
device.cmdev.spectrum.net
*.spectrum.net
advisor2.spectrum.net
*.wtg.spectrum.net
cii.spectrum.net
ocsports.tv
xspca02.hv.rr.com
tdcs-origin.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
device-gn.cm.spectrum.net
spectrum.net
*.portals.spectrum.net
report.cm.stg.spectrum.net
report-sit.cm.spectrum.net
edge-vod.spectrum.net
xspca02.hv.rr.com
preprod.idp.aws.spectrum.net
*.tooling.sspp.spectrum.net
*.wireless-api.spectrum.net
xspca01.hv.spectrum.net
spectrum.net
2.symend.io
xspca02.hv.rr.com
ci-cmt3teamportal.cmdev.spectrum.net
*.pi.spectrum.net
nsl-mock.ci.wearable-dev.spectrum.net
spectrum.net
xspca01.hv.rr.com
spectrumtv.com
logpull-prod.tau.spectrum.net
gitlab.meta.spectrum.net
xspca01.hv.rr.com
device.cm.stg.spectrum.net
opensearch.impulse-dev.spectrum.net
cm-policy-sit.cm.spectrum.net
*.meta.spectrum.net
sonar.cm.spectrum.net
scratch.spectrum.net
api2.cmdev.spectrum.net
tdcs-origin.spectrum.net
fols.spectrum.net
activate.spectrum.net
spectrum.net
*.failover.pi.spectrum.net
dsexp.spectrum.net
care.spectrumwifi.spectrum.net
stage-spectrum.net
airflow-pilot-private.dev.dsexp.spectrum.net
*.dev.wtg.spectrum.net
self-care.portals.spectrum.net
cms.prd-aws.charter.net
cloudnet-controller.meta.spectrum.net
mediaportals-news-64.dev-charter.net
tdcs.spectrum.net
community.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
watch.spectrum.net
cmt3teamportal.cmdev.spectrum.net
prd-infra-instana-2.prd.spectrum.net
api-ondemand.spectrum.net
*.ci.wearable-dev.spectrum.net
ci-cmt3teamportal.cmdev.spectrum.net
sdptpsiproxyvip.charter.com
instanadist.tools.prd.spectrum.net
privacy.portals.spectrum.net
xspca01.hv.rr.com
id.spectrum.net
*.eos.spectrum.net
spectrumtv.com
report.cm.stg.spectrum.net
device-ci.cmdev.spectrum.net
edge-vod.spectrum.net
device.cmdev.spectrum.net

Certificate

The complete raw certificate details for *.ci.wearable-dev.spectrum.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7yEykCqNKfQnj7oQnPX
GEwDxupKtwtb/fW0783GJH0y91cVQnD8f77YsDFCzrgb5lEpQYRkNAGfDag0CXod
3CAxa4pX5cnMF1IVULGFLHlXFtSNYSV+2DRPwdAohPNsAz0hiZgsOg29VMWj0Sge
DfNHvA1gCSF4Cg5LkbAPT/+jsVcmbXngbbYDQ6aFrH3b+2E0uZjXt3Yv2rh9ObQf
aOSRwdofFICn/Fkvte1o0ow89YjUr/5ThNQE1Q/du3B462S0MLTVSP+nJBmEdtFT
/bleTbnLKD5r5WoW/sP2DhtNiAzLm1vDWxqteaknEsAcmKxuGXW8OL7B1TDYws3w
FwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 14182016673043719513033958544139878107
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-18 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-15 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.ci.wearable-dev.spectrum.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25719337949310687520330401582454437765830646666956422659179978768120958021137449781124533923445464834826657803781032989413811856147631852944567623832056297681946728861795239290406559680102139782746742720422398377680516093844724887410645611915958310330075047761531977296365811487007896680975788211479721383722361980844593398173556881881592795225301360616155436996508892698468889546980619325336463344054449620141425300929471096272015784730175805457915160062622399358591149522527039563974166049422399948376741800646094579926288763249078891863798299180102425006040579905485724270012437482802211264237376214101895144140823
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dca9fdb2f198c8f9fa9d35fba9944082ca806f2b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ci.wearable-dev.spectrum.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ci.wearable-dev.spectrum.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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