zero-staging.aviva.co.uk

Issued by Amazon RSA 2048 M03

About this certificate

This digital certificate with serial number 0e:e0:ad:9c:51:18:fe:b7:42:bf:ce:c8:55:16:93:50 was issued on by Amazon.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=zero-staging.aviva.co.uk

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0e:e0:ad:9c:51:18:fe:b7:42:bf:ce:c8:55:16:93:50
Serial Number (int): 19775787678853910450514443821502600016
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 84:de:d5:8a:65:d9:c9:fb:29:92:e8:80:45:b6:a6:ef:95:0b:79:ef
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (sha1): a3:39:f5:d3:05:ec:61:70:dd:4a:14:12:0b:ac:5d:1a:91:80:67:75
Fingerprint (sha256): 25:23:c2:73:b3:1d:85:30:4d:58:d3:02:bf:49:31:52:c6:1e:c5:e1:e9:8d:f6:7e:e6:10:00:c2:76:9a:b7:6a

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate zero-staging.aviva.co.uk

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for zero-staging.aviva.co.uk

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

zero-staging.aviva.co.uk
zero-staging.verde.systems
nuance.zero-staging.aviva.co.uk

Other certificates including the domain name aviva.co.uk

(limited to 100 certificates)
www.healthpoint.qs.aviva.co.uk
www.aviva-platform.aviva.co.uk
avivaprivacy.uk
www.eserve.avivaservices.co.uk
cert02.uk.aviva.com
www.nationwide.qs.aviva.co.uk
xmlnj.qs.aviva.co.uk
barclayssaml.qs.aviva.co.uk
aviva.co.uk
www.xmlquote.qs.aviva.co.uk
footyfinance.aviva.co.uk
cert03.uk.aviva.com
cert06.uk.aviva.com
avivaprivacy.uk
identitysecure.hsbc.aviva.co.uk
jira-pp.aviva.co.uk
np-cert02.uk.aviva.com
www.insurance.qs.aviva.co.uk
avivaprivacy.uk
cert11.uk.aviva.com
cert03.uk.aviva.com
avivaprivacy.uk
www.direct.aviva.co.uk
www.avivahealth.qs.aviva.co.uk
footyfinance.football
rmdapi1.aviva.co.uk
poet.qs.aviva.co.uk
rmdapi4.aviva.co.uk
cert08.uk.aviva.com
cert01.uk.aviva.com
www.avivahealth.qs.aviva.co.uk
aviva.co.uk
aviva.co.uk
www.selfservice.qs.aviva.co.uk
secure.qs.aviva.co.uk
cert06.uk.aviva.com
aviva.co.uk
www.apb.qs.aviva.co.uk
www.certlogin.aviva.co.uk
www2.wsg.qs.aviva.co.uk
avivaprivacy.uk
aviva.co.uk
cert10.uk.aviva.com
cert06.uk.aviva.com
intquote.aviva.co.uk
rmdapi1.aviva.co.uk
jira.aviva.co.uk
cert10.uk.aviva.com
cert01.tmp.aviva.com
www.ukdi.qs.aviva.co.uk
cert08.uk.aviva.com
cert01.uk.aviva.com
incapsula.com
np-cert02.uk.aviva.com
cert10.uk.aviva.com
www.realitycheckaccount.aviva.co.uk
www.isup.preview.qs.aviva.co.uk
www.apb.qs.aviva.co.uk
intquote.aviva.co.uk
www.insuranceportal-tsbhome-branch.qs.aviva.co.uk
incapsula.com
cert01.uk.aviva.com
avivaprivacy.uk
graduates.aviva.co.uk
incapsula.com
aviva.co.uk
careers.aviva.co.uk
aviva.co.uk
avivaprivacy.uk
referral.aviva.co.uk
cert01.uk.aviva.com
www.wsg.qs.aviva.co.uk
rmdapi2.data.aviva.co.uk
cert08.uk.aviva.com
footyfinance.aviva.co.uk
t.notifications.aviva.co.uk
services.aviva.co.uk
www.quotehc.qs.aviva.co.uk
www.creditor.qs.aviva.co.uk
www.aviva.co.uk
www.hre.qs.aviva.co.uk
www.hsol.qs.aviva.co.uk
uat.aviva.co.uk
aviva.co.uk
www.avivatransfer.co.uk
aviva.co.uk
rmdapi3.aviva.co.uk
hawkeye.qs.aviva.co.uk
incapsula.com
www.mas.qs.aviva.co.uk
www.dsfhe.qs.aviva.co.uk
incapsula.com
mail.aviva.com
cert03.uk.aviva.com
incapsula.com
uat.aviva.co.uk
e-learningportal.at.aviva.com
cert01.tmp.aviva.com
mybusiness.aviva.co.uk
cert05.uk.aviva.com

Certificate

The complete raw certificate details for zero-staging.aviva.co.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLmMjrwSBr284jblfXUP
Ct+nnQ+6IArFpHome1Zqy1qiq5jPwHwbdq8iSO+Qt7agUOcX1y7sB/hOTzj2bzaV
MfRCp0vsI49e+H5q9k2cUI/OLwP5QfaPs10X9WYvJabzTRnqDTO4sMOdd2NsLCgC
KdtZG3fht58hZ6sL1FIiq17mUQxKpadV0goZsirpS2N7YoSllXzuZkaRRbOfENdQ
hJoFJ+duIK2gi/W2hhBUi78P4Raco3SRx+eT1NlgzMS70qSvLKHlMXoBUiRxNCpF
ak27u2bt+i3/XeF/viaj5k7hbzLMfo9ja5Eljg9FoXHIg4hld9HW+AKbjQpF7SwJ
GQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 19775787678853910450514443821502600016
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-11 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zero-staging.aviva.co.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21804486102339680335090326379025237044954657666179988894410050610973961153572549329811371999388492700845313521993977607290324810346894472204811998588953355295922009073964009538912551881022497255568343445367276210297623799106032277579602442056427815851803929916564267225090474492351501455871616650258553274157677744738827928647955089769347174304017727714635221030580101716750416983763276367785862336561286298889317148222178359548527013998312474289108524768919835549094953925979493867687141096095559788586211024228277361421368335007130782298966320032479005553095809406014305877391070932846041516224105608399719548848409
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							84ded58a65d9c9fb2992e88045b6a6ef950b79ef
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zero-staging.aviva.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zero-staging.verde.systems'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nuance.zero-staging.aviva.co.uk'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0017ed96a1b886c44696432ba435e9a2eb554299f438702df934a196c717434b3b3d327fd249d2f20fcce9f1322c0b8cd838513c591681787456e981db3aaef88fd67a925939fed5b831773a1143ff458210a18048cf006105f78d6656f7cc54df4d5263f0a765804fb0e7f9c1249d58ab3eac74f5e2e5f7f61cbcc0db0da281ef496ba63cb2020d96f225101bd6864f4710284e01bb0363ecb1a30410e4aeee44643571bbd5b82df56363bb2161656189d97f267641af2c03edc38f55ced809a2519019992e6fbe86f136fe2df6e7d184d50afaf59dc14b07c5f3fe6a3560eee91e598f9ab6e8125464d2b755cdbbe19f0804300f3a3aa46fe6924c486108ac39