assets.meredith.com

Issued by Amazon

About this certificate

This digital certificate with serial number 01:8e:44:ab:f3:d0:bd:0e:64:ad:b1:55:ad:77:73:0b was issued on by Amazon.

With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=assets.meredith.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 01:8e:44:ab:f3:d0:bd:0e:64:ad:b1:55:ad:77:73:0b
Serial Number (int): 2067926977022906398786717967776707339
Serial Number lenght: 121 bits, 16 octets

SubjectKeyId: 28:93:92:4e:82:b2:1c:e5:9d:8e:cc:f1:85:9f:08:4a:48:5d:87:3b
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): e6:e4:59:a5:2f:68:6f:1b:03:b2:9b:63:8d:f3:91:e9:db:61:94:a6
Fingerprint (sha256): 27:28:4b:37:8c:ce:a9:62:88:ff:6e:78:c9:e1:a7:fb:82:d1:69:32:8f:88:4c:eb:b7:3d:80:78:5a:15:d3:fe

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate assets.meredith.com

6

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for assets.meredith.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

assets.meredith.com
images.prod.meredith.com
*.staging.shopnation.com
*.qa1.shopnation.com
*.qa2.shopnation.com
*.qa3.shopnation.com

Other certificates including the domain name meredith.com

(limited to 100 certificates)
wpm.ccmp.eu
payments.meredith.com
vcacontent.meredith.com
secure.meredith.com
dyncat.cip.meredith.com
*.meredith.com
secure.static.meredith.com
*.secure.meredith.com
secure.meredith.com
matrixdev.meredith.com
meredith.com
*.meredith.com
my.meredith.com
test.secure.static.meredith.com
meredith.com
images.meredith.com
citrix.meredith.com
wpm03.eccmp.com
*.meredith.com
5713573250596864-fe4.pantheonsite.io
images.meredith.com
munkireport.meredith.com
payments.meredith.com
meredith.com
woodwing.meredith.com
secure.static.meredith.com
*.meredith.com
es.meredith.com
*.woodwing.meredith.com
kptvoasis.meredith.com
www.meredith.com
webmail.meredith.com
wpm.ccmp.eu
specialoffers.meredith.com
splunk.meredith.com
secure.static.meredith.com
wpm03.eccmp.com
intranet.meredith.com
akamai-san192.exacttarget.com
secure.meredith.com
wpm.ccmp.eu
*.meredith.com
360.meredith.com
wpm.ccmp.eu
*.images.meredith.com
quizler.meredith.com
chrysler-stg.meredith.com
Dashboards.meredith.com
*.agriculture.com
dev.app.meredith.com
adobefrl.meredith.com
collabedge.meredith.com
go.meredith.com
dev.secure.meredith.com
*.meredith.com
5713573250596864-fe4.pantheonsite.io
*.meredith.com
*.meredith.com
360-auth.meredith.com
wpm03.eccmp.com
*.meredith.com
images.qa.shopnation.com
ise.meredith.com
wpm.ccmp.eu
secure.static.meredith.com
secure.meredith.com
images.meredith.com
assets.meredith.com
*.elvis.meredith.com
accounts.bhg.com
accounts.bhg.com
*.meredith.com
*.meredith.com
LCS.MEREDITH.COM
5713573250596864-fe4.pantheonsite.io
5713573250596864-fe4.pantheonsite.io
wpm03.eccmp.com
*.elvis.meredith.com
origin-secure.meredith.com
secure.meredith.com
mywedding.com
origin-dev.secure.meredith.com
secure.meredith.com
admin-dev.meredith.com
mywedding.com
www.meredith.com
meredith.com
dev-theshop.meredith.com
mdp.api.meredith.com
wpm.ccmp.eu
secure.meredith.com
accounts.bhg.com
*.meredith.com
*.meredith.com
*.meredith.com
images.meredith.com
meredith.com
*.meredith.com
wpm03.eccmp.com
images.meredith.com

Certificate

The complete raw certificate details for assets.meredith.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5cShtJHO/dDS/P8j/OX7
6gMBr68U8O0anvV05+0WaguZnCsvdddn/5o8og43H4cOEeylZgeg8R1j430T/Maz
e6ZV48oRpaJ8nN/WWX6Wo9EjD5T5dSdskrVsu3ydkmjkH8TLNZtUIyYmtP7AG1Nu
RNNxCNrzUcKUnDsIQ3BlLt8O56KiXyF7W8Geq3s8SyaDaMMeUd1W62xoE0B9uCez
2CND55kRdvCT8ZNb+rPc0HG343KsodKUOXrCOXW9J74F6jnXBFtjnNpSJovMPPQa
YJNj4uWFtu4sTm5AWbXWHrMg0IByuuZiYBshH+HCP35+5UBobvh+3/JUYCHGVCu+
0wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 2067926977022906398786717967776707339
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-28 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-09-28 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'assets.meredith.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29005534523373168643844050380925754840423697434494737667272731864464901928605912471351956586857685115854148861259974853047934848179238646663063421168200247319729686758584485921852295380084123062987025099834154640814248247816587525385866989940464187196762332189228347233241879125362872800377082314618730624878325452281125101642981617690742260806485640950498329342940179386538427607847280899094446368380428903211239392017453571454635309278043088599869973075917918184721658253162815584109118584923402684777241428315089443202933650574759425706147838378607440813786975117583264334186853747417164044557865871678850414132947
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2893924e82b21ce59d8eccf1859f084a485d873b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (142 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.meredith.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'images.prod.meredith.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.shopnation.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.qa1.shopnation.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.qa2.shopnation.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.qa3.shopnation.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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