*.northernlight.co.uk
Issued by Amazon
About this certificate
This digital certificate with serial number 01:05:0c:7f:4e:80:2d:83:96:28:77:dd:6f:46:2b:39 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.northernlight.co.uk
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:05:0c:7f:4e:80:2d:83:96:28:77:dd:6f:46:2b:39Serial Number (int): 1355442955264261347473241871600724793
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: d7:d5:ca:e8:6e:55:a2:59:de:38:b7:46:8a:35:b2:a3:a9:b8:b9:06
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 2f:9e:44:00:9b:7c:97:90:70:2e:fd:4a:16:8c:6b:82:d6:6a:0d:78
Fingerprint (sha256): 2a:56:23:3b:e3:b0:75:1f:a6:49:ba:4b:db:1b:6e:2c:16:82:4f:7d:65:2c:21:fb:97:31:26:8e:cb:07:ee:68
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.northernlight.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.northernlight.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.northernlight.co.uk
Other certificates including the domain name northernlight.co.uk
(limited to 100 certificates)
*.northernlight.co.uk
*.northernlight.co.uk
hq.northernlight.co.uk
*.northernlight.co.uk
*.northernlight.co.uk
*.northernlight.co.uk
sharepoint.northernlight.co.uk
remote.northernlight.co.uk
*.northernlight.co.uk
mail.northernlight.co.uk
webmail.northernlight.co.uk
webmail.northernlight.co.uk
remote.northernlight.co.uk
*.northernlight.co.uk
webmail.northernlight.co.uk
webmail.northernlight.co.uk
crm.northernlight.co.uk
northernlight.co.uk
*.northernlight.co.uk
hq.northernlight.co.uk
*.northernlight.co.uk
*.northernlight.co.uk
*.northernlight.co.uk
sharepoint.northernlight.co.uk
remote.northernlight.co.uk
*.northernlight.co.uk
mail.northernlight.co.uk
webmail.northernlight.co.uk
webmail.northernlight.co.uk
remote.northernlight.co.uk
*.northernlight.co.uk
webmail.northernlight.co.uk
webmail.northernlight.co.uk
crm.northernlight.co.uk
northernlight.co.uk
Certificate
The complete raw certificate details for *.northernlight.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIQAQUMf06ALYOWKHfdb0YrOTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAzMDEwMDAwMDBaFw0yMTA0MDEx MjAwMDBaMCAxHjAcBgNVBAMMFSoubm9ydGhlcm5saWdodC5jby51azCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAJSKdcDW2wn5KpfOLarK3A2A53SDOce5 NDIW+19MR7d/6NjGK4jKaFPXJNLu97pe8wF1n1Vnam0v4hMChUM9NxzB8voBLeFD V7bGe1Qe9PjCL/uU85Utw+L9I3g75Rf4VkJkIpU3MMQoX4G80uTZY1se1f4hB/SK OgM3ECkJkmUJ0Xxz6m4BUNilgAJFlTPZ1d9kzR+kxC+xHFECa54fBc4nPWMP+WDQ 2rr5spRpT2NlUhYUQAKA57kqTchOjOq7GybSt/uuSDmQODoZfteZDQ9tUqnSUtkj JFD8LiBoHQ4VvnJZkp1ZvgEkpA4nbe7rbdPwrlTQsfD9d1oJBnLV9MUCAwEAAaOC AoEwggJ9MB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQW BBTX1croblWiWd44t0aKNbKjqbi5BjAgBgNVHREEGTAXghUqLm5vcnRoZXJubGln aHQuY28udWswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnNjYTFiLmFtYXpv bnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglghkgBhv1sAQIwCAYG Z4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Au c2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNj YTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADCCAQQG CisGAQQB1nkCBAIEgfUEgfIA8AB2ALvZ37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCW ZDaOHtGFAAABcJN9gA0AAAQDAEcwRQIhAPm+AWO3nSZe1A2rh6B8rYoRPpHNdTh7 /08JHc1LhWBeAiAyxQ9IlakRDabLmdfTSOPrSQ2xZmD2aEYGStf9ykD2qAB2AId1 v+dZfPiMQ5lfvfNu/1aNR1Y2/0q1YMG06v9eoIMPAAABcJN9gDMAAAQDAEcwRQIh AJBBbEKVoQ/m69YQkvg2n6qPHd+DV1yogJ09gYjY0EkgAiBzoZokl58qMygKu/g0 fFh7uwENAcwpVCjd3B3wSadcaTANBgkqhkiG9w0BAQsFAAOCAQEAkIBDHBVuoTq4 9l6s4/U2U6Jez87qjyvYOuYp68Z9uGraTGC5Vu6a6FRJV4SXDMiVhdA3gPPDitqG 4dApi9E+caGQPSlA3hgGsI6osRQMcOVPFjiDvQGWCihMszr0QvStR0t+E2B2r7ic Scg2RsiZ08Fb3kil/XuZTjEmqb6iI3Gwgd45YuJZ0l6JWxnAGLgNI4ibyDCYon5/ NEqPHrEyasaajXPapIQd2SfMybtrjN9eodgBKCQtt18GOoglX157Uyj4ZbnLrf3U Q4U6nZN/VaxZ+9GajlpotSQfKW/0EBoQgDSYjnq3fSrArw9NhxGKlfm96EXMPkiz AQoTg3YawA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlIp1wNbbCfkql84tqsrc DYDndIM5x7k0Mhb7X0xHt3/o2MYriMpoU9ck0u73ul7zAXWfVWdqbS/iEwKFQz03 HMHy+gEt4UNXtsZ7VB70+MIv+5TzlS3D4v0jeDvlF/hWQmQilTcwxChfgbzS5Nlj Wx7V/iEH9Io6AzcQKQmSZQnRfHPqbgFQ2KWAAkWVM9nV32TNH6TEL7EcUQJrnh8F zic9Yw/5YNDauvmylGlPY2VSFhRAAoDnuSpNyE6M6rsbJtK3+65IOZA4Ohl+15kN D21SqdJS2SMkUPwuIGgdDhW+clmSnVm+ASSkDidt7utt0/CuVNCx8P13WgkGctX0 xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1355442955264261347473241871600724793 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.northernlight.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18751546292754309023663530300940368582355807897740641053916722036047821016368472041590797369956842738412930505284532599761610106442441783465877362590547050615536873479132812603006089702560080254922389472075534176642363820063579480553576174655564898481702547930240456555333380330543009178682947309798355577241769484505262124937822926085501516877540092263921269036875681904158672813678525960682964594200871739924008089782939859397321695223003391246466114447792584541486098742409194089417802604097842974645596988547527436151991722167779269057341708478498951894688235305285036935101257153268070962443914998491588016338117 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d7d5cae86e55a259de38b7468a35b2a3a9b8b906 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.northernlight.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000170937d800d0000040300473045022100f9be0163b79d265ed40dab87a07cad8a113e91cd75387bff4f091dcd4b85605e022032c50f4895a9110da6cb99d7d348e3eb490db16660f66846064ad7fdca40f6a80076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000170937d8033000004030047304502210090416c4295a10fe6ebd61092f8369faa8f1ddf83575ca8809d3d8188d8d04920022073a19a24979f2a33280abbf8347c587bbb010d01cc295428dddc1df049a75c69 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 009080431c156ea13ab8f65eace3f53653a25ecfceea8f2bd83ae629ebc67db86ada4c60b956ee9ae854495784970cc89585d03780f3c38ada86e1d0298bd13e71a1903d2940de1806b08ea8b1140c70e54f163883bd01960a284cb33af442f4ad474b7e136076afb89c49c83646c899d3c15bde48a5fd7b994e3126a9bea22371b081de3962e259d25e895b19c018b80d23889bc83098a27e7f344a8f1eb1326ac69a8d73daa4841dd927ccc9bb6b8cdf5ea1d80128242db75f063a88255f5e7b5328f865b9cbadfdd443853a9d937f55ac59fbd19a8e5a68b5241f296ff4101a108034988e7ab77d2ac0af0f4d87118a95f9bde845cc3e48b3010a1383761ac0