flow.my.cityu.edu

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 0e:2d:c7:fa:1c:d5:04:29:bc:7a:a6:ac:78:f9:19:2a was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=flow.my.cityu.edu

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0e:2d:c7:fa:1c:d5:04:29:bc:7a:a6:ac:78:f9:19:2a
Serial Number (int): 18846901315097745846375302392895314218
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: a5:90:3a:02:37:bb:3d:53:8a:a9:08:68:6e:17:9a:65:8a:97:9f:3b
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 49:6e:c9:74:06:3a:7b:47:a0:6b:42:a9:5c:ce:53:73:67:d9:3c:1d
Fingerprint (sha256): 2d:f1:64:5f:d6:4f:fa:b5:45:9b:25:ae:a6:8b:4e:9b:58:d9:ea:b2:a0:e3:44:5d:8c:6c:69:23:44:d8:44:a6

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate flow.my.cityu.edu

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for flow.my.cityu.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

flow.my.cityu.edu
flow.cityu.pathify.com

Other certificates including the domain name cityu.edu

(limited to 100 certificates)
info.cityu.edu
cc19.status.jasper.com
www.cityu.edu
amer-san2.blackboard.com
us-east-1-san4.blackboard.com
cc19.status.jasper.com
amer-san2.blackboard.com
my.cityu.edu
cc19.status.jasper.com
amer-san2.blackboard.com
amer-san2.blackboard.com
my.cityu.edu
my.cityu.edu
*.cityu.edu
amer-san2.blackboard.com
flow.my.cityu.edu
my2.cityu.edu
my.cityu.edu
admissions.cityu.edu
securelogin.cityu.edu
mycourses.cityu.edu
future.cityu.edu
us-east-1-san4.blackboard.com
amer-san2.blackboard.com
*.cityu.edu
cityu.edu
my2.cityu.edu
amer-san2.blackboard.com
us-east-1-san4.blackboard.com
us-east-1-san4.blackboard.com
my.cityu.edu
cityu.edu
my.cityu.edu
*.proxy.cityu.edu
my.cityu.edu
sanford.cityu.edu
amer-san2.blackboard.com
admissions.cityu.edu
info.cityu.edu
*.cityu.edu
www.cityu.edu
sanford.cityu.edu
www.cityu.edu
cc19.status.jasper.com
cityu.edu
amer-san2.blackboard.com
www.cityu.edu
videos.cityu.edu
cityu.edu
flow.my.cityu.edu
my2.cityu.edu
us-east-1-san4.blackboard.com
info.cityu.edu
cityu.edu
cc19.status.jasper.com
my2.cityu.edu
apps.cityu.edu
my.cityu.edu
cc19.status.jasper.com
www.cityu.edu
cc19.status.jasper.com
techsupport.cityu.edu
my2.cityu.edu
cc19.status.jasper.com
cc19.status.jasper.com
amer-san2.blackboard.com
courses.cityu.edu
sanford.cityu.edu
admissions.cityu.edu
my.cityu.edu
cc19.status.jasper.com
portalapps.cityu.edu
cityu.edu
info-admin.cityu.edu
*.cityu.edu
*.cityu.edu
kaltura-d2l-prod.cityu.edu
amer-san2.blackboard.com
wireless.cityu.edu
cityu.edu
amer-san2.blackboard.com
servicedesk.oq8.om
courses.cityu.edu
cc19.status.jasper.com
cityu.edu
cc19.status.jasper.com
*.Proxy.cityu.edu
my.cityu.edu
cityu.edu
my2.cityu.edu
techsupport.cityu.edu
sanford.cityu.edu
techsupport.cityu.edu
cc19.status.jasper.com
library.cityu.edu
www.cityu.edu
us-east-1-san4.blackboard.com
tukvpn.cityu.edu
amer-san2.blackboard.com
library.cityu.edu

Certificate

The complete raw certificate details for flow.my.cityu.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPLLDMuzURgjjQxClp1u
BfDVcGY/phGfLUnnJA86GMbTOdz3PlYJzKK9LtwkFSSpm0cuW1TTC0qqfpedlYJE
TgE2c7GkpVOP38zQRDaGDAx3IYUrWBEe+YcxNQ2FljqxOG+vFxijXv2eJ7hoHffl
lhx2D86Iiy75htD449ZZ+8wyJW5VvGRqdGa04aJcHovNCo2IBmetM/cg4TXDxIi3
q/1cD9DRaLPKThKoF54PimG0hpqYKg8jiAySTw3IJ+J1Rw/go3S8r1eJiIwxs0cG
VjzmwBl1zj7K8SB2qITrwnaSH4uGaxGqpEeMR/ZGrhIAEJEfTI22TDc/nZl2KAmE
jQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18846901315097745846375302392895314218
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-05 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-03 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'flow.my.cityu.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23347573885162297370704768943433206880747536266278720034624538536726432980101716619615315528116014569126223037525306663171314838054591348539086401193334925056659580751094415696058700893146364722090255844486987860147476693870755542254653604145315092797955201467002913327183336970575412908149248773923038444921666625290383105806380101798090938591097594081472661353462422428500861158768842035153363993427389696818542863588651846590888555776309783267837796626563711356606094877176991604237772540587529710209784235551113575477708066421288137650707550109665747448503920724986786138749365863067579451481832899892090885473421
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a5903a0237bb3d538aa908686e179a658a979f3b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flow.my.cityu.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flow.cityu.pathify.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		003385c4eea47521c128c89dea08a86aacc4d7d7bcfb155f4c1f93ea91e0370108d537ffd154359c70ffe34c0482dec41b80860e0c923cff262521140a30398e8ba69c450116fb2f6b8222b544450e84a455c5bf5e21acd7c540d092f2771f7382437c71e31c19d6b2ae45f91a6595ea58146bf80201c089a1be5962207814d6ac18df85afd0b4eb5b085b5011b37e6f2d4b3474e0c1c65d5612cf17ae22f5414c68d949bdf04a32736b4b95947252f1f8948be0e351bb73123dee4772b42988cbc966ea417de6df0cc3897d027c684c9446f4101c5fd44584ed7249149498980c28deeac2069aca2c2ff46675f296fc53b01217207ddb0a567bd96775bffbc628