as3a.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0c:c9:0c:13:42:ea:e0:af:c5:d1:fd:6e:c8:a6:c9:01 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=as3a.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:c9:0c:13:42:ea:e0:af:c5:d1:fd:6e:c8:a6:c9:01Serial Number (int): 16994632532944782761773242540162992385
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 0a:5c:10:34:c6:5f:1e:93:a0:4d:56:ae:a5:12:3b:c4:cd:7d:cd:f4
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 95:55:57:73:f9:7e:d8:26:85:f7:2a:e2:c3:7b:20:37:f4:9b:8e:d8
Fingerprint (sha256): 2e:7b:67:e5:3b:a5:f1:1c:21:2a:52:69:17:84:0e:59:f3:00:56:37:f6:10:34:f9:7d:84:fd:4d:be:22:07:a1
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate as3a.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for as3a.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
as3a.com
*.as3a.com
*.as3a.com
Other certificates including the domain name as3a.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for as3a.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgIQDMkME0Lq4K/F0f1uyKbJATANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MDMyNzAwMDAwMFoXDTI1MDQyNTIzNTk1OVowEzER MA8GA1UEAxMIYXMzYS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYQXjZkwrWaIdvHVgOqhwSc6ADEkLRc5aTa/HtZm4wOuE9Cf1FN409MZtdpZ0h O00dsXK1PIu3IbDD59wnsNgBAJefs6OjbTXhB/m5CZNZbBmQjpkKXaNbx7qcOE5l ko3PmWUgqaRitlicYEVZmhXmZpirqX06/SRB7sQNro1PUDWyMeWPHbxOQJUUEItC YvFu80TwRIObHjGl7M1khSEPr6SDDXAsSc4UJcGRLceNa9RnlA2WV2eHhEuO8q1m Maom32J1VwcQ8GZieVS3R3mZROiEU0hQD0yLsWIeLvmTDqyALF2ylAAuc0gwexvU eFGVDwpqprq+ZwkZU23KpR+tAgMBAAGjggLsMIIC6DAfBgNVHSMEGDAWgBRV2Rhf 0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUClwQNMZfHpOgTVaupRI7xM19zfQw HwYDVR0RBBgwFoIIYXMzYS5jb22CCiouYXMzYS5jb20wEwYDVR0gBAwwCjAIBgZn gQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRy dXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMB Af8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgDPEVbu1S58r/OHW9lp LpvpGnFnSrAX7KwB0lt3zsw7CAAAAY5/D051AAAEAwBHMEUCIQD8XlgLko1coQvw VREVmQ1g+Q+uusC7z6qj4hRWkNArHQIgZ3Cx8h/bR7kalmhhub9go6VGxV7xFdAl 3307KY/WlnMAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY5/ D057AAAEAwBHMEUCIQDl6jY/Yrq38WRpA7h++GvKg/YDEqS0MUq/xTzs7oqV5AIg DFkMWLPkqUq37hgPAq08QoXqcBXD0Vj9Nyo/5J75fZsAdQDm0jFjQHeMwRBBBtdx uc7B0kD2loSG+7qHMh39HjeOUAAAAY5/D06YAAAEAwBGMEQCIChjebNqT10GUxul R6cwoGraAZbMUGbS6zmxrwzUinZAAiAhLnf41RYYT/I+GGNQTz+CTtSqhd8uEXM7 HG4X9L+6cjANBgkqhkiG9w0BAQsFAAOCAQEAVRCQwgI1KSihNMI9wvtVpeZzHo9u 0BcLEaMD8U6Ib375Y2tiOMcvHV2+aJ00rB6DAYdj784Md2JHzg5UZUVF26RjKqRg KzvA1FMaP0I0KFOSFHSupmyllVTvExm2MTIkuV+NyKDvU5+aFuEH9Rkvpm4oZiXU TntWyuEAwjkPE7QyGhapkQ8mPeyBclGPUCm06Uo6PFqjAI+f6DYtK8WxzmFfNmuk PxWqGhcmIU+iTae3OO8hOQ5MfLcqZcwzUxRZ1o6saDZvbfyfnNqpL0PSzREqOYH1 3YqJUczZD0fH0W5Q5cq8fOwRuHnMT2XqsH8WnOHNm1+JQwEGKKg040z9OA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2EF42ZMK1miHbx1YDqoc EnOgAxJC0XOWk2vx7WZuMDrhPQn9RTeNPTGbXaWdITtNHbFytTyLtyGww+fcJ7DY AQCXn7Ojo2014Qf5uQmTWWwZkI6ZCl2jW8e6nDhOZZKNz5llIKmkYrZYnGBFWZoV 5maYq6l9Ov0kQe7EDa6NT1A1sjHljx28TkCVFBCLQmLxbvNE8ESDmx4xpezNZIUh D6+kgw1wLEnOFCXBkS3HjWvUZ5QNlldnh4RLjvKtZjGqJt9idVcHEPBmYnlUt0d5 mUTohFNIUA9Mi7FiHi75kw6sgCxdspQALnNIMHsb1HhRlQ8Kaqa6vmcJGVNtyqUf rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16994632532944782761773242540162992385 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'as3a.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27299759353643374038244097434816662042062158934756327047785871051647672684603358998840067204612677437338894011858225504907560098681645157717285516311213409842143645202983696289855244744599796682720641020005180648645317297902357116302690613249310376573991169559937897216197563737506232639941833836121941702899818984226071999049025100768272934342909728900136620466382400149925666211881451662123478105093079147635195460074573772767627390844330928023620426519517702436516429423267993928365989072566740533263258065364766954042821643720824505381906500670744432866681881868160898576955698299151954348329316445215789735550893 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0a5c1034c65f1e93a04d56aea5123bc4cd7dcdf4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'as3a.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.as3a.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00551090c202352928a134c23dc2fb55a5e6731e8f6ed0170b11a303f14e886f7ef9636b6238c72f1d5dbe689d34ac1e83018763efce0c776247ce0e54654545dba4632aa4602b3bc0d4531a3f42342853921474aea66ca59554ef1319b6313224b95f8dc8a0ef539f9a16e107f5192fa66e286625d44e7b56cae100c2390f13b4321a16a9910f263dec8172518f5029b4e94a3a3c5aa3008f9fe8362d2bc5b1ce615f366ba43f15aa1a1726214fa24da7b738ef21390e4c7cb72a65cc33531459d68eac68366f6dfc9f9cdaa92f43d2cd112a3981f5dd8a8951ccd90f47c7d16e50e5cabc7cec11b879cc4f65eab07f169ce1cd9b5f8943010628a834e34cfd38