providers.lgh.org
Issued by Amazon
About this certificate
This digital certificate with serial number 01:72:4e:6e:b3:0f:90:62:7e:24:98:e2:4b:b9:f5:58 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=providers.lgh.org
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:72:4e:6e:b3:0f:90:62:7e:24:98:e2:4b:b9:f5:58Serial Number (int): 1922740636121480104885484054690526552
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 87:d9:bb:55:26:f7:fc:8d:ed:fa:8a:6d:ae:eb:9e:38:1a:44:02:4a
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): f4:7a:52:f3:1c:33:3f:79:52:b6:ee:ed:f8:44:41:80:f7:f5:0c:56
Fingerprint (sha256): 2f:74:72:47:ca:2a:5d:fe:1d:9f:e0:5f:e8:3e:df:7f:13:f9:d7:bd:ad:bb:57:9b:ae:64:6b:cc:d6:0d:3f:c7
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate providers.lgh.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for providers.lgh.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
providers.lgh.org
lafayette.customer.kyruus.com
lafayette.customer.kyruus.com
Other certificates including the domain name lgh.org
(limited to 100 certificates)
doctors.lgh.org
ac01.lgh.org
mail.lgmc.com
expelghc1.lgh.org
mail.lgmc.com
adfs2.lgh.org
expelghc1.lgh.org
*.lgh.org
providers.lgh.org
smh-sonifi.lgh.org
*.lgh.org
mail.lgmc.com
mail.lgmc.com
*.lgh.org
smh-sonifi.lgh.org
adfs2.lgh.org
expelghc1.lgh.org
*.lgh.org
test-sonifi.lgh.org
mail.lgmc.com
view.lgh.org
adfs2.lgh.org
mail.lgh.org
expelghc1.lgh.org
view.lgh.org
ac01.lgh.org
providers.lgh.org
rsanalert.lgh.org
adfs2.lgh.org
expelghc1.lgh.org
view.lgh.org
test-sonifi.lgh.org
expelghc1.lgh.org
ac01.lgh.org
mail.lgmc.com
expelghc1.lgh.org
mail.lgmc.com
adfs2.lgh.org
expelghc1.lgh.org
*.lgh.org
providers.lgh.org
smh-sonifi.lgh.org
*.lgh.org
mail.lgmc.com
mail.lgmc.com
*.lgh.org
smh-sonifi.lgh.org
adfs2.lgh.org
expelghc1.lgh.org
*.lgh.org
test-sonifi.lgh.org
mail.lgmc.com
view.lgh.org
adfs2.lgh.org
mail.lgh.org
expelghc1.lgh.org
view.lgh.org
ac01.lgh.org
providers.lgh.org
rsanalert.lgh.org
adfs2.lgh.org
expelghc1.lgh.org
view.lgh.org
test-sonifi.lgh.org
expelghc1.lgh.org
Certificate
The complete raw certificate details for providers.lgh.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIElzCCA3+gAwIBAgIQAXJObrMPkGJ+JJjiS7n1WDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTExMDYwMDAwMDBaFw0yMDEyMDYx MjAwMDBaMBwxGjAYBgNVBAMTEXByb3ZpZGVycy5sZ2gub3JnMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnn2jwBv/I4KNhDQZhy1fCm3FyazWNO/X36Z /n1ZzfZ2oxxZHkWlsf3g1dsMIQuBr9tBVlViXLXidVX8jpnM3tkl9OEabWiF61gD 7kNuGiulc0fVrmYPCD+OO51bGzNo19ITawY5TPki96GJPOrCr0AMCrKLmuhSGT2n ZVn6p1vxr3/PVkBVDVRDNE/f/cyX5d72P/TwFVRO+dnFBdVKdy8cjhLs34ud1czh DebDKqM7if3APcBseqXSXD28psvxWUsSmIJogHInoa7COn6O0KnahKxsdFYSIatU yC1BlrvgQhe56RajrQpnrYgUuH68Wu3FpuPG5W4wdAzb6d08CQIDAQABo4IBqTCC AaUwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYEFIfZ u1Um9/yN7fqKba7rnjgaRAJKMDsGA1UdEQQ0MDKCEXByb3ZpZGVycy5sZ2gub3Jn gh1sYWZheWV0dGUuY3VzdG9tZXIua3lydXVzLmNvbTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNV HSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0G CCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYI KwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFi LmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3 DQEBCwUAA4IBAQCurfJfAdfKJwbgulPd6ZUJB6pTS/MUbyf4zgBCEZpgoVi6IxMk 6awZmEtG/1cBM3eFTcPtIbqYwLJN5WYSflGhimyNyednlCRxlyo7yVAJpdw0Zdav SMmTmzWJZah5GM2OwSxd7+YFav9x8XVO1+WHF5PgVLrJOH08fVAgjzmeujw/nkCu kDw6OJUnkPuyjr+oP8xoG6p07uGIPRFdmsxPWyJwYWb06ktAb1gQa1hAeIb/Zy7H KrydDY0+TivOwOY9pjkbpXH9EXYK/MVPn1L+kawMTjl23Kw1/MyKYy9Wo+HUa9Ao 0zT7NiieLzK6fv+ZmH4xzZiYMAoLOggeQ23b -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnn2jwBv/I4KNhDQZhy1 fCm3FyazWNO/X36Z/n1ZzfZ2oxxZHkWlsf3g1dsMIQuBr9tBVlViXLXidVX8jpnM 3tkl9OEabWiF61gD7kNuGiulc0fVrmYPCD+OO51bGzNo19ITawY5TPki96GJPOrC r0AMCrKLmuhSGT2nZVn6p1vxr3/PVkBVDVRDNE/f/cyX5d72P/TwFVRO+dnFBdVK dy8cjhLs34ud1czhDebDKqM7if3APcBseqXSXD28psvxWUsSmIJogHInoa7COn6O 0KnahKxsdFYSIatUyC1BlrvgQhe56RajrQpnrYgUuH68Wu3FpuPG5W4wdAzb6d08 CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1922740636121480104885484054690526552 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-06 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'providers.lgh.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22025607319868447669763463423263076943792441875500813298872144922906440352677387580419448512812762243565243549790058547891393403690232652277103942329693108881926391334329521406053775448116307334965700488713075413157075265515870776784861826276867525993801296983047102494365262987607925626689490702177616398002813549230830510139842512008073338029748704145673257854278422171391787043689812131057829282886157190288852097497446063223887531930254875809002241070133094722674384066020877665953378833566930260934853416606730730377799894305859032478513523106610931358650755576986904930182663933393164703860950184542464798178313 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 87d9bb5526f7fc8dedfa8a6daeeb9e381a44024a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'providers.lgh.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lafayette.customer.kyruus.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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