DV SSL/TLS Certificate for flc.dcs.eol.mass.gov

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the flc.dcs.eol.mass.gov DV SSL/TLS Certificate

This certificate with serial number 0b:7f:c0:42:4f:b5:6d:44:ea:41:dd:a2:f5:93:a4:2f for flc.dcs.eol.mass.gov was issued on by Amazon.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for flc.dcs.eol.mass.gov provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 0b:7f:c0:42:4f:b5:6d:44:ea:41:dd:a2:f5:93:a4:2f
Serial Number (int): 15284829131039272131374684426835567663
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 55:58:62:de:25:80:f4:df:20:34:95:ce:3f:c9:57:79:f4:d0:91:48
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): fa:18:3b:30:0b:5a:37:73:2f:72:fa:38:13:72:0c:bc:dc:ee:14:37
Fingerprint (SHA-256): 74:50:b3:1c:93:5b:9b:53:77:44:05:66:18:20:12:0e:56:d3:12:4b:a6:46:9b:53:1e:0b:6f:bb:18:fd:46:18

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate flc.dcs.eol.mass.gov
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for flc.dcs.eol.mass.gov

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

flc.dcs.eol.mass.gov

X.509 Certificate

The complete raw X.509 certificate details for flc.dcs.eol.mass.gov in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF1DCCBLygAwIBAgIQC3/AQk+1bUTqQd2i9ZOkLzANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAzMB4XDTI1MDYxMDAwMDAwMFoXDTI2MDcwODIzNTk1OVowHzEd
MBsGA1UEAxMUZmxjLmRjcy5lb2wubWFzcy5nb3YwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQDEmrc8zW+MP0jgs964sQalpDsYTWtRwTexicreF7XXKPj0
4LoosAahQYkjpKVDfruiwTdcYTuu0pmxlLJbrxOAdY3kkd7417flX9t5BgepDsKR
2KTboiK4fMf8TFD5CagHaad2xW580bX/rGfA4EHHPgepwXs/gUsUZ3aeXcXOLXQW
5IX17ubmDIj/5CASLUCtiq+NNqWVveDjzzFJty6Lfe8OEx6uUPaDtNbB+Z2Ov5mY
vPe29RRVq4h7v4TufWIQrMqRJ+54DV9NE11xAqI3smuVvkZwaQ+lbWsgJCFndiQ4
jwBaIOZCiXxKUvt5uT3QU45VhmJ6YwOpc5GEQjotAgMBAAGjggLtMIIC6TAfBgNV
HSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUVVhi3iWA9N8g
NJXOP8lXefTQkUgwHwYDVR0RBBgwFoIUZmxjLmRjcy5lb2wubWFzcy5nb3YwEwYD
VR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG
AQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIy
bTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0G
CCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYI
KwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAz
LmNlcjAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgDX
bX0Q0af1d8LH6V/XAL/5gskzWmXh0LMBcxfAyMVpdwAAAZdaHi5aAAAEAwBHMEUC
IQDcmTTdxrx1P84nQEE/5yDlewordVKuzST9xFvK5wvj6gIgU/P/5+Hz0ck+mMa3
n9P82jIfhiMqDSHcfzuFGgAAxM0AdgDCMX5XRRmjRe5/ON6ykEHrx8IhWiK/f9W1
rXaa2Q5SzQAAAZdaHi6TAAAEAwBHMEUCIQCMjhgxSN0SDn4M/HebStsptyRW/G2c
GbsDZdlpdHjzyQIgCBEv4YsK0+BD9MGMUoGlr23+Lq2WiIAbM3WY12Ba4ycAdgCU
TkOH+uzB74HzGSQmqBhlAcfTXzgCAT9yZ31VNy4Z2AAAAZdaHi6oAAAEAwBHMEUC
IEioVGtxvM97U9tBbeaT1j1C9/sgairrDB/5bc7/Kyz9AiEA7GwpZNFeBmdOIti8
pSH2lC1m8FFiyJRYcO4MCxAiABMwDQYJKoZIhvcNAQELBQADggEBAC6n+ZbZs7Lp
IXcu1ggoM0o1ztY0ZfVKNlswcY/5Eazafhm4FjA83Zb2QKv9DFQSTrVB5SziGAo0
D05DJvSfYvrwjjlpepx0Salu/D2YaWr+P92qaoNGWZDwJLfr03rnLdXahoLk0Ehy
Us5Ow7UfjyCv/EtQvEiZKpVYHx+NFVHXhzcnWYf5rO4C8oQjs3IKFnKS/bnmV+If
YiyYcNcQRRXaU5Jl0Re7OCCkx2mPUrTRtSirALSiTFl0HGVrUz8Ip4BvFLjY4S9X
i6ZDq+JciLgZTxOz74ulAva4xyabVda/gzZfTroPK3n0TTneP/MBhF7mXqFNAVGE
Z/D6miKWZfc=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJq3PM1vjD9I4LPeuLEG
paQ7GE1rUcE3sYnK3he11yj49OC6KLAGoUGJI6SlQ367osE3XGE7rtKZsZSyW68T
gHWN5JHe+Ne35V/beQYHqQ7Ckdik26IiuHzH/ExQ+QmoB2mndsVufNG1/6xnwOBB
xz4HqcF7P4FLFGd2nl3Fzi10FuSF9e7m5gyI/+QgEi1ArYqvjTallb3g488xSbcu
i33vDhMerlD2g7TWwfmdjr+ZmLz3tvUUVauIe7+E7n1iEKzKkSfueA1fTRNdcQKi
N7Jrlb5GcGkPpW1rICQhZ3YkOI8AWiDmQol8SlL7ebk90FOOVYZiemMDqXORhEI6
LQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15284829131039272131374684426835567663
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-10 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-07-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'flc.dcs.eol.mass.gov'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24819000963771267604469904106860017549269928157734703633765884407673565962353200985388057323808783355460544681579009376057327087727812888920747629185837341635160087686104435499547064834388603266008498693838636415310763778360778861755044070280433797598634992255211319416410751171937912123288226271960528483630152066084663879251339134669147076196508970652054457420197284232188301688411592818882593189839851583246498989276763559726334377278973452523182066301956325362026407941563097710441198435843965616662229078745404812074889216785764050264761145087449686626427563320348373113533868932516546911967935991306650401258029
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							555862de2580f4df203495ce3fc95779f4d09148
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flc.dcs.eol.mass.gov'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							0168007600d76d7d10d1a7f577c2c7e95fd700bff982c9335a65e1d0b3017317c0c8c56977000001975a1e2e5a0000040300473045022100dc9934ddc6bc753fce2740413fe720e57b0a2b7552aecd24fdc45bcae70be3ea022053f3ffe7e1f3d1c93e98c6b79fd3fcda321f86232a0d21dc7f3b851a0000c4cd007600c2317e574519a345ee7f38deb29041ebc7c2215a22bf7fd5b5ad769ad90e52cd000001975a1e2e9300000403004730450221008c8e183148dd120e7e0cfc779b4adb29b72456fc6d9c19bb0365d9697478f3c9022008112fe18b0ad3e043f4c18c5281a5af6dfe2ead9688801b337598d7605ae327007600944e4387faecc1ef81f3192426a8186501c7d35f3802013f72677d55372e19d8000001975a1e2ea80000040300473045022048a8546b71bccf7b53db416de693d63d42f7fb206a2aeb0c1ff96dceff2b2cfd022100ec6c2964d15e06674e22d8bca521f6942d66f05162c8945870ee0c0b10220013
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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