*.mediaportals.dev-charter.net

Issued by Amazon

About this certificate

This digital certificate with serial number 05:25:77:39:6b:e8:4d:98:54:2f:75:3c:0d:a3:26:c9 was issued on by Amazon.

With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.mediaportals.dev-charter.net

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 05:25:77:39:6b:e8:4d:98:54:2f:75:3c:0d:a3:26:c9
Serial Number (int): 6840673118834199121847348832986408649
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: e3:30:cb:aa:ca:95:c2:4e:2e:b1:81:88:05:8c:ef:2b:4d:54:92:a2
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 71:8d:87:2a:91:4b:0a:e0:81:14:04:fc:2d:79:87:f2:36:27:8e:d8
Fingerprint (sha256): 3f:19:41:db:99:ae:74:5e:11:8b:0e:81:93:46:a8:8d:a3:f7:3e:1c:c8:39:ab:dd:2f:aa:29:ec:cf:9c:1c:46

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.mediaportals.dev-charter.net

10

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.mediaportals.dev-charter.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.mediaportals.dev-charter.net
*.dev-charter.net
*.spectrumlocalnews.com
*.ny1.com
*.baynews9.com
*.mynews13.com
*.dev1-64.spectrumlocalnews.com
*.dev1-64.ny1.com
*.dev1-64.baynews9.com
*.dev1-64.mynews13.com

Other certificates including the domain name dev-charter.net

(limited to 100 certificates)
*.dev-charter.net
ip-eas-sit-east-https-cdn.dev-charter.net
ip-eas-staging-west-https-cdn.dev-charter.net
ip-eas-sit-east-https-cdn.dev-charter.net
eks-nlb-int.us-east-1.perf.tau.dev-charter.net
ip-eas-sit-tm-west-https-cdn.dev-charter.net
*.dev-charter.net
troubleshooting.dev-charter.net
stash.dev-charter.net
*.mediaportals.dev-charter.net
*.develop.dev-charter.net
logpull-perf.tau.dev-charter.net
cms.prd-aws.charter.net
mediaportals-news-64.dev-charter.net
advisor2.engprod-spectrum.net
jenkinsdocker.dev-charter.net
*.mediaportals.dev-charter.net
*.dev-charter.net
ip-eas-dev-east-https-cdn.dev-charter.net
ip-eas-lab-west-https-cdn.dev-charter.net
sdev-ns.dev-charter.net
*.dev-charter.net
*.mediaportals.dev-charter.net
ip-eas-dev-west-https-cdn.dev-charter.net
*.us-east-1.engprod.tau.dev-charter.net
jenkinsdocker.dev-charter.net
*.dev-charter.net
*.tau.dev-charter.net
ip-eas-lab-west-https-cdn.dev-charter.net
stash.dev-charter.net
*.tau.dev-charter.net
*.mediaportals.dev-charter.net
jenkins-glb.dev-charter.net
stash.dev-charter.net
*.scpcj.dev.dev-charter.net
metadata.dev-charter.net
ui-srta.vod.dev-charter.net
atvchtr.dev-charter.net
serenity.vod.dev-charter.net
*.us-east-1.perf.tau.dev-charter.net
*.us-east-1.dev3.tau.dev-charter.net
*.dev-charter.net
ip-eas-sit-tm-west-https-cdn.dev-charter.net
*.scpcj.perf.dev-charter.net
*.dev-charter.net
cms.prd-aws.spectrumbusiness.net
*.us-east-1.dev2.tau.dev-charter.net
*.mediaportals.dev-charter.net
*.scpcj.dev.dev-charter.net
stashs.dev-charter.net
cms.prd-aws.charter.net
*.mediaportals.dev-charter.net
best-specflow.best.dev-charter.net
*.dev-charter.net
ip-eas-dev-east-https-cdn.dev-charter.net
ipvs.dev-charter.net
*.us-east-1.int.tau.dev-charter.net
crowd.dev-charter.net
ip-eas-sit-east-https-cdn.dev-charter.net
nexus.mediaportals.dev-charter.net
crescendo-stacka.vod.dev-charter.net
logpull-dev3.tau.dev-charter.net
*.dev-charter.net
ip-eas-dev-west-https-cdn.dev-charter.net
engprod-spectrum.net
search.dev-charter.net
ip-eas-staging-east-https-cdn.dev-charter.net
serenity.vod.dev-charter.net
ip-eas-staging-west-https-cdn.dev-charter.net
*.dev-charter.net
*.dev-charter.net
nexus.global.dev-charter.net
*.scpscl.dev-charter.net
ip-eas-sit-west-https-cdn.dev-charter.net
*.figaro.dev-charter.net
advisor2.engprod-spectrum.net
*.us-east-1.dev3.tau.dev-charter.net
*.mediaportals.dev-charter.net
ip-eas-autotest-https-cdn.dev-charter.net
stashs.dev-charter.net
ip-eas-staging-east-https-cdn.dev-charter.net
*.tau.dev-charter.net
*.mediaportals.dev-charter.net
*.us-east-1.perf.tau.dev-charter.net
jenkinsdocker-glb.dev-charter.net
troubleshooting.engprod-spectrum.net
*.us-east-1.dev.tau.dev-charter.net
ip-eas-sit-west-https-cdn.dev-charter.net
stashs.dev-charter.net
*.mediaportals.dev-charter.net
*.us-east-1.sbox1.tau.dev-charter.net
ip-eas-autotest-https-cdn.dev-charter.net
lantern.dev-charter.net
*.siadev.dev-charter.net
*.mediaportals.dev-charter.net
stash.dev-charter.net
dbm-translate.spectrumaws.dev-charter.net
*.us-east-1.dev2.tau.dev-charter.net
*.mediaportals.dev-charter.net
*.us-west-2.sbox1.tau.dev-charter.net

Certificate

The complete raw certificate details for *.mediaportals.dev-charter.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpXhSczJqx6ekGvVjEoE
T+3aF4PiHOTM65e0dmV8ZpLJ2+u/MzeynBkTPra6Llp1DAD9dKaqz1TsP53l/ewF
LWjq5pXUdgRn1d4aVnOLGuxWhFOH61jOdAhRwhBbwSG81iW8ITTK2BB6lb/62my5
AsD6T3uyK/ZMJZb9lXkQ77zh6YH6qz4fyzZUYl2UNY1joeffDvA4fMzDjIdQd70/
hx3yRSeo0mRwffsg1KhfMeK+/mrN5yFw00TyGIMdabmsJ0z3ZG3Zd5L8+QJtHLEK
Bhlj9yMupLJLOJ3k0HJF6LXicaRqss+UZu416+braWBTNbMwkiLvDUK6Vr9Z1erg
7QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 6840673118834199121847348832986408649
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-26 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-26 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.mediaportals.dev-charter.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21534420442791908743202517392475433616435167761620006805258061643449634560848113884678495129491447692126649662493163494862469637939669750378099387984152778411737372805830412309016143236478630384621026451592059090133684980205950049857438399009612147718624559995456289770415895631741641379716606989870215693161257733902075331727464205851981773284709337498077848033819196975433168633318083280862665934278283732500563295626380604524873497104632183280546556625586475988834265566625679881285022113966643749518147938758274141949426374853512138755690758437509537633767057655986834811436131195764002721711446205482426620895469
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e330cbaaca95c24e2eb18188058cef2b4d5492a2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (222 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mediaportals.dev-charter.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev-charter.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.spectrumlocalnews.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ny1.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.baynews9.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mynews13.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev1-64.spectrumlocalnews.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev1-64.ny1.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev1-64.baynews9.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dev1-64.mynews13.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		006e5a33e25b8339e7ef155ab8550b21b9df136803314fc9d1c58b921f90be7e990ce487e021900a32a515d63c3a5c30641195a40a9e65ee961c3e3bb691330e04020a88b6c272ec14b9d4a18327229255d01050be0f02143054e3faec18bb8220171d61b5ee78b6d08a04096825d97a77ecc0e27e44f207499f844ba803b8e7b19463389e2a6d7d2fff6a1b6231d8b7d248b2212338082615c2e33897520822c02196cef16a438d7c792c6b555b2e8965b5de0031d866fa1c000b8ff39c9e0b43441cd85cc0f5267516cb6170ae17fcd48c542b8d1d1ccdf46b300158785497741389ba9fb08114f100ad301c6181ebcb54e4bed01cb0b52eb9ee8ae7cf9e176d