*.yomagroup.io

Issued by Amazon

About this certificate

This digital certificate with serial number 05:98:63:7c:94:e6:7f:0e:58:e3:a3:e8:30:fa:61:a7 was issued on by Amazon.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.yomagroup.io

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 05:98:63:7c:94:e6:7f:0e:58:e3:a3:e8:30:fa:61:a7
Serial Number (int): 7437386930347220845478822791796646311
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 16:64:f3:86:ef:e0:c3:2d:4b:70:fc:e0:85:b8:a8:09:64:72:1a:05
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 03:89:b5:ca:64:3f:3b:32:28:ba:d5:12:52:85:f1:8b:06:0e:e5:0c
Fingerprint (sha256): 3f:53:f8:a2:f7:9d:40:0f:ac:f1:5d:35:b8:79:40:0f:23:9c:18:ab:ca:eb:3d:fc:51:5e:08:0d:3d:bf:1e:52

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.yomagroup.io

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.yomagroup.io

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.yomagroup.io
*.harpy.yomagroup.io
*.phoenix.yomagroup.io

Other certificates including the domain name yomagroup.io

(limited to 100 certificates)
*.harpy.yomagroup.io
servicedesk.massageenvy.com
itsd.taqa.com.eg
servicedesk.massageenvy.com
servicedesk.newstory.com
servicedesk.massageenvy.com
servicedesk.massageenvy.com
yomagroup.io
helpdesk.sam-dinesh.com
ictsupport.igad.int
helpdesk.ineosphenol.net
*.yomagroup.io
travel.yomagroup.io
servicedesk.tandemstudio.cloud
ajusdsupport.ajusd.org
servicedesk.massageenvy.com
servicedesk.massageenvy.com
servicedesk.massageenvy.com
kospaerp.yomagroup.io
servicedesk.massageenvy.com
servicedesk.massageenvy.com
ithelpdesk.cwc.com
itservices.luminuseducation.com
helpdesk.mercurymed.com
henleyhelp.vioc.net
servicedesk.massageenvy.com
helpdesk.ineosphenol.net
henleyhelp.vioc.net
hdesk.amfarconsulting.com
servicedesk.massageenvy.com
helpdesk.ineosphenol.net
servicedesk.massageenvy.com
support.edita.com.eg
mesa.aylsoluciones.pw
helpdesk.naa.edu
cdn.yomastrategic.net
helpdesk.countrypure.com
servicedesk.buhaleeba.ae
servicedesk.buhaleeba.ae
helpdesk.northwestradiology.com
servicedesk.massageenvy.com
servicedesk.massageenvy.com
servicedesk.mazakcorp.com
servicedesk.massageenvy.com
helpdesk.countrypure.com
servicedesk.massageenvy.com
mesa.aylsoluciones.pw
travel.yomagroup.io
servicedesk.massageenvy.com
helpdesk.ineosphenol.net
helpdesk.ineosphenol.net
itsd.taqa.com.eg
memoriesgroup.yomagroup.io
servicedesk.massageenvy.com
kospaerp.yomagroup.io
bb.yomagroup.io
helpdesk.ineosphenol.net
elearning.yomagroup.io
helpdesk.ineosphenol.net
servicedesk.massageenvy.com
help.gmfus.org
servicedesk.massageenvy.com
*.yomagroup.io
servicedesk.massageenvy.com
servicedesk.stjulians.com
servicedesk.newstory.com
elearning.yomagroup.io
leaservicedesk.lea.co.bw
cdn.yomastrategic.net
helpdesk.yomagroup.io
support.stoh.com
ithelpdesk.renaissanceservices.com
helpdesk.sgmc.org
solution.consultingnetwork.com
servicedesk.massageenvy.com
helpdesk.plastipak.eu
itservice.fanucindia.com
helpdesk.ineosphenol.net
helpdesk.countrypure.com
itsm.inventiahealthcare.com
admin.clus.harpy.yomagroup.io
servicedesk.massageenvy.com
servicedesk.massageenvy.com
recrm.yomagroup.io
bb.yomagroup.io
admin.clus.harpy.yomagroup.io
ithelpdesk.cwc.com
servicedesk.massageenvy.com
help.sentry-equip.com
servicedesk.massageenvy.com
networkuptime.yomagroup.io
helpdesk.countrypure.com
sdesk.zaotechsystems.com
helpdesk.countrypure.com
servicedesk.massageenvy.com
memoriesphotos.yomagroup.io
helpdesk.floridadistillers.com
pplhelpdesk.provlib.org
support.atrioncomm.com
servicedesk.massageenvy.com

Certificate

The complete raw certificate details for *.yomagroup.io in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9g/H1J/eVwOCm6itAh5
1b8dHccZTH36w1zWKvwOcgHOuZ3NIeTMf3ispC7qv0CgUda6AjNRuWxJe0kNqpgo
iQ+PE27pWvHdzafGZ7yHhhLW5Cd036u0vmVJ5sZs0dfnpsJe2zY/wh2Dhp/RvG2Q
cCUAVtVsNRrgRCZ2GEdY9eGH1VptSA9adiwmjrbDEtNFYNjOiIhORbTNhjt4s/z5
2W0PGLuHACHMGkKaF6JzfcKsF0WNHZr4yTwG5yDHNIjv/uM9vXFKRLEJZugcDKiP
OJP6Y1e7rnfsls9gPh32mWYrV+J0R68o9erpCcuBvWjfDJX7BkHFmSKIM/nO0fBo
nwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7437386930347220845478822791796646311
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-28 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-11-28 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.yomagroup.io'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22703291747771492385340517181311035691363771970747642848610683145059975488564909288845659048980936356837279305181398819590687842335726197981376103782894835138097147137177103260546534802617478399838627298933221570326801461238911319227869022312400580806433486798989959946711160170241853428961260520899385703618033050079050457902225040218741348978058633363424118313321797771750726904857285856172234473604350011571647777976802700536300134883102912973674066198863449636474267647769109891840095365277789160828044217166690606566304347508707804940714631699938609659518937667732759934053655878764348949936694418823550562494623
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1664f386efe0c32d4b70fce085b8a80964721a05
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.yomagroup.io'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.harpy.yomagroup.io'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.phoenix.yomagroup.io'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016e0fb916fc0000040300473045022042472d80f4a4ce02202fc767569f78314f9c60993c6baa4ef3d400652bdda277022100a508b110d32036db0b59f3d1ed3a5634290156f81eee2b8e1da1462dd077a0f50076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016e0fb91763000004030047304502200b6137fb253921485b281cebfeb48dbc54b0a742da827bf4cc725e23914956e9022100ebdf76f28ba621f188382a5ab5310ce76eac897bfca7203e015932338c81fb1a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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