DV SSL/TLS Certificate for auth.demo.experience.sandbox.dev.saasus.io

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the auth.demo.experience.sandbox.dev.saasus.io DV SSL/TLS Certificate

This certificate with serial number 09:b3:24:97:a5:9a:1d:0e:fd:be:d7:43:ab:39:4e:c3 for auth.demo.experience.sandbox.dev.saasus.io was issued on by Amazon.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for auth.demo.experience.sandbox.dev.saasus.io provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 09:b3:24:97:a5:9a:1d:0e:fd:be:d7:43:ab:39:4e:c3
Serial Number (int): 12893215281191586537600758818581073603
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 6a:5c:e2:8a:a6:e7:50:27:49:26:c5:c0:7f:67:f8:aa:72:5e:bd:95
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): a6:37:0d:9d:bf:36:54:ca:81:89:db:ce:e7:48:6b:7e:01:1f:a5:21
Fingerprint (SHA-256): cf:65:13:07:55:36:9d:73:5b:a3:3d:2b:30:46:dd:c5:98:23:e6:31:83:fa:c5:c9:0f:6f:7a:c9:4f:8a:4c:ce

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate auth.demo.experience.sandbox.dev.saasus.io
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for auth.demo.experience.sandbox.dev.saasus.io

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

auth.demo.experience.sandbox.dev.saasus.io

X.509 Certificate

The complete raw X.509 certificate details for auth.demo.experience.sandbox.dev.saasus.io in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8qit+Zpr35cvUQ77vje
DzeoPdS6b6nar1RqVAm2BV5DLkKjM8DPyUbJ3KSsTypIcp3c8ET50tUDX7+ncIRW
8LuQOIOOWEOj2R9KU3qeJC4kaGNXS533HsD9Qteq3xjOxlqZlDOGYDYyUu5KkWhu
1dtDhnlDhcGLJSAsyA/eW28Wn/VbYnsRjfNXvxPBOGxxdjY50vJfGhNEP/Y6Nfnt
m010QCZQBoxqsSELKh8V6Vu1ZKc9LEKAlKsiueBPCzN1R11Uq1MjSeSCGVcRQQb1
OqyA6kAL6YPII1Ku4ksZYpF2Y5QLZPVcVJvorMjuxCqx099EvJWqlaOwSV5v4ljB
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 12893215281191586537600758818581073603
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-12-13 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'auth.demo.experience.sandbox.dev.saasus.io'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25726299255831822668429087044118714672818152130406187413117039715294732268717404847062161338379466715628624954985394466721580246340456283293990977821007857841726213170347490540426936011606170800372373627228276379390994065413824673662061198952479329768865451071168780778629792214880834029244345997895461732327483690978553955782185827259803952388328084719597670836205889668760549038690427650401080538848981702205985971585983692190388967428877716496377171522283405063908579069433840380189217983593247321785281523562719833758224759207856838501171564918584820791539219165828298719340206847225100299929861426727038760829287
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6a5ce28aa6e750274926c5c07f67f8aa725ebd95
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auth.demo.experience.sandbox.dev.saasus.io'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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