argoworkflows-us-west-2.platform-prod.system1.company

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 08:6c:9d:05:eb:3e:5f:a8:16:ee:d7:c1:29:89:52:03 was issued on by Amazon.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=argoworkflows-us-west-2.platform-prod.system1.company

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 08:6c:9d:05:eb:3e:5f:a8:16:ee:d7:c1:29:89:52:03
Serial Number (int): 11197776834254056685043568268542562819
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 96:9d:33:5b:c8:20:65:10:cf:31:9c:47:2f:88:c4:b2:72:39:b6:c7
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 87:51:16:97:f7:ef:4f:2b:77:6f:44:80:ec:f8:1c:b0:26:c1:38:0b
Fingerprint (sha256): 45:85:2b:88:24:0e:b1:c4:f3:35:99:1c:0a:e5:7d:83:51:37:54:3c:1c:21:aa:98:3e:6d:41:52:34:ed:63:27

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate argoworkflows-us-west-2.platform-prod.system1.company

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for argoworkflows-us-west-2.platform-prod.system1.company

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

argoworkflows-us-west-2.platform-prod.system1.company

Other certificates including the domain name system1.company

(limited to 100 certificates)
stage.play.howstuffworks.com
jenkins-stage-jaimguer-us-west-2.system1.company
system1.company
stage.play.howstuffworks.com
system1.company
s1-sp.com
stage.play.howstuffworks.com
s1-sp.com
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
*.howstuffworks.com
stage.howstuffworks.com
*.howstuffworks.com
howstuffworks.com
argocd-us-west-2.k8s-sandbox-stage.system1.company
s1-sp.com
grafana-us-west-2.k8s-sandbox-stage.system1.company
pubwp-origin-prod.k.system1.company
s1-sp.com
prometheus-us-west-2.k8s-sandbox-stage.system1.company
*.data-science-prod.system1.company
report-api-stage-cert-us-west-2.system1.company
atlantis.system1.company
system1.company
system1.company
pubwp-admin-prod.k.system1.company
makesparkv2-stage-us-west-2.system1.company
report-api-prod-us-west-2.system1.company
howstuffworks.com
pubwp-origin-stage-terry1.k.system1.company
howstuffworks.com
atlantis.system1.company
system1.company
howstuffworks.com
argocd-us-west-2.platform-stage.system1.company
argoworkflows-eu-west-1.platform-prod.system1.company
grafana-us-west-2.k8s-sandbox-stage.system1.company
s1-sp.com
stage.play.howstuffworks.com
s1-sp.com
*.play.howstuffworks.com
argoworkflows-us-west-2.k8s-sandbox-stage.system1.company
argocd-eu-west-1.platform-prod.system1.company
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
argocd-us-west-2.k8s-sandbox-stage.system1.company
system1.company
*.howstuffworks.com
argocd-us-west-2.k8s-sandbox-stage.system1.company
argoworkflows-us-west-2.k8s-sandbox-stage.system1.company
makesparkv2-stage-us-west-2.system1.company
system1.company
argoworkflows-us-west-2.platform-prod.system1.company
argocd-us-east-1.platform-prod.system1.company
s1-sp.com
s1-sp.com
argoworkflows-us-west-2.k8s-sandbox-stage.system1.company
howstuffworks.com
system1.company
platform-api-us-west-2.platform-stage.system1.company
argocd-us-west-2.k8s-sandbox-stage.system1.company
*.howstuffworks.com
s1-sp.com
*.howstuffworks.com
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
openmail.com
report-api-stage-us-west-2.system1.company
prometheus-us-west-2.k8s-sandbox-stage.system1.company
s1-sp.com
search-us-east-1.platform-prod.system1.company
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
argocd-us-west-2.k8s-sandbox-stage.system1.company
argocd-eu-west-1.platform-prod.system1.company
layout-makespark-stage.system1.company
prometheus-us-west-2.k8s-sandbox-stage.system1.company
grafana-us-west-2.k8s-sandbox-stage.system1.company
atlantis.system1.company
pubwp-admin-stage.k.system1.company
prometheus-us-west-2.k8s-sandbox-stage.system1.company
s1-sp.com
system1.company
argoworkflows-us-west-2.k8s-sandbox-stage.system1.company
alfred-prod-us-west-2.system1.company
system1.company
system1.company
makesparkv2-prod-us-west-2.system1.company
prometheus-us-west-2.k8s-sandbox-stage.system1.company
howstuffworks.com
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
jenkins-stage-us-west-2.srpc-s.system1.company
stage.howstuffworks.com
makesparkv2-canary-us-west-2.system1.company
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
alertmanager-us-west-2.k8s-sandbox-stage.system1.company
prometheus-us-west-2.k8s-sandbox-stage.system1.company
platform-api-us-west-2.platform-prod.system1.company
atlantis.system1.company
argocd-us-west-2.k8s-sandbox-stage.system1.company
makesparkv2-canary-us-west-2.system1.company
*.data-science-prod.system1.company
grafana-us-west-2.k8s-sandbox-stage.system1.company
argoworkflows-us-west-2.k8s-sandbox-stage.system1.company

Certificate

The complete raw certificate details for argoworkflows-us-west-2.platform-prod.system1.company in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIQxQ27z0J/znSEdudou
VXKi9c8jaM9OLr/WG5YPba6vVGadcC+bUFU8TUMJQ9zgNmHKlfKaJIoJZTFRmZuB
igp0k+DiPaDH0jXyWGhJdNcZKGw7lPszd+/TQE1B1D8mQLIiirIvizgveCYcD6XT
1XHDLe90DeSGFmyLtlpJ5+2LUzZx0KF/DYRYzRoYcJ5ZrDFwlPa/C6NO5Eb47qnO
kK/oqdETfe60cFV1YeEyQly13VSfkxcOgF7LvlXH36qNwGiVDY+hSAPyWFmvh0YG
IxuwUZYlf2O7gvdQu4355K+NJ4kaTNoy+uApoge8WHlr2qs43nAazt1PEF3zXhKB
HQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 11197776834254056685043568268542562819
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-23 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-22 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'argoworkflows-us-west-2.platform-prod.system1.company'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20768268533766639100663627718070641757474758248416247283579921734750509926801809066882204974933601252623245804520825476073103311092439784865007780204127315389918860843512778854472043275090355047858023253418697086448770320751238067775227470836785870814815660931887893998022935043147751046155813578477046222227922698527764832049578214602950433931604568790392749772395513140392230743289563668403999617064578885862593334325697547124511517344059488141250138524985534219632972330805629316382857146174163272709963834098280770474548341845396144669109385288022832445404361544409767430250406474169697785590508692450868978680093
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							969d335bc8206510cf319c472f88c4b27239b6c7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'argoworkflows-us-west-2.platform-prod.system1.company'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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