liberation.api.staging.cloud.ger.systems

Issued by Amazon

About this certificate

This digital certificate with serial number 01:47:8a:a8:b9:1b:c0:62:34:e5:49:7e:45:b0:7c:1a was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=liberation.api.staging.cloud.ger.systems

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 01:47:8a:a8:b9:1b:c0:62:34:e5:49:7e:45:b0:7c:1a
Serial Number (int): 1700693412885771281492289099257642010
Serial Number lenght: 121 bits, 16 octets

SubjectKeyId: a4:24:e7:ce:25:73:33:85:13:4d:21:fc:37:e9:b4:7e:a6:3b:82:fd
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): b9:73:f7:21:3f:44:da:63:37:93:21:05:77:0c:88:0d:58:68:ca:68
Fingerprint (sha256): 47:0b:6a:80:24:2b:4e:3f:31:7f:2f:42:0f:6c:5a:ce:0d:43:37:ca:10:d1:50:ff:28:6d:16:16:f4:f4:0b:72

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate liberation.api.staging.cloud.ger.systems

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for liberation.api.staging.cloud.ger.systems

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

liberation.api.staging.cloud.ger.systems

Other certificates including the domain name ger.systems

(limited to 100 certificates)
communaute.angry-pangolin.cloud.ger.systems
lexpress.fr.xiti-https.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
front.staging.liberation.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.cloud.ger.systems
demo.ch.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.lexpress.fr
*.cloud.ger.systems
liberation.api.staging.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
api.lexpress.fr.euro2016.cloud.ger.systems
api-live.cloud.ger.systems
demo.ch.cloud.ger.systems
communaute.utf-8.cloud.ger.systems
api-live.cloud.ger.systems
communaute.angry-pangolin.cloud.ger.systems
registry.tools.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
registry.tools.cloud.ger.systems
moncompte.lexpress.fr
*.cloud.ger.systems
communaute.perf.cloud.ger.systems
api-live.cloud.ger.systems
*.cloud.ger.systems
communaute.resultats-examens.cloud.ger.systems
registry.tools.cloud.ger.systems
registry.tools.cloud.ger.systems
*.lexpress.fr
static.cloud.ger.systems
static.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
*.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
demo.ch.cloud.ger.systems
moncompte.lexpress.fr

Certificate

The complete raw certificate details for liberation.api.staging.cloud.ger.systems in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+PE4+tnxajOaNGeow0B
2CTFOtUG3rZ7VBWWEGyhbw3udp9VL1VPaP3miFZn3s57IxHmrblJ6q2y6pHloB2q
bCtR5ToKbgceM/r3yMPZOwumA2LIfHhZ7zF3jClBn2o5b+zNaRndfTQprf7QGmcK
g0sK39I5U40Nd3gVudVxyKolU2zmYvuDnfpVWsNsaqeT7HocVvJM5jRkFryIG79F
fXm+KSe6RFKSPIFiBW9nkGr1VNvqpHjauZTILxpLXsS3Yx1ma2mTT9Acguft7wal
yB54JQSV+0eF+gXDGFGu7jY9vIzCjv0SC8Pi9FP1V9UDC/V7vpBrCBpVUyI/otEd
UQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 1700693412885771281492289099257642010
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-04 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-04 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'liberation.api.staging.cloud.ger.systems'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21194114060027606130811941061732666676401914128889044487909896817709025601074423624230839979496729162592928692791089528694174217072432517817070480843480871973875804542299709343694915228078610791974670435413639777051954681725651670661986926141667050294347295686544007272180799157809456140950336472449259672643096075023650443757330101529518840342519386900528940180488287042869878668208486172325053357278651353211160166792663307310208772146041154007986138503744141644073625932837049678038857396412960389356138367980823368454909284253835835467423660772828000210825179533962204454879031536176967593804510306812099879312721
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a424e7ce25733385134d21fc37e9b47ea63b82fd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'liberation.api.staging.cloud.ger.systems'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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