sit.identity.barko.co.za
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:7d:dd:08:54:69:74:c5:16:1c:67:cb:0d:94:ad:b4 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sit.identity.barko.co.za
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:7d:dd:08:54:69:74:c5:16:1c:67:cb:0d:94:ad:b4Serial Number (int): 15275028133422864654952962520960511412
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6d:a0:f8:0c:44:e3:ef:a6:01:25:46:40:1e:56:e4:45:59:a3:d5:9c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): c3:25:d0:67:d5:1c:81:3c:50:8f:13:62:7e:81:4d:10:db:e0:6d:c9
Fingerprint (sha256): 48:28:ee:0b:e8:3a:54:1e:8a:6a:b0:0a:ee:6b:b1:1c:ed:7a:86:10:e9:c9:5f:49:41:89:cb:0f:0b:f3:9d:99
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate sit.identity.barko.co.za
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sit.identity.barko.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sit.identity.barko.co.za
sit.login.identity.barko.co.za
sit.api.identity.barko.co.za
sit.login.identity.barko.co.za
sit.api.identity.barko.co.za
Other certificates including the domain name barko.co.za
(limited to 100 certificates)
prod.api.barko.co.za
api.identity.barko.co.za
sit.identity.barko.co.za
zbx.barko.co.za
support.municityhelp.com
lending.staging.barko.co.za
www.barko.co.za
cloud.barko.co.za
sit.identity.barko.co.za
www.barko.co.za
www.barko.co.za
login.identity.barko.co.za
www.barko.co.za
uat.identity.barko.co.za
*.barko.co.za
dev.identity.barko.co.za
desk.barko.co.za
*.barko.co.za
www.barko.co.za
support.municityhelp.com
api.identity.barko.co.za
login.identity.barko.co.za
www.barko.co.za
api.identity.barko.co.za
sit.identity.barko.co.za
zbx.barko.co.za
support.municityhelp.com
lending.staging.barko.co.za
www.barko.co.za
cloud.barko.co.za
sit.identity.barko.co.za
www.barko.co.za
www.barko.co.za
login.identity.barko.co.za
www.barko.co.za
uat.identity.barko.co.za
*.barko.co.za
dev.identity.barko.co.za
desk.barko.co.za
*.barko.co.za
www.barko.co.za
support.municityhelp.com
api.identity.barko.co.za
login.identity.barko.co.za
www.barko.co.za
Certificate
The complete raw certificate details for sit.identity.barko.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGjCCBQKgAwIBAgIQC33dCFRpdMUWHGfLDZSttDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTExNDAwMDAwMFoXDTI0MTIxMzIzNTk1OVowIzEh MB8GA1UEAxMYc2l0LmlkZW50aXR5LmJhcmtvLmNvLnphMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAs2f8qc5lYENSeJwnAmkxYY7Yw4WW5kRhAqPrLyn7 oPLAtE+v8gG7NeVeCETOXvhx7cbNWU0Rf2fv9rTkEReK1vJXxCseLT43ZOcgol1u WgVHWmFKclbwOycwk4gbWzV6cT7clSJ0VYDssPY556iuD6v9fRSbO1Tj0CNzwwcv N0kXWJ6igqJD4+5lNbyu9mKTn27GaLcADeG+xzyuZmWJCkJfoTz1x4bEu8/4Z/vd UUR8ZPhd0mJgqQIdU2dM9Upzdtew+Ukic3cT1uK9twRK+lNfzn+d7TYOdX3K2xaT uK0h4ggsNsMS1JgnXGVTljWbxQCKjtk3joq+UOpPa2Qh1wIDAQABo4IDLzCCAysw HwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFG2g+AxE 4++mASVGQB5W5EVZo9WcMGEGA1UdEQRaMFiCGHNpdC5pZGVudGl0eS5iYXJrby5j by56YYIec2l0LmxvZ2luLmlkZW50aXR5LmJhcmtvLmNvLnphghxzaXQuYXBpLmlk ZW50aXR5LmJhcmtvLmNvLnphMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw MjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIu Y3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJt MDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAy LmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisG AQQB1nkCBAIEggFuBIIBagFoAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGLyzCEnQAABAMARzBFAiAMIZRZVC5FRBRWDG816At+v966HYw8wjxs 7nlsOU96PgIhAMhfaEWiCAXBoFF3MeJffvyZfKfblR/qia2BuFEcm7w/AHYASLDj a9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGLyzCEmQAABAMARzBFAiEA r8++fSubAuQXMYN1dc29+CLHithr/qxsW/pysUVGqW8CIC9sGZC3c9OTSEJCGFhM FMljMhwPEYGZ8/jv8J/f9SGcAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8o hez4ZG4AAAGLyzCE0QAABAMARzBFAiEA297D9FF4BFWBsoBjV5bcc2faMYgmWtEU /+HvHA3B2IICIBfMSLNovbmy9R2mCAx1JjQm9kOZtcd9fBi7ZWKf84e1MA0GCSqG SIb3DQEBCwUAA4IBAQCJMdwArQqSlLNFE0Oghj5d/B7YijWf1DfdybS91MS1fg5q oNZQXmx6D+Xk8nObuBy4ow20vOzNA3oXslPSG+zpe1AlMt5zSvLfkBdKeZGoAQz/ 3NC23/nFEJxazCVl/D0LEuN8eLi4hQGWx0SUPC3IPfrOkBV5mwjcyraQ2z+yiD7v T4BWFglelgnzhQHlS7JNrgWJSwjrNp3V43nb9IYEfTmlVTEGWZMw+dUr8HEmmO5+ Qwv+/3XDB/7P8dEsuGBXECWpI+dNb8/sONBSDQESPu7zBfvzkv0LvjlK74t2LDqL KuH/UmnQUREafUazjNqNNXEe9N9kvg/SxGaeyFtP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2f8qc5lYENSeJwnAmkx YY7Yw4WW5kRhAqPrLyn7oPLAtE+v8gG7NeVeCETOXvhx7cbNWU0Rf2fv9rTkEReK 1vJXxCseLT43ZOcgol1uWgVHWmFKclbwOycwk4gbWzV6cT7clSJ0VYDssPY556iu D6v9fRSbO1Tj0CNzwwcvN0kXWJ6igqJD4+5lNbyu9mKTn27GaLcADeG+xzyuZmWJ CkJfoTz1x4bEu8/4Z/vdUUR8ZPhd0mJgqQIdU2dM9Upzdtew+Ukic3cT1uK9twRK +lNfzn+d7TYOdX3K2xaTuK0h4ggsNsMS1JgnXGVTljWbxQCKjtk3joq+UOpPa2Qh 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15275028133422864654952962520960511412 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-13 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sit.identity.barko.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22647934473030503539109117189744956822368690155794173022303351179427405877906416491437699502342362009529157998540887352327520319743502529658441417796014528447129487660145126912604590488867465322177717607522329180714326417808853502954381903123019586186388685785120354203547767651480981233249823534596057430443610130718746364736495075425002981900269730116371583121999331436485971987066033858452092556202576491023879565700969501491433216784564329955051892234070519115264727301277341494376057687870365395321493515180446106756770701381558699164739169937434700328590338812985070001416936450715359084176875643622780727206359 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6da0f80c44e3efa6012546401e56e44559a3d59c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit.identity.barko.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit.login.identity.barko.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sit.api.identity.barko.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 0168007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018bcb30849d000004030047304502200c219459542e454414560c6f35e80b7ebfdeba1d8c3cc23c6cee796c394f7a3e022100c85f6845a20805c1a0517731e25f7efc997ca7db951fea89ad81b8511c9bbc3f00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bcb3084990000040300473045022100afcfbe7d2b9b02e41731837575cdbdf822c78ad86bfeac6c5bfa72b14546a96f02202f6c1990b773d39348424218584c14c963321c0f118199f3f8eff09fdff5219c0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018bcb3084d10000040300473045022100dbdec3f45178045581b280635796dc7367da3188265ad114ffe1ef1c0dc1d882022017cc48b368bdb9b2f51da6080c75263426f64399b5c77d7c18bb65629ff387b5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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