*.terris.earth
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 01:a4:b6:59:7b:68:77:bb:04:03:23:f4:69:0e:80:f3 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.terris.earth
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:a4:b6:59:7b:68:77:bb:04:03:23:f4:69:0e:80:f3Serial Number (int): 2184463168631905882233095175925563635
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: cd:43:9a:19:48:00:6d:59:27:ac:b3:be:7e:d1:ae:6b:f7:7f:8e:b9
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): f8:5c:d2:f3:59:77:fd:f8:1f:6b:28:e4:fa:49:b4:68:2b:2b:6a:88
Fingerprint (sha256): 56:13:3d:65:dc:ab:19:f7:90:61:33:37:c2:a3:bf:84:77:7f:9c:9b:9b:35:99:ca:0c:94:50:4d:52:d2:f5:93
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.terris.earth
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.terris.earth
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.terris.earth
terris.earth
terris.earth
Other certificates including the domain name terris.earth
(limited to 100 certificates)
*.tileserver.staging.terris.earth
support.comisocoffee.com
support.rovaunify.com
support.studyvillage.org
*.tiler.dev.terris.earth
api.dev.terris.earth
api.staging.terris.earth
*.dev.terris.earth
support.terris.earth
support.rovaproducts.com
*.staging.terris.earth
tileserver.dev.terris.earth
*.tiler.staging.terris.earth
*.terris.earth
api.fusion.terris.earth
support.rovaunify.com
support.rovaunify.com
support.rovaunify.com
helpdesk.snap-compliance.com
support.rovaunify.com
support.studyvillage.org
support.terris.earth
support.rovaproducts.com
support.rovaunify.com
support.rovaunify.com
helpdesk.snap-compliance.com
*.tiler.fusion.terris.earth
k2r.bluewanip.com
support.rovaunify.com
support.rovaunify.com
helpdesk.snap-compliance.com
*.tileserver.fusion.terris.earth
support.terris.earth
support.rovaproducts.com
support.terris.earth
helpdesk.snap-compliance.com
support.rovaproducts.com
support.studyvillage.org
support.rovaunify.com
support.studyvillage.org
support.comisocoffee.com
support.rovaunify.com
support.studyvillage.org
*.tiler.dev.terris.earth
api.dev.terris.earth
api.staging.terris.earth
*.dev.terris.earth
support.terris.earth
support.rovaproducts.com
*.staging.terris.earth
tileserver.dev.terris.earth
*.tiler.staging.terris.earth
*.terris.earth
api.fusion.terris.earth
support.rovaunify.com
support.rovaunify.com
support.rovaunify.com
helpdesk.snap-compliance.com
support.rovaunify.com
support.studyvillage.org
support.terris.earth
support.rovaproducts.com
support.rovaunify.com
support.rovaunify.com
helpdesk.snap-compliance.com
*.tiler.fusion.terris.earth
k2r.bluewanip.com
support.rovaunify.com
support.rovaunify.com
helpdesk.snap-compliance.com
*.tileserver.fusion.terris.earth
support.terris.earth
support.rovaproducts.com
support.terris.earth
helpdesk.snap-compliance.com
support.rovaproducts.com
support.studyvillage.org
support.rovaunify.com
support.studyvillage.org
Certificate
The complete raw certificate details for *.terris.earth in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEaTCCA1GgAwIBAgIQAaS2WXtod7sEAyP0aQ6A8zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIyMTAwMDAwMFoXDTI1MDExOTIzNTk1OVowGTEX MBUGA1UEAwwOKi50ZXJyaXMuZWFydGgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDHKM1XyNkkY4l2mJ8mF0p0JDEstYBO0CSmMlbdHzpDQszewn6hJfTB I0USU1rq92OCLoJ06TOJuREc86rPqioN6Vu4DY9JSL8ogJ9asUxzTlcIGv2BjS0U Jc7mVVUv3Qgy4zFWAsjOKYlZteCsF5p1iahzm4YYflzMT8pYFSivSlq4evPi1eSt YsMnpI5UNurgm7IMrn8zxMllDJCGL/mrMO6sqH9m2CtLajzC722CUVAMaJ10SeYw Ide1iNEJDlsKCAwmX5F8yg1fmYmJfd9ed95AgyO3LzV7jbhUbiMk4M/Lm8SCxrmZ ZTa+0JpidFc/8TA9zelRncrJm6u1+JBBAgMBAAGjggGIMIIBhDAfBgNVHSMEGDAW gBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUzUOaGUgAbVknrLO+ftGu a/d/jrkwJwYDVR0RBCAwHoIOKi50ZXJyaXMuZWFydGiCDHRlcnJpcy5lYXJ0aDAT BgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwu cjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcw LQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2 BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJt MDIuY2VyMAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZI hvcNAQELBQADggEBACdEnVTB5FaMATljOFz+0Hf6rZIKbcfjA0jatHFaFLq/sxQe ZUKDI/ADBGPMAKzh9690Wce4WJEoUJCrA0SO7LogcprqI39DuKX7odyIk9A3k9Ab HKHsKu8NV8hf4CfSaAF449Plfwzy1UHAnfCO9/Fvw3oK2Jur0ZHvcbHoPTUMijBi GiH7UmzWlmxGccCx85LoFKpdpCqVWEo2qI9kPoEbGozV5jAT8UFAguifHRbYtHIR //c0kTF0De30UVT/Xac4JQrtLsjxa0RRxl2OUhu+i/ChVjMbi1jWvDux5fb923ID hPhIalNHp4kUlV5M2g8c7udpcjIZywdDKhh3yYo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyjNV8jZJGOJdpifJhdK dCQxLLWATtAkpjJW3R86Q0LM3sJ+oSX0wSNFElNa6vdjgi6CdOkzibkRHPOqz6oq DelbuA2PSUi/KICfWrFMc05XCBr9gY0tFCXO5lVVL90IMuMxVgLIzimJWbXgrBea dYmoc5uGGH5czE/KWBUor0pauHrz4tXkrWLDJ6SOVDbq4JuyDK5/M8TJZQyQhi/5 qzDurKh/ZtgrS2o8wu9tglFQDGiddEnmMCHXtYjRCQ5bCggMJl+RfMoNX5mJiX3f XnfeQIMjty81e424VG4jJODPy5vEgsa5mWU2vtCaYnRXP/EwPc3pUZ3KyZurtfiQ QQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2184463168631905882233095175925563635 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-21 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.terris.earth' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25141542963873595992919078328223717826128387107558079015476696354726882413836802998011800027033870683368885345782029895263426445617047578393761262299764911989287193574979379990764277289871808826819321021992930863785242401956400073799532850773269432946451768856498425154762040180914261726031853483875501859754398012895846571619191440915800966868265485365374355244945231684273952549049517010590999106253407759014436577279040960500616111166616745132381871266824435813773992868477323648352594212532967518359330769835499612525616612252984297255238638223286789780615215863311737209062820356749856180997992205783105252397121 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd439a1948006d5927acb3be7ed1ae6bf77f8eb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.terris.earth' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'terris.earth' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0027449d54c1e4568c013963385cfed077faad920a6dc7e30348dab4715a14babfb3141e65428323f0030463cc00ace1f7af7459c7b85891285090ab03448eecba20729aea237f43b8a5fba1dc8893d03793d01b1ca1ec2aef0d57c85fe027d2680178e3d3e57f0cf2d541c09df08ef7f16fc37a0ad89babd191ef71b1e83d350c8a30621a21fb526cd6966c4671c0b1f392e814aa5da42a95584a36a88f643e811b1a8cd5e63013f1414082e89f1d16d8b47211fff7349131740dedf45154ff5da738250aed2ec8f16b4451c65d8e521bbe8bf0a156331b8b58d6bc3bb1e5f6fddb720384f8486a5347a78914955e4cda0f1ceee769723219cb07432a1877c98a