DV SSL/TLS Certificate for api.prod.rallypoint.gso.amazon.dev

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the api.prod.rallypoint.gso.amazon.dev DV SSL/TLS Certificate

This certificate with serial number 0b:d8:c5:b8:95:db:09:ee:9a:25:92:d9:44:2c:62:a1 for api.prod.rallypoint.gso.amazon.dev was issued on by Amazon.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for api.prod.rallypoint.gso.amazon.dev provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 0b:d8:c5:b8:95:db:09:ee:9a:25:92:d9:44:2c:62:a1
Serial Number (int): 15747054334129487494022999607547290273
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: d5:12:34:f6:b1:ff:bd:27:32:38:8a:92:8c:f5:32:6d:21:67:58:3b
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): be:67:d5:53:d5:1b:4d:bb:6c:db:7b:43:23:01:42:df:38:d8:38:04
Fingerprint (SHA-256): e1:ea:46:b6:85:d3:e2:07:3b:8b:9d:e7:78:95:f1:96:32:0b:a7:da:cf:e2:dc:32:bd:a2:26:2a:31:02:ce:ee

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate api.prod.rallypoint.gso.amazon.dev
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for api.prod.rallypoint.gso.amazon.dev

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

api.prod.rallypoint.gso.amazon.dev

X.509 Certificate

The complete raw X.509 certificate details for api.prod.rallypoint.gso.amazon.dev in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6vTo1YmnrIKKx/idMwL
GNpfIrjc/R2voCrha3xj/nkGdFEmQx4OHmICc0r3Mo+IJMWUBCLSdOeprymcoUz3
tQGK9kZHLSkCdMfBZKN3XnsCaaQQhoihwceLRI0J8fTxGcHIhybdJAEIMQcpdLn3
55mcm3T+bYR//6b2g3kOc8IUn34RCtcyyGQQ1V6stWk7LRTHu5JRB3q1CHagKDMK
QI92K96rl3NqGt8OJ1gw8zx/KsxUIXaXKnsNKU2LgnVBxyCPCj1EmLvPN//lToad
y96+APqxslxoD4kPgsbiTIBhAjs0FtAhMDiIT7vd0EPPcl2Eagkd78N5I14WwnKg
jQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15747054334129487494022999607547290273
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-11-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.prod.rallypoint.gso.amazon.dev'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21671481058387694746175968008598476618143669626168411182241802854623522300147447209097704760758619274758112134367292389544855506954406886596989742320168520190301424590216068339283765482963908918939652028537124080140983784582855831397040536020769487011133014510376304960945444722588451361550573647350310714430772052027319053367620782682542169369271732224947429672638146694971224232508880159568129851541261722885793022225494989313438058143128604991351695300881406819640361454624087468017852644458814090922594745156853528574878217651378715567097730506059221143105608420775744906213422431417635357427567384522750273167501
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:3|t:21|false]  
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.prod.rallypoint.gso.amazon.dev'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							016800760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a0000019250d187450000040300473045022100b03bd2fb9e742daf575d01b939d7bec5f27e507cfe98ffc4ee6496b4c4fc631f0220547cf925bfa02dec3241a55ec57d7595e9ec293823facd996eaaedbe6cf9040b0076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b80000019250d187410000040300473045022100a0bc541fd389aede574050212c3ea7071410f9193f6c437f23dbe3a37f72bb4802205a7e80e2f84201d2ff48494a194071029fddd7163fd2d807f2ffa375c905e762007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e500000019250d187530000040300473045022100d0661324d0812281302a9674a5d4f2227ad6bccc96cd52dafa163d7c891d015f0220641326ff28fc0f35b808915a0678576d8032e08cc836d0b0fb8dd415649ebb4b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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