academy.apstra.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 0f:6c:cf:c4:e4:d5:11:f0:1a:9f:76:ee:b4:21:0f:1c was issued on by Amazon.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=academy.apstra.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0f:6c:cf:c4:e4:d5:11:f0:1a:9f:76:ee:b4:21:0f:1c
Serial Number (int): 20503402055823476317238085814994407196
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 33:06:ae:30:5f:a6:9a:84:40:d7:e8:2f:60:7f:f4:98:8a:19:10:d9
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 75:95:84:fa:b1:ee:e9:64:be:99:7f:2f:b5:0b:9f:bd:1e:02:d6:80
Fingerprint (sha256): 58:70:98:0d:d2:fe:1e:4c:8e:0d:57:29:70:5a:31:bc:6b:2e:d1:46:50:c0:84:02:3c:ad:65:75:89:83:f7:a3

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate academy.apstra.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for academy.apstra.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

academy.apstra.com

Other certificates including the domain name apstra.com

(limited to 100 certificates)
tracking.duckvideo.co
helpdesk.magentammt.nl
www.apstra.com
agency.ibex.co
agency.ibex.co
blog.apstra.com
helpdesk.magentammt.nl
cheetah.apstra.com
discover.newswire.com
www.apstra.com
cloudlabs-dev.apstra.com
s.bbot.menu
go.apstra.com
agency.ibex.co
sales.blueriveranalytics.com
www.apstra.com
blog.apstra.com
helpdesk.magentammt.nl
apstra.com
china.apstra.com
blog.apstra.com
sales.decent.com
helpdesk.magentammt.nl
japan.apstra.com
go.apstra.com
sales.xcelservicesgroup.net
japan.apstra.com
go.apstra.com
china.apstra.com
apstra.com
cheer.givecheerbox.com
www.apstra.com
blog.apstra.com
agency.ibex.co
sales.nuodb.com
tracking.duckvideo.co
japan.apstra.com
cheer.givecheerbox.com
helpdesk.magentammt.nl
helpdesk.magentammt.nl
partneradvantage.apstra.com
apstra.com
china.apstra.com
japan.apstra.com
agency.ibex.co
apstra.com
sales.blueriveranalytics.com
helpdesk.magentammt.nl
blog.apstra.com
helpdesk.magentammt.nl
go.apstra.com
agency.ibex.co
links1.instride.com
agency.ibex.co
mkt.esgyndb.com
cloudlabs-dev.apstra.com
blog.apstra.com
helpdesk.magentammt.nl
agency.ibex.co
academy.apstra.com
blog.apstra.com
partner-academy.apstra.com
t.finch.com
www.apstra.com
japan.apstra.com
marcom.labfellows.com
apstra.com
internship.svalabs.com
blog.apstra.com
blog.apstra.com
community.apstra.com
cheetah.apstra.com
agency.ibex.co
www.apstra.com
china.apstra.com
t.finch.com
helpdesk.magentammt.nl
agency.ibex.co
m2.psoriasis.org
community.apstra.com
blog.apstra.com
files.apstra.com
cheer.givecheerbox.com
helpdesk.magentammt.nl
portal.apstra.com
mkt.esgyndb.com
agency.ibex.co
sales.charliebanana.com
www.apstra.com
agency.ibex.co
china.apstra.com
go.instana.com
agency.ibex.co
partneradvantage.apstra.com
agency.ibex.co
helpdesk.magentammt.nl
apstra.com
japan.apstra.com
apstra.com
go.apstra.com

Certificate

The complete raw certificate details for academy.apstra.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVlY/Imt8XSiEr498hf5
knGI61iyDumWaIJFl9kPhWwwvZNaQ/CK6yrYCpbU8GHwC9U5+YIaKpJo3t/NKpap
Dre3vqKRajsctPgopykG+EmrD+yEha2rUoevTvniTfsv22eYsss8AJ03ryM5rvSV
N2gej4A2SuNuPWpKJg6WRRrGzoHuCkEVLVxTwfS3cXQH1LEnbnPB8N89QV3OZepY
s3YPnq+/1AQsmQj/5pRpUzsJvOEKCTNCW3DNUtKpqWHa1E5EOD+YGAzU6bxrpQ5g
Jhu10MT3HiZlKzO3fTn3XKwzmFByA1cxMjI/YN85OUfERMIJqxYWW+fWRVm/yk0o
mQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 20503402055823476317238085814994407196
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-02 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'academy.apstra.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24913005023659913064636471710594466706198418909077107350949351977885037378120755557878130577329542321736400011663346818988025674037373968666858954078497018600191860804056950472658752754208534151562308728532753550496176104370045972568140572587693033293456185906835228992546678997907543516903327450053394882001449643332312504849815180561270947058460856899609055647749438712709489453530100651160125991395442325605244857961305928792121607404850144292983048767646083194240458452717304575883571276768499642508475903079341672138870861551775905597842936452432769516666123007527696594755936240412650740709288886818492683987097
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3306ae305fa69a8440d7e82f607ff4988a1910d9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'academy.apstra.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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