athletics.marin.edu

Issued by Amazon

About this certificate

This digital certificate with serial number 07:9c:69:5b:a7:0f:5c:d6:32:93:83:9d:70:06:26:70 was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=athletics.marin.edu

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 07:9c:69:5b:a7:0f:5c:d6:32:93:83:9d:70:06:26:70
Serial Number (int): 10116731194899585380249545254753412720
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 0e:da:b1:fc:67:4f:10:fb:98:72:af:f1:a2:47:0d:b8:bd:6f:9f:57
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 23:5d:85:27:9b:ee:4f:89:c8:88:47:2f:39:e2:a6:a8:a3:73:28:56
Fingerprint (sha256): 59:d7:8b:f1:17:d6:58:bf:e1:b6:a2:eb:f1:d9:40:a0:ab:29:a4:c5:ad:9b:eb:10:d3:56:af:a2:73:0b:98:2f

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate athletics.marin.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for athletics.marin.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

athletics.marin.edu

Other certificates including the domain name marin.edu

(limited to 100 certificates)
es.marin.edu
advancement.marin.edu
www.marin.edu
apps.marin.edu
moodletest.marin.edu
it.marin.edu
moodle.marin.edu
housing.marin.edu
ezproxy.marin.edu
moodletest.marin.edu
sars.marin.edu
www1.marin.edu
www.marin.edu
servicedesk.marin.edu
hr.marin.edu
escom.marin.edu
intranet.marin.edu
apps.marin.edu
moodle.marin.edu
netapps.marin.edu
moodletest.marin.edu
lg.marin.edu
degreeweb.marin.edu
mycom.marin.edu
netapps.marin.edu
alumni.marin.edu
moodle.marin.edu
*.marin.edu
mailz.marin.edu
sslvpn-he.marin.edu
idp.marin.edu
www.marin.edu
moodle.marin.edu
mac.marin.edu
moodle.marin.edu
mycomcas.marin.edu
www.marin.edu
mycomtest.marin.edu
apps.marin.edu
moodle.marin.edu
degreeweb.marin.edu
www.marin.edu
esl.marin.edu
lg.marin.edu
mycomcastest.marin.edu
moodle.marin.edu
mailz.marin.edu
moodletest.marin.edu
mailx.marin.edu
sars.marin.edu
campuses.marin.edu
mycomappnavtest.marin.edu
athletics.marin.edu
moodle.marin.edu
www.marin.edu
idp.marin.edu
campuses.marin.edu
athletics.marin.edu
mycomssb.marin.edu
athletics.marin.edu
degreeweb.marin.edu
es.marin.edu
sslvpn.marin.edu
mycomappnav.marin.edu
mycom.marin.edu
mycom-ql.marin.edu
mycomappnavtest.marin.edu
rds.marin.edu
housing.marin.edu
as.marin.edu
degreeweb.marin.edu
mailz.marin.edu
degreeweb.marin.edu
comapps.marin.edu
mac.marin.edu
netapps.marin.edu
mac.marin.edu
moodletest.marin.edu
mycomappnav.marin.edu
mycomcas.marin.edu
mycomssb.marin.edu
apps.marin.edu
mycom.marin.edu
comapps.marin.edu
libguides.marin.edu
apps.marin.edu
rds.marin.edu
www.marin.edu
mycom.marin.edu
accreditation.marin.edu
www.marin.edu
moodle.marin.edu
housing.marin.edu
mycom.marin.edu
mycom.marin.edu
mycomtest.marin.edu
byod.marin.edu
mycomappnavtest.marin.edu
housing.marin.edu
mailz.marin.edu

Certificate

The complete raw certificate details for athletics.marin.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnG/aHeWOxYDEABQHOHyI
DSYb+UMvJOwG7Rke+pk0Ep7IoKGSGf9OIx4jHL+RHHxC7DLAigkCYg6DbOTKwxSj
txoQl7iQrsdnW5SmxYLFAbEEAgZNQZIsDgUsU3u6YxFmyDClo9utvYv1uaKXFDc9
BHib1LLRq438Yyi769XfbIM+a8uEkoDADJscLexH3rqb9/EUdN+rMcX7t/0hRA8e
L5cnH42A87Mtlik+7QKFWCAvXql8EsIeXEP8DmiZKVj0UXz1/NWVKyNPj4UQeHjf
oqvzC4iE2R8Ria/4jJq8xzbWOINA6v45ub6xDf6k9bN0OqOeXomSCEq3KJ5XkFVc
1QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10116731194899585380249545254753412720
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-25 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-25 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'athletics.marin.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19748331860822930338605927265405477008199863648013336827032762870373044759721157914339229332958380232182923985967027724935320330718174995721782660997262425379606561230194782737062357474577738334537131783994539727821141770678303909627563357357605228261293535909914560397258565518135193205145607084170645253081638591602733483386929761606013132592642120693718713648255829091773338998065063034545324027053706580640558536019778741316133340767807244694211909708802980408316287811613958355423542273009130563998888736849435489635103537885907737685823371110196839538088975932023026057757840176725016717497167769271517165477077
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0edab1fc674f10fb9872aff1a2470db8bd6f9f57
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'athletics.marin.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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