staging.www.brikl.io
Issued by Amazon
About this certificate
This digital certificate with serial number 03:c8:f2:d8:c4:1d:fc:bc:ca:d1:b2:7f:31:54:2d:a2 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=staging.www.brikl.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c8:f2:d8:c4:1d:fc:bc:ca:d1:b2:7f:31:54:2d:a2Serial Number (int): 5031068876164214222465721136254823842
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: e2:86:b2:32:73:b0:a8:95:0e:65:59:e5:c9:be:27:d8:de:e4:1b:e1
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 2b:21:cb:47:ed:1f:0c:87:70:2f:08:99:89:6a:fe:b4:57:4f:7c:0b
Fingerprint (sha256): 5a:2f:31:82:cb:d2:9f:9d:5b:81:42:5c:49:97:f6:cb:3a:d0:e0:8e:43:4a:6b:3d:a2:3b:85:c6:4a:0c:e2:d1
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate staging.www.brikl.io
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for staging.www.brikl.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
staging.www.brikl.io
Other certificates including the domain name brikl.io
(limited to 100 certificates)
api.brikl.io
staging.app.brikl.io
staging.www.brikl.io
lib.brikl.io
staging.lib.brikl.io
cdn.brikl.io
lib.brikl.io
staging.api.brikl.io
app.brikl.io
staging.cdn.api.brikl.io
staging.engine.brikl.io
staging.cdn.api.brikl.io
admin.brikl.io
www.brikl.io
staging.admin.brikl.io
brikl.com
staging.storage.brikl.io
brikl.io
staging.app.brikl.io
cdn.discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
staging.storage.brikl.io
staging.app.brikl.io
brikl.io
app.brikl.io
app.brikl.io
cdn.api.brikl.io
obs.brikl.io
hackday.brikl.io
discovery.brikl.io
staging.www.brikl.io
cdn.brikl.io
cdn.discovery.brikl.io
api.brikl.io
upload.brikl.io
staging.cdn.api.brikl.io
staging.app.brikl.io
hackday.brikl.io
staging.upload.brikl.io
storage.brikl.io
cdn.discovery.brikl.io
staging.upload.brikl.io
discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
www.brikl.io
cdn.brikl.io
brikl.com
discovery.brikl.io
discovery.brikl.io
staging.engine.brikl.io
cdn.brikl.io
admin.brikl.io
upload.brikl.io
apollo2.brikl.io
hackday.brikl.io
lib.brikl.io
discovery.brikl.io
brikl.io
storage.brikl.io
staging.cdn.brikl.io
staging.www.brikl.io
hackday.brikl.io
www.brikl.io
api.brikl.io
discovery.brikl.io
brikl.com
staging.lib.brikl.io
www.brikl.io
brikl.io
staging.cdn.brikl.io
app.brikl.io
lib.brikl.io
lib.brikl.io
obs.brikl.io
api.brikl.io
staging.engine.brikl.io
cdn.api.brikl.io
staging.engine.brikl.io
brikl.io
staging.admin.brikl.io
cdn.brikl.io
staging.engine.brikl.io
staging.app.brikl.io
staging.www.brikl.io
lib.brikl.io
staging.lib.brikl.io
cdn.brikl.io
lib.brikl.io
staging.api.brikl.io
app.brikl.io
staging.cdn.api.brikl.io
staging.engine.brikl.io
staging.cdn.api.brikl.io
admin.brikl.io
www.brikl.io
staging.admin.brikl.io
brikl.com
staging.storage.brikl.io
brikl.io
staging.app.brikl.io
cdn.discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
staging.storage.brikl.io
staging.app.brikl.io
brikl.io
app.brikl.io
app.brikl.io
cdn.api.brikl.io
obs.brikl.io
hackday.brikl.io
discovery.brikl.io
staging.www.brikl.io
cdn.brikl.io
cdn.discovery.brikl.io
api.brikl.io
upload.brikl.io
staging.cdn.api.brikl.io
staging.app.brikl.io
hackday.brikl.io
staging.upload.brikl.io
storage.brikl.io
cdn.discovery.brikl.io
staging.upload.brikl.io
discovery.brikl.io
obs.brikl.io
staging.cdn.api.brikl.io
www.brikl.io
cdn.brikl.io
brikl.com
discovery.brikl.io
discovery.brikl.io
staging.engine.brikl.io
cdn.brikl.io
admin.brikl.io
upload.brikl.io
apollo2.brikl.io
hackday.brikl.io
lib.brikl.io
discovery.brikl.io
brikl.io
storage.brikl.io
staging.cdn.brikl.io
staging.www.brikl.io
hackday.brikl.io
www.brikl.io
api.brikl.io
discovery.brikl.io
brikl.com
staging.lib.brikl.io
www.brikl.io
brikl.io
staging.cdn.brikl.io
app.brikl.io
lib.brikl.io
lib.brikl.io
obs.brikl.io
api.brikl.io
staging.engine.brikl.io
cdn.api.brikl.io
staging.engine.brikl.io
brikl.io
staging.admin.brikl.io
cdn.brikl.io
staging.engine.brikl.io
Certificate
The complete raw certificate details for staging.www.brikl.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEXDCCA0SgAwIBAgIQA8jy2MQd/LzK0bJ/MVQtojANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xNzA1MTYwMDAwMDBaFw0xODA2MTYx MjAwMDBaMB8xHTAbBgNVBAMTFHN0YWdpbmcud3d3LmJyaWtsLmlvMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXafIPprl1kFQbb/euXygvATVk/6qBPp hHjkhQclTwewxiAm5qWUTNw9C0/mpv8kyR4aHPeOnUSbODtjmGlHmitnlA1+8W3A SrqYEAVuEZ0ftE5N5EIufO5yUkX1pkQyTrTyf6sINmH3glaL1tHx51vwr/8Vcdt3 1BWBbw19nPLFSlZ5HkHxdZjvqptgrWrHpzOLnPaC0eU1v2ah/OEXrwpwluJL7BP9 Ky6ddhtxB+o9NShTqfxf9YhENhxZ3t7Xf6PsWIwWvv72r1oZtq0HWnametRWm87y j5k3jkK9BOq52stj6mGMIYAwMEiOrAik7hv8GUsTMjTHfZwVbEkLMwIDAQABo4IB azCCAWcwHwYDVR0jBBgwFoAUWaRmBlKge5WSPKOUByeWdFv5PdAwHQYDVR0OBBYE FOKGsjJzsKiVDmVZ5cm+J9je5BvhMB8GA1UdEQQYMBaCFHN0YWdpbmcud3d3LmJy aWtsLmlvMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5zY2ExYi5hbWF6b250 cnVzdC5jb20vc2NhMWIuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIBMHUGCCsGAQUF BwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1 c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0 LmNvbS9zY2ExYi5jcnQwDAYDVR0TAQH/BAIwADANBgkqhkiG9w0BAQsFAAOCAQEA EPQNP43N/Qsw8cgCbjb4YPr7acvAbYOBXsUbQrxdmqsLr8d8apktdRwOVbOLA74w sFslY+nbFKs+6f7DV6y6lTNlMy+5WmqAC3/JSz3jB9cj9wOlUdi1d/7ljVPVBFGq KvnsCQAloUut/3G/qBSg+TsK8cZKhyv9UZruBPPY5bLUKxq2/RlSTYJ3rUFWbbK8 02+oddDk5vFPSvuoWkRftJUN3WUcf4I8YiFFADcfP4mh68jlkA5Cvbp7pn9JmcAK wY2xL28sis7u+P8w23Hk0Y7EmR58+iYy2gQy5daM/BZ2Mi/I7gPK4hHmM+J/AOSj WU0b+2YN9Ix9t9q1IykjTw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXafIPprl1kFQbb/euXy gvATVk/6qBPphHjkhQclTwewxiAm5qWUTNw9C0/mpv8kyR4aHPeOnUSbODtjmGlH mitnlA1+8W3ASrqYEAVuEZ0ftE5N5EIufO5yUkX1pkQyTrTyf6sINmH3glaL1tHx 51vwr/8Vcdt31BWBbw19nPLFSlZ5HkHxdZjvqptgrWrHpzOLnPaC0eU1v2ah/OEX rwpwluJL7BP9Ky6ddhtxB+o9NShTqfxf9YhENhxZ3t7Xf6PsWIwWvv72r1oZtq0H WnametRWm87yj5k3jkK9BOq52stj6mGMIYAwMEiOrAik7hv8GUsTMjTHfZwVbEkL MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5031068876164214222465721136254823842 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-16 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.www.brikl.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19372955149386176021694564552116625720501729025060687271688039120835394162167246404837816962989794470657488215815320525929213981380410243629438551344659801752816505993489589638770336624872426371404457615023078170984614101594972107292637349935004340798408455615700288634906232691495562930530605896817896841670762872155522769611157631035506609501566639839201547885205616275606878164550682595980696210852784889573723931206321739686534559747343915711400857006944755703679462362607735164395729987715230254474062454100406462931583965556677933874180720476442870486288053535984134503547280218904043929729833757692998648924979 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e286b23273b0a8950e6559e5c9be27d8dee41be1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.www.brikl.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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