nao.org.uk
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0b:df:1b:6d:20:67:4f:fa:45:22:cf:84:4b:1d:fe:86 was issued on by Amazon.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nao.org.uk
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0b:df:1b:6d:20:67:4f:fa:45:22:cf:84:4b:1d:fe:86Serial Number (int): 15779946424044771170341709055050776198
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e2:44:60:72:32:1a:d2:f5:f8:39:12:c6:95:f3:5c:68:fa:04:47:7c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 76:e8:d3:2b:f5:f3:cb:4d:8d:a5:29:8c:1e:ca:d1:dc:ab:5a:cb:ab
Fingerprint (sha256): 5a:40:0f:3f:f5:6c:2d:3b:03:61:e2:a5:bb:c7:a3:ca:9f:66:8d:40:15:b1:6e:79:c2:ac:b3:f4:db:cf:4a:0e
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate nao.org.uk
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nao.org.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nao.org.uk
www.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
resources.nao.org.uk
Other certificates including the domain name nao.org.uk
(limited to 100 certificates)
RStudio-dev.nao.org.uk
RPacMan-dev.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
nao.org.uk
lacgextranet.nao.org.uk
RPacMan-dev.nao.org.uk
lacgextranet.nao.org.uk
www.nao.org.uk
www.nao.org.uk
www.nao.org.uk
www.nao.org.uk
RStudio-prod.nao.org.uk
www.nao.org.uk
www.nao.org.uk
resources.nao.org.uk
lf.nao.org.uk
naomail.nao.org.uk
nao.org.uk
nao.org.uk
nao.org.uk
naosurvey.nao.org.uk
nao.org.uk
*.nao.org.uk
www.nao.org.uk
RStudio-dev.nao.org.uk
naoccesite1.nao.org.uk
*.nao.org.uk
RPacMan-prod.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
*.nao.gov.uk
naosurvey.nao.org.uk
sip.nao.gov.uk
resources.nao.org.uk
nao.org.uk
nao.gov.uk
naomail.nao.org.uk
www.nao.org.uk
www.nao.org.uk
nao.org.uk
*.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
www.nao.org.uk
*.nao.org.uk
RPacMan-dev.nao.org.uk
www.nao.org.uk
naoccesite1.nao.org.uk
nao.org.uk
naomail.nao.org.uk
www.nao.org.uk
www.nao.org.uk
www.nao.org.uk
wifi.nao.org.uk
www.nao.org.uk
RStudio-dev.nao.org.uk
*.nao.org.uk
RPacMan-dev.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
nao.org.uk
lacgextranet.nao.org.uk
RPacMan-dev.nao.org.uk
lacgextranet.nao.org.uk
www.nao.org.uk
www.nao.org.uk
www.nao.org.uk
www.nao.org.uk
RStudio-prod.nao.org.uk
www.nao.org.uk
www.nao.org.uk
resources.nao.org.uk
lf.nao.org.uk
naomail.nao.org.uk
nao.org.uk
nao.org.uk
nao.org.uk
naosurvey.nao.org.uk
nao.org.uk
*.nao.org.uk
www.nao.org.uk
RStudio-dev.nao.org.uk
naoccesite1.nao.org.uk
*.nao.org.uk
RPacMan-prod.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
*.nao.gov.uk
naosurvey.nao.org.uk
sip.nao.gov.uk
resources.nao.org.uk
nao.org.uk
nao.gov.uk
naomail.nao.org.uk
www.nao.org.uk
www.nao.org.uk
nao.org.uk
*.nao.org.uk
resources.nao.org.uk
www.nao.org.uk
www.nao.org.uk
*.nao.org.uk
RPacMan-dev.nao.org.uk
www.nao.org.uk
naoccesite1.nao.org.uk
nao.org.uk
naomail.nao.org.uk
www.nao.org.uk
www.nao.org.uk
www.nao.org.uk
wifi.nao.org.uk
www.nao.org.uk
RStudio-dev.nao.org.uk
*.nao.org.uk
Certificate
The complete raw certificate details for nao.org.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5zCCBM+gAwIBAgIQC98bbSBnT/pFIs+ESx3+hjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDcxNzAwMDAwMFoXDTI0MDgxNDIzNTk1OVowFTET MBEGA1UEAxMKbmFvLm9yZy51azCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLjhOm83bS/Xkquz+lKK16AYG6rCrHsssOGbniF9aVTlsGjb1QzY5L5XMEF 1asJ7Qb2hYx36RReOhv8Kv0wVMRYkyn7GtS5tqnpZbIeVNB28AR9Y8PJnwqrcAW0 OHj0u7azTUDPwb73icm/MqhacFIXazlRyCRW79S/O8PfalNXYXPaRgH2BGEtLYtm +ordtARIDdpHXlZtn8rdYx9BVJDLPLxZ0s6vye36RuVYkwIeTULM7/bdM/TOahNb 0f0w6l4zdVCs66L1eFzTe874XL86tajzmByBhLBU/P3UzrV5kXozQ+4SzKc/A6Gs FsIAmHTa+TWnxgssBkZt1Yh37L8CAwEAAaOCAwowggMGMB8GA1UdIwQYMBaAFMAx Us1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBTiRGByMhrS9fg5EsaV81xo+gRH fDA7BgNVHREENDAyggpuYW8ub3JnLnVrgg53d3cubmFvLm9yZy51a4IUcmVzb3Vy Y2VzLm5hby5vcmcudWswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAy LmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwEwYDVR0gBAwwCjAIBgZngQwBAgEw dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5h bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1h em9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHW eQIEAgSCAW8EggFrAWkAdwDuzdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1 mwAAAYlif1E4AAAEAwBIMEYCIQCJrXxjQU0BR0Wsz3x/Z6skLwq++nCRqXJEBACf qF1k6wIhANkxWpeIEF10RPwf6SL3kvPKnuHCA5l06EqIIXJwFTG/AHUASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGJYn9RcwAABAMARjBEAiBoAI6B eH5k7B1inVFUvqB8W11qNwdSykLne7ss/FS+rQIgOWbu2TQ3cQ4mcj0696h+IwXC H3nLgaHx+yqpa3oCR3gAdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7 qwAAAYlif1E/AAAEAwBIMEYCIQC7jj97Ve45l+23vkuKLNKBQ9yWhrFlaE6dGkcP 4d1fZwIhAIkaWTwclpdZzNXJbKZScspyMT6QE/M+y21Myi0aBa7IMA0GCSqGSIb3 DQEBCwUAA4IBAQCRapgxS6T5gNxDTq9D0n3XqfrMPpu565dvskCyY2du18bHt73w JKet0/BqWO2qXpMXpmruF8p9H9X8738SOhiuaR285l7tUNFoCWwOkWL41URvdyvt 5fpU+OzPEzIg3eJgl1jdIrgttsX4S1RQ9giy6VdJQw+U+3CYN+poAGOchgpEgZap 9CmyrIn5+tnQYIie/IiCbKdDR9wsyNaz38jWidRxv8W/N5aWpZVUl7KbGfHe5Ihj JDV0e1DEbwYQjWpV0eGSXVtSntbJZZYNqQqosuxMpzCRUn16L5LzETianE1jL1UO ouOr6njmZbMCl9LYab+0BZrCVYcISiKmwfZo -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuOE6bzdtL9eSq7P6Uor XoBgbqsKseyyw4ZueIX1pVOWwaNvVDNjkvlcwQXVqwntBvaFjHfpFF46G/wq/TBU xFiTKfsa1Lm2qellsh5U0HbwBH1jw8mfCqtwBbQ4ePS7trNNQM/BvveJyb8yqFpw UhdrOVHIJFbv1L87w99qU1dhc9pGAfYEYS0ti2b6it20BEgN2kdeVm2fyt1jH0FU kMs8vFnSzq/J7fpG5ViTAh5NQszv9t0z9M5qE1vR/TDqXjN1UKzrovV4XNN7zvhc vzq1qPOYHIGEsFT8/dTOtXmRejND7hLMpz8DoawWwgCYdNr5NafGCywGRm3ViHfs vwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15779946424044771170341709055050776198 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nao.org.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24602425058294940967603513660833302498562952289728501250823658507851336627539018385077966566998104241522326099023842501678460639733654847568232384762707017726675821430436519697200256732049550819963686965382683296750753579630372026422287269289482315039268067593806461432968488939816230586871833465484379092314058870028621355297803222180301040312944469224305493804642591641470506045368402321006161752611066949176197716665300808847940701688421308276969878892553877802125398227323785300723708192967232452960164059874559071470740527951832871333558216315012320049293144372578280717780551214543917262696962059703196606524607 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e2446072321ad2f5f83912c695f35c68fa04477c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nao.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nao.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources.nao.org.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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