demo.ch.cloud.ger.systems

Issued by Amazon

About this certificate

This digital certificate with serial number 04:34:82:b3:ab:93:52:69:11:08:ba:c7:e7:7c:f3:14 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=demo.ch.cloud.ger.systems

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:34:82:b3:ab:93:52:69:11:08:ba:c7:e7:7c:f3:14
Serial Number (int): 5589562367973077245890872994508370708
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 91:22:26:95:6a:3f:39:49:0f:a6:52:12:7d:31:ab:b0:7a:fb:5f:e4
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): b7:44:8c:c1:e9:a6:65:d5:f4:a9:7e:dc:ef:68:fb:13:41:a9:f3:9d
Fingerprint (sha256): 5a:5e:7c:2a:f4:c8:69:c9:0c:73:f8:a5:9b:39:b3:7b:e8:65:c3:f3:96:c1:30:0b:7a:13:41:71:ba:81:69:3d

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate demo.ch.cloud.ger.systems

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for demo.ch.cloud.ger.systems

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

demo.ch.cloud.ger.systems
*.demo.ch.cloud.ger.systems

Other certificates including the domain name ger.systems

(limited to 100 certificates)
communaute.angry-pangolin.cloud.ger.systems
lexpress.fr.xiti-https.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
front.staging.liberation.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.cloud.ger.systems
demo.ch.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
*.lexpress.fr
*.cloud.ger.systems
liberation.api.staging.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
api.lexpress.fr.euro2016.cloud.ger.systems
api-live.cloud.ger.systems
demo.ch.cloud.ger.systems
communaute.utf-8.cloud.ger.systems
api-live.cloud.ger.systems
communaute.angry-pangolin.cloud.ger.systems
registry.tools.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
registry.tools.cloud.ger.systems
moncompte.lexpress.fr
*.cloud.ger.systems
communaute.perf.cloud.ger.systems
api-live.cloud.ger.systems
*.cloud.ger.systems
communaute.resultats-examens.cloud.ger.systems
registry.tools.cloud.ger.systems
registry.tools.cloud.ger.systems
*.lexpress.fr
static.cloud.ger.systems
static.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
lexpress.fr.staging.ch.cloud.ger.systems
*.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
production.customerhappiness.cloud.ger.systems
api-live.cloud.ger.systems
api-live.cloud.ger.systems
staging.customerhappiness.cloud.ger.systems
demo.ch.cloud.ger.systems
moncompte.lexpress.fr

Certificate

The complete raw certificate details for demo.ch.cloud.ger.systems in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+v34hLvtHKllySovNDx
y8YNt3KqOmP1SvjA7DJZOrVk+W3773DhOFtWfmxnWnB+2qihx0Il9RrfOqO1EFvN
jM/FNeQljaBb/RpO/OJ42aMBIY3KKbHS7NoMeSybPefIZNOOxQYvxuHbQg9F6Iyf
xG+mKPWNWXqK+E3GoDWxnPgVo56ZRZ9defgKb8RUc4a87bq4nFM6BRZer3wxBWs8
AgpYFn1Cl4/nM7oZKUtlsk/h5mjXNmJrFpzTVzWB81Yd7lk406xlIF0AOp5U3fKK
0wsC1pe+8S9TW+zXehWMR9NujU9hPWZnc+caQZYidnl3uA8OGP4CYEHIHAg7cAbc
kQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 5589562367973077245890872994508370708
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-12 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-12-12 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.ch.cloud.ger.systems'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22713016891190642141681581833375966827437232628406726496690984899430151428409178838478243296931080036459548845693500525282890670095481116539933299977748775927316324272755121835443720966916158389817037165625514364028599422055956065218237827730353352048207226169079502371416325062649464883246783558020401591531785702318270029641796124224489710841281244728863749827322082841563188890033590846300664022194475555826623325366013059382302794820706597557910015626082855284089316447324211704880046184080268152726169991434783104314107455503628880962997393846615480694584645294805398862599346413427892041330267595396030312930449
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							912226956a3f39490fa652127d31abb07afb5fe4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.ch.cloud.ger.systems'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.demo.ch.cloud.ger.systems'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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