*.tedk12.ca
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 06:b7:1c:e6:f6:60:c8:46:1c:e7:35:fd:af:35:33:1e was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.tedk12.ca
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:b7:1c:e6:f6:60:c8:46:1c:e7:35:fd:af:35:33:1eSerial Number (int): 8926144506017964282398683340217856798
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: ab:ad:59:9e:5f:44:90:d1:11:87:4b:5d:d1:05:a4:2d:7c:45:33:2a
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 81:c5:23:66:95:cc:1c:ab:65:13:2e:fa:95:26:68:3b:7b:1d:90:e5
Fingerprint (sha256): 5e:82:74:25:33:80:0d:5a:f9:ac:e3:83:d6:e4:c6:3c:0b:5a:ed:63:38:65:d5:7a:b6:73:fb:88:85:19:f8:12
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate *.tedk12.ca
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.tedk12.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.tedk12.ca
ted.peopleadmin.ca
tedk12.ca
*.ted.peopleadmin.ca
ted.peopleadmin.ca
tedk12.ca
*.ted.peopleadmin.ca
Other certificates including the domain name tedk12.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.tedk12.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9TCCBN2gAwIBAgIQBrcc5vZgyEYc5zX9rzUzHjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTAyMjAwMDAwMFoXDTI0MTExOTIzNTk1OVowFjEU MBIGA1UEAwwLKi50ZWRrMTIuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDc9dQTYXQumu4aq70+VZom8PxrW1eLWQvRRVjVXgkOhxUUA0Rhn5/jqk8g B4Od/0+7TrrXgsQqbkbi0IK9VLvACew3ieAxa8YdkgeRh5LFTPshQIQUIKfYLph9 2Dm0tmjMOGNGR98SIMX0WYf8u3y2eSaI6iHDaag1bZq8sRVEMXDwvNusSkHpQVFX bITLCxaK3ls/v7Wz2xlJ4UIypNPyfdDJUKxKmdgKnnGMt0hTgose7lBNlPerJf34 Ldwy7B3vcybOKt/gKUgq4PyNKCJ+9sSqFGLrft9oOpnp40c5T71qw4Y2ZLNqCLW9 L8x8vbWqoT14sg6CLmib7TxYXlWLAgMBAAGjggMXMIIDEzAfBgNVHSMEGDAWgBRV 2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUq61Znl9EkNERh0td0QWkLXxF MyowSwYDVR0RBEQwQoILKi50ZWRrMTIuY2GCEnRlZC5wZW9wbGVhZG1pbi5jYYIJ dGVkazEyLmNhghQqLnRlZC5wZW9wbGVhZG1pbi5jYTATBgNVHSAEDDAKMAgGBmeB DAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1 c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0 dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0 cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB /wQCMAAwggF8BgorBgEEAdZ5AgQCBIIBbASCAWgBZgB2AHb/iD8KtvuVUcJhzPWH ujS0pM27KdxoQgqf5mdMWjp0AAABi1S3xKwAAAQDAEcwRQIhAJqdK8RRPdvK6jEh dep+kX2QCwros9fmwOrb/ViaAqWnAiAblfneZZBdVwykrJFNcGW7iZVWyVH84zpt lcXy91cYTAB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi1S3 xKkAAAQDAEYwRAIgJxDBr8/+3je+GmFeBGx2NgIPs7qikctVQJH5r78eBNACIFVa MaI/LfbEhP52e+rj6tOppfbvpEHAftxQbC2Ev0EJAHUA2ra/az+1tiKfm8K7XGvo cJFxbLtRhIU0vaQ9MEjX+6sAAAGLVLfEqAAABAMARjBEAiEAoU8EyqQkzYZJqLpK RinGnzcH+PMzM1tFpzQEPMX7y1sCHzLIArAm+2j528fPJjjXZqOXVV8hEVi3/LzI hyjfgN4wDQYJKoZIhvcNAQELBQADggEBAF02rdtVptSyAxSoHHLROaOkuoyzqzYS Q+7vkZd1jPtuqXw9f8GeQ8L+8SW1/Ymn+xiYasTJHJaZXvYvqD+gqvFUJ4NVURws 0Gl6m45JqXTF1P791JRdmXHkLPjTSaA54/Yqo8gw2Qq495pszkhzfjHPSiNQ7lCu tm+qe32hAi6WncXKcP2+rE1gEdn/+JSqFYqw/GcXj0pmX3+CfiDjFxUvbCp5rgIy u39Cb7P06atbTpHNA+ix5Rgica60cHNXYwUKpwiu7b1Rr5xIoBeem8AVt2BpWbJJ BN2vfmqy0I2De+Cme2KFJr+kHr1tErxNb/0sE4KWnRIoHuDFsofhM+c= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PXUE2F0LpruGqu9PlWa JvD8a1tXi1kL0UVY1V4JDocVFANEYZ+f46pPIAeDnf9Pu06614LEKm5G4tCCvVS7 wAnsN4ngMWvGHZIHkYeSxUz7IUCEFCCn2C6Yfdg5tLZozDhjRkffEiDF9FmH/Lt8 tnkmiOohw2moNW2avLEVRDFw8LzbrEpB6UFRV2yEywsWit5bP7+1s9sZSeFCMqTT 8n3QyVCsSpnYCp5xjLdIU4KLHu5QTZT3qyX9+C3cMuwd73Mmzirf4ClIKuD8jSgi fvbEqhRi637faDqZ6eNHOU+9asOGNmSzagi1vS/MfL21qqE9eLIOgi5om+08WF5V iwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8926144506017964282398683340217856798 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-19 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.tedk12.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27893649604817641659364090474920534602392413715493787015875550572072689690900303474824283784131688181479927980836819798570116534291951701001576536867424600192153230611039838207560409526069806403119496509150641483237107911754209873357999022956827573370987276883571525234362043197412195176214332148374706826932563689245419029372828973300373066958484770373102282542681011867095597237984618881451232895653209848991167323056238290520497924122695874543679617597684883679463913731211318703857736142606685423531636117922601456533611122848344711097166073140689791766485460148228195504040372037660403553190039018474207446979979 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) abad599e5f4490d111874b5dd105a42d7c45332a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.tedk12.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ted.peopleadmin.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tedk12.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ted.peopleadmin.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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