DV SSL/TLS Certificate for api-clinique-preprod.otstc.net

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M02)

About the api-clinique-preprod.otstc.net DV SSL/TLS Certificate

This certificate with serial number 01:b3:92:7f:f8:f7:84:eb:71:52:ab:9a:6a:51:d5:22 for api-clinique-preprod.otstc.net was issued on by Amazon.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for api-clinique-preprod.otstc.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 01:b3:92:7f:f8:f7:84:eb:71:52:ab:9a:6a:51:d5:22
Serial Number (int): 2261620504292937282528300900864349474
Serial Number Length: 121 bits, 16 octets

Subject Key Identifier: d0:d2:0f:f6:14:0c:6a:0c:04:f1:26:fa:3b:c7:10:b8:f2:50:9f:14
Authority Key Identifier: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (SHA-1): 00:f3:43:ab:51:b0:26:f3:e6:c9:fa:5a:4d:6a:f2:98:22:2b:17:1a
Fingerprint (SHA-256): 1b:41:1a:ff:82:3d:d9:2a:db:61:ab:e1:85:f3:fa:24:e2:fb:77:1d:47:fb:90:7d:1e:07:f9:ce:f1:be:42:76

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation Information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate api-clinique-preprod.otstc.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for api-clinique-preprod.otstc.net

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for api-clinique-preprod.otstc.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGJzCCBQ+gAwIBAgIQAbOSf/j3hOtxUquaalHVIjANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAyMB4XDTI0MTAwMzAwMDAwMFoXDTI1MTEwMTIzNTk1OVowKTEn
MCUGA1UEAxMeYXBpLWNsaW5pcXVlLXByZXByb2Qub3RzdGMubmV0MIIBIjANBgkq
hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4lrM9uCyNLRDmNVtMDwKDSqqnXjB2IC
zhTg3z9gfwbm9QP7j7CukK5rKPfORVYhfR9uEQkR2WWjtk0OjUHJQohh03Ck9dcX
5D6kVjQQzn2MXtfbd1g1/nX+C4J0Nv7razM4GxQ2rt91rVQXU0SW8wpoOw34i2tQ
14z6m4CA7TABs2tCExVp7ujMgwDxsUKuvMG5k3LD0Rexh3J5LNYi+vJtKOxKtG4g
kmuZTI/5QoPdj58tmFceskFi4PyNcCR6FNlTx9Ju2kFocBW9VksKuO0AoXQOZaK6
XlwMe6PxUbVBqsX77l9wi3/OdqaACZWJbeRQcbe3487PnNQN8Ddk4wIDAQABo4ID
NjCCAzIwHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYE
FNDSD/YUDGoMBPEm+jvHELjyUJ8UMGkGA1UdEQRiMGCCHmFwaS1jbGluaXF1ZS1w
cmVwcm9kLm90c3RjLm5ldII+MmE1N2o3N3hjMDZydGc1M3hycDR4NGU0bW1tNmtl
dy5hcGktY2xpbmlxdWUtcHJlcHJvZC5vdHN0Yy5uZXQwEwYDVR0gBAwwCjAIBgZn
gQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF
BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRy
dXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo
dHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0
dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMB
Af8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQAS8U40vVNyTIQGGcOP
P3oT+Oe1YoeInG0wBYTr5YYmOgAAAZJQKFp1AAAEAwBGMEQCIHJ28m9JEogBeQOT
0p/LMMqSaiA+b2At+uMC3NNDsFnCAiBfhrb3/U1vKCNeV7oRUnD+od8CIIQE2U90
+rNyhVf5YAB2AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABklAo
WqwAAAQDAEcwRQIhAKm5n27Hlrvihzrn1Tr4+14+y+v/B8QGce5OBgJqiFZDAiAj
ywYLxMYPkHQZYQ2RridUL/Tl3G64cUkkW/pKlOh6HQB2AObSMWNAd4zBEEEG13G5
zsHSQPaWhIb7uocyHf0eN45QAAABklAoWr4AAAQDAEcwRQIhAMpjbU5dS7BZtB/8
rtgCZQghE9jx72lKPjS06ZpU/FtmAiAk8cq14QGwxtmWokqYUFX6JD2U/2S9cFyk
+sST8obPHTANBgkqhkiG9w0BAQsFAAOCAQEAlHiz0cODPgySAw85V6oJn6Ue+amP
hcD7Fa/+rSUMqhQ3z2RphTazX8Bz5l6Nuj3aYiYq+WbHsIioFvEnM3DF7wcrUiaG
TDTJ3ChIlBvifhVsT/DmgVhzbgZilZafCAFxAL/NdB/0gfuVXXfXeWAvT9EiJfQi
qDMR3WHMUgC/vtNsjqKCazTRYNuUzDUppMm2bRwT88Ei8iuh2/URU8NKloy4QB0b
cVj5uJqt5Rtbkny8+441VbSPpNz3ntIWBnwUGKqz51gLnG7OSoPmcaM8o00xtN0J
qJnb3Aro/L+QsUDrjAxqOGBkZ7EvkGozKa0/yBjV9bce5DW5tpvfY+meag==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4lrM9uCyNLRDmNVtMDw
KDSqqnXjB2ICzhTg3z9gfwbm9QP7j7CukK5rKPfORVYhfR9uEQkR2WWjtk0OjUHJ
Qohh03Ck9dcX5D6kVjQQzn2MXtfbd1g1/nX+C4J0Nv7razM4GxQ2rt91rVQXU0SW
8wpoOw34i2tQ14z6m4CA7TABs2tCExVp7ujMgwDxsUKuvMG5k3LD0Rexh3J5LNYi
+vJtKOxKtG4gkmuZTI/5QoPdj58tmFceskFi4PyNcCR6FNlTx9Ju2kFocBW9VksK
uO0AoXQOZaK6XlwMe6PxUbVBqsX77l9wi3/OdqaACZWJbeRQcbe3487PnNQN8Ddk
4wIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 2261620504292937282528300900864349474
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-11-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-clinique-preprod.otstc.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18119841326306504597957338906671490408055069145772784735077821114167803600856591222540513284430183325143221483538624087281018332848887711448925423411695231149473980552124350061397654349867466862722477109407409387538311511341472429300342425510213238231473816201203893905044127578042563406526041295845417826389734110531541173041970080236113942507617684183865505284219390936911325673328829229135333042991346689003261078308307239787418118701025962608943398561714654034345536068978260653433188739523259542275073217393704728558771616137863639229698287979848152163928578980846189662449635043822793294052758449170643471000803
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d0d20ff6140c6a0c04f126fa3bc710b8f2509f14
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-clinique-preprod.otstc.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '2a57j77xc06rtg53xrp4x4e4mmm6kew.api-clinique-preprod.otstc.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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