dt-cf-test.davidzwirner.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0c:29:13:c4:9c:80:1e:14:66:8e:79:45:2f:3f:c4:bc was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dt-cf-test.davidzwirner.com
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0c:29:13:c4:9c:80:1e:14:66:8e:79:45:2f:3f:c4:bcSerial Number (int): 16164021063555786669523506600840512700
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: fa:0b:ea:50:5f:3d:06:fa:bf:db:41:b0:ec:80:5f:b2:d2:50:e4:33
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 1a:79:b3:69:11:8e:d5:55:11:fb:8d:68:60:37:d4:d7:d3:ae:b7:e9
Fingerprint (sha256): 63:36:f1:4b:5a:25:52:17:a9:ca:63:e9:f1:61:c6:25:2d:84:8a:8c:fe:03:f1:1e:f2:e2:e7:0c:a3:49:e1:2b
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate dt-cf-test.davidzwirner.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dt-cf-test.davidzwirner.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dt-cf-test.davidzwirner.com
Other certificates including the domain name davidzwirner.com
(limited to 100 certificates)
fileshare.davidzwirner.com
images.davidzwirnerbooks.com
davidzwirner.com
davidzwirner.com
davidzwirner.com
db.davidzwirner.com
dt-cf-test.davidzwirner.com
*.davidzwirner.com
assets.davidzwirnerbooks.com
*.davidzwirner.com
assets.davidzwirnerbooks.com
db.davidzwirner.com
db.davidzwirner.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
db.davidzwirner.com
*.davidzwirner.com
images.davidzwirnerbooks.com
davidzwirner.com
davidzwirner.com
davidzwirner.com
db.davidzwirner.com
dt-cf-test.davidzwirner.com
*.davidzwirner.com
assets.davidzwirnerbooks.com
*.davidzwirner.com
assets.davidzwirnerbooks.com
db.davidzwirner.com
db.davidzwirner.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
images.davidzwirnerbooks.com
db.davidzwirner.com
*.davidzwirner.com
Certificate
The complete raw certificate details for dt-cf-test.davidzwirner.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEdTCCA12gAwIBAgIQDCkTxJyAHhRmjnlFLz/EvDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDUyNjAwMDAwMFoXDTI0MDYyMzIzNTk1OVowJjEk MCIGA1UEAxMbZHQtY2YtdGVzdC5kYXZpZHp3aXJuZXIuY29tMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0Yp1zac+jpmsyuMuAukWMSh8H/Mfl8NHzyX CufuQcV+Kc0rxBq1G/hspwJI0s67pllGEY3zeTlRfuEt8OjPD46/U4ph7WeRzLaJ RtyjfIoOK7P8mXgCCOCtTeqS/6C2A7yrS+/BHJxo9NkIhdsfh/hJa4ULl+tPOn8v GjSvJoW3sFpf+VY2icv0FrAWvJTQkFx6fv8O1I8DSwAB7F6JuqKgs1Ma4afxMbdw pGxA8idToZnL/Av5DOJ9eTcMxoFkomvdl22BXHwWSDWXzLpmR4cqQtw7q+EPsYio ZwAfwWNJIpbtW/RAaZ5qUC54QmsqYCRs9/ZR9Sea8meqhawY6wIDAQABo4IBhzCC AYMwHwYDVR0jBBgwFoAUwDFSzVpQw4J8dHHOy+mc+XrrguIwHQYDVR0OBBYEFPoL 6lBfPQb6v9tBsOyAX7LSUOQzMCYGA1UdEQQfMB2CG2R0LWNmLXRlc3QuZGF2aWR6 d2lybmVyLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEG CCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1h em9udHJ1c3QuY29tL3IybTAyLmNybDATBgNVHSAEDDAKMAgGBmeBDAECATB1Bggr BgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpv bnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMi5hbWF6b250 cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB /wQCBQAwDQYJKoZIhvcNAQELBQADggEBABRU49YfZ95PosdXdfMPomDpnaJ1Nstj GUGsT9X86iflRhHfFJ/fP9HJXa9OECpp1lMtKwsQx2Kyeq7Xf8kerGUtyw+K/M3T PCrP7VT7rpS7meOM2WveL1Spx2vp50VY5jIFRLU9M5E6IkGxNZCS2hDqwCj5OVvr vT0TM2xoTJCSwhjWJfDXoAqzNNJ3Pog245B4uOwf84/oXKQ7Hq4qbR8S0CMknavc LLwBE2EbVwpowwWdcFHpuKa68nt5/JNXkCnjBNg8fkygRp+RNEMzvDfhY+yW2Vt0 ERY8rz5yBu0awpugSi7+IX874SWB4cAuMwS9ubXef79jJg+tXqpPy2M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0Yp1zac+jpmsyuMuAuk WMSh8H/Mfl8NHzyXCufuQcV+Kc0rxBq1G/hspwJI0s67pllGEY3zeTlRfuEt8OjP D46/U4ph7WeRzLaJRtyjfIoOK7P8mXgCCOCtTeqS/6C2A7yrS+/BHJxo9NkIhdsf h/hJa4ULl+tPOn8vGjSvJoW3sFpf+VY2icv0FrAWvJTQkFx6fv8O1I8DSwAB7F6J uqKgs1Ma4afxMbdwpGxA8idToZnL/Av5DOJ9eTcMxoFkomvdl22BXHwWSDWXzLpm R4cqQtw7q+EPsYioZwAfwWNJIpbtW/RAaZ5qUC54QmsqYCRs9/ZR9Sea8meqhawY 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 16164021063555786669523506600840512700 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-26 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dt-cf-test.davidzwirner.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17581723272135559334417186727440874487585031177856742513237811698202748483273704527722794367809719414790231925539288312609459758768881165351520415422322242513622976012881587405371672153009225951882069279189923427184713775691679698378752672859710640297610954226787174315571057139726361252624690942603617170906628441724113120610275489490009526909440714756722980170477028237036402616607981205098305327092468068998438028755413667403908651082551707288805780991217510673293604267306061211794426677522580787547717540072540645406632950090965949041862191809114620779826708921767554532556476633559541285691117630898916616313067 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fa0bea505f3d06fabfdb41b0ec805fb2d250e433 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dt-cf-test.davidzwirner.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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