nonprod.mytandem.eu
Issued by Amazon
About this certificate
This digital certificate with serial number 06:12:98:05:10:d7:1a:4e:a9:d0:a2:04:db:93:c2:95 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=nonprod.mytandem.eu
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:12:98:05:10:d7:1a:4e:a9:d0:a2:04:db:93:c2:95Serial Number (int): 8071912645775493200932236307115262613
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 21:ae:c0:de:60:3b:da:37:5b:be:af:37:8f:8d:95:32:ff:80:0d:ff
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): a1:49:e9:43:33:6c:b2:4e:06:77:7d:da:c9:3d:23:56:4d:44:64:50
Fingerprint (sha256): 6a:f6:07:a8:9a:1b:3c:6b:5f:3c:9c:a1:b7:53:03:95:7b:46:8b:07:7c:73:be:02:ea:19:3d:86:16:84:ab:52
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate nonprod.mytandem.eu
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nonprod.mytandem.eu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nonprod.mytandem.eu
*.nonprod.mytandem.eu
*.nonprod.mytandem.eu
Other certificates including the domain name mytandem.eu
(limited to 100 certificates)
*.mytandem.eu
*.mytandem.eu
stage.eu-west-1.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
dev.eu-west-1.mytandem.eu
*.test.mytandem.eu
*.mytandem.eu
*.mytandem.eu
demo.mytandem.eu
nonprod.mytandem.eu
*.mytandem.eu
mytandem.eu
preprod.eu-west-1.mytandem.eu
mytandem.eu
*.test.mytandem.eu
*.lambda.mytandem.eu
mytandem.eu
uat.eu-west-1.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.lambda.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
stage.eu-west-1.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
dev.eu-west-1.mytandem.eu
*.test.mytandem.eu
*.mytandem.eu
*.mytandem.eu
demo.mytandem.eu
nonprod.mytandem.eu
*.mytandem.eu
mytandem.eu
preprod.eu-west-1.mytandem.eu
mytandem.eu
*.test.mytandem.eu
*.lambda.mytandem.eu
mytandem.eu
uat.eu-west-1.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.lambda.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
Certificate
The complete raw certificate details for nonprod.mytandem.eu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEkzCCA3ugAwIBAgIQBhKYBRDXGk6p0KIE25PClTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAxMjkwMDAwMDBaFw0yMTAyMjgx MjAwMDBaMB4xHDAaBgNVBAMTE25vbnByb2QubXl0YW5kZW0uZXUwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjGB/b5mprftdVIp9mLbX03n6K9ClQD98W JwBahqfSJ/IKWMKxyz2ZMo3fC0bvlc0vg7r+bifr19dJogk7x/edCLNxVsa/AikW X9uGxO+eoKkEg0YmY6bBwSIQQQv4ebaG9XfVb3muToq+7PNLmeCmnrlz+LZjqSwQ n4aPmm19cheqwOWc8i5plzGxb/ae30Ft6gXaOHmfEJsGgK7GdEdLat6BsABVis6w V1ivHdEeBKASG3jGOSuyHhIaMh/rRIqTvmgDgKgwW8RN0tKSy0fEgJa+c/+cmy3j /Gz+Q+7sajJS1FXl0Mo696O71clOcUy8b0B4RNuMlwUq84/7pcyhAgMBAAGjggGj MIIBnzAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQU Ia7A3mA72jdbvq83j42VMv+ADf8wNQYDVR0RBC4wLIITbm9ucHJvZC5teXRhbmRl bS5ldYIVKi5ub25wcm9kLm15dGFuZGVtLmV1MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0 cDovL2NybC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3JsMCAGA1UdIAQZ MBcwCwYJYIZIAYb9bAECMAgGBmeBDAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5zY2ExYi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0 MAwGA1UdEwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQEL BQADggEBAEU2W9moricrz2NLwjp1AJnpMDMEGs05g/AeNq1WsOwTvq3iPoI8fo0o 6C7A/rSLvfrM2DbZK7RUhzmJ/X1nwycFOV+rrgLs3LhfEYeI4NFGdE3aGn7XRA57 SBeyFuQzpFHAT1zK0o8oDN2+BDtV1xqN77dDwy2/7/ps9PjIKQ+H/URARx8q6wtj k3DPHhFzHjYOL7q05LdXotX9O8C6dge01QcFQRPNzHz0szHyJjR3xvok4dh0NYBM 8xy+eulcF8Koy1UNT9lF3cV9MCnUAq250WhULg2pMUzAKBL/NryM/NJ7FqySwuq0 iFSsyZXJpnUomXp3rgoXYYgsQr7g0SM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xgf2+Zqa37XVSKfZi21 9N5+ivQpUA/fFicAWoan0ifyCljCscs9mTKN3wtG75XNL4O6/m4n69fXSaIJO8f3 nQizcVbGvwIpFl/bhsTvnqCpBINGJmOmwcEiEEEL+Hm2hvV31W95rk6KvuzzS5ng pp65c/i2Y6ksEJ+Gj5ptfXIXqsDlnPIuaZcxsW/2nt9BbeoF2jh5nxCbBoCuxnRH S2regbAAVYrOsFdYrx3RHgSgEht4xjkrsh4SGjIf60SKk75oA4CoMFvETdLSkstH xICWvnP/nJst4/xs/kPu7GoyUtRV5dDKOveju9XJTnFMvG9AeETbjJcFKvOP+6XM oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8071912645775493200932236307115262613 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-28 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nonprod.mytandem.eu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28667991436553228880387910096649785977725540818958473854754361867924886741370591410809582574465647058985166808153013515475180998264897966879912247816881278830208239245246291667375294866277412208545795747696152314053324724974860479350131587830664441860420685232346184882759244368921343693727419209838727792929614294994942126961923438409175077736401096635422544381353006449115984791934505958310836812999621753630224512645007397409876088898253043168065875654018192762963639692554209326700829457566516797723998505397278398384435721676760680215042193388683727765860768734151779233125270935190365322235682616889605414571169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 21aec0de603bda375bbeaf378f8d9532ff800dff . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nonprod.mytandem.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.nonprod.mytandem.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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