assets.tokoko.id
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 02:39:71:f5:8d:a9:a5:f7:61:49:eb:a4:5d:b5:65:65 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=assets.tokoko.id
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:39:71:f5:8d:a9:a5:f7:61:49:eb:a4:5d:b5:65:65Serial Number (int): 2956728279533824156304848973586589029
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 04:28:50:51:5f:be:fc:79:64:11:08:01:a1:e4:20:60:af:cb:91:2c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 65:40:b1:ec:dd:a1:bf:95:4e:3b:d7:f6:6b:1a:38:df:e1:84:f4:54
Fingerprint (sha256): 6f:95:be:3f:3b:4a:4b:f5:02:b6:16:09:11:82:a2:8b:26:9d:a1:d1:68:36:87:c4:9d:8c:d5:cc:c3:94:55:61
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate assets.tokoko.id
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for assets.tokoko.id
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
assets.tokoko.id
Other certificates including the domain name tokoko.id
(limited to 100 certificates)
Certificate
The complete raw certificate details for assets.tokoko.id in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIQAjlx9Y2ppfdhSeukXbVlZTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIxNjAwMDAwMFoXDTI1MDExMjIzNTk1OVowGzEZ MBcGA1UEAxMQYXNzZXRzLnRva29rby5pZDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANFtTX8DlJRIrbAIfA7D8lMp+PB+RHbRAugCUl1mgbCROUotDY8J LS/Op4llhV/ngvoZnhTLDlGxkJ3BDQ/b3/g5ChCa0TfHCY/y0QM3SudtWbctJ1Q4 G2fCTHvf9qU8m8RVSOfVt98Z9Sa6ftQk6zOyJXD42weMX83uXUY09hxlG/gGwFhx CYTIkPT5mxTgtC1Z+7ij8BGRASYsnx7+yKI1OZNgqWtZd5NriY1wj7BDnJxuOhNm XV9YpOOH2dd7hjtxQndak+Ms9XyiYZdZvSqMbhs0qlHnjZ8d+XedBVG188iL1vnQ jtcNzbGgDPblYVRqmOOQFAYRL3rzM315uFUCAwEAAaOCAugwggLkMB8GA1UdIwQY MBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBQEKFBRX778eWQRCAGh 5CBgr8uRLDAbBgNVHREEFDASghBhc3NldHMudG9rb2tvLmlkMBMGA1UdIAQMMAow CAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6 b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYD VR0TAQH/BAIwADCCAX0GCisGAQQB1nkCBAIEggFtBIIBaQFnAHYATnWjJ1yaEMM4 W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGMcXkNEwAABAMARzBFAiEA7KDvMLQ0 tvGti5nj1grpgj9D6sKr1rQY/7j4Eft2MjECIDZ7IKXaeDqUmv76RMktZ3JqEMF/ D3g6DrTiRMJDyqnhAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4A AAGMcXkNVQAABAMARzBFAiBjwl5lhwJ69BD6nlgEyRb7DEGrqWkBZPsvWn289S9Y wwIhAKnej7E+ubtHEP8/o0rATQrpwP5coDnXEEVCdRQIPvHgAHUAfVkeEuF4Knsc YWd8Xv340IdcFKBOlZ65Ay/ZDowuebgAAAGMcXkNPQAABAMARjBEAh9TyTjNx9Sm 3qQ25pBpia8FOJvhAvo2Z0XJ9eRj/9L6AiEA6UFXxgsyUSyN8aPsMDVte+ifatOM GQMLBa2+Ro7PBNgwDQYJKoZIhvcNAQELBQADggEBAFjaWloyuxsCIPeoha7blGnw ZfqIdC+Y43F0HBREcqUPo2wk3sBha+6DhNqfsLkUbg0kxDQiQf4xI3+7YMzlbaZ+ r6mEEzRBwZc0gzNNklB4TAh1a2hQHA2dX2PAL4OnREw94CqJulkb3Jghf9K//pQX ccjQMhTe5d3OAjXABwPc48upvXZXQrC1VnbTdPvPNz0dMeNJ0FOAYgYSB15ZiD5u trE4q3iKBxRPutFuNUdvAy1Lhm2JAAnj7wIipAKoixGSZYOdEt7wiaDPMSgPPTCK ra5v2QaBUIqTVDcTG+Mv/NTCfkwUFtR025MTlA9G645av8464h+11ztQWpGI2x8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0W1NfwOUlEitsAh8DsPy Uyn48H5EdtEC6AJSXWaBsJE5Si0NjwktL86niWWFX+eC+hmeFMsOUbGQncEND9vf +DkKEJrRN8cJj/LRAzdK521Zty0nVDgbZ8JMe9/2pTybxFVI59W33xn1Jrp+1CTr M7IlcPjbB4xfze5dRjT2HGUb+AbAWHEJhMiQ9PmbFOC0LVn7uKPwEZEBJiyfHv7I ojU5k2Cpa1l3k2uJjXCPsEOcnG46E2ZdX1ik44fZ13uGO3FCd1qT4yz1fKJhl1m9 KoxuGzSqUeeNnx35d50FUbXzyIvW+dCO1w3NsaAM9uVhVGqY45AUBhEvevMzfXm4 VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2956728279533824156304848973586589029 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'assets.tokoko.id' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26437704917657626711823873540655454695462371496937530608932316367963887000077928462180544756907841568610739426248368740789289245067339595911402816130088024863300940774240749268754395981985609528860893053082779393531942134300563098491820849945014432388783728488149632915927323031423881761497041564579545923918682803692617659566685414081293429812455654802416377581063612241374004420867156062880406960899773636850580865754940155113959911068838184547913647225155964509484608784295716740769334586526835447646807438160148063931963475253857384345280564851764942831851100996385995980576115756343939295725926770128924895197269 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 042850515fbefc7964110801a1e42060afcb912c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.tokoko.id' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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