*.thismoment.com
Issued by Amazon
About this certificate
This digital certificate with serial number 09:7d:fa:a9:50:95:b2:ba:d8:93:17:22:1f:5f:a2:b1 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.thismoment.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:7d:fa:a9:50:95:b2:ba:d8:93:17:22:1f:5f:a2:b1Serial Number (int): 12617173086281248898743992026354655921
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 3c:26:ac:40:71:18:3b:00:cf:f9:8c:78:2e:e8:3a:cc:c3:bd:e2:f5
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 5e:76:29:df:da:80:05:30:72:55:a4:40:aa:2c:84:c5:72:7e:1d:5e
Fingerprint (sha256): 7c:a2:5a:36:44:b7:ba:b8:65:dd:ec:4d:79:b2:4a:e0:7f:74:d1:cd:d9:d0:ac:81:f8:40:b9:9e:ce:ee:2a:48
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.thismoment.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.thismoment.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.thismoment.com
Other certificates including the domain name thismoment.com
(limited to 100 certificates)
www.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
guru.thismoment.com
*.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
xp.thismoment.com
xp.thismoment.com
disney.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.preview.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
support.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.dev.thismoment.com
www.thismoment.com
info.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
*.thismoment.com
guru.thismoment.com
*.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
*.preview.thismoment.com
*.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
xp.thismoment.com
xp.thismoment.com
disney.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
*.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
*.preview.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
support.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
*.dev.thismoment.com
www.thismoment.com
info.thismoment.com
www.thismoment.com
xp.thismoment.com
www.thismoment.com
www.thismoment.com
www.thismoment.com
*.thismoment.com
Certificate
The complete raw certificate details for *.thismoment.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEdjCCA16gAwIBAgIQCX36qVCVsrrYkxciH1+isTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAxMTMwMDAwMDBaFw0yMTAyMTMx MjAwMDBaMBsxGTAXBgNVBAMMECoudGhpc21vbWVudC5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCRvaqeswyjFg02152/DVh+fuAkpXTBG9v1zwke pm5ADraaY1HXabcLcnws3Dzusm6pucNSrrd5NqyXxf0GVFXRZe110l/y07dIv4BD Ay4YnuNycfR31HJfBV8Be4Yyv+Riup6Wg+buJz1xDTHAWo/jl8IE7HWs4pVGNFpd JFM8McijMbAzLQ2gcZq6yPQ2KyPuX6c1Y6pCeOj5n5Byi85D4IHnj+/QkUIoFRKB Jtu9/HOHSRD4n1WuxYYp5PYpVRwXhqjs37FzD4KfgVdc/BFKQ2UKxAJ3pQRePHII ejkvH+ZyNCR6ltSnL4QwL5+QsBIKlmx42nQj2EzJqnuqtAx5AgMBAAGjggGJMIIB hTAfBgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUPCas QHEYOwDP+Yx4Lug6zMO94vUwGwYDVR0RBBQwEoIQKi50aGlzbW9tZW50LmNvbTAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsG A1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29t L3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYI KwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6 b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9u dHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMB Af8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAbIFWdKqu7fUxdAafqwxBZuB+3sr2l 5Cbhq2eU6AOA1SYORmYJJG2QrU1GDMZpLd0mXzbkhE0kZkdGgvBcvsibgaBKs8pP 190+y86rjmHScPzY8hDoPwqCJaMTPDhUa8BmrBgXqSl5AtQx7HAGig3A0kU9rq+g WFK87UegUB3O+9EFqFc8ow6HL/uvKNX77mjD+XP8aS+PKIDLGzwKivbnjZOR7jhG wOC33ixcaFi5TjE5Ny8NkgE7ItmaF1IGtTtSgdJAkPUYOtS9W31Vc1eqmOqpldHb 5CKKBpyVb2UUqoicKAPs6ErmXWhi74soLD31ypafzo8S2JS1NHsbb7Pi -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkb2qnrMMoxYNNtedvw1Y fn7gJKV0wRvb9c8JHqZuQA62mmNR12m3C3J8LNw87rJuqbnDUq63eTasl8X9BlRV 0WXtddJf8tO3SL+AQwMuGJ7jcnH0d9RyXwVfAXuGMr/kYrqeloPm7ic9cQ0xwFqP 45fCBOx1rOKVRjRaXSRTPDHIozGwMy0NoHGausj0Nisj7l+nNWOqQnjo+Z+QcovO Q+CB54/v0JFCKBUSgSbbvfxzh0kQ+J9VrsWGKeT2KVUcF4ao7N+xcw+Cn4FXXPwR SkNlCsQCd6UEXjxyCHo5Lx/mcjQkepbUpy+EMC+fkLASCpZseNp0I9hMyap7qrQM eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12617173086281248898743992026354655921 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-13 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.thismoment.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18398082249206285859971409713897177478315234344252971494870069825577056392290692732791839227362097198455048544855294527750005737930861103355247070024587905569685902482721267803498011879980070440513505815315968885677528760711543839256378482342642325712938534928178875618051427130267946493526101273284421678685513816112289887805077637832931689060522685853406299327637105377042578202721643215707971683119023964280292084531732306778794721437991571248072108958620079550374988418441281464128619786351300176582197103098529324099440970435114793655849624104129608664741423594829620440445578219116562344817672610249913385880697 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c26ac4071183b00cff98c782ee83accc3bde2f5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.thismoment.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001b20559d2aabbb7d4c5d01a7eac31059b81fb7b2bda5e426e1ab6794e80380d5260e466609246d90ad4d460cc6692ddd265f36e4844d2466474682f05cbec89b81a04ab3ca4fd7dd3ecbceab8e61d270fcd8f210e83f0a8225a3133c38546bc066ac1817a9297902d431ec70068a0dc0d2453daeafa05852bced47a0501dcefbd105a8573ca30e872ffbaf28d5fbee68c3f973fc692f8f2880cb1b3c0a8af6e78d9391ee3846c0e0b7de2c5c6858b94e3139372f0d92013b22d99a175206b53b5281d24090f5183ad4bd5b7d557357aa98eaa995d1dbe4228a069c956f6514aa889c2803ece84ae65d6862ef8b282c3df5ca969fce8f12d894b5347b1b6fb3e2