*.staging.sonnen.de

Issued by Amazon

About this certificate

This digital certificate with serial number 03:52:aa:0f:5e:4f:4e:30:b1:28:2b:8b:61:dc:dc:1a was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.staging.sonnen.de

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:52:aa:0f:5e:4f:4e:30:b1:28:2b:8b:61:dc:dc:1a
Serial Number (int): 4416901556997127287938929372455296026
Serial Number lenght: 122 bits, 16 octets

SubjectKeyId: a6:e6:3d:56:81:20:bd:39:4d:06:30:99:51:56:62:0e:4d:02:be:8e
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): af:82:a6:ef:78:32:c4:f0:b3:52:89:75:21:b6:d6:a9:92:4d:f2:40
Fingerprint (sha256): 80:0b:9a:48:6d:f1:df:4b:8a:07:b6:60:15:dc:89:6e:61:43:7f:6d:16:81:a1:7f:43:0f:08:5d:96:fd:18:f7

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.staging.sonnen.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.staging.sonnen.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.staging.sonnen.de

Other certificates including the domain name sonnen.de

(limited to 100 certificates)
partner.sonnen.de
*.staging.sonnen.de
my.dev.sonnen.de
partner.staging.sonnen.de
centralsystem.ocppdev.sonnen.de
*.account.sonnen.de
admin.ocppdev.sonnen.de
*.sonnen.de
my.sonnen.de
partner.dev.sonnen.de
enos-api-dev.sonnen.de
apigw.sonnen.de
vppp-logger.vpp-prep.sonnen.de
my-api.sonnen.de
fleetview-dev.sonnen.de
*.sonnen.de
timeseries.iot.sonnen.de
gateway.ocpp.sonnen.de
atlantis.internal.sonnen.de
my.sonnen.de
preview.sonnen.de
storybook.sonnen.de
*.sonnen.de
*.sonnen.de
admin.ocppdev.sonnen.de
my.dev.sonnen.de
eservices-api.sonnen.de
*.sales.staging.sonnen.de
dp-contract.sonnen.de
my.sonnen.de
*.sonnen.de
admin.ocppdev.sonnen.de
service-dev.sonnen.de
*.eservices-api.sonnen.de
www.my-dev.sonnen.de
*.analytics.sonnen.de
enos-api-dev.sonnen.de
wiki.sonnenbatterie.de
my.dev.sonnen.de
my-api.sonnen.de
my.staging.sonnen.de
*.analytics.sonnen.de
service.sonnen.de
my-staging.sonnen.de
my-dev.sonnen.de
my.sonnen.de
free.sonnen.de
gateway.ocppdev.sonnen.de
gateway.ocpptest.sonnen.de
partner.dev.sonnen.de
vault.sonnen.de
partner.preprod.sonnen.de
gateway.ocppdev.sonnen.de
*.sonnen.de
documents.sonnen.de
fleetview.sonnen.de
partner.preprod.sonnen.de
bitwarden.sonnen.de
*.analytics.sonnen.de
centralsystem.ocpp.sonnen.de
partner.dev.sonnen.de
*.account.sonnen.de
gateway.ocppdev.sonnen.de
preview.sonnen.de
vppp-powercloud.vpp-prep.sonnen.de
fleetview.sonnen.de
*.analytics.sonnen.de
live.komplett.sonnen.ims.de
components.sonnen.de
timeseries-dev.iot.sonnen.de
vault.sonnen.de
centralsystem.ocpp.sonnen.de
documents.sonnen.de
gateway.ocpp.sonnen.de
dp-billing.sonnen.de
analytics.sonnen.de
my.preprod.sonnen.de
service.sonnen.de
*.sales.sonnen.de
*.sales.staging.sonnen.de
preview.sonnen.de
centarlsystem.ocpptest.sonnen.de
dev.dlm.iot.sonnen.de
centralsystem.ocpp.sonnen.de
centarlsystem.ocpptest.sonnen.de
my.sonnen.de
dev.dp-billing.sonnen.de
*.staging.sonnen.de
live.komplett.sonnen.ims.de
jobs.sonnen.de
my.dev.sonnen.de
partner.dev.sonnen.de
account.sonnen.de
admin.ocppdev.sonnen.de
enos-api.sonnen.de
fleetview.sonnen.de
*.sonnen.de
admin.ocpp.sonnen.de
*.staging.sonnen.de
staging.dp-contract.sonnen.de

Certificate

The complete raw certificate details for *.staging.sonnen.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHQG4Qaa8p6EKMUJbEha
HHUAO8EyHSkqNQD6uEuK+IVJUhkAxXVZAPlWgQ1ejSNFYOkOpHiHmkWw+JjZiQbg
FbI1bPHcq7AuXhqzq6ZswgmnNtYnTETfqCXx3dPNfbig4GPV+lPNc7q+JxcuMGGP
joZaSMwBPqNj9NOh06MPx3rnFL+j67VhLtwZcpziBPd6qmqNhVxA700IyM/EoAUC
wAFsjBTTxkRJHe3lkH7Ohyq8xyuHWm4kFDxNBo+d/AZojH8mGFUBVO7cb67DX+J4
nKM1N6nLkYeIVzTTvuV3EU0ROnhh807hJ14C99sWIovFWXUSuAPSGvOvKMOayL7r
ewIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 4416901556997127287938929372455296026
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-12 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-12 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.staging.sonnen.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25304875975793213197749143552993942564792461991482594991233998799527651380917230759191905839561376538906184997176604905012452256380269496369093157356369874543405601053724335228280664211128964138833688992405356034338068022617620664349341425735058438867120319118916669335617529659990027124692330311701787484023775423806399902828553207693926177163664107077511464221337272857863476600668998997541839250021243876904171862907756219547056019466667079600383682304571540688317797209650473672630626667396538409937165911429433029067792360769779013625437143573504842645985434250647836867923287509340925090117207141961089335356283
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a6e63d568120bd394d0630995156620e4d02be8e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.sonnen.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000166674fd8640000040300483046022100b91553cf2ec39584a44c92b248020ee12a822ac5571e19a919bd1ae85985f34b022100f7aacc272e198767f5b4b06b5c62ac03d9dbc50d3b0f1482c1b3d9ad054a24640077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000166674fd94e0000040300483046022100bb541c836b497d32d243f2794c25628956c0c5f9d0807ec2d05d8ed81b45389b022100ec9a0ee61c78b6909b3c819da38123deacca791dda3166fc7aa17834a6280e36
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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