preakness.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0f:fd:90:18:56:83:66:be:41:4d:61:bb:fe:bd:bc:d1 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=preakness.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0f:fd:90:18:56:83:66:be:41:4d:61:bb:fe:bd:bc:d1Serial Number (int): 21254993637216440984433815811314793681
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: c6:ca:5d:60:b3:80:d5:a7:28:ce:ed:3a:1a:fd:87:fd:d5:31:91:8a
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 1e:a3:ea:21:fa:67:a8:84:8f:a5:9a:77:f8:5e:de:a5:88:bb:f4:6c
Fingerprint (sha256): 84:05:f1:ab:69:f5:d8:10:fb:2f:f8:72:f2:38:d9:58:e7:33:1e:13:52:3a:2c:49:71:3b:16:af:d6:ea:55:4b
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate preakness.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for preakness.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
preakness.com
www.preakness.com
www.preakness.com
Other certificates including the domain name preakness.com
(limited to 100 certificates)
agendai.online
dev.preakness.com
secure4.nexternal.com
report.auradev.bycopilot.com
bet.preakness.com
secure4.nexternal.com
eventhelper.com.br
preakness.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
secure14.nexternal.com
secure4.nexternal.com
www.preakness.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
www.onymos.com
secure4.nexternal.com
secure4.nexternal.com
abxdb.com
secure4.nexternal.com
jardiparc.stepinsight.com.au
secure4.nexternal.com
ssl4132.cloudflare.com
secure4.nexternal.com
www.preakness.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
beat.preakness.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
secure14.nexternal.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
www.impactio.global
www.jdthegeek.com
secure4.nexternal.com
secure4.nexternal.com
www.sp-epfl.ch
yeschess.app
grood.app
secure4.nexternal.com
dev.preakness.com
www.sp-epfl.ch
secure4.nexternal.com
preakness.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
ssl4115.cloudflare.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
dev.preakness.com
secure4.nexternal.com
report.auradev.bycopilot.com
bet.preakness.com
secure4.nexternal.com
eventhelper.com.br
preakness.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
secure14.nexternal.com
secure4.nexternal.com
www.preakness.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
www.onymos.com
secure4.nexternal.com
secure4.nexternal.com
abxdb.com
secure4.nexternal.com
jardiparc.stepinsight.com.au
secure4.nexternal.com
ssl4132.cloudflare.com
secure4.nexternal.com
www.preakness.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
beat.preakness.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
secure14.nexternal.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
www.impactio.global
www.jdthegeek.com
secure4.nexternal.com
secure4.nexternal.com
www.sp-epfl.ch
yeschess.app
grood.app
secure4.nexternal.com
dev.preakness.com
www.sp-epfl.ch
secure4.nexternal.com
preakness.com
secure4.nexternal.com
preakness.com
secure4.nexternal.com
ssl4115.cloudflare.com
secure4.nexternal.com
secure4.nexternal.com
secure4.nexternal.com
Certificate
The complete raw certificate details for preakness.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgIQD/2QGFaDZr5BTWG7/r280TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTEwODAwMDAwMFoXDTI0MTIwNTIzNTk1OVowGDEW MBQGA1UEAxMNcHJlYWtuZXNzLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAJfIqzwakCPnmUIvqKl325idMtdWLiN1p2+fdHzXdNp/F+6UfpwhuCp+ 5X4W4smpSvljmG7go6M7W5W5qcTvRahHVDvYqouV6ZbGYTOkzBYnzt7P9x33eFaJ DyEkfOTNUOljzslCGIegXJ4hOB3Hsc9Fr1II6vqKZnEpCWjY2NvexpNFx2O9j2+Q FlPiL/bLCgAqlr2oPEuDzey4m6gWetp6Cfmd3euX+vrDpWYuQv9oBBM75K1TZxpo 7RVqgnYUOUUhPYMLpGeYCFNqYnZruYTeoZy3QdEjBqUVEeM/E2N0FYhq9Ap4lZva TSKK5c29IqyTQHYVS0GsahT/7mT2qxsCAwEAAaOCAvkwggL1MB8GA1UdIwQYMBaA FFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBTGyl1gs4DVpyjO7Toa/Yf9 1TGRijArBgNVHREEJDAigg1wcmVha25lc3MuY29tghF3d3cucHJlYWtuZXNzLmNv bTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9j cmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRp MGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNv bTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20v cjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggF+BgorBgEEAdZ5AgQCBIIBbgSCAWoB aAB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABi61FP0YAAAQD AEgwRgIhALzoqVXXM64rfOnGn0FdjluEwi1zfo471ALJ4q+vYaz9AiEAmSlEdx09 9Hye+PANueDgqu/Gkj4dUs5ygBYDGLBnM1MAdQBIsONr2qZHNA/lagL6nTDrHFIB y1bdLIHZu7+rOdiEcwAAAYutRT8aAAAEAwBGMEQCIBf0cvPaVuWk+1B3M/Kx86Vc iTClrYacr5yEYzcU25bqAiB9y12+DKeqkplGQEut1q+iQmltUOPCF7zUO34CYErw xAB2AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABi61FP2kAAAQD AEcwRQIhAK44mgCxQGmbjp3BCr+XBjqmBIShpRzLDaysiHFNEA5jAiBUKce22JLg QN3zDETvh4+tpVdW7zoo0fFaqit1Z3d5eDANBgkqhkiG9w0BAQsFAAOCAQEAnPuV SDYtCvSUd9HjnUyH5mqTBpyeiv2MgkWk1aU1ca0M3HOQRJGrEIpTk3Gz4TdRKxhd srhdrdUGxGbwahjxkSicc9Ha2fb7NwIw7QL5/AXcGqkvei2/hFsm4Xj00n9TDB71 eWQu6iR2MsJNIgv/7ex0ZdDXNA3f8Ydl96xdMObYy0byhglQl4SclCiZAUjZyszl /99ZeNoEQj0ypwUTo8ZOdWYeEmTG9XdAS8MdA6Qb8gHAJVvL8g4HHOVYOeyI6cW/ zG+N+b1wYbhodxxLq8PaoF+IbBRCyX+Js2uJ1xSgDhbQwi1SjzKa8D6pTN7DfCnO pqhUyP2oe5uBxmtwKg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8irPBqQI+eZQi+oqXfb mJ0y11YuI3Wnb590fNd02n8X7pR+nCG4Kn7lfhbiyalK+WOYbuCjoztblbmpxO9F qEdUO9iqi5XplsZhM6TMFifO3s/3Hfd4VokPISR85M1Q6WPOyUIYh6BcniE4Hcex z0WvUgjq+opmcSkJaNjY297Gk0XHY72Pb5AWU+Iv9ssKACqWvag8S4PN7LibqBZ6 2noJ+Z3d65f6+sOlZi5C/2gEEzvkrVNnGmjtFWqCdhQ5RSE9gwukZ5gIU2pidmu5 hN6hnLdB0SMGpRUR4z8TY3QViGr0CniVm9pNIorlzb0irJNAdhVLQaxqFP/uZPar GwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21254993637216440984433815811314793681 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'preakness.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19160937565540761182305405878919980912675615755338877434981255491128799954899575992224707498919135525344267156140848518389815984673945003717502364812432682679078005235639847259216825908657047346082611526590637391184811522687120253056493202847274953965117431434701898269408353639628328275276950800693172486789893375838371830929378753755864752807142943640959657603936903131653214505270813495279330110568085762761698587784856516389124501474689226787373877574426569796565328614941748939949668915650748514711577135430530648909790524351252718938663022129960157599513216942645706767056508258384651955161432224131894836898587 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c6ca5d60b380d5a728ceed3a1afd87fdd531918a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preakness.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.preakness.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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