cmg.us-west-2.aws.zwprod.io
Issued by Amazon
About this certificate
This digital certificate with serial number 03:e7:bc:4a:52:b2:a1:a3:09:09:ee:6a:23:b4:26:56 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cmg.us-west-2.aws.zwprod.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e7:bc:4a:52:b2:a1:a3:09:09:ee:6a:23:b4:26:56Serial Number (int): 5190923543159528280218689255215736406
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 89:5c:6c:2a:d4:35:93:51:8c:e3:07:9d:37:a3:75:47:61:20:2c:f2
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): ca:e3:57:81:e4:36:96:b2:10:54:a9:bc:d4:1a:0f:7f:ba:30:bb:7c
Fingerprint (sha256): 87:f1:d2:d4:a5:b8:64:0c:17:06:73:9d:ff:e1:61:26:46:6b:e8:bb:f5:85:b6:be:06:5a:f0:24:a0:41:b1:2c
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate cmg.us-west-2.aws.zwprod.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cmg.us-west-2.aws.zwprod.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cmg.us-west-2.aws.zwprod.io
zadmin.us-west-2.aws.zwprod.io
zadmin.us-west-2.aws.zwprod.io
Other certificates including the domain name zwprod.io
(limited to 100 certificates)
cmg.us-west-2.aws.zwprod.io
*.us-west-2.aws.zwprod.io
zipwhip.com
*.us-west-2.aws.zwprod.io
us-west-2.aws.zwprod.io
graylog.zw-prod.us-west-2.aws.zwprod.io
toolkit.us-west-2.aws.zwprod.io
toolkit.us-west-2.aws.zwprod.io
*.comm-api.us-east-2.aws.zwprod.io
us-west-2.aws.zwprod.io
zipwhip.com
zipwhip.com
zipwhip.com
app.zipwhip.com
zipwhip.com
zipwhip.com
*.us-west-2.aws.zwprod.io
zipwhip.com
zipwhip.com
*.us-west-2.aws.zwprod.io
cmg.us-west-2.aws.zwprod.io
zipwhip.com
*.us-west-2.aws.zwprod.io
zipwhip.com
*.us-west-2.aws.zwprod.io
us-west-2.aws.zwprod.io
zipwhip.com
zipwhip.com
us-west-2.aws.zwprod.io
*.us-west-2.aws.zwprod.io
zipwhip.com
toolkit.us-west-2.aws.zwprod.io
*.us-west-2.aws.zwprod.io
zipwhip.com
*.us-west-2.aws.zwprod.io
us-west-2.aws.zwprod.io
graylog.zw-prod.us-west-2.aws.zwprod.io
toolkit.us-west-2.aws.zwprod.io
toolkit.us-west-2.aws.zwprod.io
*.comm-api.us-east-2.aws.zwprod.io
us-west-2.aws.zwprod.io
zipwhip.com
zipwhip.com
zipwhip.com
app.zipwhip.com
zipwhip.com
zipwhip.com
*.us-west-2.aws.zwprod.io
zipwhip.com
zipwhip.com
*.us-west-2.aws.zwprod.io
cmg.us-west-2.aws.zwprod.io
zipwhip.com
*.us-west-2.aws.zwprod.io
zipwhip.com
*.us-west-2.aws.zwprod.io
us-west-2.aws.zwprod.io
zipwhip.com
zipwhip.com
us-west-2.aws.zwprod.io
*.us-west-2.aws.zwprod.io
zipwhip.com
toolkit.us-west-2.aws.zwprod.io
Certificate
The complete raw certificate details for cmg.us-west-2.aws.zwprod.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIErDCCA5SgAwIBAgIQA+e8SlKyoaMJCe5qI7QmVjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTAyMjAwMDAwMDBaFw0yMDAzMjAx MjAwMDBaMCYxJDAiBgNVBAMTG2NtZy51cy13ZXN0LTIuYXdzLnp3cHJvZC5pbzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALWIZQpKfM2aGiYH7QXK/rP2 mdJW8SVVFNNjaYcMV1MFJbNOaNcjeYSoDAeOA2hd5lk9LDSjsKkTYO6fnj5MNF14 oX34hXXtLI8FbXPHLnSOdWa0PqN3jz9lLxzaSA9rcdOgCnz5F4unj4hY9a5oBfPv tGe2ikX3NoeAm7mKkUUPxS3XEfxDjQ6g7FJpScMZNbyopsed3nOvbbwjPdBRcBL8 1aDa9u4rBGxkosO36usRHN5lBrVUujNz/u6qqNykN3V/nFZWVypj5/fOF6zI6Gaw m0KCJ4EXOsRvxbzAwpiuN9fGLFZSZg/kiOOdRWd/i5YIFccFhDGwH9boA9dt4B8C AwEAAaOCAbQwggGwMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0G A1UdDgQWBBSJXGwq1DWTUYzjB503o3VHYSAs8jBGBgNVHREEPzA9ghtjbWcudXMt d2VzdC0yLmF3cy56d3Byb2QuaW+CHnphZG1pbi51cy13ZXN0LTIuYXdzLnp3cHJv ZC5pbzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1 c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwB AgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2Ex Yi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIu YW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB 1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBvq1aheQl7kmgr2up8OyXu b3qvn7W8y+ihEJGuV6Glh7x3tPZMsi41hMILQHnsj8IkCr04Pdb+QsmX8sFYmzFu ES+nB590Hm+UO7Hh146IpviQZqph7pwu2Suj3kk8Vouy2GD8BeYsfiKxx1WiVwTH P9sw6m7oBGbfZitlyuKesx2OfYFOb9ht4e3O2B+jrIfynTPBSpu9M/al/flasQYV N6y/R8A0YlNrWr1FWb/RzvBk1Er8m+1vUpVREgEG8G2nCBHfLn6dElBh+/FuVRxu AyUDd4OvRp9aPN52GO7IUpdgkEdNCEPiGL4ypHzjc56OAJucex2ZrVt4zbv1u9bC -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYhlCkp8zZoaJgftBcr+ s/aZ0lbxJVUU02NphwxXUwUls05o1yN5hKgMB44DaF3mWT0sNKOwqRNg7p+ePkw0 XXihffiFde0sjwVtc8cudI51ZrQ+o3ePP2UvHNpID2tx06AKfPkXi6ePiFj1rmgF 8++0Z7aKRfc2h4CbuYqRRQ/FLdcR/EONDqDsUmlJwxk1vKimx53ec69tvCM90FFw EvzVoNr27isEbGSiw7fq6xEc3mUGtVS6M3P+7qqo3KQ3dX+cVlZXKmPn984XrMjo ZrCbQoIngRc6xG/FvMDCmK4318YsVlJmD+SI451FZ3+LlggVxwWEMbAf1ugD123g HwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5190923543159528280218689255215736406 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-20 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cmg.us-west-2.aws.zwprod.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22916391926413445887140986912528918825645699165226081660901020076816009639291072866655948434988783689784647542077872459648262506066565351011513187679027504359490610518604490741053120716444596220196822623245371882818673829656279945649339815579134712803228447295042501350546313605142412560130297572135711897293875811512941891276405220173748077151197230319157393200896500502728717512769194909548098692297875660855781395311061535983362383700150556258473675319282020108186202376056273199009639870698242649649172905885668065747783343982497953211090961359064319746770301927712020339698968718741330941629420601203638445924383 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 895c6c2ad43593518ce3079d37a3754761202cf2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (63 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmg.us-west-2.aws.zwprod.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zadmin.us-west-2.aws.zwprod.io' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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