galonaveia.atletico.com.br

Issued by Amazon

About this certificate

This digital certificate with serial number 09:ce:f0:9e:0a:76:21:b9:fe:22:2e:bf:9f:b8:02:87 was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=galonaveia.atletico.com.br

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 09:ce:f0:9e:0a:76:21:b9:fe:22:2e:bf:9f:b8:02:87
Serial Number (int): 13037545414514633616260448606412604039
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: b1:d4:70:6c:02:1d:89:63:e9:0c:8b:8b:7a:43:39:18:8e:99:c0:eb
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 8d:aa:4f:62:e2:e8:4c:64:12:5f:13:fa:2e:ab:68:81:4e:bf:42:04
Fingerprint (sha256): 88:23:6a:6a:fb:a0:56:13:04:bd:b9:ec:44:3e:c1:ce:eb:f6:58:78:e4:a6:b4:f1:dc:9b:1b:5f:f9:54:0c:b3

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate galonaveia.atletico.com.br

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for galonaveia.atletico.com.br

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

galonaveia.atletico.com.br

Other certificates including the domain name atletico.com.br

(limited to 100 certificates)
saf.atletico.com.br
atletico.com.br
atletico.com.br
blueskyucs.nl
galodevantagens.atletico.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
link.atletico.com.br
www.intersa.ec
sc7.senior-coding.com
wpadmin.atletico.com.br
www.lojadogalo.com.br
appdogalo.atletico.com.br
www.atletico.com.br
www.lojadogalo.com.br
api-ingresso.atletico.com.br
www.atletico.com.br
dev-okr.coda.global
fundadores-territorioalvinegro.atletico.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
atletico.com.br
pricepointdaddy.com
www.atletico.com.br
www.reebokescapepark.com
api-ingresso.atletico.com.br
www.workwithdignity.org
galodevantagens.atletico.com.br
www.sencillogic.com
www.lojadogalo.com.br
atletico.com.br
*.atletico.com.br
*.atletico.com.br
www.therealbitcoin.club
atletico.com.br
fit.camackenzie.com
lojadogalo.com.br
relatorios.atletico.com.br
englandnetball.tv
www.lojadogalo.com.br
*.viagens.atletico.com.br
ferkithome.com
www.atletico.com.br
codiig.com
wpadmin.atletico.com.br
*.atletico.com.br
portfolio.acrux.jp
atletico.com.br
wpadmin.atletico.com.br
www.lojadogalo.com.br
primehilltop.ae
www.lojadogalo.com.br
www.lojadogalo.com.br
ndca-bar.justinramel.com
*.atletico.com.br
*.atletico.com.br
galodevantagens.atletico.com.br
www.atletico.com.br
relatorios.atletico.com.br
order.la-cherie.in
atletico.com.br
www.lojadogalo.com.br
atletico.com.br
www.lojadogalo.com.br
canaletico.atletico.com.br
atletico.com.br
click.mkt.atletico.com.br
www.lojadogalo.com.br
atletico.com.br
atletico.com.br
www.pngenterprises.com
lojadogalo.com.br
www.lojadogalo.com.br
galonaveia.atletico.com.br
ingressoanual.atletico.com.br
www.lojadogalo.com.br
www.lojadogalo.com.br
suporte.atletico.com.br
atletico.com.br
interno-gnv.atletico.com.br
atletico.com.br
api-ingresso.atletico.com.br
api-site.atletico.com.br
www.atletico.com.br
atletico.com.br
galonaveia.atletico.com.br
api-ingresso.atletico.com.br
galodevantagens.atletico.com.br
www.lojadogalo.com.br
atletico.com.br
api-ingresso.atletico.com.br
atletico.com.br
atletico.com.br
www.atletico.com.br
atletico.com.br
tilt.strollhere.com
lojadogalo.atletico.com.br
criadores-territorioalvinegro.atletico.com.br
qas-relatorios.atletico.com.br

Certificate

The complete raw certificate details for galonaveia.atletico.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGv1xEWMsLMoW1saLW+0
1My05tNR6jWEdhbo/+WPIAMZCsVhOidCnezipBUVwS0fnhEqMeHHgyVoN0VINSSe
qm+/rEE+aypLsU22d2b9ByM4pwEDg5I0ndgJcGVYA5OP8aBoiMt469cDQSfFIPhU
w7a4N0e8tGnhMXCXHrcj9YFQPXz8Ibi4zxrUfy+3c/MRh+TZUoKDY5QisalhNiUN
m3QNhQ5NGE7Jvw4+teDl3dW1//G/AErCOXIHxzlfvryoSinnKg6pG4KQT99r0ULD
HKbSvsZPP6OBQ8lWiLfdZ843t9cdXq9KWhDDlHs5FUHHXwPCM+tOLuJHiGWqVPpY
hQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 13037545414514633616260448606412604039
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-25 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-25 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'galonaveia.atletico.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24795944846399226764290023041131852605033001737619895561395664733532232782612939624688704107976241218330727634777154646061415734103749868005286408166048972945387876836259964393970143359111693036252174973215350307671866027653632221334248305798494522770118579724618382938120113557697239523815577098033889888465820385091156090594405674093742883003657697641456693397010105124694626085640002597034769207830058621382703118625045539114842110159863645916550676054157793116045560872568286334888298659265616650260636049863972410985273499077254982073164580868834300517291244313896263094198862235051667036345373538043174177101957
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b1d4706c021d8963e90c8b8b7a4339188e99c0eb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'galonaveia.atletico.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000169b5c52e0500000403004730450221008a7da5d1909fbd2c5d94fd2d8127bd92b83215a38c7210d306933396c55b1b0f022030a192be4f0e6eb8a4ec0b3d545569503c46d59a57701b7df81cf4e0676a16fa0077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000169b5c52eef0000040300483046022100cc6cf1c919423e92b94de647d66577c0f8c278ab5e57da801c0713ee04b74883022100bd749fd28750aa02eddbe799c46d361e3a337efa9b20c86ecf3f571cef2c3f0c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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