DV SSL/TLS Certificate for osdbu.hhs.gov

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the osdbu.hhs.gov DV SSL/TLS Certificate

This certificate with serial number 06:1d:d8:8a:f8:b8:23:a0:d1:1e:4c:ff:84:72:b3:f3 for osdbu.hhs.gov was issued on by Amazon.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for osdbu.hhs.gov provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:1d:d8:8a:f8:b8:23:a0:d1:1e:4c:ff:84:72:b3:f3
Serial Number (int): 8130336594542714003817574377125491699
Serial Number Length: 123 bits, 16 octets

Subject Key Identifier: 66:32:44:bd:28:55:df:98:a6:89:7a:9f:33:fc:c1:fe:a8:c0:c9:8e
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): 9f:c9:4b:3a:9a:fd:6c:40:bb:8b:20:35:12:84:a1:2b:c1:1b:58:dc
Fingerprint (SHA-256): 50:2c:7a:c2:5f:62:28:60:85:5f:8e:37:99:4e:c9:b3:e2:dd:c7:59:eb:23:5f:ad:fd:1d:f5:bc:60:ba:c0:db

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate osdbu.hhs.gov
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for osdbu.hhs.gov

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for osdbu.hhs.gov in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF2DCCBMCgAwIBAgIQBh3Yivi4I6DRHkz/hHKz8zANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAzMB4XDTI0MTAwMzAwMDAwMFoXDTI1MTEwMTIzNTk1OVowGDEW
MBQGA1UEAxMNb3NkYnUuaGhzLmdvdjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
AQoCggEBAJe2YxLDg93HGBUCSOOfHKmM1WViQdpPw0SKl9fznui8GMnikmLLajuc
TwYKbEmt+6XL027qfvsci4m5Y16Krb1LbzzRJ7i5o7n1KxUFdDa3Kf4nxMiUFrSK
qD+F2P18TXfLM7PnzLyIgAMJK1moNR52mhXb7GcRctXTtfX8yO6s0nDYDo8jHkKP
+XFheKbKAwcF4M+vUA5HkKswDd9RzE5B+q1ceYAaf7XoM5ypwA8NTkcmO/1B5yA+
OGLNce1/xhCkufHZTlOJ0mu6bV47iFvERLOBE7C/WlGYI4rxhN8MequTuDLtUaHL
1TpSDPKeVVddHxeaOrkCsuRrLhGuULsCAwEAAaOCAvgwggL0MB8GA1UdIwQYMBaA
FFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBRmMkS9KFXfmKaJep8z/MH+
qMDJjjApBgNVHREEIjAggg1vc2RidS5oaHMuZ292gg8qLm9zZGJ1Lmhocy5nb3Yw
EwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG
CCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3Js
LnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBn
MC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20w
NgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3Iy
bTAzLmNlcjAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkA
dgDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZJQTCBYAAAEAwBH
MEUCIDThcliH6+LkewmIS+xALG5Qak22nYTCFeNl7UcKO58sAiEA9wKGuXgTSV8c
FZJEPPEgrl/v4i+D2LFpTv8yaKp+Tq0AdwB9WR4S4XgqexxhZ3xe/fjQh1wUoE6V
nrkDL9kOjC55uAAAAZJQTCAOAAAEAwBIMEYCIQCc+quspE8LiIYg0DNY8TVUnU9t
1h/xzryjjipwzYJ0vQIhAORyqi783cmUT2qCVU0N6gPV11RIjVYKZC/EyAWplcBa
AHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGSUEwgHgAABAMA
RzBFAiA/LnGLs5KJsfyRgxQ+QitYVmtZ872UedZeeX2W5PQJpQIhAK1EyWRxztDX
uZJfNKdvCzrsYrV5nRmzVC7rj+Md5wC3MA0GCSqGSIb3DQEBCwUAA4IBAQCh2UY6
4kQTcfYe5wylrByp90ZNdCCczWYAd+ZkdCKGuZvAG3k87FZAZR49PEn6yAuTQKuE
b1iwNp2CJIY5PPATXrVTUSTmkNsmL8kKxsHa6KLSkrMspZA9UnzRIde0oASY1xFj
rnRfgWv6CtkfbGIP4FN7AAVMO3z+K0jkD83lrjbMqZ3mJI7/5pM1ShFKKrByCBrR
SqMi0OoM26lJIl3KtQthyEx5HxtGheI1qB+WZJRTDywqJjxQaUCW0W/fSPo951/u
P+RekdVLk7URPq75ma8Jk9LUVsezFCp8RV0QhwUilzTUg2cgn7qsanMeU2M4AMAD
9jkcV0p5i6I1b914
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7ZjEsOD3ccYFQJI458c
qYzVZWJB2k/DRIqX1/Oe6LwYyeKSYstqO5xPBgpsSa37pcvTbup++xyLibljXoqt
vUtvPNEnuLmjufUrFQV0Nrcp/ifEyJQWtIqoP4XY/XxNd8szs+fMvIiAAwkrWag1
HnaaFdvsZxFy1dO19fzI7qzScNgOjyMeQo/5cWF4psoDBwXgz69QDkeQqzAN31HM
TkH6rVx5gBp/tegznKnADw1ORyY7/UHnID44Ys1x7X/GEKS58dlOU4nSa7ptXjuI
W8REs4ETsL9aUZgjivGE3wx6q5O4Mu1RocvVOlIM8p5VV10fF5o6uQKy5GsuEa5Q
uwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8130336594542714003817574377125491699
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-11-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'osdbu.hhs.gov'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19151922434120316892709480629754149458875139140311382778880911091277060424052307474117279592726325585542067067724496825891049902515770876438393811144871927726360582806461330813245324009907648957860669553691702626417089515498629066902493723565870348049171298905783199656456710719481966552552942844333472387407646421285010303058581665312294349044186372347431116180712640379788122089598790607526930680441800971989694103666843873131898220617236208390088211753337314682698945733509405372140947984599824272548161682008045237358757628771277064041719442210990209839419508867218810640165620234117166243432284560313836406460603
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							663244bd2855df98a6897a9f33fcc1fea8c0c98e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'osdbu.hhs.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.osdbu.hhs.gov'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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