vanity.jefferson-uat.us003-rapididentity.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 04:5f:d2:67:7d:25:83:ec:8c:e0:55:a1:e4:a9:c4:90 was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=vanity.jefferson-uat.us003-rapididentity.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:5f:d2:67:7d:25:83:ec:8c:e0:55:a1:e4:a9:c4:90Serial Number (int): 5814447689948957412927366353140696208
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 42:f5:63:dc:3b:7c:03:76:78:92:c3:5c:6f:07:4d:26:83:72:2b:c7
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): e0:24:46:89:af:d9:4e:bb:00:8f:1c:7e:9b:96:a6:3d:d4:f5:be:96
Fingerprint (sha256): 8d:84:b9:d2:a9:85:c8:ac:ec:08:88:d2:19:36:d2:8f:4a:af:bf:70:9c:62:de:73:f0:71:6a:5e:f3:4e:7d:51
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate vanity.jefferson-uat.us003-rapididentity.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vanity.jefferson-uat.us003-rapididentity.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vanity.jefferson-uat.us003-rapididentity.com
jefferson-uat.us003-rapididentity.com
*.jcpsky.net
iaa1a86eb43e224ea68aa26c1796e9fdaf.us003-rapididentity.com
jcpsky.net
jefferson-uat.us003-rapididentity.com
*.jcpsky.net
iaa1a86eb43e224ea68aa26c1796e9fdaf.us003-rapididentity.com
jcpsky.net
Other certificates including the domain name us003-rapididentity.com
(limited to 100 certificates)
vanity.fountainvalley.us003-rapididentity.com
portal.shenandoah.k12.va.us
sso.floydboe.net
vanity.shenandoahk12.us003-rapididentity.com
vanity.merrick.us003-rapididentity.com
vanity.pharosbx.us003-rapididentity.com
rapidid.jefferson.kyschools.us
vanity.cherokee.us003-rapididentity.com
vanity.escondido.us003-rapididentity.com
vanity.usd-test.us003-rapididentity.com
vanity.disd.us003-rapididentity.com
vanity.usd.us003-rapididentity.com
vanity.cherokee.us003-rapididentity.com
vanity.greeleyschools.us003-rapididentity.com
password.pacollege.edu
vanity.jefferson-uat.us003-rapididentity.com
vanity.jefferson.us003-rapididentity.com
password.pacollege.edu
vanity.willmar.us003-rapididentity.com
vanity.lasalle.us003-rapididentity.com
accounts-tst.mica.edu
portal.bccs286.org
portal.shenandoah.k12.va.us
rapidid.jefferson.kyschools.us
vanity.dallascollege.us003-rapididentity.com
portal.dallasisd.org
vanity.challenge.us003-rapididentity.com
vanity.hamilton.us003-rapididentity.com
vanity.disd.us003-rapididentity.com
portal.shenandoah.k12.va.us
sso.floydboe.net
vanity.shenandoahk12.us003-rapididentity.com
vanity.merrick.us003-rapididentity.com
vanity.pharosbx.us003-rapididentity.com
rapidid.jefferson.kyschools.us
vanity.cherokee.us003-rapididentity.com
vanity.escondido.us003-rapididentity.com
vanity.usd-test.us003-rapididentity.com
vanity.disd.us003-rapididentity.com
vanity.usd.us003-rapididentity.com
vanity.cherokee.us003-rapididentity.com
vanity.greeleyschools.us003-rapididentity.com
password.pacollege.edu
vanity.jefferson-uat.us003-rapididentity.com
vanity.jefferson.us003-rapididentity.com
password.pacollege.edu
vanity.willmar.us003-rapididentity.com
vanity.lasalle.us003-rapididentity.com
accounts-tst.mica.edu
portal.bccs286.org
portal.shenandoah.k12.va.us
rapidid.jefferson.kyschools.us
vanity.dallascollege.us003-rapididentity.com
portal.dallasisd.org
vanity.challenge.us003-rapididentity.com
vanity.hamilton.us003-rapididentity.com
vanity.disd.us003-rapididentity.com
Certificate
The complete raw certificate details for vanity.jefferson-uat.us003-rapididentity.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgIQBF/SZ30lg+yM4FWh5KnEkDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTIxNTAwMDAwMFoXDTI1MDExMjIzNTk1OVowNzE1 MDMGA1UEAxMsdmFuaXR5LmplZmZlcnNvbi11YXQudXMwMDMtcmFwaWRpZGVudGl0 eS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa4HdTp2SFwSjM jmjCtspf86gVHjEj1u2yjQesyLtqI1NvUnEpPdr47VeCWKxV5wkt10c/NF1RZPaF v0Pq0irVW8uiXsX0UZeKeJrU/zr3tosym3++omEsdIFEtuDe+wZ3X5hA0PnUYqxO njMWEfacqks4fWZrP7NhOB9nmVN7iJ5JmKftKD7XfIW26WmiPgfnxhKNqiUOBxtX j+TSqv/JqJi5dNS9UnbgPPcF7hjwtYz/Fqz3bmSe858iNh/MP6bsdNcdWSmx/oUF uLQfD/wRm+16EceEakVSWDjo7yhrT6cMhyJLjyT7j2n+LCvYUyLMtCv7hsOPtZrK q/YvncUXAgMBAAGjggIYMIICFDAfBgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5 euuC4jAdBgNVHQ4EFgQUQvVj3Dt8A3Z4ksNcbwdNJoNyK8cwgbYGA1UdEQSBrjCB q4IsdmFuaXR5LmplZmZlcnNvbi11YXQudXMwMDMtcmFwaWRpZGVudGl0eS5jb22C JWplZmZlcnNvbi11YXQudXMwMDMtcmFwaWRpZGVudGl0eS5jb22CDCouamNwc2t5 Lm5ldII6aWFhMWE4NmViNDNlMjI0ZWE2OGFhMjZjMTc5NmU5ZmRhZi51czAwMy1y YXBpZGlkZW50aXR5LmNvbYIKamNwc2t5Lm5ldDATBgNVHSAEDDAKMAgGBmeBDAEC ATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3Qu Y29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6 Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDov L2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQC MAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBADgU+kc8 iHDHmo9Guycgx8C2y5a1K3xG9ByI63ZRXVWFlF1bZVBG4jqv/YgkTrha6P8lkg8b iFtUN/bmgW3eGjSIPHdzFixdsWkiUWuvIdXoENAjTQQ3kgPrjSEh7+VzpWcUODUl N5fDkiBkIRxdlYaBjRk4tWrMSyamX/TGTUZYbHfRhIY3n9UI7mlkBpgOrDPA2AxU vCTnYggx11s7u1YG4LpW4CkdPM3tZTbJK7Tbz7XNlFniADMUoFJ8A7o5mxm9z6f4 mlW2OqHH8KLz/1nG4Jl0pzSd6MzmKjd8YN2SxjEgud3xAeE5NSdhEQAs18yoVwb1 RZMJp3gOmr/K/dg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2uB3U6dkhcEozI5owrbK X/OoFR4xI9btso0HrMi7aiNTb1JxKT3a+O1XglisVecJLddHPzRdUWT2hb9D6tIq 1VvLol7F9FGXinia1P8697aLMpt/vqJhLHSBRLbg3vsGd1+YQND51GKsTp4zFhH2 nKpLOH1maz+zYTgfZ5lTe4ieSZin7Sg+13yFtulpoj4H58YSjaolDgcbV4/k0qr/ yaiYuXTUvVJ24Dz3Be4Y8LWM/xas925knvOfIjYfzD+m7HTXHVkpsf6FBbi0Hw/8 EZvtehHHhGpFUlg46O8oa0+nDIciS48k+49p/iwr2FMizLQr+4bDj7Wayqv2L53F FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 5814447689948957412927366353140696208 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vanity.jefferson-uat.us003-rapididentity.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27630638851886807600894552342944384210940687114744799959618526426698616240332846418157769160416818420856737579149976255109430879964995821032512864948664739146382118205426751543814111811396764418899714199355018956573801076100584825026424795888507821331389194665654315288505196741482102929264028886037806147889536451775077062268027683462693612943847813995608821701891093513782847605590301583318790865712715584581683353451656625808700650133691440049108409095149568125442380230362269131979879027350480859966361294533562840802712104739413991279593893923117582085901613935578294981771365956058167929385271971081424396469527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 42f563dc3b7c03767892c35c6f074d2683722bc7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (174 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vanity.jefferson-uat.us003-rapididentity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jefferson-uat.us003-rapididentity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jcpsky.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaa1a86eb43e224ea68aa26c1796e9fdaf.us003-rapididentity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jcpsky.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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