vanity.jefferson-uat.us003-rapididentity.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 04:5f:d2:67:7d:25:83:ec:8c:e0:55:a1:e4:a9:c4:90 was issued on by Amazon.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=vanity.jefferson-uat.us003-rapididentity.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:5f:d2:67:7d:25:83:ec:8c:e0:55:a1:e4:a9:c4:90
Serial Number (int): 5814447689948957412927366353140696208
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 42:f5:63:dc:3b:7c:03:76:78:92:c3:5c:6f:07:4d:26:83:72:2b:c7
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): e0:24:46:89:af:d9:4e:bb:00:8f:1c:7e:9b:96:a6:3d:d4:f5:be:96
Fingerprint (sha256): 8d:84:b9:d2:a9:85:c8:ac:ec:08:88:d2:19:36:d2:8f:4a:af:bf:70:9c:62:de:73:f0:71:6a:5e:f3:4e:7d:51

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate vanity.jefferson-uat.us003-rapididentity.com

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vanity.jefferson-uat.us003-rapididentity.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

vanity.jefferson-uat.us003-rapididentity.com
jefferson-uat.us003-rapididentity.com
*.jcpsky.net
iaa1a86eb43e224ea68aa26c1796e9fdaf.us003-rapididentity.com
jcpsky.net

Other certificates including the domain name us003-rapididentity.com

(limited to 100 certificates)
vanity.fountainvalley.us003-rapididentity.com
portal.shenandoah.k12.va.us
sso.floydboe.net
vanity.shenandoahk12.us003-rapididentity.com
vanity.merrick.us003-rapididentity.com
vanity.pharosbx.us003-rapididentity.com
rapidid.jefferson.kyschools.us
vanity.cherokee.us003-rapididentity.com
vanity.escondido.us003-rapididentity.com
vanity.usd-test.us003-rapididentity.com
vanity.disd.us003-rapididentity.com
vanity.usd.us003-rapididentity.com
vanity.cherokee.us003-rapididentity.com
vanity.greeleyschools.us003-rapididentity.com
password.pacollege.edu
vanity.jefferson-uat.us003-rapididentity.com
vanity.jefferson.us003-rapididentity.com
password.pacollege.edu
vanity.willmar.us003-rapididentity.com
vanity.lasalle.us003-rapididentity.com
accounts-tst.mica.edu
portal.bccs286.org
portal.shenandoah.k12.va.us
rapidid.jefferson.kyschools.us
vanity.dallascollege.us003-rapididentity.com
portal.dallasisd.org
vanity.challenge.us003-rapididentity.com
vanity.hamilton.us003-rapididentity.com
vanity.disd.us003-rapididentity.com

Certificate

The complete raw certificate details for vanity.jefferson-uat.us003-rapididentity.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2uB3U6dkhcEozI5owrbK
X/OoFR4xI9btso0HrMi7aiNTb1JxKT3a+O1XglisVecJLddHPzRdUWT2hb9D6tIq
1VvLol7F9FGXinia1P8697aLMpt/vqJhLHSBRLbg3vsGd1+YQND51GKsTp4zFhH2
nKpLOH1maz+zYTgfZ5lTe4ieSZin7Sg+13yFtulpoj4H58YSjaolDgcbV4/k0qr/
yaiYuXTUvVJ24Dz3Be4Y8LWM/xas925knvOfIjYfzD+m7HTXHVkpsf6FBbi0Hw/8
EZvtehHHhGpFUlg46O8oa0+nDIciS48k+49p/iwr2FMizLQr+4bDj7Wayqv2L53F
FwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 5814447689948957412927366353140696208
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-12 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vanity.jefferson-uat.us003-rapididentity.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27630638851886807600894552342944384210940687114744799959618526426698616240332846418157769160416818420856737579149976255109430879964995821032512864948664739146382118205426751543814111811396764418899714199355018956573801076100584825026424795888507821331389194665654315288505196741482102929264028886037806147889536451775077062268027683462693612943847813995608821701891093513782847605590301583318790865712715584581683353451656625808700650133691440049108409095149568125442380230362269131979879027350480859966361294533562840802712104739413991279593893923117582085901613935578294981771365956058167929385271971081424396469527
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							42f563dc3b7c03767892c35c6f074d2683722bc7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (174 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vanity.jefferson-uat.us003-rapididentity.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jefferson-uat.us003-rapididentity.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.jcpsky.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaa1a86eb43e224ea68aa26c1796e9fdaf.us003-rapididentity.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jcpsky.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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