docs.vaion.com

Issued by Amazon

About this certificate

This digital certificate with serial number 06:36:4a:6e:ad:a0:15:c4:5f:7a:2a:ca:ff:a6:67:7d was issued on by Amazon.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=docs.vaion.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 06:36:4a:6e:ad:a0:15:c4:5f:7a:2a:ca:ff:a6:67:7d
Serial Number (int): 8257261672213360344420871248974079869
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: f1:b4:4f:20:02:59:c0:3f:12:d6:3a:a7:20:3b:b8:64:72:fe:1b:6d
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 04:e0:bd:5a:7e:b9:da:85:d4:fc:9e:2a:35:ba:7f:40:f2:3e:d9:7d
Fingerprint (sha256): a0:b0:16:a9:b3:23:08:68:80:2d:35:70:8f:56:f2:6f:92:98:e3:eb:de:70:a9:e0:d0:05:28:4c:bb:42:e1:2f

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate docs.vaion.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for docs.vaion.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

docs.vaion.com
*.docs.vaion.com
*.staging.docs.vaion.com

Other certificates including the domain name vaion.com

(limited to 100 certificates)
docker2.dev.vaion.com
*.gw.vaion.com
docs.vaion.com
fdus-64.freshdesk.com
docker3.dev.vaion.com
fdus-64.freshdesk.com
vaion.cloud
*.vaion.com
happy-otter.vaion.com
docker.dev.vaion.com
ropsplus.support.navblue.aero
solutions.vaion.com
ropsplus.support.navblue.aero
happy-otter.vaion.com
ropsplus.support.navblue.aero
support.ava.uk
*.vaion.com
prometheus-pushgateway.platform.vaion.com
*.vaion.com
*.docs.vaion.com
fdus-64.freshdesk.com
*.dev.vaion.com
fdus-64.freshdesk.com
cloud3.dev.vaion.com
ropsplus.support.navblue.aero
fdus-64.freshdesk.com
latestcloud.vaion.com
fdus-64.freshdesk.com
fdus-64.freshdesk.com
fdus-64.freshdesk.com
ropsplus.support.navblue.aero
dt.dev.vaion.com
partner.vaion.com
fdus-64.freshdesk.com
events.vaion.com
aware.avasecurity.com
ropsplus.support.navblue.aero
fdus-64.freshdesk.com
docs.vaion.com
happy-otter.vaion.com
aware.avasecurity.com
testcloud.vaion.com
testcloud.vaion.com
docker.dev.vaion.com
testcloud.vaion.com
latestcloud.vaion.com
support.ava.uk
*.vaion.com
ropsplus.support.navblue.aero
aware.alta.avigilon.com
*.vaion.com
fdus-64.freshdesk.com
ropsplus.support.navblue.aero
ropsplus.support.navblue.aero
docs.vaion.com
*.vaion.com
*.vaion.com
cloud.vaion.com
events.vaion.com
fdus-64.freshdesk.com
fdus-64.freshdesk.com
fdus-64.freshdesk.com
docker.dev.vaion.com
latestcloud.vaion.com
docs.vaion.com
fdus-64.freshdesk.com
*.gw.dev.vaion.com
ropsplus.support.navblue.aero
ropsplus.support.navblue.aero
partner.vaion.com
fdus-64.freshdesk.com
fdus-64.freshdesk.com
ropsplus.support.navblue.aero
ropsplus.support.navblue.aero
cloud2.vaion.com
docker.dev.vaion.com
*.vaion.com
docs.vaion.com
docs.vaion.com
aware.avasecurity.com
ropsplus.support.navblue.aero
*.vaion.com
bugzilla.aws.vaion.com
solutions.vaion.com
latestcloud.vaion.com
testcloud.vaion.com
*.vaion.com
docker.dev.vaion.com
qr.alta.avigilon.com
*.dev.vaion.com
*.gw.vaion.com
*.vaion.com
vlabel.dev.vaion.com
qr.alta.avigilon.com
*.vaion.com
docker2.dev.vaion.com
docker.dev.vaion.com
dt.dev.vaion.com

Certificate

The complete raw certificate details for docs.vaion.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6Jra+gAKjoFdGm8YE2d
NrMUeDsu1TzLLlzYC5Yppm/yurUY3SbkyMQ6J0Eb5bu5Wt+fNDlQDMtZaQkHsfbV
ekzoOXn3VVekztqLNlscqZXmuRbNRHvjTbJVQqmKOGhASq6gOkH1FSXF7STfqhUg
cCvMGjK2CDtg2EyB2sS3pbGDM4WJIleC/2/PYy3gjKDgnQVIAb7RxLdhnLZ0puSA
olJ204frh0PjXJue7RlBDZhLUPoPaU+V4coqaq1+n6IRBjR6HgY7yEPXduc/ipBC
jpgyZhZceRGdjVQ2t+j+bh+RETMrFSlmf7FZaTMlMZGpguCuhZyrSvnbGZB08ETo
iQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8257261672213360344420871248974079869
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-11 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-05-11 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'docs.vaion.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18132169707508749502526042960540349833328197360792863424172909764344250027690310849809708749965493973240551445481259317204381734276434170044167259375938871024535410129897734333532275192060888889505132177967573278730690674386857638165872725030591080828020058630058710274530761383102480905426459068761510674507664936145983685581447198245020710356561620154389302426133087202966570211580157492161957535820131424637923821480808576948832756778409701151044758024543376067155021408756713614737299607850333571264856235911803298473012903583518598900599467504656834948416549821525973436725767206163786841676021482177558776965257
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f1b44f200259c03f12d63aa7203bb86472fe1b6d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'docs.vaion.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.docs.vaion.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.docs.vaion.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e30000017166f2d8330000040300483046022100e58b079080c13e78025933fd6aba79e5c3ced004d220b063f3d484e0bcd06b6b0221008913380e5bff442afb160a2613fe4e8b25aa6b814fbecf67c2808b3173a842160076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca0000017166f2d8690000040300473045022002850a95961cb81f8f54b83297e99dadb24c4b8c7a0d4b3bbb7647a82d5cef0b022100b1f9a78ae7af030aaff4dba84a658bf3d069b198f11014ad71e36119b413718f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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