*.staging.shopnation.com
Issued by Amazon
About this certificate
This digital certificate with serial number 02:4b:55:14:46:ab:cd:4d:76:d2:db:75:1e:7b:62:5c was issued on by Amazon.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.staging.shopnation.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:4b:55:14:46:ab:cd:4d:76:d2:db:75:1e:7b:62:5cSerial Number (int): 3049603867211151011958874222658019932
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 8f:20:55:d0:a4:7b:de:f0:4e:06:62:09:6b:e0:fd:a7:49:49:76:10
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 19:8f:41:92:a7:c7:be:4c:04:5b:e1:e3:15:99:ec:bc:ab:04:f1:2c
Fingerprint (sha256): a2:b2:b7:5d:0b:79:5e:72:60:c5:11:10:b2:b7:f0:d7:a2:84:fb:20:12:ce:94:bb:82:c2:a9:ad:1e:0a:2a:de
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate *.staging.shopnation.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.staging.shopnation.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.staging.shopnation.com
sn-staging.bhg.com
sn-staging.fitnessmagazine.com
sn-staging.more.com
sn-staging.parents.com
sn-staging.bhg.com
sn-staging.fitnessmagazine.com
sn-staging.more.com
sn-staging.parents.com
Other certificates including the domain name shopnation.com
(limited to 100 certificates)
*.qa1.shopnation.com
assets.qa2.shopnation.com
images.qa.shopnation.com
assets.meredith.com
assets.qa1.shopnation.com
*.monitoring-es53.shopnation.com
assets.meredith.com
vfs-proxy.qa1.shopnation.com
ssl768224.cloudflaressl.com
*.shopnation.com
*.shopnation.com
*.shopnation.com
assets.meredith.com
*.qa2.shopnation.com
*.shopnation.com
images.prod.shopnation.com
*.qa1-es53.shopnation.com
images.prod.shopnation.com
assets.meredith.com
images.prod.shopnation.com
*.shopnation.com
ssl768223.cloudflaressl.com
*.qa2-es53.shopnation.com
*.staging.shopnation.com
assets.meredith.com
*.shopnation.com
assets.meredith.com
*.shopnation.com
images.prod.shopnation.com
*.shopnation.com
images.prod.shopnation.com
bhg-home.shopnation.com
images.prod.shopnation.com
assets.qa1.shopnation.com
images.prod.shopnation.com
assets.meredith.com
*.shopnation.com
images.prod.shopnation.com
*.shopnation.com
*.shopnation.com
images.qa.shopnation.com
*.shopnation.com
*.reports-es53.shopnation.com
assets.qa2.shopnation.com
images.qa.shopnation.com
assets.meredith.com
assets.qa1.shopnation.com
*.monitoring-es53.shopnation.com
assets.meredith.com
vfs-proxy.qa1.shopnation.com
ssl768224.cloudflaressl.com
*.shopnation.com
*.shopnation.com
*.shopnation.com
assets.meredith.com
*.qa2.shopnation.com
*.shopnation.com
images.prod.shopnation.com
*.qa1-es53.shopnation.com
images.prod.shopnation.com
assets.meredith.com
images.prod.shopnation.com
*.shopnation.com
ssl768223.cloudflaressl.com
*.qa2-es53.shopnation.com
*.staging.shopnation.com
assets.meredith.com
*.shopnation.com
assets.meredith.com
*.shopnation.com
images.prod.shopnation.com
*.shopnation.com
images.prod.shopnation.com
bhg-home.shopnation.com
images.prod.shopnation.com
assets.qa1.shopnation.com
images.prod.shopnation.com
assets.meredith.com
*.shopnation.com
images.prod.shopnation.com
*.shopnation.com
*.shopnation.com
images.qa.shopnation.com
*.shopnation.com
*.reports-es53.shopnation.com
Certificate
The complete raw certificate details for *.staging.shopnation.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIExjCCA66gAwIBAgIQAktVFEarzU120tt1HntiXDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xNzA4MDEwMDAwMDBaFw0xODA5MDEx MjAwMDBaMCMxITAfBgNVBAMMGCouc3RhZ2luZy5zaG9wbmF0aW9uLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMNCG6tFXlIFTI8M+Y0W+v4FTfL2 0843wwhZMmSISU3hrLYZubSL3EyyvwedQVmAmK6Qilfk6+6DJXU5az2LbS/t8irz 7tg43ZhYZMNaQlqqwXZ4357a/s42W8tJjIMbeaDVywFyzBuCJ3hfbt5H9DFTmHR+ fS+5FZZzJbRjdZpOfPdBlDGrpR866iiivePCTtAtfw/yBmFcQsHcI87lxHqBeW5F n55+GL1NJNtyltYSZo01bzELAuEpvx1+3tvcMaebc1G/UNpuznW0ccvs3wxSzyPa rndIzooFA7UFFOB9U0nlC4UOL6QLbEyK3qjbLCGszt9sofLe0cybmYdR5rMCAwEA AaOCAdEwggHNMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1Ud DgQWBBSPIFXQpHve8E4GYglr4P2nSUl2EDCBhAYDVR0RBH0we4IYKi5zdGFnaW5n LnNob3BuYXRpb24uY29tghJzbi1zdGFnaW5nLmJoZy5jb22CHnNuLXN0YWdpbmcu Zml0bmVzc21hZ2F6aW5lLmNvbYITc24tc3RhZ2luZy5tb3JlLmNvbYIWc24tc3Rh Z2luZy5wYXJlbnRzLmNvbTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2Nh MWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDATBgNVHSAEDDAKMAgGBmeBDAEC ATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNjYTFi LmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2ExYi5h bWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcN AQELBQADggEBALOqdWJnuB+f6mgoH2I5znFIvE0qRVdwIrqd+bfrlUAXweNQ5XPS SYWil9P3xNtgvosmQrRbYVX+Als44+Rsw1yInL4qfkQ59OKbZoziae49syOwcJZQ JaxYrmqkYQO4LjyeU0EsdvhSlEBNTru7F8m/68EgQQJCk0Nh19uRGQLuQm0diaJX OZpsjU2J8Za5sS1QisPJoYjW9WrLOKmlK6MuBCHXYt+9+6zKi3yKSVj0Yx+6Ox4A Goga7Eh5Y4QuuzYqOEFOxVLQT2KCP0X37rbdsU7hVDbXCZiTMM4lLW2GzpwG7Vwu IcMJ8I8loj1d/okCZ8pVgIOy13vrfjUj/H4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0Ibq0VeUgVMjwz5jRb6 /gVN8vbTzjfDCFkyZIhJTeGsthm5tIvcTLK/B51BWYCYrpCKV+Tr7oMldTlrPYtt L+3yKvPu2DjdmFhkw1pCWqrBdnjfntr+zjZby0mMgxt5oNXLAXLMG4IneF9u3kf0 MVOYdH59L7kVlnMltGN1mk5890GUMaulHzrqKKK948JO0C1/D/IGYVxCwdwjzuXE eoF5bkWfnn4YvU0k23KW1hJmjTVvMQsC4Sm/HX7e29wxp5tzUb9Q2m7OdbRxy+zf DFLPI9qud0jOigUDtQUU4H1TSeULhQ4vpAtsTIreqNssIazO32yh8t7RzJuZh1Hm swIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3049603867211151011958874222658019932 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.staging.shopnation.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24649068578668966387985373873516375476261128563063740058206872784926063822922211979967669872511548515111276419417208911380940137790638625324639137771927430958379179523908767624719014419337083117863200285206508837380271242544345430003597718559657715315057703878099742169020776578935089698374748674550088567639185572885069196026763401473838207236091122162680343220681614830694951032350222101365366895187810855454957037737913194855151890185329240670077343717635842022682071489693118445534515547072518238060223358391637558802139871434183859633891377778264779258218944448261455005570055018285302140881177403085037233104563 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8f2055d0a47bdef04e0662096be0fda749497610 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.shopnation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.bhg.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.fitnessmagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.more.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.parents.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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