*.staging.shopnation.com

Issued by Amazon

About this certificate

This digital certificate with serial number 02:4b:55:14:46:ab:cd:4d:76:d2:db:75:1e:7b:62:5c was issued on by Amazon.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=*.staging.shopnation.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 02:4b:55:14:46:ab:cd:4d:76:d2:db:75:1e:7b:62:5c
Serial Number (int): 3049603867211151011958874222658019932
Serial Number lenght: 122 bits, 16 octets

SubjectKeyId: 8f:20:55:d0:a4:7b:de:f0:4e:06:62:09:6b:e0:fd:a7:49:49:76:10
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 19:8f:41:92:a7:c7:be:4c:04:5b:e1:e3:15:99:ec:bc:ab:04:f1:2c
Fingerprint (sha256): a2:b2:b7:5d:0b:79:5e:72:60:c5:11:10:b2:b7:f0:d7:a2:84:fb:20:12:ce:94:bb:82:c2:a9:ad:1e:0a:2a:de

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate *.staging.shopnation.com

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.staging.shopnation.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.staging.shopnation.com
sn-staging.bhg.com
sn-staging.fitnessmagazine.com
sn-staging.more.com
sn-staging.parents.com

Other certificates including the domain name shopnation.com

(limited to 100 certificates)
*.qa1.shopnation.com
assets.qa2.shopnation.com
images.qa.shopnation.com
assets.meredith.com
assets.qa1.shopnation.com
*.monitoring-es53.shopnation.com
assets.meredith.com
vfs-proxy.qa1.shopnation.com
ssl768224.cloudflaressl.com
*.shopnation.com
*.shopnation.com
*.shopnation.com
assets.meredith.com
*.qa2.shopnation.com
*.shopnation.com
images.prod.shopnation.com
*.qa1-es53.shopnation.com
images.prod.shopnation.com
assets.meredith.com
images.prod.shopnation.com
*.shopnation.com
ssl768223.cloudflaressl.com
*.qa2-es53.shopnation.com
*.staging.shopnation.com
assets.meredith.com
*.shopnation.com
assets.meredith.com
*.shopnation.com
images.prod.shopnation.com
*.shopnation.com
images.prod.shopnation.com
bhg-home.shopnation.com
images.prod.shopnation.com
assets.qa1.shopnation.com
images.prod.shopnation.com
assets.meredith.com
*.shopnation.com
images.prod.shopnation.com
*.shopnation.com
*.shopnation.com
images.qa.shopnation.com
*.shopnation.com
*.reports-es53.shopnation.com

Certificate

The complete raw certificate details for *.staging.shopnation.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0Ibq0VeUgVMjwz5jRb6
/gVN8vbTzjfDCFkyZIhJTeGsthm5tIvcTLK/B51BWYCYrpCKV+Tr7oMldTlrPYtt
L+3yKvPu2DjdmFhkw1pCWqrBdnjfntr+zjZby0mMgxt5oNXLAXLMG4IneF9u3kf0
MVOYdH59L7kVlnMltGN1mk5890GUMaulHzrqKKK948JO0C1/D/IGYVxCwdwjzuXE
eoF5bkWfnn4YvU0k23KW1hJmjTVvMQsC4Sm/HX7e29wxp5tzUb9Q2m7OdbRxy+zf
DFLPI9qud0jOigUDtQUU4H1TSeULhQ4vpAtsTIreqNssIazO32yh8t7RzJuZh1Hm
swIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 3049603867211151011958874222658019932
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-01 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-09-01 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.staging.shopnation.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24649068578668966387985373873516375476261128563063740058206872784926063822922211979967669872511548515111276419417208911380940137790638625324639137771927430958379179523908767624719014419337083117863200285206508837380271242544345430003597718559657715315057703878099742169020776578935089698374748674550088567639185572885069196026763401473838207236091122162680343220681614830694951032350222101365366895187810855454957037737913194855151890185329240670077343717635842022682071489693118445534515547072518238060223358391637558802139871434183859633891377778264779258218944448261455005570055018285302140881177403085037233104563
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8f2055d0a47bdef04e0662096be0fda749497610
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (125 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.staging.shopnation.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.bhg.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.fitnessmagazine.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.more.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sn-staging.parents.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00b3aa756267b81f9fea68281f6239ce7148bc4d2a45577022ba9df9b7eb954017c1e350e573d24985a297d3f7c4db60be8b2642b45b6155fe025b38e3e46cc35c889cbe2a7e4439f4e29b668ce269ee3db323b070965025ac58ae6aa46103b82e3c9e53412c76f85294404d4ebbbb17c9bfebc120410242934361d7db911902ee426d1d89a257399a6c8d4d89f196b9b12d508ac3c9a188d6f56acb38a9a52ba32e0421d762dfbdfbacca8b7c8a4958f4631fba3b1e001a881aec487963842ebb362a38414ec552d04f62823f45f7eeb6ddb14ee15436d709989330ce252d6d86ce9c06ed5c2e21c309f08f25a23d5dfe890267ca558083b2d77beb7e3523fc7e