aws-vpn-keymaster.10ttech.com
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0e:57:46:d7:2e:c6:6c:e7:ce:eb:77:0a:07:9c:8a:46 was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=aws-vpn-keymaster.10ttech.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:57:46:d7:2e:c6:6c:e7:ce:eb:77:0a:07:9c:8a:46Serial Number (int): 19062358584884740463851453506928806470
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: af:58:36:7f:c2:8a:9a:4c:53:be:a4:82:e3:83:10:86:06:80:ed:14
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): c0:cb:48:a5:02:f1:48:49:2c:72:fe:e7:3d:30:77:2c:89:33:ac:e7
Fingerprint (sha256): a5:61:bf:eb:b2:b9:c6:88:82:4b:ae:31:43:8b:43:87:0a:ff:a9:ed:cc:12:49:92:b6:cd:37:ee:1c:6d:57:0f
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate aws-vpn-keymaster.10ttech.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aws-vpn-keymaster.10ttech.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aws-vpn-keymaster.10ttech.com
Other certificates including the domain name 10ttech.com
(limited to 100 certificates)
extranet.10ttech.com
10ttech.com
helpdesk.10ttech.com
10ttech.com
help.rocketfire.support
10ttech.com
soporte.gruasyequipos.cl
help.embr.org
www.support.antiochianevents.org
10ttech.com
jira-kanban.10ttech.com
helpdesk.10ttech.com
soporte.gruasyequipos.cl
10ttech.com
help.rocketfire.support
help.embr.org
www.support.antiochianevents.org
10ttech.com
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
help.vibrantsupport.com
www.support.antiochianevents.org
help.embr.org
help.embr.org
www.support.antiochianevents.org
10ttech.com
10ttech.com
help.vibrantsupport.com
10ttech.com
10ttech.com
aws-api.10ttech.com
soporte.gruasyequipos.cl
aws-alpha-api.10ttech.com
soporte.gruasyequipos.cl
aws-vpn-keymaster.10ttech.com
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
support.roadlcare.com
helpdesk.10ttech.com
10ttech.com
soporte.gruasyequipos.cl
*.10ttech.com
soporte.gruasyequipos.cl
help.vibrantsupport.com
help.rocketfire.support
help.rocketfire.support
*.10ttech.com
soporte.gruasyequipos.cl
help.vibrantsupport.com
soporte.gruasyequipos.cl
10ttech.com
10ttech.com
10ttech.com
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
10ttech.com
helpdesk.10ttech.com
10ttech.com
help.rocketfire.support
10ttech.com
soporte.gruasyequipos.cl
help.embr.org
www.support.antiochianevents.org
10ttech.com
jira-kanban.10ttech.com
helpdesk.10ttech.com
soporte.gruasyequipos.cl
10ttech.com
help.rocketfire.support
help.embr.org
www.support.antiochianevents.org
10ttech.com
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
help.vibrantsupport.com
www.support.antiochianevents.org
help.embr.org
help.embr.org
www.support.antiochianevents.org
10ttech.com
10ttech.com
help.vibrantsupport.com
10ttech.com
10ttech.com
aws-api.10ttech.com
soporte.gruasyequipos.cl
aws-alpha-api.10ttech.com
soporte.gruasyequipos.cl
aws-vpn-keymaster.10ttech.com
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
support.roadlcare.com
helpdesk.10ttech.com
10ttech.com
soporte.gruasyequipos.cl
*.10ttech.com
soporte.gruasyequipos.cl
help.vibrantsupport.com
help.rocketfire.support
help.rocketfire.support
*.10ttech.com
soporte.gruasyequipos.cl
help.vibrantsupport.com
soporte.gruasyequipos.cl
10ttech.com
10ttech.com
10ttech.com
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
soporte.gruasyequipos.cl
Certificate
The complete raw certificate details for aws-vpn-keymaster.10ttech.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEeTCCA2GgAwIBAgIQDldG1y7GbOfO63cKB5yKRjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIxMjAwMDAwMFoXDTI1MDExMDIzNTk1OVowKDEm MCQGA1UEAxMdYXdzLXZwbi1rZXltYXN0ZXIuMTB0dGVjaC5jb20wggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvtF2qmM5w+rIluJT9V+fM/qWw/Ud61RiW Rnq5c5z9iM7vptcbCny/ylQ9BhBqd3NdqNJPJZYbcqifLAUcVgu/2wwWeJSUQW7F gutZ08QaoXpwMQ4e8H7dLN/N9xzfF2wCqSsMUIw6AwJI3724kl/DzAQZH/nbOAgI mvrHllZSef7BmQzWySZWD2o90iT9QD9Jco4zWtdOni8Qma0LAbTc6mLUu3n59R0J te8UuwKho7AMSXsh24NvMv6ilykBtaqyx3sf2BwGnBH0/5dwWHN2CqonVYdh/Dfk KGGJvl3ZjYO2GNi4sCJc8PbI+1Pd92Jv8oHwL6M7TyYyGLTrrbw5AgMBAAGjggGJ MIIBhTAfBgNVHSMEGDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQU r1g2f8KKmkxTvqSC44MQhgaA7RQwKAYDVR0RBCEwH4IdYXdzLXZwbi1rZXltYXN0 ZXIuMTB0dGVjaC5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCg LqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmww dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5h bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1h em9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkC BAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCuAifYe0/E94wnJg2VtKxTjg3V vsom4yAKTdDNZ+iYic4fb8TE8gELnl9fiyMKIJA//E/rQEwcnrGdta/wBt/pg/3R nqt0ytoEnNVtv1VFQYXn0S1g1Y0G3S9cH76Ao6M28V6xo3R+QllC5bsJWmJmbywu LgzaK93jwoMQD1ikKbrr/mdIrqQe05OWOPEdJkYlHvEDGL1vEDctkS8vP+eBqDGH 1FS8WWceJfACcR/bj+axBDbw/UkOkpeRn4L6Q9NW0No6509vYXJ8sBQGQPrwvOf+ JGmloh//OgEzbVg/2HRadBxJJsBMuSKtwbhyVcgoXjzWFFhBQRgdmNlxRxW6 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7RdqpjOcPqyJbiU/Vfn zP6lsP1HetUYlkZ6uXOc/YjO76bXGwp8v8pUPQYQandzXajSTyWWG3KonywFHFYL v9sMFniUlEFuxYLrWdPEGqF6cDEOHvB+3Szfzfcc3xdsAqkrDFCMOgMCSN+9uJJf w8wEGR/52zgICJr6x5ZWUnn+wZkM1skmVg9qPdIk/UA/SXKOM1rXTp4vEJmtCwG0 3Opi1Lt5+fUdCbXvFLsCoaOwDEl7IduDbzL+opcpAbWqssd7H9gcBpwR9P+XcFhz dgqqJ1WHYfw35Chhib5d2Y2DthjYuLAiXPD2yPtT3fdib/KB8C+jO08mMhi06628 OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19062358584884740463851453506928806470 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aws-vpn-keymaster.10ttech.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22180645101538051233864525332062926140778822778185373303174462173887516699012635285539862893427165996963607382387897171190938158407364997818356301161634104344861301318606209000182100470374289838111139294998679120208384600024004492356805975589803222519457730645250405206169797289077651992426789236233287618067046923654749778096395336134949171516004690567626404966342108839297018904352388935006473587578604313689398757352195776451708665519157257146481081778064119517433770928481192591904406596417255720835771892958118861575743917151797377778660640316014126584494348671232454968865548886917732705982187655859178461576249 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af58367fc28a9a4c53bea482e38310860680ed14 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aws-vpn-keymaster.10ttech.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00ae0227d87b4fc4f78c27260d95b4ac538e0dd5beca26e3200a4dd0cd67e89889ce1f6fc4c4f2010b9e5f5f8b230a20903ffc4feb404c1c9eb19db5aff006dfe983fdd19eab74cada049cd56dbf55454185e7d12d60d58d06dd2f5c1fbe80a3a336f15eb1a3747e425942e5bb095a62666f2c2e2e0cda2bdde3c283100f58a429baebfe6748aea41ed3939638f11d2646251ef10318bd6f10372d912f2f3fe781a83187d454bc59671e25f002711fdb8fe6b10436f0fd490e9297919f82fa43d356d0da3ae74f6f61727cb0140640faf0bce7fe2469a5a21fff3a01336d583fd8745a741c4926c04cb922adc1b87255c8285e3cd614584141181d98d9714715ba