DV SSL/TLS Certificate for rule-engine.qa.mx.dsm.app

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M02)

About the rule-engine.qa.mx.dsm.app DV SSL/TLS Certificate

This certificate with serial number 01:a4:05:5b:d2:f6:65:37:3a:fb:97:df:89:39:2d:00 for rule-engine.qa.mx.dsm.app was issued on by Amazon.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for rule-engine.qa.mx.dsm.app provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 01:a4:05:5b:d2:f6:65:37:3a:fb:97:df:89:39:2d:00
Serial Number (int): 2180873367685160452333163964091936000
Serial Number Length: 121 bits, 16 octets

Subject Key Identifier: c9:d2:f2:21:d7:35:e5:0a:82:44:6d:64:15:32:5b:75:51:26:0a:e8
Authority Key Identifier: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (SHA-1): dd:cf:e4:7c:c4:ac:1a:5b:59:66:a5:13:dc:5a:bd:19:75:cb:a8:be
Fingerprint (SHA-256): 81:e7:b5:39:67:f3:ac:b4:e9:20:42:02:78:da:4a:8a:d8:ad:a7:d4:4b:e4:d5:30:d5:a3:e3:4e:b0:b5:2e:57

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation Information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate rule-engine.qa.mx.dsm.app
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for rule-engine.qa.mx.dsm.app

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

rule-engine.qa.mx.dsm.app

X.509 Certificate

The complete raw X.509 certificate details for rule-engine.qa.mx.dsm.app in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq9jmO3AewS619Y5Ug4af
SHevY4SCSB41E4iphxmQnv4MJxVTMseEBLSCauvbfcYWiM3J01ZiRH4rE4vw5OfS
w2TntDx87lrZLdOauOwi2gDOURHktT1u7nnIlYmKU1YFUGPl5JDhct5TLf5wTkJ2
p4XH1MU9vMTUCyLP4eLIEH0QUKsH+ao/wuk2imFLLFKalNgi9HIBPD4W4xycbzWY
ADObLtYMts5am70RtZjPtpfyIq5ZPVsk0KUWhsl44SYHrPcHCf5TCGgIakBW1hk1
C0G9Q+W6TlOfKChM6AVJv35yrPWwa8qDEoN5VO7gan5NcQqXrqhS+G1ZLK6yN0XX
ewIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 2180873367685160452333163964091936000
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-15 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-02-14 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rule-engine.qa.mx.dsm.app'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21693707202288987346540165597572030152778846696546180016683511996305057460950540823245319570183130568809387079400854053901127116086226452773189500671236224253554427481875046218188485779628262684764878163235272033596244576428873648677857494127690783760324490535763219853675067705646780732101547990781584532837147462580485709244655859756619038785051865562828414508817969620664914588765247889846344321780582864216764996455794025294018295352785263670462147622989595828377290847669734272163924489657679794015260856886522494383995435702441742969446293433595844952772636065814732361546994834457696562215742386252570614421371
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c9d2f221d735e50a82446d6415325b7551260ae8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rule-engine.qa.mx.dsm.app'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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