a.1cms.io
Issued by Amazon
About this certificate
This digital certificate with serial number 02:27:47:93:89:5d:fc:be:aa:8f:69:6b:04:0d:8a:05 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=a.1cms.io
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:27:47:93:89:5d:fc:be:aa:8f:69:6b:04:0d:8a:05Serial Number (int): 2862407309187508889051679883621403141
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: db:94:7c:a8:6e:f7:55:c6:8b:59:c6:ac:89:3c:4f:20:66:e6:8c:37
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 82:29:8d:3a:1c:7e:bc:34:8e:84:ce:52:9f:ca:71:5f:e7:b0:0a:29
Fingerprint (sha256): a6:a6:f4:2b:01:18:c4:53:28:b7:dd:76:e3:2a:7f:21:45:bf:ee:a1:b3:0e:30:5a:55:9e:a1:b8:2a:dc:2a:40
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate a.1cms.io
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for a.1cms.io
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
a.1cms.io
alb.backend.onecms.idg.zone
alb.backend.onecms.idg.zone
Other certificates including the domain name 1cms.io
(limited to 100 certificates)
a.1cms.io
1cms.io
*.beta.1cms.io
stage.1cms.io
*.beta.1cms.io
a.1cms.io
*.beta.1cms.io
*.beta.1cms.io
1cms.io
a.1cms.io
1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
stage.1cms.io
stage.1cms.io
1cms.io
a.1cms.io
*.beta.1cms.io
*.beta.1cms.io
a.1cms.io
1cms.io
*.beta.1cms.io
*.beta.1cms.io
a.1cms.io
stage.1cms.io
*.beta.1cms.io
stage.1cms.io
1cms.io
a.1cms.io
1cms.io
stage.1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
stage.1cms.io
*.beta.1cms.io
1cms.io
1cms.io
*.beta.1cms.io
1cms.io
*.beta.1cms.io
stage.1cms.io
*.beta.1cms.io
a.1cms.io
*.beta.1cms.io
*.beta.1cms.io
1cms.io
a.1cms.io
1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
stage.1cms.io
stage.1cms.io
1cms.io
a.1cms.io
*.beta.1cms.io
*.beta.1cms.io
a.1cms.io
1cms.io
*.beta.1cms.io
*.beta.1cms.io
a.1cms.io
stage.1cms.io
*.beta.1cms.io
stage.1cms.io
1cms.io
a.1cms.io
1cms.io
stage.1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
*.beta.1cms.io
stage.1cms.io
*.beta.1cms.io
1cms.io
1cms.io
*.beta.1cms.io
Certificate
The complete raw certificate details for a.1cms.io in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEhTCCA22gAwIBAgIQAidHk4ld/L6qj2lrBA2KBTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xODA2MDEwMDAwMDBaFw0xOTA3MDEx MjAwMDBaMBQxEjAQBgNVBAMTCWEuMWNtcy5pbzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANXmSysgAp2R2iTCwXtc87I8WyHwpFvg13ycrHrO1Y7YaAR6 tDCNhz1SAjjg6PsmlD5JkxCKSDreTZAloEhzmQ8bpFrFlTJJSkN7NG3xP+NclhbM Aeah8gEzemeLt6IYOT/V/ltrogB+lxIMjpSV4LhETRjdjPH1HlMXysQU4ZT2+MC3 taMv8r/GJi8YF6vAg2WdiDG3qN3oxYP99tdDGwNQJzoSKihzpyQQ0r79Bxyw3LMC KZPB7klnN8l1El4h9q6jGlXAj12bKMt1BdhafqRP3HLEdf6i+rY2/rzFmjw/BJ/5 OBQOaQGThcT6HlQgnpZIeUk8uvZDLpxvmI86RfcCAwEAAaOCAZ8wggGbMB8GA1Ud IwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0GA1UdDgQWBBTblHyobvdVxotZ xqyJPE8gZuaMNzAxBgNVHREEKjAogglhLjFjbXMuaW+CG2FsYi5iYWNrZW5kLm9u ZWNtcy5pZGcuem9uZTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIu YW1hem9udHJ1c3QuY29tL3NjYTFiLmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwB AjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8v b2NzcC5zY2ExYi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9j cnQuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAA MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBnG+o+u5ud Gotc93Nn+hDreaBrtZJXjKt2eaSofuYQKl6uFPFqHGeHRwHSGF4wnvBcT6wjJPdt V9HVuE1mrYvlMTtpZ7toV8mcVYAT39eOJUokplw2bAlK+E7vVV7hr1XnBPlIHSzh sAOPlBdpMj78KaDa4QcSDeZNJnyB296ZVkjhSUZOcGBM/lhREuT953YsNbFtpAGu LwPeDzajUzc3j3AdyivXNHPFk1pHf/KOxv6SdqIfwbl0NjhmJLK2bF935355fhRi 0vceHZaKXM8Ik/3iz+scYXwRjJZiATtdb5Fph8VaozXJwMlFDDvNnNSxthd37Dpj lR+YZDqSsPy8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eZLKyACnZHaJMLBe1zz sjxbIfCkW+DXfJyses7VjthoBHq0MI2HPVICOODo+yaUPkmTEIpIOt5NkCWgSHOZ DxukWsWVMklKQ3s0bfE/41yWFswB5qHyATN6Z4u3ohg5P9X+W2uiAH6XEgyOlJXg uERNGN2M8fUeUxfKxBThlPb4wLe1oy/yv8YmLxgXq8CDZZ2IMbeo3ejFg/3210Mb A1AnOhIqKHOnJBDSvv0HHLDcswIpk8HuSWc3yXUSXiH2rqMaVcCPXZsoy3UF2Fp+ pE/ccsR1/qL6tjb+vMWaPD8En/k4FA5pAZOFxPoeVCCelkh5STy69kMunG+YjzpF 9wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2862407309187508889051679883621403141 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-06-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'a.1cms.io' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27002320977653051099774969517735064600973701683121121261860735157365843992253659563915720622850743803197950781222442519059287470220234610374497134836275432529714132427234235433581072850027389337491214641850294514105215042372640560855699049891129684079943223159094413348418842909715830320639057484269795066728081278856537634124440726253202563574338854032598965135617793341493701630992606249226768530357901861096690557927553817591791766636831866126744720955453512172204078540378823892489212561696003142615112753356904273699165297068707819058915018245354719476158736176753248151554597521931539796857565889222349661292023 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) db947ca86ef755c68b59c6ac893c4f2066e68c37 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'a.1cms.io' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alb.backend.onecms.idg.zone' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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