*.sncfconnect.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 02:d2:56:18:44:63:f1:2c:c6:8a:ee:8b:74:f2:d9:eb was issued on by Amazon.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.sncfconnect.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:d2:56:18:44:63:f1:2c:c6:8a:ee:8b:74:f2:d9:ebSerial Number (int): 3750584541729763174078513296685849067
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: bf:8b:01:f3:70:cd:10:48:34:ca:74:0d:34:e4:66:f0:8e:ad:85:64
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 28:56:52:f5:c0:b5:31:6c:2e:0f:19:fd:3a:d8:5d:10:8b:44:09:c3
Fingerprint (sha256): b4:1d:57:37:f7:fd:e4:69:f8:c7:b5:7e:a1:02:8e:ea:b1:85:74:b1:e2:20:82:4e:fb:fb:6b:69:fe:ee:12:db
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.sncfconnect.com
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.sncfconnect.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.sncfconnect.com
sncf-voyageurs.com
voyages-train-agencegroupe.sncf.fr
*.voyages-train-agencegroupe.sncf.fr
*.gares-sncf.com
www.accessibilite.sncf.com
gares-sncf.com
sncf-voyageurs.com
voyages-train-agencegroupe.sncf.fr
*.voyages-train-agencegroupe.sncf.fr
*.gares-sncf.com
www.accessibilite.sncf.com
gares-sncf.com
Other certificates including the domain name sncfconnect.com
(limited to 100 certificates)
*.sncfconnect.com
sncfconnect.com
sncf.com
sncf.com
mail.sncfconnect.com
www.srtpf.fr
*.sncfconnect.com
sncfconnect.com
sncf.com
www.srtpf.fr
nl-cdn.sncfconnect.com
res2.service.sncfconnect.com
ntf.sncfconnect.com
sncfconnect.com
sncf.com
ouisncf.fr
mail.sncfconnect.com
sncfconnect.com
www.srtpf.fr
*.sncfconnect.com
sncfconnect.com
*.sncfconnect.com
sncf.com
www.srtpf.fr
nl-cdn.sncfconnect.com
sncfconnect.com
*.sncfconnect.com
sncf.com
www.srtpf.fr
sncf.com
sncf.com
sncfconnect.com
sncf.com
sncf.com
mail.sncfconnect.com
www.srtpf.fr
*.sncfconnect.com
sncfconnect.com
sncf.com
www.srtpf.fr
nl-cdn.sncfconnect.com
res2.service.sncfconnect.com
ntf.sncfconnect.com
sncfconnect.com
sncf.com
ouisncf.fr
mail.sncfconnect.com
sncfconnect.com
www.srtpf.fr
*.sncfconnect.com
sncfconnect.com
*.sncfconnect.com
sncf.com
www.srtpf.fr
nl-cdn.sncfconnect.com
sncfconnect.com
*.sncfconnect.com
sncf.com
www.srtpf.fr
sncf.com
sncf.com
Certificate
The complete raw certificate details for *.sncfconnect.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGbDCCBVSgAwIBAgIQAtJWGERj8SzGiu6LdPLZ6zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDkyOTAwMDAwMFoXDTI0MTAyNzIzNTk1OVowHDEa MBgGA1UEAwwRKi5zbmNmY29ubmVjdC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0bVypuAFs773fIVTkk/89Hx1xziy2T25zdwWFmD0G1NS1Loyr 61aRSX3Cvv0qubbbu7BC09Dkyg1rHOHeyC4GU4l7b4yvXENnFwc1OraSxNp3tjJB LjU4+K3NledMcUTkO7x4QgCi5jZ218iKk7u5vSWNtvdIqdWNjf9log6qKjgnFc1F 8w3R1yVwLxdEGUDWMxthWUbBnf5GJ0gcpdXF9R0TxA9BHnyTwwvekaudj04yQ175 ZJgY5OeYremFWPgDsBCWv0I6TBMeYMLMuXnsBPnJJC8K8b5FVDXAZuMTXzYsv4hd MiEci6nMtPQBMC1g4kS9pFDrEUJPSS8dam/RAgMBAAGjggOIMIIDhDAfBgNVHSME GDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUv4sB83DNEEg0ynQN NORm8I6thWQwgboGA1UdEQSBsjCBr4IRKi5zbmNmY29ubmVjdC5jb22CEnNuY2Yt dm95YWdldXJzLmNvbYIidm95YWdlcy10cmFpbi1hZ2VuY2Vncm91cGUuc25jZi5m coIkKi52b3lhZ2VzLXRyYWluLWFnZW5jZWdyb3VwZS5zbmNmLmZyghAqLmdhcmVz LXNuY2YuY29tghp3d3cuYWNjZXNzaWJpbGl0ZS5zbmNmLmNvbYIOZ2FyZXMtc25j Zi5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRw Oi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUH AQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVz dC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3Qu Y29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0E ggFpAWcAdQB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYrfnuX6 AAAEAwBGMEQCIFKPlS+sCbSCZ7carkWGKXy8WMfw/+wP1R5eGMsbqdxIAiAdhrKb hJv31PSVIFJlSXvuUao4VRRj/+8j7L2QPt+bVwB3AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABit+e5h0AAAQDAEgwRgIhAKiv6o618zGY4UWb/cWy ZcvuGYY7VyL2Texiiv7TpvaoAiEApL8WaAXDzIaD1ztSxqcjOH4lI8Frq/2BW2h7 NhsCwpUAdQDatr9rP7W2Ip+bwrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYrfnuX1 AAAEAwBGMEQCIGPH7a20qLGsIcnMwRajWg3WdW93onMvt1CS/kIo2bfUAiAfSQAh 1PY6noFAatjnyfubIyZACZLALGxwM8HCUSZkVzANBgkqhkiG9w0BAQsFAAOCAQEA qrR777fBzz8hxdYmzli6BqBny00Md3wTcMfE6udAo6gddVSZ0mF4P8VZX7WR/JHP l2pQLRTfS6ckn/EtRQg7GI+TKY5D6JXlD8fF5VoAumvdu5XAZ+fo8pJdyrnBUf3y q8kt3m0mmPjYiI0j/Lc0OaXjGAfJBYrD6ZzIF2luJfqMePbEmpKZAmJ2u7Wbf54v 1Q+JdbSDqUbNYccM2QShCFNiQ0A4T7Q6OPhCJrlL1hJC5vSiXnpR6cv9x4wcoKoe 3xKZzHs6SJyKl8KdoUt3eD+K5wOQuvx89sZgJXumyWg0GVbuawCkyqG144GWdL0T 2O2FPXWch3PfafhT2PIj7Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtG1cqbgBbO+93yFU5JP/ PR8dcc4stk9uc3cFhZg9BtTUtS6Mq+tWkUl9wr79Krm227uwQtPQ5MoNaxzh3sgu BlOJe2+Mr1xDZxcHNTq2ksTad7YyQS41OPitzZXnTHFE5Du8eEIAouY2dtfIipO7 ub0ljbb3SKnVjY3/ZaIOqio4JxXNRfMN0dclcC8XRBlA1jMbYVlGwZ3+RidIHKXV xfUdE8QPQR58k8ML3pGrnY9OMkNe+WSYGOTnmK3phVj4A7AQlr9COkwTHmDCzLl5 7AT5ySQvCvG+RVQ1wGbjE182LL+IXTIhHIupzLT0ATAtYOJEvaRQ6xFCT0kvHWpv 0QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3750584541729763174078513296685849067 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-27 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.sncfconnect.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22776823288624367788173339592160955992795145542857952791790610272396621463058681206788002254842805931039357157899155750163880425842698739479860247830291343974960681154277430032059242259584721072826283613571024363861757785484765126644430018042151187536022900021473877080947882788981626383822517830742972893608523144891531867321401340300106919931960043543696204978739670725693763367121068634357638916958750064767635073463453100646038042531108215852497612209720397626068093306906342395671026315655930919475408171857574480338002799324986911045175679454037675065398246730874484823102267055273600570015192102489177010630609 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf8b01f370cd104834ca740d34e466f08ead8564 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (178 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sncfconnect.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sncf-voyageurs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'voyages-train-agencegroupe.sncf.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.voyages-train-agencegroupe.sncf.fr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gares-sncf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.accessibilite.sncf.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gares-sncf.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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