api.at1.gdlservices.nl
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 0e:5b:83:c9:c1:47:5c:b3:99:a7:47:2d:78:fd:19:66 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=api.at1.gdlservices.nl
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0e:5b:83:c9:c1:47:5c:b3:99:a7:47:2d:78:fd:19:66Serial Number (int): 19084363935451113670274714008335227238
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: f3:fd:d0:20:18:e8:13:44:37:08:bf:c1:cb:e2:cd:34:b7:3b:df:7f
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 2e:64:c7:8a:29:9b:3f:08:92:c2:1b:ca:7c:a2:78:3f:73:e0:19:34
Fingerprint (sha256): b4:d6:62:b0:a0:28:de:4b:5c:e1:c9:1b:ac:e4:84:c2:aa:d8:2d:50:71:1c:93:5d:f5:78:f0:5f:12:38:c5:49
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate api.at1.gdlservices.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.at1.gdlservices.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.at1.gdlservices.nl
sandbox.novamedia.com
sandbox.novamedia.com
Other certificates including the domain name gdlservices.nl
(limited to 100 certificates)
api.novamedia.com
common-static.gdlservices.nl
api.st1.gdlservices.nl
*.spellen.vl-addedgames.pr.gdlservices.nl
shared.ocp.gdlservices.nl
api.at1.gdlservices.nl
*.spellen.npl-addedgames.pr.gdlservices.nl
shopimages.gdlservices.nl
movethattruck.npl-addedgames.dv1.gdlservices.nl
api.at1.gdlservices.nl
api.novamedia.com
*.portal.npl-addedgames.pr.gdlservices.nl
*.npl-addedgames.pr.gdlservices.nl
common-static.gdlservices.nl
api.st1.gdlservices.nl
*.spellen.vl-addedgames.pr.gdlservices.nl
shared.ocp.gdlservices.nl
api.at1.gdlservices.nl
*.spellen.npl-addedgames.pr.gdlservices.nl
shopimages.gdlservices.nl
movethattruck.npl-addedgames.dv1.gdlservices.nl
api.at1.gdlservices.nl
api.novamedia.com
*.portal.npl-addedgames.pr.gdlservices.nl
*.npl-addedgames.pr.gdlservices.nl
Certificate
The complete raw certificate details for api.at1.gdlservices.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIQDluDycFHXLOZp0cteP0ZZjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMTAwMjAwMDAwMFoXDTI0MTAzMDIzNTk1OVowITEf MB0GA1UEAxMWYXBpLmF0MS5nZGxzZXJ2aWNlcy5ubDCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAJrcYgJCvx/8rl8nM3nxU6LaAbpquy0OzhmJvnLlUdTc wvVwqZd01lr099ylFNhI8Wuev+oYuycvzmJXN1Zn8IY0VAQKq+OK4TXvktLCoQsQ 56tekoVRgNQAlpWXFlnb0/KSqpd9jdq6PyHtLEZFUN9NrhhW870GlXk+2A5cdJWE Sok1LB9lGoFKWw3uDZoS3UaMSdMGAUOhVK6X+ZZRidJIPbC5D32D376Df45eY3xq csGkjJmqt0MH40O0jF878kQKSYQ6dD3pmXsGfRLhgW3oPm/GRmS52VOM2ETyVOE1 h1qnrPOx7pnZxxhvKrUUocDJ214bHTRHKBy6Huwmp+UCAwEAAaOCAwkwggMFMB8G A1UdIwQYMBaAFIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBTz/dAgGOgT RDcIv8HL4s00tzvffzA4BgNVHREEMTAvghZhcGkuYXQxLmdkbHNlcnZpY2VzLm5s ghVzYW5kYm94Lm5vdmFtZWRpYS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNV HR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAxLmFtYXpvbnRydXN0LmNvbS9y Mm0wMS5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2Nz cC5yMm0wMS5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQu cjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNlcjAMBgNVHRMBAf8EAjAAMIIB gQYKKwYBBAHWeQIEAgSCAXEEggFtAWsAdwDuzdBk1dsazsVct520zROiModGfLzs 3sNRSFlGcR+1mwAAAYrxJrInAAAEAwBIMEYCIQCNEdIZpBZ7F3IVWm6YQlga1MFx AbZ6viqTMIs21pvOuwIhAN+4jvj0VwRvV2U/eM7E+HzM8WIE3D0JHj268t1K53tu AHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGK8Sax9QAABAMA SDBGAiEA1koGCq0QRgui03H5s87GCongeGddpY4ZgW2Sj8B5U44CIQCtoSJgPj2O gwltTAf7nTqSoIioefuraEsvyRLdYpUa3QB3ANq2v2s/tbYin5vCu1xr6HCRcWy7 UYSFNL2kPTBI1/urAAABivEmscgAAAQDAEgwRgIhAOign8lbIJlrwdS7dsGF8RoN o0oeWfitkv5/ciohCAVMAiEAsucHIJTBoYHh1GQMBWbEj9a2VdbdqbACQ6rZVKXb qDQwDQYJKoZIhvcNAQELBQADggEBANogZtHAf1yjPXMaQeLZ+Aa/k8VrL5maFszM GqYIuIROKdk7OO2aeAa18ycciYfFoqfI0hkBfg1Euwgw5IZDRt6fUNkH2evLdbXH mO9/k/lgceG5HDnrm3U+Rt6AAs+r1y9GHy9cnCpdXS4tSGkS72o/Lvi7OHvRDBvu 0PE06VJLa2xwAMYUucvDMm44TtBH9HUcUtprUr3xXLN1byGYmc/nQanxuhgerCUr g1LxIqlfVLU+IBfbx2JjXsMbRQcUgr74k7fiHOQAWtUv1kd9JGUw5Eq/b2n18bRf vrha4zMGBDX9sV69WiU0hUjjEuz2CCjXAcZiYJsKPBeMM5WXelg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtxiAkK/H/yuXyczefFT otoBumq7LQ7OGYm+cuVR1NzC9XCpl3TWWvT33KUU2Ejxa56/6hi7Jy/OYlc3Vmfw hjRUBAqr44rhNe+S0sKhCxDnq16ShVGA1ACWlZcWWdvT8pKql32N2ro/Ie0sRkVQ 302uGFbzvQaVeT7YDlx0lYRKiTUsH2UagUpbDe4NmhLdRoxJ0wYBQ6FUrpf5llGJ 0kg9sLkPfYPfvoN/jl5jfGpywaSMmaq3QwfjQ7SMXzvyRApJhDp0PemZewZ9EuGB beg+b8ZGZLnZU4zYRPJU4TWHWqes87HumdnHGG8qtRShwMnbXhsdNEcoHLoe7Can 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19084363935451113670274714008335227238 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.at1.gdlservices.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19549373796993212665985834970703589194341441968701163546542681829255275687270378376751140719290336191669268564219637699053220152963226521509845334686748299320248401193362701050672870179682522534796390341472529257291186493807223398358342965885805695371648611088067199128527644678216924970949697584340920323944370031103551233306712602291319469700768778599774525355683093185681797029117340068077431520928115361271903420511087323252621360684993639066719013262828634729312124280900387055743319831331612436794079327072159472512501898591397097778794270457278698025654433248559876611180378272072904424038785766017740980004837 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f3fdd02018e813443708bfc1cbe2cd34b73bdf7f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.at1.gdlservices.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sandbox.novamedia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (369 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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