ourkin.com

Issued by Amazon

About this certificate

This digital certificate with serial number 0d:8a:f3:1a:ce:f1:ac:cf:a1:87:41:e2:8e:21:18:1a was issued on by Amazon.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=ourkin.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:8a:f3:1a:ce:f1:ac:cf:a1:87:41:e2:8e:21:18:1a
Serial Number (int): 18001431661193704510147127719810373658
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: e4:a7:66:36:10:4d:a4:d6:c2:d8:10:23:43:72:71:69:e6:49:c5:f3
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): 17:b8:ee:df:4c:9d:ba:a4:f4:5a:40:b7:93:9f:57:fa:32:2e:94:3a
Fingerprint (sha256): bd:8c:79:2e:04:24:86:db:69:6f:5d:26:bc:3e:f4:f7:ff:5b:cb:75:01:4f:ef:71:76:a4:c5:19:0c:18:61:ae

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate ourkin.com

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ourkin.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ourkin.com
atlasvr.io
*.ourkin.com
*.atlasvr.io

Other certificates including the domain name ourkin.com

(limited to 100 certificates)
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
tasks.unibs.it
community.ourkin.com
ourkin.com
theostattoos.co.uk
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
maps.ourkin.com
sni115205.cloudflaressl.com
auth.ourkin.com
sni115205.cloudflaressl.com
ourkin.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
www.irenegallego.com
cal.divest.app
sni115205.cloudflaressl.com
app.getminerva.co
ourkin.com
ourkinsites.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
www.superlist.at
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
selfie.actimotive.app
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
maps.ourkin.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
staging.ourkin.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
www.norabau.hu
sni115205.cloudflaressl.com
www.henkoti.com.br
sni115205.cloudflaressl.com
community.ourkin.com
maps.ourkin.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
www.beedots.app
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
auth.ourkin.com
sni115205.cloudflaressl.com
maps.ourkin.com
staging-maps.ourkin.com
sni115205.cloudflaressl.com
gold.dsignage.app
ourkin.com
maps.ourkin.com
sni115205.cloudflaressl.com
community.ourkin.com
ofatv2020.ondagoapp.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
maps.ourkin.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
www.showchampions.com
ourkin.com
sni115205.cloudflaressl.com
maps.ourkin.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
sni115205.cloudflaressl.com
cellinus.net
sni115205.cloudflaressl.com
ourkin.com
sni115205.cloudflaressl.com

Certificate

The complete raw certificate details for ourkin.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8lryjBiLg8gpPTOm4j4
A1vhmhaEo3p30S5JViWpVHe/YipcmMsVJeXqLPTbbceO4udNLpYyIk0OpWMfzz8i
gtZD++3+5o2lLcwwa60DQwZqruYEz6DPtfk/glJKKi8ezqx1RxA3D7Lh+79yBLwB
GTzNRau6Y8iazm6i0lXh/qvxy1d9A73AHSX3F5TNfaI4jA027kDFG/ecpLf5M8uq
jAPwSpvsqMCXJZddC2XDsQLllvZnPghKhZQFqwQXIiiuJbxTBi/6cQfv4yCE59Er
J2KMxIxgDo+ulvoCq/fe/3DsF13jaQK9huvfOTK8jwoHfGvb0N9pK3QfrGZ/HGst
uQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18001431661193704510147127719810373658
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-03-06 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ourkin.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25220747111800289747584357401405401877364251803507666474817466624824146938146750007135656135863896831770736593161185402006573305237464787292978616476341026452972741158835142261922683834606018208715677659003744106743891721785811831625545148659746726992919590523984956476850969410916714099461300988920171915363243298297242797517513564674771366881780791735409631758168211024404476500614898549010318350227251097019686176409572184445802506958963819495544403339503874405527997696502583009399173359752139822119386864517962753051351020032892127630814987231250036033182788219498127769026757014242414919325113090019378948943289
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e4a76636104da4d6c2d8102343727169e649c5f3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ourkin.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atlasvr.io'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ourkin.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.atlasvr.io'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000170186d2e830000040300473045022100944b59f8b1a16099209d66619ddb1966c2b8f33c5877e3c134a70bf7a04b261002201a8156e761b7d0cf05fd59f4c963079780110c7be4a840cb6d0719076662b5a20077008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000170186d2ede0000040300483046022100c8d5e586f3d18f3dc971178fda4b2e424ed9a684852262211bd2468c276e3e0002210099fdcbb238de98e636342b37581cb5a05aff4f6d1e481c1811d3f98113735f3d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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