live.wh.geniussports.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 0d:af:50:b0:24:10:8b:a9:1c:d5:29:9f:77:18:13:1c was issued on by Amazon.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=live.wh.geniussports.com

Amazon

Organization: Amazon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:af:50:b0:24:10:8b:a9:1c:d5:29:9f:77:18:13:1c
Serial Number (int): 18190252443533858522100397331558437660
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 13:23:a9:a7:0a:b6:07:89:05:f9:74:b8:79:4e:5b:cb:37:46:14:8f
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): c7:f3:7a:fd:d3:2b:bd:98:3e:e7:be:39:e2:14:9e:c4:01:74:e3:48
Fingerprint (sha256): c9:2e:4c:0a:ee:6a:38:e4:84:a6:cf:44:b7:54:4d:50:aa:74:34:d1:a0:68:eb:e7:5f:f7:62:73:be:76:01:63

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate live.wh.geniussports.com

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for live.wh.geniussports.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

live.wh.geniussports.com
statsengine-stream.dcd-production.i.geniussports.com
live.rus.wh.sportingpulseinternational.com
live.wh.sportingpulseinternational.com

Other certificates including the domain name geniussports.com

(limited to 100 certificates)
rabbit.geniusbet-7143.integration.geniussports.com
*.uat.webdev.geniussports.com
*.ci.opap.geniussports.com
graylog-ls-cixl.prod.aws.geniussports.com
support.sixsq.com
*.contentgraph-211883.perf.dev.aws.geniussports.com
*.ci.spt.geniussports.com
graylog-core.dev.aws.geniussports.com
*.ls.prod.aws.geniussports.com
support.wh.sportingpulseinternational.com
graylog-core.dev.aws.geniussports.com
eu-status.swrve.com
*.opap.uat.webdev.geniussports.com
*.ci.geniuslive.app.geniussports.com
fdus-35a.freshdesk.com
ci.media.api.geniussports.com
*.eu.f2p.media.geniussports.com
chronograf.tick.test.prod.aws.geniussports.com
prodwh-phpmyadmin.wh.geniussports.com
*.algotrading.ci.aws.geniussports.com
etp.status.akamai.com
*.tick.templates.prod.aws.geniussports.com
*.ci.sportsbook.app.geniussports.com
www.geniussports.com
design.geniussports.com
graylog-ls-cixl.prod.aws.geniussports.com
*.granularityconfigurator.otr.api.geniussports.com
support.wh.geniussports.com
*.uat.baseball.geniussports.com
competitions.geniussports.com
*.production.riskmanagement.app.geniussports.com
*.contentgraph-196169.perf.dev.aws.geniussports.com
fdus-35a.freshdesk.com
qa-jenkins.prod.aws.geniussports.com
*.uat.webdev.geniussports.com
*.gen.baseball.geniussports.com
etp.status.akamai.com
*.perf.prod.aws.geniussports.com
widget.wh.sportingpulseinternational.com
fdus-40.freshdesk.com
*.ci.webdev.geniussports.com
eu-status.swrve.com
*.uat.matchviewer.geniussports.com
*.geniussports.com
graylog-spt.spt.geniussports.com
www2.geniussports.com
*.h.logging.ci.riskmanagement.geniussports.com
smpp.ci.geniussports.com
se-prod-reports-api.wh.geniussports.com
*.contentgraph-211853.perf.dev.aws.geniussports.com
*.ci.aws.geniussports.com
fdus-40.freshdesk.com
graylog-core.dev.aws.geniussports.com
smpp.test.geniussports.com
eu-status.swrve.com
graylog-integration-cixl.ci.aws.geniussports.com
prodwh-ecs-cluster.wh.geniussports.com
support.sixsq.com
*.contentgraph-209475.perf.dev.aws.geniussports.com
graylog-ls-cixl.prod.aws.geniussports.com
fdus-40.freshdesk.com
*.uat.f2p.media.geniussports.com
eu-status.swrve.com
api.statistics.americanfootball.geniussports.com
betting.geniussports.com
*.uat.feed-monitor-controller.app.geniussports.com
graylog-spt.spt.geniussports.com
api.geniussports.com
eu-status.swrve.com
prod-re-phpmyadmin.wh.geniussports.com
eu-status.swrve.com
algotrading-graylog.ci.aws.geniussports.com
eu-status.swrve.com
fdus-35a.freshdesk.com
*.perf.prod.aws.geniussports.com
*.contentgraph-211929.perf.dev.aws.geniussports.com
*.da.gss-production.i.geniussports.com
*.contentgraph-191126.perf.dev.aws.geniussports.com
graylog-integration-cixl.ci.aws.geniussports.com
eu-status.swrve.com
uat.venuematches.matchmaker.api.geniussports.com
etp.status.akamai.com
graylog-otf.ci.aws.geniussports.com
*.ci.aws.geniussports.com
footballsupport.geniussports.com
*.ci.geniussports.com
eu-status.swrve.com
*.video-platform.ci.aws.geniussports.com
support.sixsq.com
*.volleyball.geniussports.com
*.sb3.prod.aws.geniussports.com
*.dev.aws.geniussports.com
*.dcd-uat.i.geniussports.com
competitions.geniussports.com
prodwh-phpmyadmin.wh.geniussports.com
ci.baseball-resulting.srt.geniussports.com
*.api.matchviewer.geniussports.com
etp.status.akamai.com
eu-status.swrve.com
*.sb1-external.production.sportsbook.app.geniussports.com

Certificate

The complete raw certificate details for live.wh.geniussports.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0akzZt9XVnw1SZQrtQhG
4xED/NZO7v3muoRpPYTPo6GshChjySjWTtVoE5xaeNLpEddes3wcZTZURhgqiT7Q
Rl46/xHHfJBofiiZBMcp7Mq8X6+UjcMIkrpnEh5GpW00tqcnj3+92byBMnD1ctdl
5x8NeqHi15Aj/jDX6kqQTSYYNAuzmIFzjsh0fydpptZFTuFK5g5wn+22oX9gsx4k
1IP1eB7SWSpydfwNuACzt7pxBveBT0zNLv/DKea1logaDFGExwxi32dpeMnGZfdc
SY2SBBFhn65fa4ZP6vWn8YK0NntGBPSA3lzR6iRdaGDsekhFj1yV58NLqmF8aRPB
4wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18190252443533858522100397331558437660
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-19 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-18 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'live.wh.geniussports.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26467241756398210149709397130726773989058297167448744536363000088392679904065792929441552899627020316597804121493493922103370187977776300633511173775595765772833499502142714425118313137937660189773363148735188044848354690105575499618223464775307255875421065823692765876577364369494517008360427823732909201270402279067089042335842553837028783464751027345064141876162203097201508474617713887509334083516218803177884785690361008074325985605643293269616320137686741233542279642299134877766387794660827734965626177031523766719977214264040447352846096561479677753914981923569026871232874712956086165768593020152828726067683
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1323a9a70ab6078905f974b8794e5bcb3746148f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (167 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.wh.geniussports.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'statsengine-stream.dcd-production.i.geniussports.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.rus.wh.sportingpulseinternational.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.wh.sportingpulseinternational.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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