demo.dukc.com
Issued by Amazon
About this certificate
This digital certificate with serial number 01:86:c8:64:4b:01:83:5e:07:29:82:01:28:90:ef:97 was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demo.dukc.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:86:c8:64:4b:01:83:5e:07:29:82:01:28:90:ef:97Serial Number (int): 2029060202778769562585222582600003479
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 4e:7f:83:52:78:0a:e9:d8:e6:6c:fc:fa:8d:b0:64:d9:53:61:a6:6a
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 1a:66:1a:33:b6:1c:20:c1:85:6b:5c:1f:08:9e:95:9f:d6:14:a4:27
Fingerprint (sha256): d2:0e:0b:bf:7a:b7:72:fc:46:95:eb:90:4c:2a:aa:6e:78:d0:db:69:4d:42:d1:59:2d:d2:7d:31:84:96:8d:93
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate demo.dukc.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demo.dukc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demo.dukc.com
Other certificates including the domain name dukc.com
(limited to 100 certificates)
savannah.dukc.com
*.dukc.com
dukc.net
dukc.net
porthedlandsimulator.dukc.com
melbourne.ais.dukc.com
*.dukc.com
dukc.com
dukc.net
api.production.dukc.net
melbourne.dukc.com
dukc.net
dukc.net
dukc.net
*.dukc.com
demo.dukc.com
uat.dukc.com
fremantle.dukc.com
dukc.net
dukc.com
dukc.net
dukc.net
dukc.com
amsa.dukc.com
melbourne.ais.dukc.com
dukc.net
dukc.com
dukc.com
dukc.net
dukc.net
melbourne.dukc.com
fremantle.dukc.com
dukc.net
*.dukc.com
*.dukc.com
savannah.dukc.com
demo.dukc.com
dukc.net
demo.dukc.com
*.dukc.com
demo.dukc.com
amsa.dukc.com
api.production.dukc.net
uat.dukc.com
porthedlandsimulator.dukc.com
dukc.net
melbourne.dukc.com
*.dukc.com
dukc.net
dukc.net
porthedlandsimulator.dukc.com
melbourne.ais.dukc.com
*.dukc.com
dukc.com
dukc.net
api.production.dukc.net
melbourne.dukc.com
dukc.net
dukc.net
dukc.net
*.dukc.com
demo.dukc.com
uat.dukc.com
fremantle.dukc.com
dukc.net
dukc.com
dukc.net
dukc.net
dukc.com
amsa.dukc.com
melbourne.ais.dukc.com
dukc.net
dukc.com
dukc.com
dukc.net
dukc.net
melbourne.dukc.com
fremantle.dukc.com
dukc.net
*.dukc.com
*.dukc.com
savannah.dukc.com
demo.dukc.com
dukc.net
demo.dukc.com
*.dukc.com
demo.dukc.com
amsa.dukc.com
api.production.dukc.net
uat.dukc.com
porthedlandsimulator.dukc.com
dukc.net
melbourne.dukc.com
Certificate
The complete raw certificate details for demo.dukc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIQAYbIZEsBg14HKYIBKJDvlzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA1MjcwMDAwMDBaFw0yMDA2Mjcx MjAwMDBaMBgxFjAUBgNVBAMTDWRlbW8uZHVrYy5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQCL+TznH8JEblcLZsZD9VDkdsojeNRv/zfX43/fa4c5 G8RzNIWFJ2D6O9z2FP+gKjE8RxnHcuZwrjvVV5Fu1S8xQUKz7aLuPLsOSb4g7SJg BzOlzBscxxzYw9QB6eTr9qRPswkTQbnX1QluWZkF81JDqTLwURJgy8PHqilwVssP HADQxw5cC00otI/3OXpn20XhipulRKevOSrzPgauWHVm6wc61VxcSAvr1vyp8urx wjDlqkdU6LA0KYY5UWhWhcu4dH7TP3NGp4Q7B07oQFXq1xvtlQxCIgubYyKe6CHM VX9NXMVRs8hSO6nu6tnLBoMh87y52RdG2Zu6I9th0yyvAgMBAAGjggJ5MIICdTAf BgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUTn+DUngK 6djmbPz6jbBk2VNhpmowGAYDVR0RBBEwD4INZGVtby5kdWtjLmNvbTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0 MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFi LmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUH AQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVz dC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3Qu Y29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHcApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFq+MxtcAAA BAMASDBGAiEAgX9hsqCjXBe3JmJYfyg7Vx5ndewGwibZDsOB/xC196gCIQC5SgdF Cnrxa/GFKA7WMo7FDANoVYQSoRzwHtiQ8v34agB1AId1v+dZfPiMQ5lfvfNu/1aN R1Y2/0q1YMG06v9eoIMPAAABavjMbogAAAQDAEYwRAIgU5YZFNloD4DGco4+EIxk RkYHLJJ16TSSM6mjbWtqFoECICRy63iOd386fCWtMW75q6RZJ+lgQggS9bX223K0 4sj8MA0GCSqGSIb3DQEBCwUAA4IBAQCDKM3vSJbmhBJzRTM1eIaab/zni6w11Cob MDbu7vClFdoefUPDMlnO8yvmd6rso03j2tJbpyNkrEr/NcvEE57Dbnw8LJ3p7IIK H4bQwFEqVTBROv9OtDaL9DVmdJl9BRNp3me4iVICSVQu+wWt3Gk77bFTpCkS9nAr wQkqgOCfQGmRa8svcXGAd/EFjuriqPcirY4Pbv8pmU2NYBAmmFgR411KiIg7XEHl jZ3zQuv02pQOI8B7PX2qdUJSolJ14muBK7T2F/d8AeTi7+spZrePOIkJROclKCdU TLi32+86VeRj8U/CKRviDiwq2Q2PIizgTTZTEoMWbsvoruwV8ORf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/k85x/CRG5XC2bGQ/VQ 5HbKI3jUb/831+N/32uHORvEczSFhSdg+jvc9hT/oCoxPEcZx3LmcK471VeRbtUv MUFCs+2i7jy7Dkm+IO0iYAczpcwbHMcc2MPUAenk6/akT7MJE0G519UJblmZBfNS Q6ky8FESYMvDx6opcFbLDxwA0McOXAtNKLSP9zl6Z9tF4YqbpUSnrzkq8z4Grlh1 ZusHOtVcXEgL69b8qfLq8cIw5apHVOiwNCmGOVFoVoXLuHR+0z9zRqeEOwdO6EBV 6tcb7ZUMQiILm2MinughzFV/TVzFUbPIUjup7urZywaDIfO8udkXRtmbuiPbYdMs rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2029060202778769562585222582600003479 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-27 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo.dukc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17670028180284211446896193397294723281227469825455505068901060093362170323272079176208807073020504388143857605658656891763870975788649295484979961323940334933995302327386972603338280217630678707185777256668200356370390458086795807242308333680940155188245683282421849363461777395983310689739519013900366929319583455511089951810095802029660547608328374522270445210223804758832529756972755022869777246307557498214237158391162421461196553350933240112679089185717479867685314961789827087870628846727860779123575875628221529305993504123846729487186040965690600020849643416050483441263888327225737034240780645846984546266287 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e7f8352780ae9d8e66cfcfa8db064d95361a66a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo.dukc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000016af8cc6d700000040300483046022100817f61b2a0a35c17b72662587f283b571e6775ec06c226d90ec381ff10b5f7a8022100b94a07450a7af16bf185280ed6328ec50c0368558412a11cf01ed890f2fdf86a0075008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f0000016af8cc6e880000040300463044022053961914d9680f80c6728e3e108c644646072c9275e9349233a9a36d6b6a168102202472eb788e777f3a7c25ad316ef9aba45927e960420812f5b5f6db72b4e2c8fc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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