carpetgiant.production.journeyagency.travel
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0c:e3:d9:1a:84:aa:b8:c2:64:f4:47:c0:bf:93:08:95 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=carpetgiant.production.journeyagency.travel
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0c:e3:d9:1a:84:aa:b8:c2:64:f4:47:c0:bf:93:08:95Serial Number (int): 17133790720181025317004633912795924629
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: b6:7a:91:86:ed:70:60:bf:1f:21:1e:0e:01:8b:ba:9a:29:85:3f:0e
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): 83:7e:24:ce:1b:d9:f3:b2:43:7c:74:59:36:01:20:01:28:fe:af:b4
Fingerprint (sha256): d8:83:32:8d:cf:08:e5:dc:93:00:b9:e5:24:b0:6c:44:6f:7d:b5:b3:3f:ec:e0:d9:02:cf:d6:09:01:24:b3:3f
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate carpetgiant.production.journeyagency.travel
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for carpetgiant.production.journeyagency.travel
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
carpetgiant.production.journeyagency.travel
*.carpetgiant.production.journeyagency.travel
*.carpetgiant.production.journeyagency.travel
Other certificates including the domain name journeyagency.travel
(limited to 100 certificates)
formsjourney.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsgifted.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journey.production.journeyagency.travel
kevmas.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsjourney.production.journeyagency.travel
journey.production.journeyagency.travel
journey.production.journeyagency.travel
formsgifted.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journeyagency.travel
itsmyspine.production.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
itsmyspine.production.journeyagency.travel
journey.production.journeyagency.travel
*.development.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
poblanding.production.journeyagency.travel
classicinteriors.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
journey.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
poblanding.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
kevmas.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsgifted.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journey.production.journeyagency.travel
kevmas.production.journeyagency.travel
fistralbeachhotel.production.journeyagency.travel
formsjourney.production.journeyagency.travel
journey.production.journeyagency.travel
journey.production.journeyagency.travel
formsgifted.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
michelsandtaylor.production.journeyagency.travel
journeyagency.travel
itsmyspine.production.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
itsmyspine.production.journeyagency.travel
journey.production.journeyagency.travel
*.development.journeyagency.travel
luxuryfamilyhotels.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
poblanding.production.journeyagency.travel
classicinteriors.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
journey.production.journeyagency.travel
cliniquelaprairie.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
carpetgiant.production.journeyagency.travel
poblanding.production.journeyagency.travel
journey-statamic.production.journeyagency.travel
ombersleycourt.production.journeyagency.travel
kevmas.production.journeyagency.travel
hillparkhotel.production.journeyagency.travel
Certificate
The complete raw certificate details for carpetgiant.production.journeyagency.travel in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIExDCCA6ygAwIBAgIQDOPZGoSquMJk9EfAv5MIlTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwNjAwMDAwMFoXDTI1MDEwMzIzNTk1OVowNjE0 MDIGA1UEAxMrY2FycGV0Z2lhbnQucHJvZHVjdGlvbi5qb3VybmV5YWdlbmN5LnRy YXZlbDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMSsQfkpEqysgps/ nP+p/IFQ2tKBhMELBMTpXZ5OeNHJ5cKnYY9RtyJqc13m+zkfJZ3CUjCmUDeJM6BE /Y5GRuJuCBIeL9E+zRdNon077pRo+URfQSYVVvkxhmRk7Tit1D+myoJjwoTObmRO R2AtBYbfyD0Ke42KCRaQOXVVkUtqqRqltUXvs3NgKGn6uYTC/xS1akrKqobaGMjt uQuNybzRjRutdgW5/3mOIQcheUO8krOZwFi0bbgEZxUnb9rPMmshnFBDQWc1nicf TTIMAbE4HzHXX37HYYTjn0DMh5LTdK9iHMSCQVHztCuxri1G5UCDXkaA3NBQ/amT +uzJypsCAwEAAaOCAcYwggHCMB8GA1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB 1y4CMB0GA1UdDgQWBBS2epGG7XBgvx8hHg4Bi7qaKYU/DjBlBgNVHREEXjBcgitj YXJwZXRnaWFudC5wcm9kdWN0aW9uLmpvdXJuZXlhZ2VuY3kudHJhdmVsgi0qLmNh cnBldGdpYW50LnByb2R1Y3Rpb24uam91cm5leWFnZW5jeS50cmF2ZWwwEwYDVR0g BAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAz LmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsG AQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYB BQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNl cjAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoaZBvPwX6ZoQMUVyKzfqdlC77BpAY1psnYWrRhyuyn6yGQ4vxZJIh e490PANm+qoJu+3XqU0w4H0TyJgofPaweiHO2eGFub9+niA1qopbutk7OqvTYOOy 1U7Y4QnSx6yFjtXkocIAoi6MAfty1Z8dBu8Yg3afqR2WbLqFzMwEB9gwkfJ+4VR5 jobrbnXOIWt3F1reF/2ZIYNNCIcM+fokGEy8wwww1PvIodkiCWeZELFEsVZXk8r+ HaBcGtFrbjHEGvh5kzu2342KbpGBD7MvI5oKAYNUs4eb9ctHaQ+jVhb3UUuVtzXp S9fpGMizCCSKuAs1JDj6xb8jkk/Xp5bT -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKxB+SkSrKyCmz+c/6n8 gVDa0oGEwQsExOldnk540cnlwqdhj1G3ImpzXeb7OR8lncJSMKZQN4kzoET9jkZG 4m4IEh4v0T7NF02ifTvulGj5RF9BJhVW+TGGZGTtOK3UP6bKgmPChM5uZE5HYC0F ht/IPQp7jYoJFpA5dVWRS2qpGqW1Re+zc2Aoafq5hML/FLVqSsqqhtoYyO25C43J vNGNG612Bbn/eY4hByF5Q7ySs5nAWLRtuARnFSdv2s8yayGcUENBZzWeJx9NMgwB sTgfMddffsdhhOOfQMyHktN0r2IcxIJBUfO0K7GuLUblQINeRoDc0FD9qZP67MnK mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17133790720181025317004633912795924629 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-06 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'carpetgiant.production.journeyagency.travel' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24827651215115084970758204199659145783548561867205470454978104343570471247147420022431221028545414388382386348450237837121020194760226933052485783229292126666502959564477902364421429975858568932011783233607106985550840813504817480119600574916497766876967685527524250402863863584995219973424068563038042543641808251309297528939936046125990401744116327817191062735002296395907251120907146096759529093140683698912936896177846852799708533202355415245520058246821741997256304223586295448011116735451593547996073471022503916515387983170974071607661498754804372122563480519090297278819640772678460611785013835321481215199899 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b67a9186ed7060bf1f211e0e018bba9a29853f0e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carpetgiant.production.journeyagency.travel' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.carpetgiant.production.journeyagency.travel' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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