regalii.splitwise.com

Issued by Amazon

About this certificate

This digital certificate with serial number 07:63:07:ad:d0:fb:ce:bd:65:fe:0c:b3:7e:bf:e9:db was issued on by Amazon.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=regalii.splitwise.com

Amazon

Organization: Amazon
Organization unit: Server CA 1B
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 07:63:07:ad:d0:fb:ce:bd:65:fe:0c:b3:7e:bf:e9:db
Serial Number (int): 9818789107505998299817012775023012315
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: cc:c6:43:37:d1:c7:ec:b4:72:d0:8b:9d:00:bf:bf:4f:26:3f:0d:4d
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0

Fingerprint (sha1): f3:f6:a6:82:60:01:97:cb:58:01:c9:e9:b8:28:06:ae:97:92:6b:e8
Fingerprint (sha256): da:0b:c6:fe:39:55:db:00:c6:ca:30:05:20:eb:33:a7:b3:1b:9f:e4:0e:8b:bd:d3:cd:d9:7f:5b:95:be:b5:34

Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt

Revocation information

OCSP Server: http://ocsp.sca1b.amazontrust.com
CRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl

Check the revocation status for certificate regalii.splitwise.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for regalii.splitwise.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

regalii.splitwise.com

Other certificates including the domain name splitwise.com

(limited to 100 certificates)
dev.beta.splitwise.com
emails.splitwise.com
codykit.dev
tls.automattic.com
tls.automattic.com
statusboard.splitwise.com
vault-sandbox.splitwise.com
dev.splitwise.com
parrot.splitwise.com
tls.automattic.com
admin.thebakeryandcafe.co.za
test.yah.ac
app.mooveandgroove.com.au
*.splitwise.com
*.splitwise.com
dev.beta.splitwise.com
dev.splitwise.com
www.blackbird.rocks
tls.automattic.com
tls.automattic.com
pizzassistant.app
tls.automattic.com
www.bstelearningtutors.com
test.yah.ac
tls.automattic.com
*.splitwise.com
tls.automattic.com
emails.splitwise.com
vault.splitwise.com
test.yah.ac
slictionary.com
tls.automattic.com
tls.automattic.com
parrot.splitwise.com
splitwise.com
dev.splitwise.com
tls.automattic.com
tls.automattic.com
*.splitwise.com
community.reinspiro.com
codenow.eu
tls.automattic.com
tls.automattic.com
vicinity.splitwise.com
splitwise.com
www.pickanapp.com
tls.automattic.com
dev.splitwise.com
*.splitwise.com
codykit.dev
*.splitwise.com
vault-sandbox.splitwise.com
vault-sandbox.splitwise.com
tls.automattic.com
splendoroftheheart.com
test.yah.ac
near.idgo.me
dev.splitwise.com
assets.splitwise.com
dev.splitwise.com
tls.automattic.com
dev.splitwise.com
tls.automattic.com
slictionary.com
statusboard.splitwise.com
tls.automattic.com
splitwise.com
codenow.eu
goriant.com
tls.automattic.com
dev.splitwise.com
vicinity.splitwise.com
*.splitwise.com
emails.splitwise.com
tls.automattic.com
tls.automattic.com
dev.splitwise.com
links.splitwise.com
splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
*.splitwise.com
regalii.splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
www.blackbird.rocks
links.splitwise.com
tls.automattic.com
vault-sandbox.splitwise.com
dev.splitwise.com
www.presentably.co
tls.automattic.com
vault-sandbox.splitwise.com
regalii.splitwise.com
www.learnlantern.com
dev.beta.splitwise.com
admin.thebakeryandcafe.co.za
www.siberdevs.com
vault-sandbox.splitwise.com
ideasdiamond.com

Certificate

The complete raw certificate details for regalii.splitwise.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxf7nj2F24LfiTXmML9tT
6hVJbe6MocARbeJhlHxqueN8SUe7BO42uM6QChPwaOdHkE5zIxoYdOYLGwL9mUCC
tpOsPozDlyd/5cCvHtaJH9lBW1e5K5V3M6E9MujygjzqKbuoEkFhqVbUW8SQsw3t
xJnm5nb9E+8fdhdd7ZqGt/lgKL9qHEkOFVCCMIwQFroG0y/xSFVuAvLIrAeNRaKe
EBYAsLoLu4ikER1iRyGOeMGJ/TouLl7bYXfyMov5H2meBfISdM82BEm8CKMKXAHl
M/jpcEarHevmtMRWW1x0xc6oY9TK8jD1yqXH0yvwBM6H09+jaSd2D21wXurpzL5x
dwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 9818789107505998299817012775023012315
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-12-26 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-26 12:00:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'regalii.splitwise.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24994644187661516705635650885768546671748088559096823259194525315395965848419234602195387677087713199802694856332818895302466928385176922416367903166396618655923737449242760017643257026236438338244544871136851309009166053094703038976638039664486930153708841565077686424088178012692504627326778916507288566667045080409244217324381393338677119880306625711866346318115365967146825198828127406818800777641964039698980246287723595146683433632181903272297742318743357483259337903528326483592279875687003834122357145483204544648105263992780046245011019694523031994433218037426569981243944291623820294085187604945859461935479
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ccc64337d1c7ecb472d08b9d00bfbf4f263f0d4d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'regalii.splitwise.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000167e81f4e9900000403004830460221009ecab71e65c84f34f4d2b2b8833b4c9466d365ed581b11a6afa01a165c44696d022100db76d1bf25e2b9392f6241ca1905ae78e6536a288a1cdbb79dc57f2ba403a64e0076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000167e81f4f740000040300473045022100f47155ae95dea91803bb9421292802cb25de49344a8af7c9e875a16bc7db7e3c022058ca1722f88a83c266e3dc03fb4d3ba0e00c0b65dff539e455d932d6fcfc03b2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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