amsa.dukc.com
Issued by Amazon
About this certificate
This digital certificate with serial number 04:e5:d7:fa:71:d8:6d:86:4b:ec:6b:7b:c0:83:7e:3b was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=amsa.dukc.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e5:d7:fa:71:d8:6d:86:4b:ec:6b:7b:c0:83:7e:3bSerial Number (int): 6510328524083003995904216108175162939
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 00:89:d1:72:94:1b:29:93:b6:88:fe:1d:b9:bc:af:4e:b8:8c:52:e7
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): b8:8f:72:05:4a:1e:10:6a:6f:06:34:2a:a7:9c:14:77:6d:19:6d:f3
Fingerprint (sha256): e7:92:12:c3:a5:ae:15:65:67:0e:bd:09:a9:6a:d3:08:df:1e:22:1e:1d:a1:63:d8:d4:ba:0d:70:7d:d9:ba:78
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate amsa.dukc.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for amsa.dukc.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amsa.dukc.com
Other certificates including the domain name dukc.com
(limited to 100 certificates)
savannah.dukc.com
*.dukc.com
dukc.net
dukc.net
porthedlandsimulator.dukc.com
melbourne.ais.dukc.com
*.dukc.com
dukc.com
dukc.net
api.production.dukc.net
melbourne.dukc.com
dukc.net
dukc.net
dukc.net
*.dukc.com
demo.dukc.com
uat.dukc.com
fremantle.dukc.com
dukc.net
dukc.com
dukc.net
dukc.net
dukc.com
amsa.dukc.com
melbourne.ais.dukc.com
dukc.net
dukc.com
dukc.com
dukc.net
dukc.net
melbourne.dukc.com
fremantle.dukc.com
dukc.net
*.dukc.com
*.dukc.com
savannah.dukc.com
demo.dukc.com
dukc.net
demo.dukc.com
*.dukc.com
demo.dukc.com
amsa.dukc.com
api.production.dukc.net
uat.dukc.com
porthedlandsimulator.dukc.com
dukc.net
melbourne.dukc.com
*.dukc.com
dukc.net
dukc.net
porthedlandsimulator.dukc.com
melbourne.ais.dukc.com
*.dukc.com
dukc.com
dukc.net
api.production.dukc.net
melbourne.dukc.com
dukc.net
dukc.net
dukc.net
*.dukc.com
demo.dukc.com
uat.dukc.com
fremantle.dukc.com
dukc.net
dukc.com
dukc.net
dukc.net
dukc.com
amsa.dukc.com
melbourne.ais.dukc.com
dukc.net
dukc.com
dukc.com
dukc.net
dukc.net
melbourne.dukc.com
fremantle.dukc.com
dukc.net
*.dukc.com
*.dukc.com
savannah.dukc.com
demo.dukc.com
dukc.net
demo.dukc.com
*.dukc.com
demo.dukc.com
amsa.dukc.com
api.production.dukc.net
uat.dukc.com
porthedlandsimulator.dukc.com
dukc.net
melbourne.dukc.com
Certificate
The complete raw certificate details for amsa.dukc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEcDCCA1igAwIBAgIQBOXX+nHYbYZL7Gt7wIN+OzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0xOTA1MjkwMDAwMDBaFw0yMDA2Mjkx MjAwMDBaMBgxFjAUBgNVBAMTDWFtc2EuZHVrYy5jb20wggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC6Z1cZMxpOQDWeLnTJDxrjeykk6dt8woren4bA+HGX sJ/YnboQjieUo4HBIxt0FYA2SisurKWvZ5Fl7NShEcfgAKOG6SPcWIXoUNkc4pMQ JUCnx8SXtPlF/1+lvOcvt2m/3lxCMYTiZwvxSREYrapKgkJLT0FTzkbE8ue/tM9u 9XOjx8zMjH9FcxfOolJvtKW8clFKfKSnNNtzzk2mHNzc5/tSHEbDOSDWIhU1/Qtb ihMynfr1G7wwBTaocioAziP5yNc17uOgIT/a0RcV1+bVmF8hwCoDQD0zaH4Appoy sWbvPhonCLjkudzwIDnykAdH49k6DPZWE3EK2sF/tv/vAgMBAAGjggGGMIIBgjAf BgNVHSMEGDAWgBRZpGYGUqB7lZI8o5QHJ5Z0W/k90DAdBgNVHQ4EFgQUAInRcpQb KZO2iP4dubyvTriMUucwGAYDVR0RBBEwD4INYW1zYS5kdWtjLmNvbTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0 MDIwMKAuoCyGKmh0dHA6Ly9jcmwuc2NhMWIuYW1hem9udHJ1c3QuY29tL3NjYTFi LmNybDAgBgNVHSAEGTAXMAsGCWCGSAGG/WwBAjAIBgZngQwBAgEwdQYIKwYBBQUH AQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5zY2ExYi5hbWF6b250cnVz dC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQuc2NhMWIuYW1hem9udHJ1c3Qu Y29tL3NjYTFiLmNydDAMBgNVHRMBAf8EAjAAMBMGCisGAQQB1nkCBAMBAf8EAgUA MA0GCSqGSIb3DQEBCwUAA4IBAQB6/tIyD9JiB5ZDFXm5OlTITL0VnvgdGiZMjWQU VNi01/FPuFMTZl13geplbbSPUQdssAV/huXk9tzWC3E4/hUEcqO+SW2qoh9s/voO ppy/Gu0ZNGviCEcWkC6G2rB4dSkVTu/oHq09YVAoOL0vjDVmI5PMEi6Y/VOmD7kV aLE0eYMhQt+kS1wlZi9dKdFw5EcuEqY1CtnRxErAnKafYhe8LNIPhQXgDWM/PXDy GzzRhD9wpur1CSz5ZtfkV32CrVGOWXhZPtqcrpG9hj83H1FjDVTh8ALA1kckVMKk iBvRGXoJAWnT9bCYLct7qq83UZNnniqxll+bYGmMph+0x0FR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumdXGTMaTkA1ni50yQ8a 43spJOnbfMKK3p+GwPhxl7Cf2J26EI4nlKOBwSMbdBWANkorLqylr2eRZezUoRHH 4ACjhukj3FiF6FDZHOKTECVAp8fEl7T5Rf9fpbznL7dpv95cQjGE4mcL8UkRGK2q SoJCS09BU85GxPLnv7TPbvVzo8fMzIx/RXMXzqJSb7SlvHJRSnykpzTbc85Nphzc 3Of7UhxGwzkg1iIVNf0LW4oTMp369Ru8MAU2qHIqAM4j+cjXNe7joCE/2tEXFdfm 1ZhfIcAqA0A9M2h+AKaaMrFm7z4aJwi45Lnc8CA58pAHR+PZOgz2VhNxCtrBf7b/ 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 6510328524083003995904216108175162939 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-29 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-29 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'amsa.dukc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23531283689511380537839101028093584991673835691566827804412189655131318134125154426462391314346713466186797397194691930243625548611771258157519437720812938712699521443775523594963665064405245903095138206141546559082483590500713854426508453859247931763530333260808388661700407319529531577211961719098227273953440649286702778160042557147249267946970280129327392512178573979871625951683841218801644364615219123898644953257311274161528153915991063014083776416984217210376084276134342380546083414851196878789443505667150992706417129188163782503683197413832262234618441244783905304593803487506598451418561987707071070928879 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0089d172941b2993b688fe1db9bcaf4eb88c52e7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amsa.dukc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007afed2320fd2620796431579b93a54c84cbd159ef81d1a264c8d641454d8b4d7f14fb85313665d7781ea656db48f51076cb0057f86e5e4f6dcd60b7138fe150472a3be496daaa21f6cfefa0ea69cbf1aed19346be2084716902e86dab0787529154eefe81ead3d61502838bd2f8c35662393cc122e98fd53a60fb91568b13479832142dfa44b5c25662f5d29d170e4472e12a6350ad9d1c44ac09ca69f6217bc2cd20f8505e00d633f3d70f21b3cd1843f70a6eaf5092cf966d7e4577d82ad518e5978593eda9cae91bd863f371f51630d54e1f002c0d6472454c2a4881bd1197a090169d3f5b0982dcb7baaaf375193679e2ab1965f9b60698ca61fb4c74151