G2-RootCA1.orig.cer: CN=Amazon Root CA 1,O=Amazon,C=US (Intermediate Certificate, Expiring 2037-12-31) detail info and audit record

Last Updated: 2023-05-06

Page content

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

Certificate Download URL: https://www.amazontrust.com/repository/G2-RootCA1.orig.cer (in DER format )
Serial Number : 144546604554723556304639155693009298815885656
SHA-1 Fingerprint : bee49a10fda4abdd9c8b477d2d3df836eb7bd707
SHA-1 Fingerprint : be:e4:9a:10:fd:a4:ab:dd:9c:8b:47:7d:2d:3d:f8:36:eb:7b:d7:07
SHA-256 Fingerprint : 391220705b75bcf3ed3cd4b3631213f569d2cf8226101e170799a5354ab12861
SHA-256 Fingerprint : 39:12:20:70:5b:75:bc:f3:ed:3c:d4:b3:63:12:13:f5:69:d2:cf:82:26:10:1e:17:07:99:a5:35:4a:b1:28:61
Signature Hash Algorithm : sha256
Subject : CN=Amazon Root CA 1,O=Amazon,C=US
- Country Name: US (United States of America)
- Organization: Amazon
- Common Name: Amazon Root CA 1
Not Valid Before: 2015-10-21 22:20:45
Not Valid After: 2037-12-31 00:00:00
Issuer (Parent Certificate):
- Issuer Name: CN=Starfield Services Root Certificate Authority - G2,O=Starfield Technologies, Inc.,L=Scottsdale,ST=Arizona,C=US
- Issuer Certificate URL: NA
Audit Record:
- Revocation Status: Not Revoked
- Certificate Policy (CP) URL: Unknown
- Certificate Practice Statement (CPS) URL: Unknown
- No public standard audit information was found by E2Encrypted.com. We update this information regularly, check back later.
- Check its issuer’s audit information: CN=Starfield Services Root Certificate Authority - G2,O=Starfield Technologies, Inc.,L=Scottsdale,ST=Arizona,C=US .

Download certificate through curl:

curl -sSL "https://www.amazontrust.com/repository/G2-RootCA1.orig.cer" --output cert.crt

Download certificate through wget:

wget -q "https://www.amazontrust.com/repository/G2-RootCA1.orig.cer" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            06:7b:50:4a:ef:24:ed:a4:9e:57:f7:47:48:45:63:f4:e2:a1:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, ST=Arizona, L=Scottsdale, O=Starfield Technologies, Inc., CN=Starfield Services Root Certificate Authority - G2
        Validity
            Not Before: Oct 21 22:20:45 2015 GMT
            Not After : Dec 31 00:00:00 2037 GMT
        Subject: C=US, O=Amazon, CN=Amazon Root CA 1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:78:80:71:ca:78:d5:e3:71:af:47:80:50:74:
                    7d:6e:d8:d7:88:76:f4:99:68:f7:58:21:60:f9:74:
                    84:01:2f:ac:02:2d:86:d3:a0:43:7a:4e:b2:a4:d0:
                    36:ba:01:be:8d:db:48:c8:07:17:36:4c:f4:ee:88:
                    23:c7:3e:eb:37:f5:b5:19:f8:49:68:b0:de:d7:b9:
                    76:38:1d:61:9e:a4:fe:82:36:a5:e5:4a:56:e4:45:
                    e1:f9:fd:b4:16:fa:74:da:9c:9b:35:39:2f:fa:b0:
                    20:50:06:6c:7a:d0:80:b2:a6:f9:af:ec:47:19:8f:
                    50:38:07:dc:a2:87:39:58:f8:ba:d5:a9:f9:48:67:
                    30:96:ee:94:78:5e:6f:89:a3:51:c0:30:86:66:a1:
                    45:66:ba:54:eb:a3:c3:91:f9:48:dc:ff:d1:e8:30:
                    2d:7d:2d:74:70:35:d7:88:24:f7:9e:c4:59:6e:bb:
                    73:87:17:f2:32:46:28:b8:43:fa:b7:1d:aa:ca:b4:
                    f2:9f:24:0e:2d:4b:f7:71:5c:5e:69:ff:ea:95:02:
                    cb:38:8a:ae:50:38:6f:db:fb:2d:62:1b:c5:c7:1e:
                    54:e1:77:e0:67:c8:0f:9c:87:23:d6:3f:40:20:7f:
                    20:80:c4:80:4c:3e:3b:24:26:8e:04:ae:6c:9a:c8:
                    aa:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Digital Signature, Certificate Sign, CRL Sign
            X509v3 Subject Key Identifier: 
                84:18:CC:85:34:EC:BC:0C:94:94:2E:08:59:9C:C7:B2:10:4E:0A:08
            X509v3 Authority Key Identifier: 
                keyid:9C:5F:00:DF:AA:01:D7:30:2B:38:88:A2:B8:6D:4A:9C:F2:11:91:83

            Authority Information Access: 
                OCSP - URI:http://ocsp.rootg2.amazontrust.com
                CA Issuers - URI:http://crl.rootg2.amazontrust.com/rootg2.cer

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.rootg2.amazontrust.com/rootg2.crl

            X509v3 Certificate Policies: 
                Policy: X509v3 Any Policy

    Signature Algorithm: sha256WithRSAEncryption
         63:b2:2d:16:6c:c6:66:59:35:69:ee:d4:44:4f:02:4d:48:36:
         a9:99:66:48:21:6e:81:d5:c6:b9:06:7e:fe:d1:47:2f:1a:25:
         09:d9:b0:d8:97:e7:3d:7d:fa:ed:c6:dc:12:55:21:16:f2:c5:
         46:d2:f0:5b:df:55:61:5a:8a:2c:0d:72:a6:6a:ec:e6:eb:8c:
         18:e5:d4:52:63:c0:ea:15:3e:d9:da:2f:86:1e:4a:b8:29:66:
         e7:c8:33:d9:f1:fb:1b:0f:95:f6:4a:36:09:1b:74:5d:70:e6:
         5c:c2:73:5f:14:56:d4:28:1c:34:2d:39:45:79:c3:f0:9f:76:
         88:cc:ab:a2:4d:4a:9c:1e:3e:7a:63:14:90:d0:6b:71:a1:3e:
         5e:ea:91:b8:07:3b:94:9f:6a:bf:8b:7e:25:8b:44:b3:3c:f7:
         93:e4:3a:f1:39:4e:38:8a:74:5b:99:39:5e:fb:31:d1:0f:bf:
         af:aa:82:38:40:ac:24:ff:5d:2e:6b:2e:20:0f:d2:ae:1c:aa:
         5b:9a:93:be:e9:7f:5f:b9:c9:2e:57:df:19:66:2c:6c:e7:66:
         ad:4c:c0:e9:f6:51:f4:d7:8b:fc:b8:e5:c7:df:3f:a2:e1:37:
         e1:d9:a0:09:08:16:6d:1a:78:5d:39:c6:9c:bd:d7:2d:b5:4f:
         50:04:5e:11

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List

CA Certificate Information and Audit Record

CA Certificate Detail Information

CA Certificate in PEM Format

Related Certificates