kw-webshop.de
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 09:9b:3c:45:bb:f9:e6:c1:b8:11:7c:89:8e:51:57:68 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kw-webshop.de
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 09:9b:3c:45:bb:f9:e6:c1:b8:11:7c:89:8e:51:57:68Serial Number (int): 12769080444632382806472977331363338088
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 67:10:f7:09:a4:f8:ee:fb:80:87:1a:e6:d6:41:a2:3a:84:bf:a1:9d
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 5d:96:b4:37:94:d1:d6:59:05:18:b3:9a:b0:b3:27:a0:5d:d6:65:59
Fingerprint (sha256): 00:87:7c:25:9a:fe:a9:28:69:aa:f9:86:0d:20:e7:18:10:32:11:56:37:a8:7a:e2:bc:cb:60:67:87:b7:51:ae
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate kw-webshop.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kw-webshop.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kw-webshop.de
production.kw.sales.diarz.net
*.production.kw.sales.diarz.net
*.kw-webshop.de
production.kw.sales.diarz.net
*.production.kw.sales.diarz.net
*.kw-webshop.de
Other certificates including the domain name kw-webshop.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for kw-webshop.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGFzCCBP+gAwIBAgIQCZs8Rbv55sG4EXyJjlFXaDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMTAxMTAwMDAwMFoXDTI0MTEwOTIzNTk1OVowGDEW MBQGA1UEAxMNa3ctd2Vic2hvcC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAJpm+d0ajQ9IFTQomNfeSeHPabmCxlVCYGapF1VLprAjvfgebOe/6mUU iFWt+ASWWrxL3sCT3DFTxt0t4t4a5Fu2TWeFpc+i0JWTUfp5n8QbaDpBIS/L/WGy 7fRdKxX4gWCuOJjOikrwPmV4b81/BhF+1TaK5myUdfsfhqh10wrSOeMI2jm1ea/L 8D/w88tKvXTT2MZ6MuEYd8b6OpaLXBfize2kgjp5HBCG786K+/Wen0ETIUUkOB0D tcSLDbHdvu34oiWCcuLp8zbIszf7I9S9nhppWntedev3hdGNnmUQVsjiwhk1urtN jq5Rsi8t/ofk70SjlD98kAo2rjAB2jkCAwEAAaOCAzcwggMzMB8GA1UdIwQYMBaA FIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBRnEPcJpPju+4CHGubWQaI6 hL+hnTBpBgNVHREEYjBggg1rdy13ZWJzaG9wLmRlgh1wcm9kdWN0aW9uLmt3LnNh bGVzLmRpYXJ6Lm5ldIIfKi5wcm9kdWN0aW9uLmt3LnNhbGVzLmRpYXJ6Lm5ldIIP Ki5rdy13ZWJzaG9wLmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEuY3Js MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDEu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAxLmFt YXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGLHB8DTQAABAMASDBGAiEAtSLP7iiCbekQIFzXaDc0YsgVw9qxZDfC8V+E JinyvhkCIQD8gRlGeSwO2QTkw1S/pDPHnOxSF6d5cdS1XJ/33eqoggB2AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABixwfA2QAAAQDAEcwRQIgB21U G+jLTA/UHBC+OT3OCgSl4eExVs6aRvr7SP45rqACIQDk/UJq+xyCM66hni5KuzeF xqhdCkytF6kOdvNkmWkA2gB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI 1/urAAABixwfA0cAAAQDAEYwRAIgYyc/aaDbSmagcDEp2UYV8nFlAIHkadgA9acp f5snjdgCIG5FaMy5haT4V/n18OZztFdMO8KGWt+GKTrttPaFiAJdMA0GCSqGSIb3 DQEBCwUAA4IBAQCFfRKX9NJUCflKUeBxyYQiofKR7t7mLrqIXz5PqdaX513mz+8/ zzepss5Qw/Kd6EuuKNf4iwKDN1+7odbT17WNGUcziSVXxzhZ0y9BWae3mliIMSLa 0K02Vsxfo7YzRSaAaimrdwnaa6ZQ4klUaVIy5o8LSo4GAzWMwLc6SvHPOIV3rXVG fA1XYpv4iuunuEd6GyXxtMELHqwj+b2iQpeekfUSibhkfafOCOptKK+qy5ZthcFA /BpiitvjeJq5WW0GFlvAMuqnhKc/Js1B59cSxUgGNVdoxm67Bgw5fuJBDL+Jo2os CawkA0lgG3zJRGckvfYyhoO5TVSNQicjjIyX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmb53RqND0gVNCiY195J 4c9puYLGVUJgZqkXVUumsCO9+B5s57/qZRSIVa34BJZavEvewJPcMVPG3S3i3hrk W7ZNZ4Wlz6LQlZNR+nmfxBtoOkEhL8v9YbLt9F0rFfiBYK44mM6KSvA+ZXhvzX8G EX7VNormbJR1+x+GqHXTCtI54wjaObV5r8vwP/Dzy0q9dNPYxnoy4Rh3xvo6lotc F+LN7aSCOnkcEIbvzor79Z6fQRMhRSQ4HQO1xIsNsd2+7fiiJYJy4unzNsizN/sj 1L2eGmlae1516/eF0Y2eZRBWyOLCGTW6u02OrlGyLy3+h+TvRKOUP3yQCjauMAHa OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12769080444632382806472977331363338088 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-11 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kw-webshop.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19491478337751477898292475086387588391540367936675422696729280228005797290114642116268836559449767747417200171691806549736738106715430891441353191314990308160810699112529457891309756632037562849484042900963881296393685360994014164865340970087561032869755996035859518151479320236876707991204920252961459813183507513689364397170999038064657892413131615894405421036612494220428807216222053375623919862169615326080866097667481775888091885750917839736036366099102917747647044104537903177151828276546202478070723271737273034950286545221759419733113509777713385623488772157340478015666354845594732901614561078669227587656249 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6710f709a4f8eefb80871ae6d641a23a84bfa19d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kw-webshop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production.kw.sales.diarz.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.production.kw.sales.diarz.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kw-webshop.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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