roche.it

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 05:55:f7:53:3c:5d:93:28:cb:16:93:e1:14:c5:9f:a2 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=roche.it

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 05:55:f7:53:3c:5d:93:28:cb:16:93:e1:14:c5:9f:a2
Serial Number (int): 7092501561691855990360518781676396450
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 1b:5c:36:cd:57:8c:31:27:58:d9:55:60:fa:10:3e:d6:56:4e:e9:a3
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 3d:4b:98:4a:69:9c:4d:0d:c0:61:10:cc:60:03:be:84:68:89:00:f8
Fingerprint (sha256): 11:71:34:1c:13:8a:ea:69:31:ea:c4:2a:0a:8f:68:10:89:5d:a5:d5:a3:cc:fb:97:45:14:e2:a2:41:da:fa:45

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate roche.it

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for roche.it

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

roche.it
*.roche.it

Other certificates including the domain name roche.it

(limited to 100 certificates)
cert3.roche.com
cert3.roche.com
careers.roche.com
careers.roche.com
cert2.roche.com
hpv16and18.com
www.peripazienti.roche.it
careers.roche.com
b2btransazioni.roche.it
cert2.roche.com
cert3.roche.com
careers.roche.com
careers.roche.com
hpv16and18.com
roche.no
b2btransazioni.roche.it
www.peripazienti.roche.it
cert2.roche.com
hpv16and18.com
cert3.roche.com
roche.it
careers.roche.com
hpv16and18.com
www.peripazienti.roche.it
www.peripazienti.roche.it
www.peripazienti.roche.it
careers.roche.com
careers.roche.com
sni.cloudflaressl.com
sni.cloudflaressl.com
careers.roche.com
roche.no
b2btransazioni.roche.it
cert2.roche.com
www.peripazienti.roche.it
cert3.roche.com
careers.roche.com
careers.roche.com
cert3.roche.com
cert3.roche.com
gazyva.com.au
careers.roche.com
cert3.roche.com
careers.roche.com
cert2.roche.com
careers.roche.com
careers.roche.com
cert3.roche.com
careers.roche.com
careers.roche.com
cert3.roche.com
cert3.roche.com
careers.roche.com
careers.roche.com
gazyva.com.au
careers.roche.com
careers.roche.com
careers.roche.com
careers.roche.com
sni.cloudflaressl.com
cert2.roche.com
careers.roche.com
roche.no
careers.roche.com
hpv16and18.com
cert3.roche.com
cert3.roche.com
author-na-prod.roche.com
cert3.roche.com
careers.roche.com
cert2.roche.com
hpv16and18.com
gazyva.com.au
cert3.roche.com
careers.roche.com
careers.roche.com
cert2.roche.com
hpv16and18.com
careers.roche.com
gazyva.com.au
www.peripazienti.roche.it
www.peripazienti.roche.it
careers.roche.com
cert3.roche.com
b2btransazioni.roche.it
careers.roche.com
gazyva.com.au
careers.roche.com
cert3.roche.com
careers.roche.com
cert3.roche.com
www.peripazienti.roche.it
cert3.roche.com
cert2.roche.com
careers.roche.com
sni.cloudflaressl.com
cert3.roche.com
careers.roche.com
cert3.roche.com
www.peripazienti.roche.it

Certificate

The complete raw certificate details for roche.it in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuAofhpHtCGDPEPgrU8iX
Vo0nlV1754kTkB21aaqknQwwFy87AjQBRPaU3V/iYvfJRSuHbOGruv0IdVDuHemZ
ESEH33edfA4MRex2R9ephJlk5n9W7ozkplb5Bgx8H8B10BkrULo2Zgap7NjmoRQ1
fFy52QwpqKtZ2El+M1nS7Lke3r8uFAWq9q3KJBCXOimCuvCProXtkh39w9Rpgr5g
TniFf29N8verZrIlwUcN5MOp58G5tHbm9peV3RJrj4121fTdYOqGj+GgBv7EooUu
yahW+NhzDeYUbuaV4ZacDm91if61FdjUctt0prgzhUkAjCaLgwhTNlCiFXICmocq
wQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7092501561691855990360518781676396450
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-02 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roche.it'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23232840023653447871456287767919826167431659678713545328253877160940556463295394953779381148608908060875395022784131105725443683198130075799274142094950237506898938809818366092485024245513067592892943637175143229276047031650555368896862931565483176400881986327739820208731670804386076015606890957458618813845534488216328460208238001792014076965866273645095511493977048099591291041417829168144222369382490578654173717096988780102231349370652854270658284735256590959931960167455625995835657631766642091481039239558966945199454577855774968444877424853521017219655525773548296767221263093068451975116758730952341669227201
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1b5c36cd578c312758d95560fa103ed6564ee9a3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roche.it'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.roche.it'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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