brand.gema.de

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 0b:70:89:43:93:3d:67:a2:1f:8d:b3:96:19:f4:c0:08 was issued on by Amazon.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=brand.gema.de

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0b:70:89:43:93:3d:67:a2:1f:8d:b3:96:19:f4:c0:08
Serial Number (int): 15205829245761094344024156633585467400
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: bc:69:12:d4:1e:a6:31:c7:68:1a:e6:66:15:c4:b2:66:3c:7a:f8:56
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 7f:74:f4:48:0a:77:f5:4b:59:30:ab:b0:54:f0:27:40:8a:cd:8b:ae
Fingerprint (sha256): 20:93:87:db:e2:84:be:e2:d8:c0:2c:b1:39:c7:3c:85:09:e0:00:1c:33:a1:d3:a7:81:f1:1e:2e:8f:e4:69:71

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate brand.gema.de

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for brand.gema.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

brand.gema.de

Other certificates including the domain name gema.de

(limited to 100 certificates)
gema.de
eaganlab.com
reakt.trevvelroute.nl
soundfile.gema.de
soundfile-dev2.gema.de
kilobytetechnology.com
rafee.xyz
forum.gema.de
alan.leung.work
www.idocsoftware.in
mercury.molecs.com
api.zanmy.com
abnm-login.gema.de
corona-mitgliederhilfe.gema.de
soundfile-test.t1-www.gema.de
soundfile-dev-2.gema.de
mgonline.gema.de
blentburgerbar.pedix.app
nexustest.gema.de
mx.pbbbl.com
newsletter.gema.de
lizenzshop.gema.de
live.mgv.gema.de
chessgoal.com
neueanteile.gema.de
antares.gema.de
www.nordpole.at
theranotes.app
t1-sapcrm-r3.gema.de
ise1001.gema.de
webbegg.dev
online.gema.de
www.gema.de
guestbook.salvagente.app
reakt.trevvelroute.nl
t1-www.gema.de
www.digitalereis.be
abnm-login.gema.de
a1-sapcrm.gema.de
mitgliedschaft.gema.de
teleteens.co
aasicplastic.com
www.macroshop.in
sftp.gema.de
t2wusa.com
a1-www.gema.de
www.silvertreegrp.com
a1-saperp-r3.gema.de
fashionalia.broox.io
soundfile-abnahme.gema.de
twgh-staging-1.axisplay.com
mitgliedschaft.gema.de
soundfile-dev.e2-www.gema.de
cherwell-atlassian-dev.gema.de
console.mycure.md
brand.gema.de
api.gema.de
www.kalromsystems.com
www.incentivapdv.com.br
www.drinkthegrog.com
todiworld.com
admin.azure-ar.com
corona-mitgliederhilfe-test-1.gema.de
nguyenminhthang.com
www.gema.de
sonus.gema.de
www.waveconnect.ca
neustartkultur.gema.de
portal.devnx.com.br
www.danielpfinnegan.com
refe.plasterapp.com
meet.linkmood.co.uk
saperp-r3.gema.de
metroflex.app
abnahme-api.gema.de
wvz.jurywahl.gema.de
oney.myinnerweather.com
booking.amadeus-sherpa.com
universe.gema.de
nexo.manglerojo.org
theoakway.com
nickadkins.design
playlistbysushi.ml
abnahme-online.gema.de
blowgummies.com.br
metroflex.app
heriotza-hands.vitrin.as
aida.gema.de
magicseth.com
shield.mod91.io
www.lifebit.ai
ongpiesa.org
ez-sys-uat.ezrepairloan.com
www.helloercexperts.com
cliente.jusvita.com.br
t1-sapcrm-r3.gema.de
www.getweb.dev
www.gema.de
mensafutura.com
checkmeoff.com

Certificate

The complete raw certificate details for brand.gema.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIegkIkWvEPFgcPumB/U
RqMP3LMqtb+bqgYK0B9IeQXHctCDIf2M+bSu9SirjyMahi/dU+jcmzEXEPklC5LN
KGxTCiF1h+mlgwp2JTmi6WjOw3pRkYsvI281CKV4njP6/s0MWHykd9WmxuUgTOXj
YgBPMFd6U+fcf3iI5kBymY7EHL/RC7E49VWVyXETJITvYvSqEXnkdQpH1Lrh6CY9
9tmAo8RuK9KcYskXEbsHWR5DQRQG3EtdRgAmDeQ2G0tOOhsUPWj0ZR9r/bX6EvcK
algN860Agf4GvpAAPl5HNRWZtnjwc/MH+etX020F01CSNSFywtiaSjWyONrWG+Hu
lwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15205829245761094344024156633585467400
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-14 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-11 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'brand.gema.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18245196182775017156477175852347862884878350026954146640224620275141552184176720880088656251642438118802901211519775148214266181242527975835557944679344846019740404178800179509755537110652714988100337003328138501886158072378576254883981262976619385241346162009725445808576748978111469665553865745894629151268386699782366861957713226493225165588877896891049603160383945238617267985913915980840138881701017192164311260899817161150340935419119862222011737380779932285031190942697098622666644433544937323703763944951571216764049010346593173714134080094048985050406033617757206358771114026094542727703071124122997639736983
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bc6912d41ea631c7681ae66615c4b2663c7af856
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brand.gema.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004a3a52a3d1e443c69cae7bd13375385283dee41e79043e3a977377ba571ae425c5ca26abf65ffa4b676083ae0c491b27bb4403eb03e7e67fee0e0889c3d1fc7b16126e8505e1a70713ef93e78b99221de149b7e118b18e5562bdc761f4957a2a46f9ec63669473730af2a5f2d11f82fdd18336345f6287752083ac5eec924fcf32ac9a9979034b715b606c1116df947563f1777b094144ce6b318153dad9c6effbb602aab282fd61a20500308fc5af15b3e84aafcfdc1e79b7916fa3c6541327a6daaccd7925bd7f6fa0f802e37f148479111090c2f06512f477f515d13c444b8c682487bbdd51d3f0a7aa9b7e250de308cb7898fa48c0415dd70ba0d0e62b08