DV SSL/TLS Certificate for www.michaelsflowers.net

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the www.michaelsflowers.net DV SSL/TLS Certificate

This certificate with serial number 02:f2:14:c1:7a:01:61:d6:7b:f5:7e:a9:e1:5e:3f:63 for www.michaelsflowers.net was issued on by Amazon.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.michaelsflowers.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 02:f2:14:c1:7a:01:61:d6:7b:f5:7e:a9:e1:5e:3f:63
Serial Number (int): 3915412808321540468445596578322726755
Serial Number Length: 122 bits, 16 octets

Subject Key Identifier: 9b:6f:75:e8:b5:c0:02:d0:1a:2a:3c:9f:33:a7:de:4b:dc:e2:2c:32
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): 25:0a:42:73:c2:ab:eb:41:33:e0:bf:bf:d9:cf:3e:f8:e2:59:6e:a3
Fingerprint (SHA-256): f6:8a:9f:24:c1:73:a5:75:7c:da:e1:4d:cc:42:92:2c:e7:89:65:39:14:5f:f7:9c:d5:4c:29:3e:98:0e:67:15

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate www.michaelsflowers.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.michaelsflowers.net

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for www.michaelsflowers.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYfSrWyo+RgGw/fC7SLD
Kb6IQsYo7bWWSZoM9wSxaB1Hvdv6V0za9NRu/+Nf9qJxdEgLgK96qu/8QHKk3tWf
K4dKvQ2/a3y4rDJK3RjE4MNa3tS2eEZIQCdqn4GPi79iiCsK1W9IRRgDPnQngs2m
rCs7pVLU3QXH+dsdetzs0RohsJ05m7LoisOdcrA3J/W9ww4spma3Jp5WdPeEzLwq
zLBHcjZiAqaUtorvEH0FbzJw9VdsKBTmeXkJOAqMGxi6+trYI2trOhl/LDgPDZNe
Hn3SWvm+O8XsJAx5W+uAZc4s9OTL3Xi61N9kzsFIsA9P40m6/ignwymq9ifpZgB0
kQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 3915412808321540468445596578322726755
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-04 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-01-03 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.michaelsflowers.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22411156776210014096146933221506083378399246902763247961908372133285459709501154733490492327958369496795981852597030519463518766326044957100903577837872931301445212704616801032595375791152133990629614225781650878180547931451428794006202056595602360933832615350501951150786579692814881933647665695965710996925150702316207801462229163650051222625106685012891706958972288904337878845311322591242222901076149390517954874170300420648754497630360245890036910997347141316398768288681755556457800945295806235199124348571930278662812510374667448055709690582170021580248555367674339248548843849374421687851668208494263073272977
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9b6f75e8b5c002d01a2a3c9f33a7de4bdce22c32
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.michaelsflowers.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michaelsflowers.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		000637eaaec9ff66dd55349559892469bb03e37b4dbbcae8fc35570b47a5b08f0ae34da87e520d61b4a4cd132a59671c7bfe3bf75057e34170c1c7019ee6245806bc3d2a4b6c035120b7cbe678561d3cde79952a8847971075a77759bdc4d934598e8b59137bd16138bc578e778100f54e2944c14ae0a52b423260778dbf1dce342dc2581ef2d033d1eee6aa85ffa61810adaf74acca22525fcafc582482f7be09e8f69001bd15d2bac2d679983c555bca12432b730f9aca01454cd500ca62f4ebe70e16b195d439e8561218cfd8d7593095bf364c304cb97ba454a0d6e9010c6fc43788d54e59fad0b08423dc18c6e7d8344802f7ede2976523591f3261b42c8d