dialog.nivea.de

Issued by Amazon RSA 2048 M01

About this certificate

This digital certificate with serial number 01:e2:3d:2e:ee:a9:ba:95:9f:7f:2c:66:ed:b3:f3:c3 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=dialog.nivea.de

Amazon

Organization: Amazon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 01:e2:3d:2e:ee:a9:ba:95:9f:7f:2c:66:ed:b3:f3:c3
Serial Number (int): 2503928031157707246225722334449497027
Serial Number lenght: 121 bits, 16 octets

SubjectKeyId: ef:f8:86:5c:88:d9:02:ee:ca:ba:f3:28:db:90:58:42:dc:a3:46:01
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85

Fingerprint (sha1): 1c:dd:63:48:18:21:b9:0d:1f:bd:ef:8a:69:90:cb:a0:94:28:23:15
Fingerprint (sha256): 28:6f:f9:df:57:38:f9:ad:80:68:af:e8:c6:d6:4e:09:ac:92:92:80:94:38:8e:0e:12:35:52:0e:d9:52:5c:ea

Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer

Revocation information

OCSP Server: http://ocsp.r2m01.amazontrust.com
CRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl

Check the revocation status for certificate dialog.nivea.de

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for dialog.nivea.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

dialog.nivea.de
www.dialog.nivea.de

Other certificates including the domain name nivea.de

(limited to 100 certificates)
Beiersdorf Aktiengesellschaft
chiosco.flp.ch
www.glamitalia.com
autodiscover.epaper-poonen.neuer-bund-verlag.de
magazin.nivea.de
kiosk.citytipp.org
www.nivea.de
magazin.ferienmagazin-deutschland.de
nivea.de
chiosco.flp.ch
nivea.de
ref-ci-brands.nivea.de
dialog.nivea.de
webkiosk.die-bank.de
akamai-san204.exacttarget.com
magazine.arbeit-und-arbeitsrecht.de
www.nivea.de
dialog.nivea.de
nivea.de
www.nivea.de
brochures.hilliard.com
akamai-san204.exacttarget.com
az-cdn-test.nivea.de
epaper.chili-peppers.de
shop.nivea.de
kiosk.astrosofa.com
autodiscover.epaper-poonen.neuer-bund-verlag.de
fall-magazine.robinsonlightingandbath.com
publikationen.kmu.org
magazine.arbeit-und-arbeitsrecht.de
nivea.de
preview.nivea.de
magazine.arbeit-und-arbeitsrecht.de
kiosk.seniorenreisen.de
akamai-san204.exacttarget.com
neubau-projekte.vr-immoservice-mainfranken.de
magazin.ferienmagazin-deutschland.de
blaetterkatalog.andrees-angelreisen.de
dialog.nivea.de
www.nivea.de
www.nivea.de
www.podworko.nivea.pl
webkiosk.die-bank.de
fall-magazine.robinsonlightingandbath.com
www.nivea.de
www.sblaettle.at
ext14.nivea.de
ext14.nivea.de
social.nivea.de
www.nivea.de
www.nivea.de
akamai-san204.exacttarget.com
www.podworko.nivea.pl
m.nivea.de
kiosk.velototal.de
www.nivea.de
dialog.nivea.de
nivea.com.tr
cloud.newsletter.nivea.de
nivea.de
nivea.de
neubau-projekte.vr-immoservice-mainfranken.de
dialog.nivea.de
bhuat.nivea.de
kiosk.seniorenreisen.de
kiosk.flp.at
www.nivea.de
www.sblaettle.at
brochures.hilliard.com
chiosco.flp.ch
nivea.de
nivea.de
magazine.arbeit-und-arbeitsrecht.de
social.nivea.de
magazin.plusperfekt.de
brochures.hilliard.com
epaper.immobilienboerse-ag.ch
az.nivea.de
kiosk.seniorenreisen.de
nivea.de
nivea.de
Beiersdorf Aktiengesellschaft
kiosk.seniorenreisen.de
app-service.nivea.de
nivea.de
bhuat.nivea.de
webkiosk.die-bank.de
kiosk.flp.at
kiosk.flp.de
www.nivea.de
*.app-service.nivea.de
nivea.de
shop.nivea.de
www.podworko.nivea.pl
nivea.com.tr
brochures.hilliard.com
kiosk.flp.de
www.nivea.de
nivea.de
kiosk.flp.at

Certificate

The complete raw certificate details for dialog.nivea.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9vXoyhKqU4aPorPKXim
ZSIDFLv19hvz60l62ghL3XS7tHVZodvkUSgQJnsdp3p8Efky3BmVLfeU3HGWstvI
s8jeksIJNso6TKh27AfR4tqzSk76BGuVLvX0oJ83kKrCNuVCdwrDBaZu7T8/lrgK
P7xjzSE9b4BWzgnZSi4iuiFe3PniVX96SDJBRbHV1ocvku9WP2zArIKWNVItt4I8
Hw8QdMhQ02TVWYFHxJ0JAnL8Ro/rTbW6jLT33UrdC5HWZ5UN4wSSUgS1QY3MaD5d
ciBEH/2tzqXTNMSyS/eVay+gIVAms+QD7a/vDr8K2Uzoob/etbUrAai9moErhLoj
3wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 2503928031157707246225722334449497027
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-01 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-30 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dialog.nivea.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25734784203109474311020891526381264194086140145890025577659065411519302106634625711605824436875315490852221854367969441882001836891442940971077858382453284547745013818414459566872421107189732836061347705986726949762404403716898824923519806981949847885749450884063034943294562092437783557362325225126970069410574451915847331541938175604890928222128755593047751153398374245220928630667253023316432489569078571639965253642847577022569637261683185090085073700381463341209114338689175887172148834382382157643504724761705926675272621129911971068030590030812421295977641332777469184798507047099047953317826278387088749110239
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							eff8865c88d902eecabaf328db905842dca34601
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dialog.nivea.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dialog.nivea.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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