api-dws.divinea.com
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 06:c8:f8:62:4e:c9:1e:09:da:42:e9:3a:6d:3a:1e:02 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=api-dws.divinea.com
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 06:c8:f8:62:4e:c9:1e:09:da:42:e9:3a:6d:3a:1e:02Serial Number (int): 9018865172741059483849192576424484354
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 58:b3:e4:61:02:2a:f1:61:c6:48:e0:6c:2c:c0:93:b7:dc:0c:f0:2c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 59:e2:3b:0a:89:59:d0:8b:f2:ed:1a:90:fc:36:d8:2a:eb:95:21:94
Fingerprint (sha256): 47:13:d2:1c:4a:dc:e4:38:c9:33:b1:ab:9f:8b:fc:cc:75:78:27:f5:c5:fb:c3:1b:aa:14:50:db:0d:67:1c:c0
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate api-dws.divinea.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api-dws.divinea.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api-dws.divinea.com
api-crm.divinea.com
api-crm.divinea.com
Other certificates including the domain name divinea.com
(limited to 100 certificates)
enoturismovaltellina.divinea.com
promo.divinea.com
divinea.com
*.divinea.com
*.api.divinea.com
promo.divinea.com
divinea.com
regalaesperienza.divinea.com
enoturismovaltellina.divinea.com
divinea.com
applicationsoap.beezsocialerp.com
divinea.com
*.divinea.com
www.thestorybookcharactercompany.com
divinea.com
divinea.com
pocketlearning.de
divinea.com
api.divinea.com
www.apur.am
divinea.com
*.divinea.com
api.divinea.com
www.bradshawandson.net
api-dws.divinea.com
divinea.com
www.promo.divinea.com
divinea.com
widget.divinea.com
divinea.com
*.divinea.com
www.gaminc.net
divinea.com
www.stevemasson.co.uk
api.divinea.com
www.guide2copenhagen.com
smart-tasting.divinea.com
*.divinea.com
api.divinea.com
*.divinea.com
api-dws.divinea.com
isitblackfridayyet.app
link-producer.xtrea.mr
promo.divinea.com
*.divinea.com
*.divinea.com
blog.divinea.com
www.divinea.com
*.api.divinea.com
promo.divinea.com
synthwave.app
promo.divinea.com
promo.divinea.com
divinea.com
divinea.com
divinea.com
*.divinea.com
divinea.com
*.divinea.com
regalaesperienza.divinea.com
openday.vu.edu.au
degustazionevino.divinea.com
api.divinea.com
nmbrs.pensioeninzichtelijk.nl
applicationsoap.beezsocialerp.com
promo.divinea.com
divinea.com
*.divinea.com
*.api.divinea.com
promo.divinea.com
divinea.com
regalaesperienza.divinea.com
enoturismovaltellina.divinea.com
divinea.com
applicationsoap.beezsocialerp.com
divinea.com
*.divinea.com
www.thestorybookcharactercompany.com
divinea.com
divinea.com
pocketlearning.de
divinea.com
api.divinea.com
www.apur.am
divinea.com
*.divinea.com
api.divinea.com
www.bradshawandson.net
api-dws.divinea.com
divinea.com
www.promo.divinea.com
divinea.com
widget.divinea.com
divinea.com
*.divinea.com
www.gaminc.net
divinea.com
www.stevemasson.co.uk
api.divinea.com
www.guide2copenhagen.com
smart-tasting.divinea.com
*.divinea.com
api.divinea.com
*.divinea.com
api-dws.divinea.com
isitblackfridayyet.app
link-producer.xtrea.mr
promo.divinea.com
*.divinea.com
*.divinea.com
blog.divinea.com
www.divinea.com
*.api.divinea.com
promo.divinea.com
synthwave.app
promo.divinea.com
promo.divinea.com
divinea.com
divinea.com
divinea.com
*.divinea.com
divinea.com
*.divinea.com
regalaesperienza.divinea.com
openday.vu.edu.au
degustazionevino.divinea.com
api.divinea.com
nmbrs.pensioeninzichtelijk.nl
applicationsoap.beezsocialerp.com
Certificate
The complete raw certificate details for api-dws.divinea.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5zCCBM+gAwIBAgIQBsj4Yk7JHgnaQuk6bToeAjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMTExMjAwMDAwMFoXDTI0MTIxMDIzNTk1OVowHjEc MBoGA1UEAxMTYXBpLWR3cy5kaXZpbmVhLmNvbTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMpx8U9Kjc/+eNygKVnWUlv098+J4MII1LE//MzAz80Go8oO 4crY6W3vsxIq6Uqqlu1/z/0VFXhOtEH51aiqZ1GUDeLuoBnxSy+Lr+6k6Kch7ZZs tvESk2jb1PL53I631Sji91m7BzcA1SRQUpt8XcnNCD4uwf0gn1C4G8sXmRFX5Mjs pj+LN4Qz5+CBsAzEawqSq6zyl+cAZzcJ1IaOV1Udu/X1ta0OOT5Ea0raUJTJ5qj9 h3cNui51P47wa9wokwKz8PpgwhfyiWyjTPBW+B/2/Wz9crNWpEtw3cTQzUM4lWQM Xhx56hNj8+z3hz6H0xxk377yauEWIoefmoQlXMECAwEAAaOCAwEwggL9MB8GA1Ud IwQYMBaAFMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBRYs+RhAirxYcZI 4GwswJO33AzwLDAzBgNVHREELDAqghNhcGktZHdzLmRpdmluZWEuY29tghNhcGkt Y3JtLmRpdmluZWEuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAw oC6gLIYqaHR0cDovL2NybC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3Js MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFt YXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGLwPlSyAAABAMASDBGAiEAo/nuyUODzD6PR29kpQzML1nTDblyOPloO07t Z4iS4eICIQDJOj5PzEfrH2rVcFJUvCjOzUaBVUGVdCoCujdpWMPRBAB2AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi8D5UrsAAAQDAEcwRQIgXRNx XJJGZMsveurP15nfJHqrgNcmzUUIGV4CZ5LllJcCIQD2MNJ2qLgcJFNlusSt/nUs LoeIJVZoa+CfoAhoOS5DaAB1AD8XS0/XIkdYlB1lHIS+DRLtkDd/H4Vq68G/KIXs +GRuAAABi8D5Uu8AAAQDAEYwRAIgFVYoCN1Rkkhnniqbnshm8MuaqiY6zHQq4r0i ajDY3YICIEd/8ZgURFdB9o4G3NeqzlCgskDJddiubWFTMNxZrW+IMA0GCSqGSIb3 DQEBCwUAA4IBAQBYllR/iTUE4W5FQaYZwMIy6dm7scLPBSt2WXeHaEpvb+lqtd7a IOQIBrIa/7GpWLeYF+Y5BwAaRaz54s7Yt2NMf+XXgkttWy7zhz50GrEIFwqdqpUP oT0toxbDcHCbq4qaxNPLlJgHAHFGQ36Ni/MV8Az88L4W2TaKf03H9crnvtO8gpQK 2Y9yi3zmFdIdw8ri04IEIgYvXlZXcTBfA1FS1EFeD/2n01PYuJIU3tXgrGz6oo/Z 27kneDGezjy2mfB7kT4rvbhCPJpnfH/V6jF6vty/IwT79gvqODgwh0smwvvuELgU N6XTxfCWSYwnhbEZBHh+Zt0iXfBiZgNYB7l3 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynHxT0qNz/543KApWdZS W/T3z4ngwgjUsT/8zMDPzQajyg7hytjpbe+zEirpSqqW7X/P/RUVeE60QfnVqKpn UZQN4u6gGfFLL4uv7qTopyHtlmy28RKTaNvU8vncjrfVKOL3WbsHNwDVJFBSm3xd yc0IPi7B/SCfULgbyxeZEVfkyOymP4s3hDPn4IGwDMRrCpKrrPKX5wBnNwnUho5X VR279fW1rQ45PkRrStpQlMnmqP2Hdw26LnU/jvBr3CiTArPw+mDCF/KJbKNM8Fb4 H/b9bP1ys1akS3DdxNDNQziVZAxeHHnqE2Pz7PeHPofTHGTfvvJq4RYih5+ahCVc wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 9018865172741059483849192576424484354 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-10 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-dws.divinea.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25556324801287090763200344358253693550672138426501086347554299075020417728712938474420166806304179114703445099786221783441913872190668142832024268400632309155568907036811652872606967114217080157794759002922333856024631164806213661644000875573265918282876199629277908767827155111225134286923764405860430700567623052843053194827461540558585280552047586153381381714139251905062918529897117007544237131262524395368075660246167233355881405983384826092651289538283729956704909019654509527753167643563116263413481070262476770311610636658348795505481791290807881319557290224824132799225243037791527278346982969399456200744129 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 58b3e461022af161c648e06c2cc093b7dc0cf02c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-dws.divinea.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-crm.divinea.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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