cosanum.ch

Issued by Amazon RSA 2048 M01

About this certificate

This digital certificate with serial number 0b:59:8f:cc:79:0e:a7:02:d9:55:1d:64:40:1c:ba:d4 was issued on by Amazon.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=cosanum.ch

Amazon

Organization: Amazon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0b:59:8f:cc:79:0e:a7:02:d9:55:1d:64:40:1c:ba:d4
Serial Number (int): 15086538958627549197290526474258660052
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 6c:0e:f3:da:94:7f:a2:9f:07:2b:c9:15:26:99:19:f2:1c:5c:69:b1
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85

Fingerprint (sha1): 46:ea:8d:8b:88:81:30:4f:dc:76:e7:d7:17:cc:86:58:1c:36:db:8f
Fingerprint (sha256): 59:58:f1:b5:cd:d2:4c:0c:ca:73:28:8a:3c:37:05:cd:6b:3e:1f:e8:9f:fa:9b:6f:2b:24:96:27:bc:5d:38:e0

Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer

Revocation information

OCSP Server: http://ocsp.r2m01.amazontrust.com
CRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl

Check the revocation status for certificate cosanum.ch

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for cosanum.ch

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

cosanum.ch
www.cosanum.ch
shop.cosanum.ch

Other certificates including the domain name cosanum.ch

(limited to 100 certificates)
ifasinnovation.cosanum.ch
cosanum.ch
webmail.cosanum.ch
cdn.cosanum.ch
*.cosanum.ch
ortho.cosanum.ch
ifasinnovation.cosanum.ch
cosanum.ch
*.cosanum.ch
webmail.cosanum.ch
cosanum.ch
webmail.cosanum.ch
*.cosanum.ch
*.cosanum.ch
webmail.cosanum.ch
*.cosanum.ch
coosa.cosanum.ch
*.cosanum.ch

Certificate

The complete raw certificate details for cosanum.ch in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdgWZHCHn+Jrf4l3qCfV
MRmkQpkXUYGY7sFPHeervDGCo5UUHDgbNsrB2bT/2elKC+3/6M4L3LQVMjJYf+BN
1ZoV8ltU2f8LaS2E+u9EKZRwG2SdEQlNZjATqCgAV45ijXtTiVAdOFTIVXVGZWti
31DnKsMo53hUJX+FIAKAsVONfn9hFSfPbEKyzsEpcKKYcQ6HgeZkN+LA30s6Cd8+
d2wYdYmPgIYx7hThZhyqNACJfDbqj7M5glWIZp2DOjr+RRcDeiT5VkGrl/cu8igz
1EbNhpicnKFbRuqXOPNrmuBeoNc9ZfQsepkUdAIxvsgCXTr6jMrPR+GQ051Ual2U
gwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15086538958627549197290526474258660052
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-31 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-29 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cosanum.ch'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22955689901778822710245649533492830645912059723069476632316326684728372229860372945521930400503358360275732467865594057163582396827865485840409240125704471085235176128816643215966387883524140774316774306523668150099550485949554819233430428628735683443928389753706811539976331507402674541491068332483661247083116203346006984866947681759367637138051354114115137993516082945811681060602220107948187191049263263468475871219507028306880840752637344887960916854704236217106696963057812826641019941656391464908830860950521393048257119612578262917431444288026579597648068743280242406833932273343950703832924722132818350412931
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6c0ef3da947fa29f072bc915269919f21c5c69b1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cosanum.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cosanum.ch'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shop.cosanum.ch'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							0169007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018605343f1a0000040300483046022100a3d0213bd3b00d8ff12a8f79732d748e1522502033dbce054ce6148dfeb8a8680221009e143b78ca6e8f88ed95e1338037e3af547a0e2cd796e736242986828c01471c00760073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b50000018605343f6a0000040300473045022100bd2f17f3153c7976902506cf675f1d7857dff7c8036e40718e4454aa4cf3080c022073426d68c0010a783784af8658440b5980fdf67a4bd427b4123eb1112cd4b86c00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018605343f3e00000403004730450221008f6efad4ae969375202e27034befd58b8e758f3ef1142c28b754d8db8fb3764402207e5e232851db94119bdccd88f3e61e2039a33b954c67406c792ab315753a684e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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