DV SSL/TLS Certificate for kms.uk.net

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the kms.uk.net DV SSL/TLS Certificate

This certificate with serial number 09:22:d3:e9:d2:18:47:d1:f5:5f:0a:be:ba:66:04:46 for kms.uk.net was issued on by Amazon.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for kms.uk.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 09:22:d3:e9:d2:18:47:d1:f5:5f:0a:be:ba:66:04:46
Serial Number (int): 12143888168863868764778285742348960838
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 12:66:f9:f7:8d:21:99:28:58:21:f9:a7:72:9a:19:03:30:3b:2b:b4
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): 8d:38:ea:83:d2:e8:5f:2a:66:3f:56:64:57:27:aa:15:b8:75:a8:02
Fingerprint (SHA-256): 82:64:3d:e5:e6:7c:ee:06:c7:72:2c:e9:98:c6:c3:cc:92:3a:0e:0c:a9:09:7f:4a:bd:d5:06:d7:bf:4c:01:e4

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate kms.uk.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for kms.uk.net

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for kms.uk.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsFe9jotr2COr3hpq9QE
hKMhDDPDZdo8Uh+/++Kl+JhpYnnjx48TdA8jM0jxJdI4zDYq0aAJASUgrSdZjmvp
mZYNFPGYly7hgrK0EF5ta054IqVpHRS3TSJIj/ruTzj48h2ISLU3+02+eMK/WfXZ
iCv2QQeSYX/jiEELI5i1YceU/r1dJpLEtKA57X2D501KlbjKrsb3hM2D/HFVn5LM
oGlwYUGNBDH+UFExpA6fWunpejIScRIjiGsxBae0V7djoPk3FKUV46AVEvP64NMF
c7GKlYZNWpzT5SOb9pVsVJzw2pjbvptqkBexbX7zPqQuT+ZEQ7UqaZZcGiBlcF3h
rwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 12143888168863868764778285742348960838
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-10-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-11-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kms.uk.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19536053731490814956465876139838076609866848382536255920924520334001494092356822418203609071304907574138787991105604182245225939859651279397433836027405887361824572242572455948312897293132888584209672096329847606449391448137846124884872119461934454942518246401751980006475221068801252493884064776501124213431454138137661292885935091976755175451613830275337689434602080211299844836680913947297380183860771517450754009966746976938330137480746040691769364714179620454506297301391405695684725213984371002662171916687814295285764670122152360498711038723050678358160189933736652658844064785307469781962903049142695630856623
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1266f9f78d2199285821f9a7729a1903303b2bb4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kms.uk.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kms.uk.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							016700760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a0000019250129713000004030047304502207308d3a75564be64dbca5109211877f7039cca718eafad02a5b25d5794e86453022100e5f854dcf06bbbf7b2ac355773ac311203749afea3276a001041eb100fa55cf90075007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b800000192501296cb000004030046304402200f105c4be2c17ce31cf8bf5783ac27251b909e19e4abc19c1b61529c381b5a5302203d4376db7d6b4399c64d636eb7e2c6926876179893835a28e36a80079cff2444007600e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e5000000192501296e200000403004730450221008a26ea6dbb6203dde2fc7213cbdc1f6971442f793c821406662010f4c37f7973022029eae91e267cbbf3a9827d12e72f18e212ae1660eb68745a9ec779805aa93d5f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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