kw-webshop.de
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 09:ab:f9:99:92:a7:c9:8c:cc:14:ec:1e:da:b4:ff:a9 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kw-webshop.de
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 09:ab:f9:99:92:a7:c9:8c:cc:14:ec:1e:da:b4:ff:a9Serial Number (int): 12855997212161526167697081617167482793
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 01:a6:f8:b3:6d:eb:8a:61:5e:a7:ac:27:c5:96:3a:e2:fd:aa:27:a4
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): bf:07:f0:07:19:57:ac:cd:f8:10:29:0c:7a:7b:72:fd:3c:95:c1:9e
Fingerprint (sha256): 6a:0f:d5:33:f2:d1:04:ac:b3:d3:69:09:0f:fe:e4:7f:67:e9:6b:ff:26:04:e6:7e:86:88:9c:62:8c:45:af:1c
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate kw-webshop.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kw-webshop.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kw-webshop.de
production.kw.sales.diarz.net
*.production.kw.sales.diarz.net
*.kw-webshop.de
production.kw.sales.diarz.net
*.production.kw.sales.diarz.net
*.kw-webshop.de
Other certificates including the domain name kw-webshop.de
(limited to 100 certificates)
Certificate
The complete raw certificate details for kw-webshop.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGDCCBQCgAwIBAgIQCav5mZKnyYzMFOwe2rT/qTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDIxNDAwMDAwMFoXDTIzMTIwOTIzNTk1OVowGDEW MBQGA1UEAxMNa3ctd2Vic2hvcC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALyivPl0mdLqoEtr/HP3ZDkvQtrOi7vEsVigS9H/RqEg/vw6D8KEQcuS NHbomv8S41M8sATOoKsmkZNlkY/cqHxZnJM+RNxkOOipCjZETGyD+PYcMGdEW8Jy bpRycyh4viqzkt+jUXMoISYjalzcUmaPhgioXV6xHZ4WAGepID2opYT1W4Dqupr1 YN00hWfTWl2z9eexMkc9AjS07FJwPTTjWLUTFZOiZ0RY1tvC79Th9fMwpucUNeOh DYE0jesvJyGQhYTpV1DCF5kOR9IMNwFBN307JDc1gy/rkdu+Xl3ggxLhWBMyGkzO QKVqhuy6ZABSB53Xh0abTvJSq+TxLd8CAwEAAaOCAzgwggM0MB8GA1UdIwQYMBaA FIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQWBBQBpvizbeuKYV6nrCfFljri /aonpDBpBgNVHREEYjBggg1rdy13ZWJzaG9wLmRlgh1wcm9kdWN0aW9uLmt3LnNh bGVzLmRpYXJ6Lm5ldIIfKi5wcm9kdWN0aW9uLmt3LnNhbGVzLmRpYXJ6Lm5ldIIP Ki5rdy13ZWJzaG9wLmRlMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0w MS5hbWF6b250cnVzdC5jb20vcjJtMDEuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIB MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDEu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAxLmFt YXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB 1nkCBAIEggFvBIIBawFpAHYArfe++nz/EMiLnT2cHj4YarRnKV3PsQwkyoWGNOvc gooAAAGGTjnQKwAABAMARzBFAiAu0kx5VW14epJKF+0TFUOC8mf4GUQmW3OH2IIr LWbFVQIhAPttCFp2y2GBTdCDSuzYqtbyHhW604kb1G8zbVJ/cfmEAHYAs3N3B+GE UPhjhtYFqdwRCUp5LbFnDAuH3PADDnk2pZoAAAGGTjnQRgAABAMARzBFAiBhyMAV 7k+CymwLK4nQ9ACkIPEd+cZsKaUUuM4E1icj/QIhANGIVOlAievm70kT6k9OaPb3 pbd0O9PnSsqkF8ry81UDAHcAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXt tJkAAAGGTjnQGAAABAMASDBGAiEA8ip6noe5sXOdF8YLl4izgHKLRnZIDGpffXzp KtNF2g0CIQDSKkKvTRZ4NPWJjDvUgbd2Fni93Nh/wFRTZ7o9fX9SZzANBgkqhkiG 9w0BAQsFAAOCAQEARzH6AOqBj2zsgMW7QV027GydcOuozFVCqp50P0IspKj4xf8P CNa9fcbXDESGsjzs87X6sgdSyRdYZG4lvOEZPjNxSjqZSH4EeiAj4zdCGkDOJXJ+ L/2Q92dZHGSVa4kML8xWLU9cH699uIOm6P4swbEeAu/AbeUstDx2Rz/O4IZRTSnL urSxOOZeR925+uty3iudupxk5YCnGA+5VvyVT6X/BcuLqFGi5Wv7hCArxFZyV+gc H6AmE5YY1Npq4CVs0mNIeKnrgYAq3CsF8lXuVxXczcmwPEfj7vbuxBWpPrPcxW7G kayEHjnl433jMNXWtSQydI2zf+vynnVnfmhVJw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvKK8+XSZ0uqgS2v8c/dk OS9C2s6Lu8SxWKBL0f9GoSD+/DoPwoRBy5I0duia/xLjUzywBM6gqyaRk2WRj9yo fFmckz5E3GQ46KkKNkRMbIP49hwwZ0RbwnJulHJzKHi+KrOS36NRcyghJiNqXNxS Zo+GCKhdXrEdnhYAZ6kgPailhPVbgOq6mvVg3TSFZ9NaXbP157EyRz0CNLTsUnA9 NONYtRMVk6JnRFjW28Lv1OH18zCm5xQ146ENgTSN6y8nIZCFhOlXUMIXmQ5H0gw3 AUE3fTskNzWDL+uR275eXeCDEuFYEzIaTM5ApWqG7LpkAFIHndeHRptO8lKr5PEt 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 12855997212161526167697081617167482793 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kw-webshop.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23813050521789858588450694563508295754694188281197703320845436088048383166518509872537828321520957594140103949488574378065379112564042985808285836634678659067363855440247966379413018125465278407977812749726596152519980675900341165858888594023041097121739743295936861246973583207689102118794769256387618138807365906353663664877021859581248896916570806084206461461579559472979133122483392999286968522362546593356162542496212374486636316914339624654286391712250567503458210422154526480961109347563892502031586623659818281964931559700671322363273655127163856687741712967533855472276931060724555204090635180161642370510303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 01a6f8b36deb8a615ea7ac27c5963ae2fdaa27a4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kw-webshop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production.kw.sales.diarz.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.production.kw.sales.diarz.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kw-webshop.de' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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