*.mytandem.eu
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0d:59:98:d4:f1:b9:62:1f:59:0d:d3:53:c4:9c:54:5d was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.mytandem.eu
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:59:98:d4:f1:b9:62:1f:59:0d:d3:53:c4:9c:54:5dSerial Number (int): 17745178163053716098386988641485083741
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d2:d8:16:cb:07:33:9b:69:29:cc:eb:a3:41:bc:c6:c3:5f:56:d1:c2
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 8d:08:54:04:c3:85:3b:ec:09:92:34:63:55:cf:3a:05:51:a1:61:ad
Fingerprint (sha256): 6d:45:fd:8c:02:b0:25:c5:d0:74:d5:57:c7:f8:31:c2:de:14:d1:19:9a:02:70:51:b6:55:57:65:a9:68:8e:a8
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate *.mytandem.eu
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.mytandem.eu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.mytandem.eu
tellme.richemont.com
www.mytandem.eu
mytandem.eu
tellme.richemont.com
www.mytandem.eu
mytandem.eu
Other certificates including the domain name mytandem.eu
(limited to 100 certificates)
*.mytandem.eu
*.mytandem.eu
stage.eu-west-1.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
dev.eu-west-1.mytandem.eu
*.test.mytandem.eu
*.mytandem.eu
*.mytandem.eu
demo.mytandem.eu
nonprod.mytandem.eu
*.mytandem.eu
mytandem.eu
preprod.eu-west-1.mytandem.eu
mytandem.eu
*.test.mytandem.eu
*.lambda.mytandem.eu
mytandem.eu
uat.eu-west-1.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.lambda.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
stage.eu-west-1.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
dev.eu-west-1.mytandem.eu
*.test.mytandem.eu
*.mytandem.eu
*.mytandem.eu
demo.mytandem.eu
nonprod.mytandem.eu
*.mytandem.eu
mytandem.eu
preprod.eu-west-1.mytandem.eu
mytandem.eu
*.test.mytandem.eu
*.lambda.mytandem.eu
mytandem.eu
uat.eu-west-1.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.lambda.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
*.mytandem.eu
mytandem.eu
Certificate
The complete raw certificate details for *.mytandem.eu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEjTCCA3WgAwIBAgIQDVmY1PG5Yh9ZDdNTxJxUXTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDUyNDAwMDAwMFoXDTI1MDYyMjIzNTk1OVowGDEW MBQGA1UEAwwNKi5teXRhbmRlbS5ldTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAK4n8oknQNczgpNu3SexkDrzAX8QkO0cUK4nwvD3LLB0XXWlNmqRQt5z miVn8vlpLFouKXIx7aPPwuLQI5IFfPTZx3kVZBdiP6gskKbKxgiCBQUiT6/Lu5nz KC1lHdFGqlmGfXULXrNhcHhpgf5kB/ztXv+W4eGJbtlxKh3oT9dONtUlCxtdGAQb Qg09XQE6gHP4E174SpK9kBuJKwtbdu05z7fue4bPx8WGdkvtHmKkcic+WLZLFKEX QtXhhDFBoASRWAeSrJyuDPwUV4Z2Ka9ztVBvOUB5XY/nZ09extSf5r8sKevYMe1Q HD4g1tJbxcLiv8YcglNT1Au8Khup29sCAwEAAaOCAa0wggGpMB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBTS2BbLBzObaSnM66NBvMbD X1bRwjBMBgNVHREERTBDgg0qLm15dGFuZGVtLmV1ghR0ZWxsbWUucmljaGVtb250 LmNvbYIPd3d3Lm15dGFuZGVtLmV1ggtteXRhbmRlbS5ldTATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1Ud EwEB/wQCMAAwEwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEB AGbQRnr3xKBNR61XXFfGtqDCwKEjrrpCPhpRgbzvrkAncGsNYOSP3gxBUJTnQ1yc pbe7wRZgk0dEi0+BE61JAdj4rKBvGKByJGmkB+KwW/69Sp6OByT5IO/vSFV8l/yV e6aCqk6QAFiZEiPEBKlLzYX1TR360mNnbHpyyuhSGH1TfmBzX5BhGSp1r1YyV+xI sMz6IFGjatJnN0HCiSfD/XFVRNnaa+e4WHjv4yOUQ9MUG6JDHbOor9CDA3ryTa5Q vvy+EUICjhFM6FgHCa3qhWJl1Nyt6WzZamxLPoI43TNu3s6nM3XXy3mO2MoZqYvo xj1ri5mZA7Zr5zfVD1VsMpA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArifyiSdA1zOCk27dJ7GQ OvMBfxCQ7RxQrifC8PcssHRddaU2apFC3nOaJWfy+WksWi4pcjHto8/C4tAjkgV8 9NnHeRVkF2I/qCyQpsrGCIIFBSJPr8u7mfMoLWUd0UaqWYZ9dQtes2FweGmB/mQH /O1e/5bh4Ylu2XEqHehP10421SULG10YBBtCDT1dATqAc/gTXvhKkr2QG4krC1t2 7TnPt+57hs/HxYZ2S+0eYqRyJz5YtksUoRdC1eGEMUGgBJFYB5KsnK4M/BRXhnYp r3O1UG85QHldj+dnT17G1J/mvywp69gx7VAcPiDW0lvFwuK/xhyCU1PUC7wqG6nb 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17745178163053716098386988641485083741 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.mytandem.eu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21985163863828883450700636715326241007057961012319955053853438235933229435347411604033342982309814388932613918746372906160693419792176135753443830137021954389472174216733187869796014147604162495055908921234481052947946715907548611349369335943945334515593372518114767364817026739371618677842200751289248035287446750492716844613673244532283136361679147556156810303180224056617257288825921295855847408233726880327190472692057042640172551129831798368300218997794613626593739955428946403310414985830125378406413154906345421335048079641832734417979737066788735202945330742938745300103782193952879369845453802560429658594267 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d2d816cb07339b6929cceba341bcc6c35f56d1c2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.mytandem.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tellme.richemont.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mytandem.eu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mytandem.eu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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