fundraising.khandel-light.co.uk
Issued by Amazon RSA 2048 M01
About this certificate
This digital certificate with serial number 02:e3:5e:db:5c:5b:f1:d8:7d:45:82:4d:12:d4:5e:ad was issued on by Amazon.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=fundraising.khandel-light.co.uk
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 02:e3:5e:db:5c:5b:f1:d8:7d:45:82:4d:12:d4:5e:adSerial Number (int): 3839031304511346735388354194051456685
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 77:54:f4:56:5d:91:8d:e4:2b:2b:a4:89:02:2e:90:53:4e:c4:70:d8
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85
Fingerprint (sha1): 7b:1e:c8:91:dd:f9:4a:26:69:56:45:0e:8e:04:0b:24:3a:36:5e:46
Fingerprint (sha256): 95:57:c7:80:d3:f8:2d:ab:cb:93:8a:3e:80:d5:08:52:b2:a0:a4:16:8b:8a:fd:84:02:ca:89:28:79:c9:f5:e6
Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer
Revocation information
OCSP Server: http://ocsp.r2m01.amazontrust.comCRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl
Check the revocation status for certificate fundraising.khandel-light.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fundraising.khandel-light.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fundraising.khandel-light.co.uk
Other certificates including the domain name khandel-light.co.uk
(limited to 100 certificates)
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
webdisk.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
live-khandel-light.kissdigital.co.uk
khandel-light.co.uk
fundraising.khandel-light.co.uk
fundraising.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
www.live-khandel-light.kissdigital.co.uk
khandel-light.co.uk
khandel-light.co.uk
mail.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
webdisk.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
live-khandel-light.kissdigital.co.uk
khandel-light.co.uk
fundraising.khandel-light.co.uk
fundraising.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
www.live-khandel-light.kissdigital.co.uk
khandel-light.co.uk
khandel-light.co.uk
mail.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
Certificate
The complete raw certificate details for fundraising.khandel-light.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6TCCBNGgAwIBAgIQAuNe21xb8dh9RYJNEtRerTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMTAwNTAwMDAwMFoXDTI0MTEwMzIzNTk1OVowKjEo MCYGA1UEAxMfZnVuZHJhaXNpbmcua2hhbmRlbC1saWdodC5jby51azCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQaYbmDHVsdYlQ9JlqqBYEhohKzMqXk wGWJvN4moxg2koRR2i1kHshXoPsNa7Kgqq6LKyDumReSqrQe/HfvBGDBzP7R4+TZ 8aP7IHTGTG/Fcr2xb7dMA/gJVZLB7g7sAzuiD8TEtOKscLo81dDCNM3YqfIP6ury ktFRug8wEhPqzNLCJ7npqVWV/cGALjBEqGOxjqOlLfB4apfUEEn56kLTTxxna6RG LQ25P80sXenaCxajUBZPs8bxSbzgIBRG/yB3gOaNiEvBk08doMGh9aHyB9SP++WA 3LGuy7CqcBZ9nBfdrsw3TfhQDdWR9Qz4adm9FErVPIlukJT2wCK4RacCAwEAAaOC AvcwggLzMB8GA1UdIwQYMBaAFIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQW BBR3VPRWXZGN5CsrpIkCLpBTTsRw2DAqBgNVHREEIzAhgh9mdW5kcmFpc2luZy5r aGFuZGVsLWxpZ2h0LmNvLnVrMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw MjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEu Y3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJt MDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAx LmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX0GCisG AQQB1nkCBAIEggFtBIIBaQFnAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGK/TkiSQAABAMARzBFAiBNPieUk2WeD/MgX6i7AuVtgwFC9ftzkopH t9K22sOflQIhAMPv756KpFikgTcebBShVd7yVCPiau5ie8wkh3/4QENcAHYASLDj a9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGK/TkiZwAABAMARzBFAiAL FdOFHkKpjJzoJUVifgKxAkHjYTowGvnFHG60ZBJj8gIhANI0ifgk+M7cE3Jxtu2r bmOCOQkchrarZlQQtbMRcuMzAHUA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9 MEjX+6sAAAGK/TkiYwAABAMARjBEAiBZ20xTozkn+66MRNarAfOn4votCuxYN1pD UEWK9uRFcwIgUja9FPZcma+b9ydfpPaR4DeqGEViBMGDKFZtXKy4UXUwDQYJKoZI hvcNAQELBQADggEBAKzD4jb1KCuTfun/yNA/lzBk7Juwg8oh/Wkva734gQxCBXLA zU6YipPwI/2DC7Agq9X32WqQ0PfZWn+GMw6T0xbxHUkCCRYdVe6YX6vN92Dhke/7 1oUOemXL9F/3gDIttpEPGmuLQdbqx9KXzZ/hKcTkoi9k23oQrxBLHRXeAh2IXnM+ 5617uR/bzBaZ0FxqIJpohhuy4Wh4LFoNWwmN9MKUvXdTTXhWAetJVXLgjZ+f0uuo C4+HEMxRa0viLSmCitjBcMNzT1zHg3NgbuuvzpOTZxNSWaaa26HbUcauTYyVU4K8 +Y6KOakIOyf0yS74IwjXpvde2pgeXn3MKVWRFfE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBphuYMdWx1iVD0mWqoF gSGiErMypeTAZYm83iajGDaShFHaLWQeyFeg+w1rsqCqrosrIO6ZF5KqtB78d+8E YMHM/tHj5Nnxo/sgdMZMb8VyvbFvt0wD+AlVksHuDuwDO6IPxMS04qxwujzV0MI0 zdip8g/q6vKS0VG6DzASE+rM0sInuempVZX9wYAuMESoY7GOo6Ut8Hhql9QQSfnq QtNPHGdrpEYtDbk/zSxd6doLFqNQFk+zxvFJvOAgFEb/IHeA5o2IS8GTTx2gwaH1 ofIH1I/75YDcsa7LsKpwFn2cF92uzDdN+FAN1ZH1DPhp2b0UStU8iW6QlPbAIrhF pwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3839031304511346735388354194051456685 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-03 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fundraising.khandel-light.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20716091333783203174669472062969403857143877176164203894316518517869250257824146336059577947687417621147609625172364649298762978123702320154211907125302214063565469140049943877142029751602827573022589244375682025498876684674735682180524391906901824853717009691229974734381243146171578225882526471289707052456558667367951823355832547199393838662203191863355961152614321897486278587611309150212512152049905574358098776040769950080996657257549122610369924401213067374140404050708337658603314256287344856692759413535715454951578789544365711443554075640991909872386730203481540327778260706731869049856854171786439290275239 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7754f4565d918de42b2ba489022e90534ec470d8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fundraising.khandel-light.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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