fundraising.khandel-light.co.uk

Issued by Amazon RSA 2048 M01

About this certificate

This digital certificate with serial number 02:e3:5e:db:5c:5b:f1:d8:7d:45:82:4d:12:d4:5e:ad was issued on by Amazon.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=fundraising.khandel-light.co.uk

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 02:e3:5e:db:5c:5b:f1:d8:7d:45:82:4d:12:d4:5e:ad
Serial Number (int): 3839031304511346735388354194051456685
Serial Number lenght: 122 bits, 16 octets

SubjectKeyId: 77:54:f4:56:5d:91:8d:e4:2b:2b:a4:89:02:2e:90:53:4e:c4:70:d8
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85

Fingerprint (sha1): 7b:1e:c8:91:dd:f9:4a:26:69:56:45:0e:8e:04:0b:24:3a:36:5e:46
Fingerprint (sha256): 95:57:c7:80:d3:f8:2d:ab:cb:93:8a:3e:80:d5:08:52:b2:a0:a4:16:8b:8a:fd:84:02:ca:89:28:79:c9:f5:e6

Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer

Revocation information

OCSP Server: http://ocsp.r2m01.amazontrust.com
CRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl

Check the revocation status for certificate fundraising.khandel-light.co.uk

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for fundraising.khandel-light.co.uk

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

fundraising.khandel-light.co.uk

Other certificates including the domain name khandel-light.co.uk

(limited to 100 certificates)
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
webdisk.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
live-khandel-light.kissdigital.co.uk
khandel-light.co.uk
fundraising.khandel-light.co.uk
fundraising.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
www.live-khandel-light.kissdigital.co.uk
khandel-light.co.uk
khandel-light.co.uk
mail.khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk
khandel-light.co.uk

Certificate

The complete raw certificate details for fundraising.khandel-light.co.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF6TCCBNGgAwIBAgIQAuNe21xb8dh9RYJNEtRerTANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAxMB4XDTIzMTAwNTAwMDAwMFoXDTI0MTEwMzIzNTk1OVowKjEo
MCYGA1UEAxMfZnVuZHJhaXNpbmcua2hhbmRlbC1saWdodC5jby51azCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKQaYbmDHVsdYlQ9JlqqBYEhohKzMqXk
wGWJvN4moxg2koRR2i1kHshXoPsNa7Kgqq6LKyDumReSqrQe/HfvBGDBzP7R4+TZ
8aP7IHTGTG/Fcr2xb7dMA/gJVZLB7g7sAzuiD8TEtOKscLo81dDCNM3YqfIP6ury
ktFRug8wEhPqzNLCJ7npqVWV/cGALjBEqGOxjqOlLfB4apfUEEn56kLTTxxna6RG
LQ25P80sXenaCxajUBZPs8bxSbzgIBRG/yB3gOaNiEvBk08doMGh9aHyB9SP++WA
3LGuy7CqcBZ9nBfdrsw3TfhQDdWR9Qz4adm9FErVPIlukJT2wCK4RacCAwEAAaOC
AvcwggLzMB8GA1UdIwQYMBaAFIG4DmOKiRIY5fo7O1CVn+blkBOFMB0GA1UdDgQW
BBR3VPRWXZGN5CsrpIkCLpBTTsRw2DAqBgNVHREEIzAhgh9mdW5kcmFpc2luZy5r
aGFuZGVsLWxpZ2h0LmNvLnVrMBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB
/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQw
MjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20vcjJtMDEu
Y3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJt
MDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAx
LmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCCAX0GCisG
AQQB1nkCBAIEggFtBIIBaQFnAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ
RnEftZsAAAGK/TkiSQAABAMARzBFAiBNPieUk2WeD/MgX6i7AuVtgwFC9ftzkopH
t9K22sOflQIhAMPv756KpFikgTcebBShVd7yVCPiau5ie8wkh3/4QENcAHYASLDj
a9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGK/TkiZwAABAMARzBFAiAL
FdOFHkKpjJzoJUVifgKxAkHjYTowGvnFHG60ZBJj8gIhANI0ifgk+M7cE3Jxtu2r
bmOCOQkchrarZlQQtbMRcuMzAHUA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9
MEjX+6sAAAGK/TkiYwAABAMARjBEAiBZ20xTozkn+66MRNarAfOn4votCuxYN1pD
UEWK9uRFcwIgUja9FPZcma+b9ydfpPaR4DeqGEViBMGDKFZtXKy4UXUwDQYJKoZI
hvcNAQELBQADggEBAKzD4jb1KCuTfun/yNA/lzBk7Juwg8oh/Wkva734gQxCBXLA
zU6YipPwI/2DC7Agq9X32WqQ0PfZWn+GMw6T0xbxHUkCCRYdVe6YX6vN92Dhke/7
1oUOemXL9F/3gDIttpEPGmuLQdbqx9KXzZ/hKcTkoi9k23oQrxBLHRXeAh2IXnM+
5617uR/bzBaZ0FxqIJpohhuy4Wh4LFoNWwmN9MKUvXdTTXhWAetJVXLgjZ+f0uuo
C4+HEMxRa0viLSmCitjBcMNzT1zHg3NgbuuvzpOTZxNSWaaa26HbUcauTYyVU4K8
+Y6KOakIOyf0yS74IwjXpvde2pgeXn3MKVWRFfE=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBphuYMdWx1iVD0mWqoF
gSGiErMypeTAZYm83iajGDaShFHaLWQeyFeg+w1rsqCqrosrIO6ZF5KqtB78d+8E
YMHM/tHj5Nnxo/sgdMZMb8VyvbFvt0wD+AlVksHuDuwDO6IPxMS04qxwujzV0MI0
zdip8g/q6vKS0VG6DzASE+rM0sInuempVZX9wYAuMESoY7GOo6Ut8Hhql9QQSfnq
QtNPHGdrpEYtDbk/zSxd6doLFqNQFk+zxvFJvOAgFEb/IHeA5o2IS8GTTx2gwaH1
ofIH1I/75YDcsa7LsKpwFn2cF92uzDdN+FAN1ZH1DPhp2b0UStU8iW6QlPbAIrhF
pwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 3839031304511346735388354194051456685
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-05 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-03 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fundraising.khandel-light.co.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20716091333783203174669472062969403857143877176164203894316518517869250257824146336059577947687417621147609625172364649298762978123702320154211907125302214063565469140049943877142029751602827573022589244375682025498876684674735682180524391906901824853717009691229974734381243146171578225882526471289707052456558667367951823355832547199393838662203191863355961152614321897486278587611309150212512152049905574358098776040769950080996657257549122610369924401213067374140404050708337658603314256287344856692759413535715454951578789544365711443554075640991909872386730203481540327778260706731869049856854171786439290275239
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7754f4565d918de42b2ba489022e90534ec470d8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (35 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fundraising.khandel-light.co.uk'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00acc3e236f5282b937ee9ffc8d03f973064ec9bb083ca21fd692f6bbdf8810c420572c0cd4e988a93f023fd830bb020abd5f7d96a90d0f7d95a7f86330e93d316f11d490209161d55ee985fabcdf760e191effbd6850e7a65cbf45ff780322db6910f1a6b8b41d6eac7d297cd9fe129c4e4a22f64db7a10af104b1d15de021d885e733ee7ad7bb91fdbcc1699d05c6a209a68861bb2e168782c5a0d5b098df4c294bd77534d785601eb495572e08d9f9fd2eba80b8f8710cc516b4be22d29828ad8c170c3734f5cc78373606eebafce939367135259a69adba1db51c6ae4d8c955382bcf98e8a39a9083b27f4c92ef82308d7a6f75eda981e5e7dcc29559115f1