DV SSL/TLS Certificate for *.itforest.net

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M04)

About the *.itforest.net DV SSL/TLS Certificate

This certificate with serial number 07:7b:57:52:b4:d1:f5:de:66:c5:eb:06:72:b2:cf:ea for *.itforest.net was issued on by Amazon.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.itforest.net provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 07:7b:57:52:b4:d1:f5:de:66:c5:eb:06:72:b2:cf:ea
Serial Number (int): 9945019606400167120151107421701591018
Serial Number Length: 123 bits, 16 octets

Subject Key Identifier: 7e:8e:ec:d8:16:ad:e1:80:28:35:a5:3a:c1:74:a2:ef:ca:f5:44:49
Authority Key Identifier: 1f:52:92:61:56:82:54:7f:81:66:d8:1d:3d:0a:aa:32:5c:87:dd:08

Fingerprint (SHA-1): 12:22:2e:d4:c1:69:f8:bb:b0:f0:23:59:9e:3f:ba:a8:8f:ca:b6:b1
Fingerprint (SHA-256): 35:73:57:e3:db:8f:19:8e:19:b5:c8:33:6a:38:8e:df:fa:9a:05:87:97:93:62:f8:6f:28:e4:31:fd:fc:d5:7c

Issuing Certificate URL: http://crt.r2m04.amazontrust.com/r2m04.cer

Revocation Information

OCSP Server: http://ocsp.r2m04.amazontrust.com
CRL Distribution Point: http://crl.r2m04.amazontrust.com/r2m04.crl

Check the revocation status for certificate *.itforest.net
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.itforest.net

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

*.itforest.net

X.509 Certificate

The complete raw X.509 certificate details for *.itforest.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPepbnCzZyWHYapmwB26
IluV+s/CylICCk74cVSoU0EZEcP9yOEBEA2c7v89yQ5iZwG3rbykzKPhPPCwI95M
pOY5nJLavLsiIqhu7ubU9lY4FVC3I11FnFhXuvfNIAQYUYYAEsAFLl9flEaTJDBg
BP0p+sfS32rxetfpL69ZUrxfRRyeK3HunDTbxbsnR+DOjWwD/Sw2YSktiCA7ps/k
ZtsDZ7ry95pv8jdFWzxhrSeEavp/NSESNmzy2E3nh+LRqJg6TCsmjbt7/dplG1uS
S6+ed0gR4hEOLniObI0hslUwBRhwnegfgO0sQdDqEdsxWxpbUsnATD3cfkCY1nEE
FQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 9945019606400167120151107421701591018
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M04'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-23 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-05-23 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.itforest.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23349974719486963253921800191959711367798025866545703305625992480316266399022977443643542758689985878356550338731037934623594624809033794140104479389833204827116679369810568133257640003847448157580533710353336589064019953801952963102639098856761382619933658241738718133410549377667078310563152887617968648014530415940155274532021710635374852263504203131928535054143114127683292046826807598631669068348262328290934495542695409163807822464410856704318413864550230280957375568260684932142453276866943454679885994687205276306149795987470886692101796250657925167401335616615246111759340180856968538215721180795655439844373
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 1f5292615682547f8166d81d3d0aaa325c87dd08
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7e8eecd816ade1802835a53ac174a2efcaf54449
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.itforest.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m04.amazontrust.com/r2m04.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m04.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m04.amazontrust.com/r2m04.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							01680076000e5794bcf3aea93e331b2c9907b3f790df9bc23d713225dd21a925ac61c54e21000001965fffcc61000004030047304502200ae3ffee5500293fd44853af0dbe7b8f6a6cc13ac2e9b33362f0f4a4a2657766022100f637b416972c31b0cf4ec53a54e3508e16040f7faf533ad79a3237a84ebb9882007600cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7000001965fffcc8e000004030047304502204a51571ad6498893ebc0108fd348e316b10d2bf7698b1d481fba970f6b386234022100bbdcdf02741738780c509b58ba91b6cafd44a9e0289cea4329590d70d9aec752007600969764bf555897adf743876837084277e9f03ad5f6a4f3366e46a43f0fcaa9c6000001965fffcc940000040300473045022100bd5b4ae26b6b71076e9158d2ee0aab251a35d424cfa49f64d0ee2de7ccb67bc002200c7f97ee9c208cdafde1dc488a101a891aa5319ec1ad026505f237d460dc2544
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00b26ac2855f29778f9bbf81f2d0daeafe63da6c8ba9526c2f4686ba4a290a1b1c745ce43229b67b1909da3a7d261f41ac55a50f79624543d4629cd4b3422b20ad8627b9702a73f1bc55e7c912d2447b2abadcc8ae0f23bffb730bcf2e4eed6b2ff33807851fc5a7b9013dddda5a289db9663f0691b00b48da784d8c018f5bce90e504cfd9cc9b8a53253521f1c81f758c0b88f3171d533278f3ab263e5fe29d8eaf37e2ff23b427b7f6d767f3c377b6013fb0fb6cdd8b4a5423a77329fa9316a651cf466cacc31f8076939257cb96fe21d9db5f8150f9fae9ffeac4c952973fd06a63ee8e79b4d59fd7899f1ae84103dd877030222109109464f00691b28f9d74