www.sistersforchange.org.uk
Issued by Amazon
About this certificate
This digital certificate with serial number 0d:1d:b9:a7:10:8e:a9:db:1d:aa:14:06:88:cd:37:ad was issued on by Amazon.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.sistersforchange.org.uk
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:1d:b9:a7:10:8e:a9:db:1d:aa:14:06:88:cd:37:adSerial Number (int): 17434306036105461535586583086795405229
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6b:f4:62:ed:a5:7b:77:ac:c1:05:72:e9:1d:e0:34:67:be:d3:ca:dd
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): e9:e8:e5:a2:27:24:84:39:bf:65:2f:0a:26:4f:b3:3a:55:55:e3:da
Fingerprint (sha256): b4:5b:88:ba:2e:50:62:05:d3:ee:9b:be:d0:ce:86:4e:0d:a7:32:ac:33:80:11:40:9b:bb:6f:8b:93:b9:4d:ad
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b.crl
Check the revocation status for certificate www.sistersforchange.org.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sistersforchange.org.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sistersforchange.org.uk
Other certificates including the domain name sistersforchange.org.uk
(limited to 100 certificates)
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
*.sistersforchange.org.uk
sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
*.sistersforchange.org.uk
sistersforchange.org.uk
www.sistersforchange.org.uk
sistersforchange.org.uk
www.sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
*.sistersforchange.org.uk
sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
sistersforchange.org.uk
*.sistersforchange.org.uk
sistersforchange.org.uk
www.sistersforchange.org.uk
sistersforchange.org.uk
www.sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
staging.sistersforchange.org.uk
sistersforchange.org.uk
Certificate
The complete raw certificate details for www.sistersforchange.org.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIQDR25pxCOqdsdqhQGiM03rTANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMDAzMDMwMDAwMDBaFw0yMTA0MDMx MjAwMDBaMCYxJDAiBgNVBAMTG3d3dy5zaXN0ZXJzZm9yY2hhbmdlLm9yZy51azCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJ3ZgCv8TllJYOvhw6KEQGml BqWs4rnVyc8U4EodRyVdPhupOva+nyI+GU15Pc/tk5DnVEEokQO+/Z0CNUBnWBrx WP8GUL0ANl75e+ENrMCJjWWuHZwrvZ0wD+Q9XDc5YYuSnbVBE2VCbooYrJWOZhPD AS5t8VFg95W/VZqEg2WWn6TqhZb6brSl8xXOHcojBf3AX0IMmfgL6XaNlzeW3LIX vQlHrgIMFAfcLP0xL+UZs3uEmX0lE+VVCLCF8ic5lYepkYSM9Wfc+SeT9xtghyi4 SpkYV/wVJnad4jzI3E7VxVX4ADV+yBEt4Dkjog+tGAp/7UsZCzkv7HEEx+A9fF8C AwEAAaOCAogwggKEMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb+T3QMB0G A1UdDgQWBBRr9GLtpXt3rMEFcukd4DRnvtPK3TAmBgNVHREEHzAdght3d3cuc2lz dGVyc2ZvcmNoYW5nZS5vcmcudWswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3Js LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcmwwIAYDVR0gBBkwFzALBglg hkgBhv1sAQIwCAYGZ4EMAQIBMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYh aHR0cDovL29jc3Auc2NhMWIuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipo dHRwOi8vY3J0LnNjYTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi5jcnQwDAYDVR0T AQH/BAIwADCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AKS5CZC0GFgUh7sTosxn cAo8NZgE+RvfuON3zQ7IDdwQAAABcKFtEPkAAAQDAEgwRgIhAItdjT0J+dj5Sf1G lWgGnvS8dudpcQyW0ufHetYwf1m/AiEAsXnB8V7C5mdQG7ooDZNBflqIwEh0NtM8 VAXxNDZ70iwAdgBc3EOS/uarRUSxXprUVuYQN/vV+kfcoXOUsl7m9scOygAAAXCh bREtAAAEAwBHMEUCIQCzc2IyvPnWcXyLfu2p17QgBl8xoTFQcZhi6l+OTRynXQIg U4WL8/V5gAVbfBMKeYXTlLcNUFsP3ZiOuNYrTAU+ntAwDQYJKoZIhvcNAQELBQAD ggEBALBNFkuqqIMjmOd9ONFiMAxyIplvge1cZ8afMpKPH1C2U/yVkwntJ4JDpsYe Mt43zsjkwZLWS/RnOsg689aCv/1SKdGdZglZ9pk7d4W+zKAYkdHPDJ3Yz92IjY67 Onc303unkirBR28Qeu+3n3X0zkdUqMVv3SkNQyQpmMsSpIubfgDRl2ZZ84Zbz7vP uhjRXHPTRkfr1iynBORULKmyM41bl6s9NAuwwcGWLoeurMl9Gc3CGxgkYEVifvB1 p2AI+O7psTDmIyZ8g4F6nwIaDEgpLSo8jGYbVa8DIWK4nlDevLk8w19UYNgVWK+B YTjRrxj3eCfLTOjqTLWSiLqurUg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndmAK/xOWUlg6+HDooRA aaUGpaziudXJzxTgSh1HJV0+G6k69r6fIj4ZTXk9z+2TkOdUQSiRA779nQI1QGdY GvFY/wZQvQA2Xvl74Q2swImNZa4dnCu9nTAP5D1cNzlhi5KdtUETZUJuihislY5m E8MBLm3xUWD3lb9VmoSDZZafpOqFlvputKXzFc4dyiMF/cBfQgyZ+Avpdo2XN5bc she9CUeuAgwUB9ws/TEv5Rmze4SZfSUT5VUIsIXyJzmVh6mRhIz1Z9z5J5P3G2CH KLhKmRhX/BUmdp3iPMjcTtXFVfgANX7IES3gOSOiD60YCn/tSxkLOS/scQTH4D18 XwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17434306036105461535586583086795405229 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-03 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-03 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sistersforchange.org.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19926667458019033318852816093916400471969712395073241792089943520156078114429041782883123125326460405575702354167198466890281252749524111413220193716679241358244915444595447581907079469709236254329252900556747040709273960075300414376186246162844147878932345164305840324445064213528109135511847124886983180465670892180526299776641613488122135862908015041964603013103569693805703369794825127492016967095838544889313010513569514136080083626547702135004798577587229154885044584294146534973389624597503231255451112092080443530994681730204837753145200963274254493722971384108167685993609978251635788640120006085715479592031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6bf462eda57b77acc10572e91de03467bed3cadd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sistersforchange.org.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000170a16d10f900000403004830460221008b5d8d3d09f9d8f949fd469568069ef4bc76e769710c96d2e7c77ad6307f59bf022100b179c1f15ec2e667501bba280d93417e5a88c0487436d33c5405f134367bd22c0076005cdc4392fee6ab4544b15e9ad456e61037fbd5fa47dca17394b25ee6f6c70eca00000170a16d112d0000040300473045022100b3736232bcf9d6717c8b7eeda9d7b420065f31a13150719862ea5f8e4d1ca75d022053858bf3f57980055b7c130a7985d394b70d505b0fdd988eb8d62b4c053e9ed0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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