DV SSL/TLS Certificate for *.bad-wuennenberg.live

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the *.bad-wuennenberg.live DV SSL/TLS Certificate

This certificate with serial number 0b:ee:19:3a:14:78:2b:59:8d:48:3d:62:19:8f:92:d5 for *.bad-wuennenberg.live was issued on by Amazon.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.bad-wuennenberg.live provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 0b:ee:19:3a:14:78:2b:59:8d:48:3d:62:19:8f:92:d5
Serial Number (int): 15857786267773856705104412175840023253
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: 5e:93:fc:36:de:16:7f:03:24:67:78:07:c4:65:b1:37:4f:d9:65:fa
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): f0:49:8a:3d:23:cb:da:df:dc:cf:eb:44:7a:32:ff:7a:47:d0:f9:56
Fingerprint (SHA-256): 1b:26:ee:69:bf:55:a7:5d:32:83:9a:f6:06:2b:5e:cf:64:9e:cf:d2:10:d5:1a:5e:aa:97:e6:9a:35:53:cf:7f

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate *.bad-wuennenberg.live
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.bad-wuennenberg.live

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.bad-wuennenberg.live in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4mxi7zz6X9HOsJUKEBe
LIXWPTFjUpK0WOU1kygmzPqrI3ScoYlhRG3bAwIUOE5uUC3bKZrx5YHYVW51nARf
sa3y7mOGjr4lMyjiM/NEBMmJ5VaNSRTO7u/XhTzJcsinVxv57Q7cJRUoVzlbX8eD
bERxqQ79RpQSJRpoGxCgxkUrAtKQfQyY5pEvBU/0L15Ru2b+nD3iaNwy7veQ6+6P
wvaxaLtGqtqO6S1zyMbU9qQXMMo6vjjkruVH1MQTP6QNL13T70x9YZzf5LzBWMZw
uuNvu5RBOHXmKeOqRFevfWa16yooQFucI8peWt3FFsi3HR8BtPhyayhln/YPhWGp
lQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15857786267773856705104412175840023253
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-12-13 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.bad-wuennenberg.live'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26199228342439044918768588364526520568805424570766901882533014560684617158993537347819119681416125383531681115014207062900864559410826586581364679703092099088476959696991365857242243852602487192586182876512766986308931191432571686726560453935897141478908320687536195301107896602407829141723312381237386737218167788915322489947885428452893590002849413572428186114095555550660096536730884412102772405445257429966059949072591082162436176462001948006204523235060653264118102693033987899568867942148774328124722299487819123902632608864627022244707889656676918347945303382113612636804141971971177122919280258975276705360277
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5e93fc36de167f0324677807c465b1374fd965fa
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.bad-wuennenberg.live'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bad-wuennenberg.live'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							016a00770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000193236c68ec0000040300483046022100d81870c671f3c6b6f8ab0cbed19858dba3cc72d3bdf1b9d1b11db5c8111b937a022100ac4edd12d9213a192328289a7d9f0e795176f8a0678c485d4dbbf35491f7ef360076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b800000193236c68fc000004030047304502202641080a46f9d991c2b1eec75caa4a05aef1b3097a51df329c230f6026c12e17022100b4e16a862a369d4e8f31381aa3711d1b79cecb8c998f1cf60872a89ecd2a4c59007700e6d2316340778cc1104106d771b9cec1d240f6968486fbba87321dfd1e378e5000000193236c69180000040300483046022100aa8e9100e0ba3b5ab489884fa04414870548a53ea671f62a8ec043b05ae6536f022100ccfd2dc09f62daab9250a6af45130113c8ec70d9a99420f43ad00e421e029e6c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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