script.flowershop.media
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 03:9d:2d:b2:1a:01:cd:cd:fe:b3:6d:91:e4:a9:ef:2b was issued on by Amazon.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=script.flowershop.media
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:9d:2d:b2:1a:01:cd:cd:fe:b3:6d:91:e4:a9:ef:2bSerial Number (int): 4803801413238598486851121565244452651
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId: 1d:03:d3:af:b6:e4:10:aa:ec:5b:ac:1f:41:61:17:61:33:b3:7c:55
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): d3:df:85:9c:02:c7:2e:36:23:b9:e8:99:28:4a:d9:a2:fe:31:a8:e3
Fingerprint (sha256): c7:23:54:a8:5a:36:a2:29:bb:a7:25:56:ee:44:6d:c9:06:e1:ac:5a:c7:1f:43:7e:cc:08:1a:3d:e5:87:d8:c5
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate script.flowershop.media
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for script.flowershop.media
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
script.flowershop.media
*.dojo.phluant.com
script.hearst.com
*.script.flowershop.media
*.phluant.digitaltrends.com
*.script.hearst.com
phluant.digitaltrends.com
dojo.phluant.com
*.dojo.phluant.com
script.hearst.com
*.script.flowershop.media
*.phluant.digitaltrends.com
*.script.hearst.com
phluant.digitaltrends.com
dojo.phluant.com
Other certificates including the domain name flowershop.media
(limited to 100 certificates)
script.flowershop.media
sni.cloudflaressl.com
flowershop.media
script.flowershop.media
sni.cloudflaressl.com
app.cwi.me
flowershop.media
script.flowershop.media
script.flowershop.media
flowershop.media
script.flowershop.media
flowershop.media
app.cwi.me
flowershop.media
*.flowershop.media
flowershop.media
script.flowershop.media
app.cwi.me
dsp.flowershop.media
app.cwi.me
*.flowershop.media
flowershop.media
script.flowershop.media
flowershop.media
script.flowershop.media
sni.cloudflaressl.com
flowershop.media
script.flowershop.media
sni.cloudflaressl.com
app.cwi.me
flowershop.media
script.flowershop.media
script.flowershop.media
flowershop.media
script.flowershop.media
flowershop.media
app.cwi.me
flowershop.media
*.flowershop.media
flowershop.media
script.flowershop.media
app.cwi.me
dsp.flowershop.media
app.cwi.me
*.flowershop.media
flowershop.media
script.flowershop.media
flowershop.media
script.flowershop.media
Certificate
The complete raw certificate details for script.flowershop.media in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGfzCCBWegAwIBAgIQA50tshoBzc3+s22R5KnvKzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDQwMjAwMDAwMFoXDTI1MDUwMTIzNTk1OVowIjEg MB4GA1UEAxMXc2NyaXB0LmZsb3dlcnNob3AubWVkaWEwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC/jmUu4NoPnfskJ0Yz8kbmzcQ/5ocUOlg4mstFO4VT RwyXEqwgy0Q3ULwEFjG6eeCnpIcX4mm/EsrrsjVpAye4t+3FzjSXuIoOrgdaCQok jKDtAH0yFRpUKGAc/COGZqu7egEBPES6t9UBmC2U8exSCxEuNCrXc+fi9o6eYfxf aVQZdTt8u/Y+KrE3qAPnmYGoo8XU2ERbx3/y9EUiWSg+Ue4Hw6c/OGIFOCygC+AQ pfobrQM2/3zhnEMVorJFMmVbIFKeALd2Sl8OIaMGIzk7eFWIv0FlEVzS0SrC1ZK4 oi9xQCmbns5ATQHukGAvmq5Fq4Y/65HQBGzNL7ncM97XAgMBAAGjggOVMIIDkTAf BgNVHSMEGDAWgBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUHQPTr7bk EKrsW6wfQWEXYTOzfFUwgcUGA1UdEQSBvTCBuoIXc2NyaXB0LmZsb3dlcnNob3Au bWVkaWGCEiouZG9qby5waGx1YW50LmNvbYIRc2NyaXB0LmhlYXJzdC5jb22CGSou c2NyaXB0LmZsb3dlcnNob3AubWVkaWGCGyoucGhsdWFudC5kaWdpdGFsdHJlbmRz LmNvbYITKi5zY3JpcHQuaGVhcnN0LmNvbYIZcGhsdWFudC5kaWdpdGFsdHJlbmRz LmNvbYIQZG9qby5waGx1YW50LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9udHJ1c3QuY29tL3Iy bTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1UdEwEB/wQCMAAwggF/ BgorBgEEAdZ5AgQCBIIBbwSCAWsBaQB2AM8RVu7VLnyv84db2Wkum+kacWdKsBfs rAHSW3fOzDsIAAABjqBOWdcAAAQDAEcwRQIhAJ+tDe7YNscj0jt8NjRzbNa8YUYW i9Ws5iZFT/MVACDjAiBKXYE4OaTmnD2AZxUHv7I9tRRWy7F/dYfN/HKjbxmXbQB3 AH1ZHhLheCp7HGFnfF79+NCHXBSgTpWeuQMv2Q6MLnm4AAABjqBOWcsAAAQDAEgw RgIhALncQQOsKVbNg8nmodt0wd8seJD88XrPRN0VYLmlKwHCAiEAzBcZQ2PJO1Lg V+WfH3MKBeZOr0DJDgH3Yhofb/r2Z1oAdgDm0jFjQHeMwRBBBtdxuc7B0kD2loSG +7qHMh39HjeOUAAAAY6gTlnXAAAEAwBHMEUCICGYTzD9eoWXsnfznpzZCh2rf6Cq 1swfT9porGPYC2M+AiEApsi3ThVJpTpiIuwO+ZMqf/QY2Kdnielyc8idrs9AtlIw DQYJKoZIhvcNAQELBQADggEBAI8eecr5BErKKv0VPgyu+ZG8yarDk7rwI3qQ+c6b P5iD/rbwVJNrxHM2g+em+sNPcgbcXwmhvabzCfRTX13F3ytLgxc8Z2xAYrUb45Es 3rHtxNBnYd7q+eElKyWR3bI+IuRN0cOWrXLbOBlTMNfS2ZyXDLpiEMQa5VizQfBk 6yM4P1nIHbd33CqaLZ3+kuIceNYK7fRK+iPRwC1DmWhAyvUGzdpxD5jClDHu4ntk xS7X9YGk5JjEntfnBgyYLoxRqw0kTBDHxTsm3vU3jvzXqa15HeSfQtrVx55qYFfj vvslEyHxCI0mebPfhKb9p1RE/kVhV28m3+I2hD2++sfn2ts= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv45lLuDaD537JCdGM/JG 5s3EP+aHFDpYOJrLRTuFU0cMlxKsIMtEN1C8BBYxunngp6SHF+JpvxLK67I1aQMn uLftxc40l7iKDq4HWgkKJIyg7QB9MhUaVChgHPwjhmaru3oBATxEurfVAZgtlPHs UgsRLjQq13Pn4vaOnmH8X2lUGXU7fLv2PiqxN6gD55mBqKPF1NhEW8d/8vRFIlko PlHuB8OnPzhiBTgsoAvgEKX6G60DNv984ZxDFaKyRTJlWyBSngC3dkpfDiGjBiM5 O3hViL9BZRFc0tEqwtWSuKIvcUApm57OQE0B7pBgL5quRauGP+uR0ARszS+53DPe 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 4803801413238598486851121565244452651 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-01 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'script.flowershop.media' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24181733961644218884920451786613791120530334579707571133853974131288405146561432751721086638828975414276945500043767408521989234965542346561766140370747279851620600714424256564279768566799110914179446476150693617903972772751564585452393625719301928200468037195286370091637181025166577132469387024117924817679808060175834247987266780961796592003784577112784072975320426577645864027331559965971664111957421252377132964328943514439051033799712238966028587119449049721695183217460508236988997712064915394283822662728377763011909963214640012141719514574207927502818294348285014091776935729848396445709116109563218594356951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1d03d3afb6e410aaec5bac1f4161176133b37c55 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (189 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'script.flowershop.media' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dojo.phluant.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'script.hearst.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.script.flowershop.media' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.phluant.digitaltrends.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.script.hearst.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phluant.digitaltrends.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dojo.phluant.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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