businessjournalism.org
Issued by Amazon RSA 2048 M03
About this certificate
This digital certificate with serial number 0d:0f:9b:b7:08:95:bb:e5:49:51:4a:c4:4f:65:12:f5 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=businessjournalism.org
Amazon
Organization:
Amazon
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:0f:9b:b7:08:95:bb:e5:49:51:4a:c4:4f:65:12:f5Serial Number (int): 17361006672981132219280056515935146741
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: e8:1f:61:89:fc:15:34:29:3a:f4:ba:b0:e9:f1:50:3f:ee:8a:35:c6
AuthorityKeyId: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02
Fingerprint (sha1): b0:f2:ec:56:da:57:e8:f6:52:8a:7b:cf:bb:73:c5:a3:ab:38:82:98
Fingerprint (sha256): cc:88:ed:bf:3c:3a:9d:5d:1e:2c:bf:1d:a8:de:b3:39:5c:71:d2:e0:c2:f5:ba:5a:6b:90:7f:c3:b7:55:ae:c1
Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer
Revocation information
OCSP Server: http://ocsp.r2m03.amazontrust.comCRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl
Check the revocation status for certificate businessjournalism.org
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for businessjournalism.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
businessjournalism.org
dev.businessjournalism.org
stage.businessjournalism.org
www.businessjournalism.org
dev.businessjournalism.org
stage.businessjournalism.org
www.businessjournalism.org
Other certificates including the domain name businessjournalism.org
(limited to 100 certificates)
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
www.businessjournalism.org
businessjournalism.org
www.businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
businessjournalism.org
www.businessjournalism.org
businessjournalism.org
www.businessjournalism.org
businessjournalism.org
businessjournalism.org
Certificate
The complete raw certificate details for businessjournalism.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGLTCCBRWgAwIBAgIQDQ+btwiVu+VJUUrET2US9TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTEwODAwMDAwMFoXDTI0MTIwNzIzNTk1OVowITEf MB0GA1UEAxMWYnVzaW5lc3Nqb3VybmFsaXNtLm9yZzCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAKUc+DhqcY8gOBcDUltBQBowSknhxoc4bublzw8CRtQm zZxIHbR02//nX4JxflRZAe4kyQYKJthdGLj131HrEs/SXOhO1cJECTYnYvbG9acP ptZcD/zWxYt9E5HJhqb3O46qpnNleiWb+8mLLKpv2TvPzNgB68KGytkw3y9MpkkN vHqd9C8QhT0e3AiwKO/FUxs61kfCPogR73p/qI0n8mtzmo4M6g2B6gp+VvonjdBE KhGX5nmdTMuHuWDwc4yiry51RPdEA5727AwKdR45t7/xBOKwZQ7D3MITe+p7W4zu tGn+SMn1xg0A8r+tD6NZwSCYrVApiF/5ULsCoAMUJTECAwEAAaOCA0QwggNAMB8G A1UdIwQYMBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBToH2GJ/BU0 KTr0urDp8VA/7oo1xjB3BgNVHREEcDBughZidXNpbmVzc2pvdXJuYWxpc20ub3Jn ghpkZXYuYnVzaW5lc3Nqb3VybmFsaXNtLm9yZ4Icc3RhZ2UuYnVzaW5lc3Nqb3Vy bmFsaXNtLm9yZ4Iad3d3LmJ1c2luZXNzam91cm5hbGlzbS5vcmcwEwYDVR0gBAww CjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFt YXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUF BzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUH MAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAM BgNVHRMBAf8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdgDuzdBk1dsa zsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYushbG9AAAEAwBHMEUCIQCf7Zfk xFMuG0K5iGdKnFKSYyHd/JAnlcvL97vZyvcUSAIgU9r5nUje8PGNFJ7d1xIo6CEY txMvlXSr5S9g4B6ReJwAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiE cwAAAYushbGQAAAEAwBHMEUCIF+u+mGBnjtE/+HwgPoKqZOK/3u83waNB9tH7SbZ a9ThAiEA+DtqAHNE7C9QxHsKFar73uioqtvx3yD0ojYtlFg8K0IAdQA/F0tP1yJH WJQdZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAYushbPIAAAEAwBGMEQCID0SzQI6 DG8OIkzOhG/NgagwX3pI2rFkOiBTic3NfLorAiATfh1Zvw/oPOOAhriq1wtT3Bm4 pc0RB9Or1+wSrUIokDANBgkqhkiG9w0BAQsFAAOCAQEADlv2Zgkl329iYMRi7ee4 8CgtLkf1/eG2LpHDUmLg2vZp9t4dU0nGsY7QME14iRuiDyLr72G+hIsHCECbycQ/ EiMdOYnbgSyXL4eV0cwXVlpZsqztcSXKG73g5CHygMwrmBw8ffBTZTltXV3EQ6AR xH56K+PjNE5YCGLC1OrKn6DeD2L7zxP+Ep/LLCIKqbTaLS9BsId/M1XBxprFxdto kddxx6wuvaVNTU8+2YdCyuFRo6VzAXbnsj+590plEA8H/ewweJdtW3XvQjiqUWt6 khEw4tdTn7T83nhjdwxeiZy8ORjM50OOgFjfDacmvDpDQqnWaSR8NymoY9+TCpTo Hg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRz4OGpxjyA4FwNSW0FA GjBKSeHGhzhu5uXPDwJG1CbNnEgdtHTb/+dfgnF+VFkB7iTJBgom2F0YuPXfUesS z9Jc6E7VwkQJNidi9sb1pw+m1lwP/NbFi30TkcmGpvc7jqqmc2V6JZv7yYssqm/Z O8/M2AHrwobK2TDfL0ymSQ28ep30LxCFPR7cCLAo78VTGzrWR8I+iBHven+ojSfy a3OajgzqDYHqCn5W+ieN0EQqEZfmeZ1My4e5YPBzjKKvLnVE90QDnvbsDAp1Hjm3 v/EE4rBlDsPcwhN76ntbjO60af5IyfXGDQDyv60Po1nBIJitUCmIX/lQuwKgAxQl MQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 17361006672981132219280056515935146741 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'businessjournalism.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20843605766929180022139451850754611696651878134255789084361118936412392047448022966784032213012848267472077564059291035565562791484214717610367900114786401675075467273283196419066547254422756536034059303642853264507253749123329818437584981527939112652813390736465320165801250453502925444359210801157107497826375654227113467515735768123463447851312997699871706926283509992852282995766324545924898061418327712352409586672375287210300199712234857663889231562267864395834022968307379300467774677804628710800383938475478748263485742677238023569211746226289755164436306355950973442985962295353690456220055679607464481006897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e81f6189fc1534293af4bab0e9f1503fee8a35c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'businessjournalism.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.businessjournalism.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.businessjournalism.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.businessjournalism.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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