*.blog.ubuy.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 04:8b:99:fd:36:96:7b:3d:4f:62:ac:98:6d:81:bc:2f was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=*.blog.ubuy.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:8b:99:fd:36:96:7b:3d:4f:62:ac:98:6d:81:bc:2f
Serial Number (int): 6041764516764590731777176124323380271
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 09:ff:59:d0:e0:53:8c:29:4c:67:2e:d9:89:b5:4c:67:98:02:e2:33
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 4b:fe:9f:f0:2e:3b:24:5b:62:69:1f:ba:bd:b7:14:65:fd:92:6b:c1
Fingerprint (sha256): d8:87:37:fe:0f:dd:e6:1e:ff:03:ef:f3:9c:68:70:d3:be:4e:81:70:30:27:09:6b:1e:85:f2:78:cc:8d:c3:27

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate *.blog.ubuy.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.blog.ubuy.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.blog.ubuy.com
blog.ubuy.com

Other certificates including the domain name ubuy.com

(limited to 100 certificates)
ubuy.com.kw
*.ubuy.com
ubuy.co.jp
track.ubuy.com
ubuy.com
track.ubuy.com
*.ubuy.com
ubuy.gl
ubuyanalytics.ubuy.com
life.ubuy.com
ubuy.com
*.ubuy.com.kw
ubuyanalytics.ubuy.com
*.ubuy.com.kw
Ubuy Technologies Private Limited
uglow.ubuy.com
*.ubuy.com.ph
*.ubuy.om
www.bugreporting.ubuy.com
*.ubuy.om
www.blog.ubuy.com
ubuy.co.jp
uglow.ubuy.com
ubuy.com
*.ubuy.com.ph
*.ubuy.com.kw
ubuy.com
algeria.ubuy.com
blog.ubuy.com
Ubuy Technologies Private Limited
algeria.ubuy.com
*.ubuy.com
ubuyanalytics.ubuy.com
www.blog.ubuy.com
*.ubuy.com.kw
*.ubuy.com.kw
uglow.ubuy.com
www.ubuy.ma
ubuy.com.kw
*.ubuy.com.kw
ubuy.co.at
ubuyanalytics.ubuy.com
ubuy.com
track.ubuy.com
*.ubuy.com
*.ubuy.com
images-cdn.a.ubuy.com.kw
ubuy.com.kw
*.blog.ubuy.com
test-blog2.ubuy.com
ubuy.gl
*.ubuy.om
ubuy.com.jm
*.ubuy.com
www.jordan.ubuy.com
*.ubuy.com
ubuy.com
*.ubuy.com.kw
*.ubuy.com
www.ubuy.com

Certificate

The complete raw certificate details for *.blog.ubuy.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA97AUM1NpY1/ijhFZL2lK
EnY3daVEJCax1fweoF8bVm2ymuDcw7Ny7yWJcVpjiO6NkisR4f57Aq87+n3PXf1b
dgMefuv/WYVfdbA0x1UReH7Uz5NyVxq2VKX867WDJgHuBEY1giH8U/khivK4ejjX
EFuyQF8EsP/Myg3a8qsZj0sMal13NWowBmDlpVhgGukzbXaTYdSqW5t4x4obVKqa
CmULDrDi38f2cTF2RFEdi8klxaX76ZDLnGMf0seODC8oeexzIUxA4/TCNVT1WhgC
xZYjei0Pos5ZuBEIJg6uYIy0etI6Qr0OsJw/7ETRG9DaIf5c3gOlmMCRhfBXWNna
cQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 6041764516764590731777176124323380271
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-21 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-19 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.blog.ubuy.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31267689072349490289788067640175168491238942842126138317460904165547318293802728862432596528237679238686011326687562060036732641430547980169679626213948699338570925165863920997216675717608660402486629149933633922383622564689550146121110087622865762134648780608877950803372981034086189414826814763503963373991169629824868391119255782286280757008410378860724291063146802054395127630358354948000451935428741398365162836951066508400534683145957829743167656969099068359057809059694594154411485751265348741703286127757351421215783521287455041956221868187156833092527003695533806451965993559969649733617922899431884211214961
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							09ff59d0e0538c294c672ed989b54c679802e233
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.blog.ubuy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.ubuy.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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