kl-webshop.de

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 0d:dd:d0:e6:cd:fd:6e:6b:35:86:d4:a8:ce:44:14:e7 was issued on by Amazon.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=kl-webshop.de

Amazon

Organization: Amazon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:dd:d0:e6:cd:fd:6e:6b:35:86:d4:a8:ce:44:14:e7
Serial Number (int): 18431698578365847765610534785824068839
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 74:27:76:de:66:d0:30:06:3e:bb:bd:db:3f:52:f7:bb:77:3f:81:1c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): 0c:e7:d0:b9:0d:af:59:de:06:09:07:50:81:28:f6:a1:db:16:c8:a5
Fingerprint (sha256): fe:7a:65:51:2b:83:06:0b:fb:45:31:69:02:ee:61:04:df:1d:3d:93:68:70:6d:83:c7:07:aa:c0:ab:2e:dc:c0

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate kl-webshop.de

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for kl-webshop.de

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

kl-webshop.de
*.kl-webshop.de
*.production.kl.sales.diarz.net
production.kl.sales.diarz.net

Other certificates including the domain name kl-webshop.de

(limited to 100 certificates)
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl.responsive.dia.ovh
kl-webshop.de

Certificate

The complete raw certificate details for kl-webshop.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu60JcgdyVYWD+elU1VXU
dDCcBg+SN08A7CEqJ7BeWKWofeyIkP07i9EJyQmKM2bcPfxTrhMM61a9VM3MoIIB
jsRZXIn6/kBipy1wjfjLGLwCR8h+87JV+QLebjpT6m664sMbaUJY3GayVkAXQ8mg
1dKZRJN3GdwjjuGUm8KilLHFM7lkps6KQAC7HFc+ZvQTP06i9+N+Fdah3697sLZQ
nw6Uu9C6mR0tv3b74yqT56rXp1vyYsfO8TZZNtje8Wj4CJ6pXdKf4kcKl4ez3SPM
E3w4/qrRHFd+oG6ZJWZ8iyA9Mjk0Cb0FiSqO6w9cyu413dAXbMVjYTb72ptvxXe/
NwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 18431698578365847765610534785824068839
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kl-webshop.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23691890702373065493816207139140507135304539951649684939184721283364274998128474500077454003566960929398016132215934322611038617551243346769765712902084841917676023642366273524442044726247343909588082073640490141321457713759768289144563787374376841531421211213915198025587191240475273004355081461070284068053735592053380680155114033337617217176442228380604127368326296504011908787896740155843877657353866921788813966829531823605600242885848226942862656933039162064116341131560257317499097477929776929618766130430292090181885271387825766002414604278976023755230985909082937185979828000367071149672607838706132562984759
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							742776de66d030063ebbbddb3f52f7bb773f811c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kl-webshop.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kl-webshop.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.production.kl.sales.diarz.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production.kl.sales.diarz.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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