kl-webshop.de
Issued by Amazon RSA 2048 M02
About this certificate
This digital certificate with serial number 0d:dd:d0:e6:cd:fd:6e:6b:35:86:d4:a8:ce:44:14:e7 was issued on by Amazon.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=kl-webshop.de
Amazon
Organization:
Amazon
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:dd:d0:e6:cd:fd:6e:6b:35:86:d4:a8:ce:44:14:e7Serial Number (int): 18431698578365847765610534785824068839
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 74:27:76:de:66:d0:30:06:3e:bb:bd:db:3f:52:f7:bb:77:3f:81:1c
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2
Fingerprint (sha1): 0c:e7:d0:b9:0d:af:59:de:06:09:07:50:81:28:f6:a1:db:16:c8:a5
Fingerprint (sha256): fe:7a:65:51:2b:83:06:0b:fb:45:31:69:02:ee:61:04:df:1d:3d:93:68:70:6d:83:c7:07:aa:c0:ab:2e:dc:c0
Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer
Revocation information
OCSP Server: http://ocsp.r2m02.amazontrust.comCRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl
Check the revocation status for certificate kl-webshop.de
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kl-webshop.de
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kl-webshop.de
*.kl-webshop.de
*.production.kl.sales.diarz.net
production.kl.sales.diarz.net
*.kl-webshop.de
*.production.kl.sales.diarz.net
production.kl.sales.diarz.net
Other certificates including the domain name kl-webshop.de
(limited to 100 certificates)
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl.responsive.dia.ovh
kl-webshop.de
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.sales.dia.ovh
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl-arbeitsschutz.de
kl.responsive.dia.ovh
kl.responsive.dia.ovh
kl-webshop.de
Certificate
The complete raw certificate details for kl-webshop.de in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGGTCCBQGgAwIBAgIQDd3Q5s39bms1htSozkQU5zANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDIxMzAwMDAwMFoXDTI0MDExNzIzNTk1OVowGDEW MBQGA1UEAxMNa2wtd2Vic2hvcC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALutCXIHclWFg/npVNVV1HQwnAYPkjdPAOwhKiewXlilqH3siJD9O4vR CckJijNm3D38U64TDOtWvVTNzKCCAY7EWVyJ+v5AYqctcI34yxi8AkfIfvOyVfkC 3m46U+puuuLDG2lCWNxmslZAF0PJoNXSmUSTdxncI47hlJvCopSxxTO5ZKbOikAA uxxXPmb0Ez9OovfjfhXWod+ve7C2UJ8OlLvQupkdLb92++Mqk+eq16db8mLHzvE2 WTbY3vFo+AieqV3Sn+JHCpeHs90jzBN8OP6q0RxXfqBumSVmfIsgPTI5NAm9BYkq jusPXMruNd3QF2zFY2E2+9qbb8V3vzcCAwEAAaOCAzkwggM1MB8GA1UdIwQYMBaA FMAxUs1aUMOCfHRxzsvpnPl664LiMB0GA1UdDgQWBBR0J3beZtAwBj67vds/Uve7 dz+BHDBpBgNVHREEYjBggg1rbC13ZWJzaG9wLmRlgg8qLmtsLXdlYnNob3AuZGWC HyoucHJvZHVjdGlvbi5rbC5zYWxlcy5kaWFyei5uZXSCHXByb2R1Y3Rpb24ua2wu c2FsZXMuZGlhcnoubmV0MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0w Mi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMBMGA1UdIAQMMAowCAYGZ4EMAQIB MHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIu YW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFt YXpvbnRydXN0LmNvbS9yMm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAYAGCisGAQQB 1nkCBAIEggFwBIIBbAFqAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGGTDOqxgAABAMASDBGAiEA6WQN16RMHtl9j50UmNJCx7CYiRs/LVkx8Ten 0QqW8pYCIQCp40JHalY0mMNR+TGSkv0qA9+U5CovJ0+44owZHm3XtQB2AHPZnokb TJZ4oCB9R53mssYc0FFecRkqjGuAEHrBd3K1AAABhkwzqzgAAAQDAEcwRQIgJAvM /YnRFvs3fZ9edzO6spI0Wn8fP2NWEmIbtLmXG2YCIQC9Ee1x0S731QxzRGMJ3paI 16ALtleANX4hK/tjJho/kQB3AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s5 2IRzAAABhkwzqv8AAAQDAEgwRgIhANRY4wfJJ0mfupQlYrGJoPJUd1gwQJImMk++ wZZ455FCAiEA7PTECCELEGpM/gsM9HlCrAiS7xZc6KmPip7zlR8u99MwDQYJKoZI hvcNAQELBQADggEBAFz5CEHwHyH7P4pyGlx/YkpoedKCo7SglvTaoDEjuMeHis/C 7XyEBrYtWcEXnecx2gBAbcIks1nEP66DlKzpDOG5LFcNf6SULFE7CNwIdtGIdmDI hQZLXs4dntmpGs8NtXcNJkL8xIb3v6/6N5g0JHOg9nQ9w2W5z5xSuhEf9olwk5Ej bWsezOamTf4QQ5R3lmUuI1myxbuJTolKON5V3OSo2zBbjRQJGf8nBXVmjcRqcw1T T/9UNufjevaFcVfv5nrM3UsmRGXcGGvd6ulRC7t4ykICaBJzWM4qn6AMM8bwVHYv DvwgoG7OvvIe5I4X5hV1cCox5vWuBU7UGHvcl90= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu60JcgdyVYWD+elU1VXU dDCcBg+SN08A7CEqJ7BeWKWofeyIkP07i9EJyQmKM2bcPfxTrhMM61a9VM3MoIIB jsRZXIn6/kBipy1wjfjLGLwCR8h+87JV+QLebjpT6m664sMbaUJY3GayVkAXQ8mg 1dKZRJN3GdwjjuGUm8KilLHFM7lkps6KQAC7HFc+ZvQTP06i9+N+Fdah3697sLZQ nw6Uu9C6mR0tv3b74yqT56rXp1vyYsfO8TZZNtje8Wj4CJ6pXdKf4kcKl4ez3SPM E3w4/qrRHFd+oG6ZJWZ8iyA9Mjk0Cb0FiSqO6w9cyu413dAXbMVjYTb72ptvxXe/ NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18431698578365847765610534785824068839 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kl-webshop.de' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23691890702373065493816207139140507135304539951649684939184721283364274998128474500077454003566960929398016132215934322611038617551243346769765712902084841917676023642366273524442044726247343909588082073640490141321457713759768289144563787374376841531421211213915198025587191240475273004355081461070284068053735592053380680155114033337617217176442228380604127368326296504011908787896740155843877657353866921788813966829531823605600242885848226942862656933039162064116341131560257317499097477929776929618766130430292090181885271387825766002414604278976023755230985909082937185979828000367071149672607838706132562984759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 742776de66d030063ebbbddb3f52f7bb773f811c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (98 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kl-webshop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kl-webshop.de' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.production.kl.sales.diarz.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production.kl.sales.diarz.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (368 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) 016a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b000001864c33aac60000040300483046022100e9640dd7a44c1ed97d8f9d1498d242c7b098891b3f2d5931f137a7d10a96f296022100a9e342476a563498c351f9319292fd2a03df94e42a2f274fb8e28c191e6dd7b500760073d99e891b4c9678a0207d479de6b2c61cd0515e71192a8c6b80107ac17772b5000001864c33ab3800000403004730450220240bccfd89d116fb377d9f5e7733bab292345a7f1f3f635612621bb4b9971b66022100bd11ed71d12ef7d50c73446309de9688d7a00bb65780357e212bfb63261a3f9100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d88473000001864c33aaff0000040300483046022100d458e307c927499fba942562b189a0f254775830409226324fbec19678e79142022100ecf4c408210b106a4cfe0b0cf47942ac0892ef165ce8a98f8a9ef3951f2ef7d3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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