DV SSL/TLS Certificate for kindundjugend.de

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the kindundjugend.de DV SSL/TLS Certificate

This certificate with serial number 05:dd:6b:a7:8f:3f:46:bb:7e:d6:27:c6:3d:53:c0:bd for kindundjugend.de was issued on by Amazon.

With 4 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for kindundjugend.de provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:dd:6b:a7:8f:3f:46:bb:7e:d6:27:c6:3d:53:c0:bd
Serial Number (int): 7795821077924359636726560818568872125
Serial Number Length: 123 bits, 16 octets

Subject Key Identifier: 37:b7:69:19:7e:bc:e0:2b:35:7e:ed:56:62:af:05:7e:80:f0:df:10
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): 8e:19:3c:9e:d1:17:11:57:09:9f:91:b3:bd:27:d0:5f:7f:31:ab:3e
Fingerprint (SHA-256): 87:41:df:4f:a9:d8:04:5e:35:1c:b9:72:21:99:36:02:c1:2a:e4:ef:b4:e1:e6:2d:be:ec:c6:40:ad:9d:04:ef

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate kindundjugend.de
4
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for kindundjugend.de

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for kindundjugend.de in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgIQBd1rp48/Rrt+1ifGPVPAvTANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAzMB4XDTI0MTEyMjAwMDAwMFoXDTI1MTIyMTIzNTk1OVowGzEZ
MBcGA1UEAxMQa2luZHVuZGp1Z2VuZC5kZTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAJ44Pk84I7giHz8iicU9R16VWng/QDVc+nGUvYnBnpEPtvjdYpqg
jMqtHJlfKaF2WscnyYMBenv9dwqCV34j2kPuuHUqh3Foz+nfZBEowshELy32Rf2c
yO3MqdFrVvURJKw4d9TtGILIpBWKm/U8DX1mW2ohLZ0j10aWw+EHYOTY18xD73kN
S0MIaCPiu6ut0rorjBbxQGHhfn6+fgcLsivviU9T/CjPF415UWsf7zI+oLZxHalM
cXJYYdswykc1moKxmoqkNMiZJ8jraAjQubIQwFAmUAKoudf6R5/efJ7dpWlta1n5
Z9pbjcDUodMnNuCmL0UJTeUOQJNuLLNGXxMCAwEAAaOCAyEwggMdMB8GA1UdIwQY
MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBQ3t2kZfrzgKzV+7VZi
rwV+gPDfEDBTBgNVHREETDBKghBraW5kdW5kanVnZW5kLmRlgg9raWRzLWNvbG9n
bmUuZGWCESoua2lkcy1jb2xvZ25lLmRlghIqLmtpbmR1bmRqdWdlbmQuZGUwEwYD
VR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG
AQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIy
bTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0G
CCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYI
KwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAz
LmNlcjAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdQAS
8U40vVNyTIQGGcOPP3oT+Oe1YoeInG0wBYTr5YYmOgAAAZNSXf5JAAAEAwBGMEQC
IBikiWwqJj9ZAGGgIWzdqu5lsyJrDZPvFmr3R6LVcjbZAiA4IC2aPWBZ8m4kFjUo
7oVdgduWV+bLnCbFJfI3Tu0Q/gB3AMz7D2qFcQll/pWbU87psnwi6YVcDZeNtql+
VMD+TA2wAAABk1Jd/e8AAAQDAEgwRgIhAMbf+dGttYJmB9ass58cuFojseSfsJzj
2CDu3JJ6kcekAiEAkx0SYGOM8wNKpZc2ORuyHuK1mpqu3GeRVXq+vG0yVOsAdgDd
3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZNSXgDaAAAEAwBHMEUC
IB5Z8Y5a2jsbsN1tRPKwq1SjBSq0gd1kMqXH/GeT2DGwAiEAp4eKvxks9jcUxhla
v6iKDIMtseRl5lVSekQbZfS1DjAwDQYJKoZIhvcNAQELBQADggEBAJHIY11K9Jk8
YaL0bSAX41jk8OlQrdw9FQBBmVVdlwCP6aqlvITIstR/ir7mP+aE1cyNPt0U+HXp
8Th5M405qG/oEI6LzJBKfaDvvQ46JSBG1h7uDb8C1Rx5wjUQ+d9AllkuYw4Siixc
GBBbP7mn1f5GUvltLTnRwaHUjQzujBaOFb/pNtSYvr6CyhjKpbAnt5TTMbrAiOoY
mQIUBtmR1r203y8kUD/9O0QLPrRelxf4GnSY4EFAjLLA4wTbVU9ewgOU1O9/QdZn
kARFJuSDshSEwihElvmEchLthI1i8dgGQVRL23/kuVHB2DJh0wrPd4kdTqAXB5lR
eUHAWu6lPQA=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjg+TzgjuCIfPyKJxT1H
XpVaeD9ANVz6cZS9icGekQ+2+N1imqCMyq0cmV8poXZaxyfJgwF6e/13CoJXfiPa
Q+64dSqHcWjP6d9kESjCyEQvLfZF/ZzI7cyp0WtW9REkrDh31O0YgsikFYqb9TwN
fWZbaiEtnSPXRpbD4Qdg5NjXzEPveQ1LQwhoI+K7q63SuiuMFvFAYeF+fr5+Bwuy
K++JT1P8KM8XjXlRax/vMj6gtnEdqUxxclhh2zDKRzWagrGaiqQ0yJknyOtoCNC5
shDAUCZQAqi51/pHn958nt2laW1rWfln2luNwNSh0yc24KYvRQlN5Q5Ak24ss0Zf
EwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7795821077924359636726560818568872125
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-12-21 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kindundjugend.de'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19973386837032764732635084247356431318084697139649396389833821802197674516740275614796009939956839695010300250332119359514994261478088394691405357713001178451674890248205913874076723840081293790701515870157615718524992076101202325837929604766869621256674016446220161277031572556034833780940507679178076535077739354870105981850897473130229146001701162481759650656083963261555640302344739704924633788006373657435768872396632339371050343154324075191904889514529533333793887627579281694684753629492765488368511713343744950115169770421516721294057850516853377622198930617996622053521777124998388462659703004454337489821459
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							37b769197ebce02b357eed5662af057e80f0df10
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (76 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kindundjugend.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kids-cologne.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kids-cologne.de'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kindundjugend.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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