DV SSL/TLS Certificate for www.kosair.org

Certificate is witin its validity period

Issued by Amazon (Amazon RSA 2048 M03)

About the www.kosair.org DV SSL/TLS Certificate

This certificate with serial number 08:8e:b3:46:ea:a8:c1:81:df:20:04:83:a4:c5:9e:5f for www.kosair.org was issued on by Amazon.

With 3 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.kosair.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Amazon

Organization: Amazon
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 08:8e:b3:46:ea:a8:c1:81:df:20:04:83:a4:c5:9e:5f
Serial Number (int): 11374766290105207802320343833220849247
Serial Number Length: 124 bits, 16 octets

Subject Key Identifier: ca:2f:fa:3a:41:e2:be:8f:8b:c6:45:49:d1:e6:79:99:4d:28:25:f0
Authority Key Identifier: 55:d9:18:5f:d2:1c:cc:01:e1:58:b4:be:ab:d9:55:42:01:d7:2e:02

Fingerprint (SHA-1): 7c:6a:82:0a:b3:9e:42:44:64:6a:e3:a8:a2:1b:b9:af:5c:1c:ce:c4
Fingerprint (SHA-256): 80:36:dd:2e:8d:07:38:e6:8c:2e:7f:7d:f5:0d:b9:a6:39:1b:72:ec:80:4b:ba:c7:2e:2e:a5:0f:aa:0c:a4:e5

Issuing Certificate URL: http://crt.r2m03.amazontrust.com/r2m03.cer

Revocation Information

OCSP Server: http://ocsp.r2m03.amazontrust.com
CRL Distribution Point: http://crl.r2m03.amazontrust.com/r2m03.crl

Check the revocation status for certificate www.kosair.org
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.kosair.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for www.kosair.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIF5DCCBMygAwIBAgIQCI6zRuqowYHfIASDpMWeXzANBgkqhkiG9w0BAQsFADA8
MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g
UlNBIDIwNDggTTAzMB4XDTI0MDkxMDAwMDAwMFoXDTI1MTAwODIzNTk1OVowGTEX
MBUGA1UEAxMOd3d3Lmtvc2Fpci5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw
ggEKAoIBAQDXnwH+e+HqPPHS25P7TwdURpv8xoDctGpByZdeO/wKLIUEgfsj69at
bh5d6o6Go1L7XegdWLejHIK3sSPvrwSOMxQdDqRngdBbatGhLiZF5qxsV/jyntQB
vC+UBKbGdG7Vw2A9muhoNmgYh9Y1n6a6AnnjAD7/uqgagZN8bGhvltQkocgirV2f
QPNczsDsQESoWL9/hXzvJKlV8bkjawzczXDZtYaJy5iw2TAWaRpGV/x7na6BwT22
O+AZpSyLH2OMxEuGlXZsH+NXotDlKj3d/WXrI4qrr02Wm7SRY9/hZX92icCjYq21
8UQj6drV9x1hSItWLIWxNnmSpmhcW7NFAgMBAAGjggMDMIIC/zAfBgNVHSMEGDAW
gBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUyi/6OkHivo+LxkVJ0eZ5
mU0oJfAwNwYDVR0RBDAwLoIOd3d3Lmtvc2Fpci5vcmeCECoud3d3Lmtvc2Fpci5v
cmeCCmtvc2Fpci5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwDgYDVR0PAQH/BAQD
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCg
LqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNvbS9yMm0wMy5jcmww
dQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8vb2NzcC5yMm0wMy5h
bWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1h
em9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAAMIIBfAYKKwYBBAHW
eQIEAgSCAWwEggFoAWYAdgAS8U40vVNyTIQGGcOPP3oT+Oe1YoeInG0wBYTr5YYm
OgAAAZHbXBWgAAAEAwBHMEUCIQCWf8GDhnuLm7+6c4N4qJM63Lo1hGU8Zf5XO8vR
uYBwJwIgPPnF2vV2Z5muZTEFZOsdxTfmhhtBIU6Ux2gj/Jc0kdoAdQB9WR4S4Xgq
exxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZHbXBWDAAAEAwBGMEQCIHeE8gKz
BSiAD7kwRfxYIT7cuCg0vxood0Ot9/ytt3/DAiB+/hnbT7Y/fJo7jsEsy6ddSJK5
4LUKHrIuNuhfBpXFpAB1AObSMWNAd4zBEEEG13G5zsHSQPaWhIb7uocyHf0eN45Q
AAABkdtcFZUAAAQDAEYwRAIgIalrVRVjjXwNUP6YPfjGSeRXPArCSrHDtUqWK4Vk
vzUCIGAtMqr9TQTEtkFP7t5sbjd7kYys8S1r2dwvftFTx7S2MA0GCSqGSIb3DQEB
CwUAA4IBAQCjRdonFGrzw61QKEKrY8qx7a6bwHUNFfJuH7SWVQc9ljqKmjWi+TGH
eqGlwcDVS81qXvb8emF5BJeR6yQ9tDRi8mOxypmYBOkZ9rb9V7PVvlqpHUmKNTYh
cZeVwP/4b5cTn3CE+XZRjIuOZpTUj1zaO1MNh8nFei7+/ss4/BiYj20dpHI04u4V
hHbnS5ndWMuH8gACbwCmo5KjBTy8mfrX0YfnRiNe29BK5UNKU2VGHigvtHNPnplK
IHcwrOIZ8+0+X+kLYYspeXWbnWkRu1FPs4QG5/8GdKXK4ZYpJngWGb29v0PjPV5h
ptEgPtTVL3XOEHhvh/ajeVk0VcwwUkQc
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA158B/nvh6jzx0tuT+08H
VEab/MaA3LRqQcmXXjv8CiyFBIH7I+vWrW4eXeqOhqNS+13oHVi3oxyCt7Ej768E
jjMUHQ6kZ4HQW2rRoS4mReasbFf48p7UAbwvlASmxnRu1cNgPZroaDZoGIfWNZ+m
ugJ54wA+/7qoGoGTfGxob5bUJKHIIq1dn0DzXM7A7EBEqFi/f4V87ySpVfG5I2sM
3M1w2bWGicuYsNkwFmkaRlf8e52ugcE9tjvgGaUsix9jjMRLhpV2bB/jV6LQ5So9
3f1l6yOKq69Nlpu0kWPf4WV/donAo2KttfFEI+na1fcdYUiLViyFsTZ5kqZoXFuz
RQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 11374766290105207802320343833220849247
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M03'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-10 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kosair.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27219645231007344207319061181235860830393465125464442787499086827781022979131538291307677541630706470462893773471190651825343112366767827292066336137795027810331280239641236856329554691515905624147926058305546730032023753887341509517758044956769996061641106878662474467187188078840048561463497074913277295314582228710313585798264893784597840280635881146505386135374426644983265490828138669147319813429840617604839139137881009811818335130147147423395398015181850882525073036124136988773701288200825909673476098060372173333414313292822081270203342894926218390046970077807105830529635406945334862269082880292737854976837
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55d9185fd21ccc01e158b4beabd9554201d72e02
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ca2ffa3a41e2be8f8bc64549d1e679994d2825f0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kosair.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.www.kosair.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kosair.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m03.amazontrust.com/r2m03.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m03.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m03.amazontrust.com/r2m03.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00a345da27146af3c3ad502842ab63cab1edae9bc0750d15f26e1fb49655073d963a8a9a35a2f931877aa1a5c1c0d54bcd6a5ef6fc7a6179049791eb243db43462f263b1ca999804e919f6b6fd57b3d5be5aa91d498a353621719795c0fff86f97139f7084f976518c8b8e6694d48f5cda3b530d87c9c57a2efefecb38fc18988f6d1da47234e2ee158476e74b99dd58cb87f200026f00a6a392a3053cbc99fad7d187e746235edbd04ae5434a5365461e282fb4734f9e994a207730ace219f3ed3e5fe90b618b2979759b9d6911bb514fb38406e7ff0674a5cae1962926781619bdbdbf43e33d5e61a6d1203ed4d52f75ce10786f87f6a379593455cc3052441c