Certificate for ik1-444-54258.vs.sakura.ne.jp Issued to SomeOrganization

Certificate has expired

Issued by itself (self-signed)

About the ik1-444-54258.vs.sakura.ne.jp Certificate

This certificate with serial number 60:2c for ik1-444-54258.vs.sakura.ne.jp was issued on Thursday Jul 7, 2022 at 7:56AM by SomeOrganization.

This Certificate has already expired and will cause a warning or error message. We have found some issues with the compliance of this certificate, they are be shown below. We hope this Certificate review for ik1-444-54258.vs.sakura.ne.jp provides you with the detailed information you were looking for.

We have identified some issues with this certificate:

CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
Subscriber certificates must contain at least one policy identifier that indicates adherence to CAB standards (BRs: 7.1.2.3)
Subscriber Certificate: certificatePolicies MUST be present and SHOULD NOT be marked critical. (BRs: 7.1.2.3)
Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
Country codes must be comprised of uppercase A-Z letters Alpha-2 country codes shall consist of LATIN CAPITAL LETTER A through LATIN CAPITAL LETTER Z (ISO 3166-2:2020(E) section 5.1)
Missing common name, 'ik1-444-54258.vs.sakura.ne.jp' The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
found only metadata -- in subjectDN attribute 2.5.4.6 Subject name fields must not contain '.','-',' ' or any other indication that the field has been omitted (BRs: 7.1.4.2.2)
The country name field MUST contain the two-letter ISO code for the country or XX (BRs: 7.1.4.2.2)
Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

SomeOrganization

Organization: SomeOrganization
Organizational unit: SomeOrganizationalUnit

State / Province: SomeState
Locality: SomeCity
Country: --

This X.509 certificate expired on Friday Jul 7, 2023 at 7:56AM UTC

Certificate Details

Serial Number (hex): 60:2c
Serial Number (int): 24620
Serial Number Length: 15 bits, 2 octets

Subject Key Identifier:
Authority Key Identifier:

Fingerprint (SHA-1): 2b:99:3e:63:8d:5b:df:d6:35:6b:72:17:a1:d2:66:64:1c:54:7b:d8
Fingerprint (SHA-256): 86:3f:d2:8c:dd:57:64:ac:a6:67:64:fd:88:12:18:79:96:de:89:a1:4d:17:eb:15:35:10:be:2b:45:40:a5:ae

Revocation Information

Check the revocation status for certificate ik1-444-54258.vs.sakura.ne.jp

DNS Names

Email Addresses

IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for ik1-444-54258.vs.sakura.ne.jp

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Key Encipherment
Digital Signature
Content Commitment

Extended Key Usages

None

Extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This X.509 certificate doesn't contain any subject alternative names.

X.509 Certificate

The complete raw X.509 certificate details for ik1-444-54258.vs.sakura.ne.jp in PEM and ASN.1 format.

Certificate (PEM)

Public Key (PEM)

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 24620
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '--'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeState'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeCity'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeOrganization'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeOrganizationalUnit'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ik1-444-54258.vs.sakura.ne.jp'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-07-07 07:56:08 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-07 07:56:08 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '--'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeState'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeCity'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeOrganization'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SomeOrganizationalUnit'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ik1-444-54258.vs.sakura.ne.jp'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26399358103801391434467088267344152232927606967633437942095226182657286200179177533849547025275581323931353249904307975578108311926278818579134153125446421166632513120458578541875345309446416113349603939935491206529461914236012002213777955465520549633313120051464737923691449908414883543729584222708035631921160966011446011877576378603966813516663501344174346329759349489374738349278276692259969052463291816504919853538939161294417464409474951857911790269815172003032971687922477399538322921326279967727813641565712645259478017078471660726161694261536785307585112092424663533504220228053170703334730082093564750936231
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05e0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00934a3e35dd9015679994b3fef68975a2ce81044930b707fbc21ee269ab95976706d58305778f179daa1ee425536f97ca84614dbc1404108685805f1f3c6d6225675b2435f886a32305f7e2c0fb3f12a8b6bc5904f55bd0bd17d7af70789b6eb3b9b07d84a31680e4e164bf1a5ada72fec31c1896cfac0f191cd10069611b643de1e2e24174236fe85f6b1709e13073a880ab447a9d65bfb0ad77b590d8d68d00a85be6f4422c2f08f96268fadca3be220658bdabbf756d0d7338809e930b4b87a8e2e462c4fa87291e0990f972acf584d012b692cdfc5f4140c63aaca2f7810a29cabdd0047adb3a9e49358abbcc2663c00cf31b4c5cc1883f12596b66d8367b