okinari.jp
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:bb:2f:38:96:5c:16:e3:a7:54:94:32:b0:b7:84:46:70:04 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=okinari.jp
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:bb:2f:38:96:5c:16:e3:a7:54:94:32:b0:b7:84:46:70:04Serial Number (int): 412144713875339963636155738935918303014916
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 68:d3:f2:b8:7c:79:07:a1:07:12:f0:49:01:8e:ce:b8:54:4d:88:31
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0d:6b:de:49:4a:52:4a:f4:69:48:d8:49:ab:81:c5:0b:5a:62:d1:6f
Fingerprint (sha256): 0d:f4:fe:fa:5b:8b:9b:96:d7:9a:5e:e8:d9:3f:14:af:0f:46:6c:ae:22:7d:48:9e:77:11:94:5f:5a:12:47:01
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate okinari.jp
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for okinari.jp
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
okinari.jp
www.okinari.jp
www.okinari.jp
Other certificates including the domain name okinari.jp
(limited to 100 certificates)
okinari.jp
thedeval.com
okinari.jp
www.makkan.trade
union-bauzentrum-roehlinger.com
okinari.jp
okinari.jp
www.okinari.jp
okinari.jp
test.freemarket.studio
okinari.jp
lichtansuu.huyenkhongtamnguyen.com
capitolhilldentistryandbraces.com
okinari.jp
okinari.jp
stage.player.lumiere.is
admin-sta.jointriage.net
okinari.jp
summerknights-actor.com
agente.duga.org.br
okinari.jp
okinari.jp
okinari.jp
datadog-ui.nerd.vision
okinari.jp
blackcastle.se
okinari.jp
okinari.jp
pulpcoin.vip
staging.cms.blockframes.io
okinari.jp
okinari.jp
okinari.jp
www.thomasdupre.fr
comvi.info
consultora.podeperguntar.com
thedeval.com
okinari.jp
www.makkan.trade
union-bauzentrum-roehlinger.com
okinari.jp
okinari.jp
www.okinari.jp
okinari.jp
test.freemarket.studio
okinari.jp
lichtansuu.huyenkhongtamnguyen.com
capitolhilldentistryandbraces.com
okinari.jp
okinari.jp
stage.player.lumiere.is
admin-sta.jointriage.net
okinari.jp
summerknights-actor.com
agente.duga.org.br
okinari.jp
okinari.jp
okinari.jp
datadog-ui.nerd.vision
okinari.jp
blackcastle.se
okinari.jp
okinari.jp
pulpcoin.vip
staging.cms.blockframes.io
okinari.jp
okinari.jp
okinari.jp
www.thomasdupre.fr
comvi.info
consultora.podeperguntar.com
Certificate
The complete raw certificate details for okinari.jp in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgISBLsvOJZcFuOnVJQysLeERnAEMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MzAwMjA1MTBaFw0x OTEyMjkwMjA1MTBaMBUxEzARBgNVBAMTCm9raW5hcmkuanAwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC91yHcEuzjaqilGjpZ203FjAoEDNbKcRUTtB3R PL6DMuSBV5mW/Gn5NZCBpu6fnP0OOhYOm0dEYMenShHrqBVDiRys5S6AGsGgMnYM fVI2kJliiIblUcOcFtsacfkaHIL84vW0iiDP7kPayMYc9hHicclptoD1E5h9+jbH xBRuYfLwg08C8saqRuO5EaE8Uh9EqvSvcfOTmw7y8kGBiiRjVZzNm95Ta1lizB8m +TnFcCi9efg0s0d7Rfmp+vHRnh2ojUuIPxbTVhqXEz9AH1Az8ATJFNSphUH8MUL5 GN8WoNUqejVkVnrgXb0lRQEn7X5SVOjtJ3KTWRGW+dFtEBjfAgMBAAGjggJwMIIC bDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGjT8rh8eQehBxLwSQGOzrhUTYgxMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAu BggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAv BggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w JQYDVR0RBB4wHIIKb2tpbmFyaS5qcIIOd3d3Lm9raW5hcmkuanAwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDi aUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAW2AIQZdAAAEAwBHMEUC IG64LC+TrtkCjRmtEtDicQz3iElR4oMLbG3r0drJZvadAiEAx1+mWmUSi0dcFgqI pmOlyz3WKjwOZqmG7QwXZqu82qIAdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAW2AIQZPAAAEAwBIMEYCIQD6HYg+9nb75qO0FR1NMcsrY9vbSyV3 oLZDsSMWJloQzgIhAMW+k7gU10vFus9n4x93Z2ngYHhucl3UyG6hkhZtJ4vQMA0G CSqGSIb3DQEBCwUAA4IBAQBkz0pqmWi2orKdlHMh5IIRNJ7J3atX1sf8sHl6Py9F Q8rY5+dHuh+nSU03vNRbj/k3zXF0eTquGJSSkSvM7KEqkgmxOgj39881lNN48CA1 iNB32ZhCcPaMjpjhSGn8osXzv849DyPRvVibfEGuq4BMAQROHT0twVklbXY5drOc PmVC8qpWW9Zt8W012I0LSIZckPlJiLI7UXhtBqbz+zddNGQHFsiPvRZi0S6TvoKK 2cSOPzEEkP/7pFUWgh9DWMLGHogWwey2/cS7rP/chE1JziqqkJp1I3awoe7b7PL2 EKLqeF+Z13CmS0Mj+yOqidtMRNEsWQo2X2n2jYdnZ+7d -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdch3BLs42qopRo6WdtN xYwKBAzWynEVE7Qd0Ty+gzLkgVeZlvxp+TWQgabun5z9DjoWDptHRGDHp0oR66gV Q4kcrOUugBrBoDJ2DH1SNpCZYoiG5VHDnBbbGnH5GhyC/OL1tIogz+5D2sjGHPYR 4nHJabaA9ROYffo2x8QUbmHy8INPAvLGqkbjuRGhPFIfRKr0r3Hzk5sO8vJBgYok Y1WczZveU2tZYswfJvk5xXAovXn4NLNHe0X5qfrx0Z4dqI1LiD8W01YalxM/QB9Q M/AEyRTUqYVB/DFC+RjfFqDVKno1ZFZ64F29JUUBJ+1+UlTo7Sdyk1kRlvnRbRAY 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 412144713875339963636155738935918303014916 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-30 02:05:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-29 02:05:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'okinari.jp' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23965125311984339601129757747724217297910635634534203474645261766161367149988994852948737328110131207274544801218857311687062043299341476025591253158217408227705837766601722951858752947477924980531295008512640482209823689115483808719815112074354623418995592620243489703289828326925252764241774539599096890138706510699847467869073679793625657479362043332026470270808586113696427568883962809611855181915581192175150286026366167229715302598627567804376576377264551680853973689497715984618556358924983371080688301369665915031353088542198534750457083112330419890665071592932489283745334890752682195510016548688058192500959 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68d3f2b87c7907a10712f049018eceb8544d8831 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okinari.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.okinari.jp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d8021065d000004030047304502206eb82c2f93aed9028d19ad12d0e2710cf7884951e2830b6c6debd1dac966f69d022100c75fa65a65128b475c160a88a663a5cb3dd62a3c0e66a986ed0c1766abbcdaa2007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d8021064f0000040300483046022100fa1d883ef676fbe6a3b4151d4d31cb2b63dbdb4b2577a0b643b12316265a10ce022100c5be93b814d74bc5bacf67e31f776769e060786e725dd4c86ea192166d278bd0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0064cf4a6a9968b6a2b29d947321e48211349ec9ddab57d6c7fcb0797a3f2f4543cad8e7e747ba1fa7494d37bcd45b8ff937cd7174793aae189492912bcceca12a9209b13a08f7f7cf3594d378f0203588d077d9984270f68c8e98e14869fca2c5f3bfce3d0f23d1bd589b7c41aeab804c01044e1d3d2dc159256d763976b39c3e6542f2aa565bd66df16d35d88d0b48865c90f94988b23b51786d06a6f3fb375d34640716c88fbd1662d12e93be828ad9c48e3f310490fffba45516821f4358c2c61e8816c1ecb6fdc4bbacffdc844d49ce2aaa909a752376b0a1eedbecf2f610a2ea785f99d770a64b4323fb23aa89db4c44d12c590a365f69f68d876767eedd