okwave.jp

Issued by Amazon RSA 2048 M01

About this certificate

This digital certificate with serial number 06:7d:a8:9c:23:a6:38:98:fb:74:ab:25:57:da:be:e3 was issued on by Amazon.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=okwave.jp

Amazon

Organization: Amazon
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 06:7d:a8:9c:23:a6:38:98:fb:74:ab:25:57:da:be:e3
Serial Number (int): 8627824897466038701207583263953698531
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 36:77:2e:75:6e:8d:08:02:dc:1f:b4:5e:fc:5c:91:d3:4d:e9:fd:e1
AuthorityKeyId: 81:b8:0e:63:8a:89:12:18:e5:fa:3b:3b:50:95:9f:e6:e5:90:13:85

Fingerprint (sha1): b6:10:d7:0d:76:4e:96:a2:78:c2:2d:bb:ba:cc:bf:8e:bb:c8:d5:27
Fingerprint (sha256): 2e:91:0d:1a:93:31:4d:e7:0c:74:18:28:0a:cd:30:33:47:39:3a:b3:4a:9a:e6:0d:53:02:53:9b:6a:b0:ec:ea

Issuing Certificate URL: http://crt.r2m01.amazontrust.com/r2m01.cer

Revocation information

OCSP Server: http://ocsp.r2m01.amazontrust.com
CRL Distribution Point: http://crl.r2m01.amazontrust.com/r2m01.crl

Check the revocation status for certificate okwave.jp

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for okwave.jp

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

okwave.jp
*.okwave.jp

Other certificates including the domain name okwave.jp

(limited to 100 certificates)
kenhonda.okwave.jp
okguide.okwave.jp
admin.dev03.gratica.okwave.jp
dev03.gratica.okwave.jp
m.okbiz.okwave.jp
mobile.okwave.jp
admin-test.ai.okbiz.okwave.jp
dev01.gratica.lab.dev.okwave.jp
gazo.okwave.jp
okexperts.okwave.jp
bizcs.stg.aws.okwave.jp
seank.okwave.jp
secure-demo.okbiz.okwave.jp
dev03.gratica.okwave.jp
kenhonda.okwave.jp
*.stg.aws.okwave.jp
kenhonda.okwave.jp
secure.okbiz.okwave.jp
admin.dev03.gratica.okwave.jp
kenhonda.okwave.jp
ok7.okwave.jp
admin.gratica.okwave.jp
dev03.gratica.okwave.jp
cdn.gazo.okwave.jp
dev02.gratica.lab.dev.okwave.jp
*.okwave.jp
secure.okfaq.okwave.jp
gratica.okwave.jp
sso.okbiz.okwave.jp
dev02.gratica.okwave.jp
admin.dev03.gratica.okwave.jp
konmari.okwave.jp
secure-test.okbiz.okwave.jp
service.okwave.jp
dev04.gratica.okwave.jp
secure-test.okbiz.okwave.jp
kw.lab.dev.okwave.jp
secure.webapi.okwave.jp
assets.konmari.okwave.jp
assets.konmari.okwave.jp
ssl3.okwave.jp
dev04.gratica.okwave.jp
*.okwave.jp
okgaia.okwave.jp
admin.dev03.gratica.okwave.jp
konmari.okwave.jp
m.okbiz.okwave.jp
okguide.okwave.jp
okstars.okwave.jp
m.okbiz.okwave.jp
dev03.gratica.okwave.jp
*.okwave.jp
baseball.okwave.jp
secure.okfaq.okwave.jp
oketter.okwave.jp
okauth.okwave.jp
okwave.jp
okwave.jp
mobile.dev.okwave.jp
dev02.gratica.lab.dev.okwave.jp
secure-test.okbiz.okwave.jp
dev03.gratica.okwave.jp
admin.stg02.gratica.okwave.jp
secure.okbiz.okwave.jp
gazo.okwave.jp
okauth.netricoh.okwave.jp
okbizcs.okwave.jp
zatsugaku.okwave.jp
gratica.okwave.jp
ssl2.okwave.jp
*.okwave.jp
dev02.gratica.lab.dev.okwave.jp
okguide.okwave.jp
dev03.gratica.okwave.jp
dev.baseball.okwave.jp
konmari.okwave.jp
secure-test.okbiz.okwave.jp
secure.webapi.okwave.jp
sp.dev.okwave.jp
secure.okbiz.okwave.jp
mobile.okwave.jp
dev01.gratica.lab.dev.okwave.jp
okauth.askdoctors.okwave.jp
dev04.gratica.okwave.jp
*.okwave.jp
dev01.gratica.lab.dev.okwave.jp
dev03.gratica.okwave.jp
stg02.gratica.okwave.jp
sp.dev.okwave.jp
okwave.jp
dev02.gratica.lab.dev.okwave.jp
konmari.okwave.jp
okwave.jp
mobile.okwave.jp
service.okwave.jp
zatsugaku.okwave.jp
staffblog.okwave.jp
dev03.gratica.okwave.jp
dev01.gratica.okwave.jp
service.okwave.jp

Certificate

The complete raw certificate details for okwave.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZdniGzTi3qfbv6E3aEn
XnAVYVMzo/RdWEop8y5EqwkB/fHBcpkiUVDTGHX6cn0y6SdVYC994FrKRTBXX7Wg
FEbwAvI0wi9KfwEOvCjO/yv/F+5saoB44j6jzJWHKHFd0bviJMWZFwO0HyTx19ht
eRw6ysabsQ1TXyImPd7o5EPGy0IVPyp/MCkBS8pkgQSvyKX+a+tqU5WUnBTBfOGS
mM7sJJcUR2dySAm1ibjQC/gHadzDZ28h6+awRz+YjZpH9sWw/lDB/ZaayVShzmX0
oUTXXNIvXSXS4XFTN2e+QhjZ2Lcs9pyBjfz/4apskhDbUIvDK1NwRR7TlYV05tL4
ZQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 8627824897466038701207583263953698531
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M01'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-04 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'okwave.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23428746723528966474923498183131305362549761445922943591071122216449368392791796953539073988677133815573667666582402986860218717927149122478284823751002940579947787954013113393693524203581174113017864500532730304513206146613918992967407592465170460150447331273797632892746388252924549788354180743072241646142895187462665494789697797617883134090440204953743353511899164198948899843827119919114547018406950810788724405563700185066268524929180499792979703051735041252602085086239406672338399288626159741188866483964636988155339730941187094166872091374604038290848485805702849991104096826496327627001523331899380500461669
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 81b80e638a891218e5fa3b3b50959fe6e5901385
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							36772e756e8d0802dc1fb45efc5c91d34de9fde1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okwave.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.okwave.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m01.amazontrust.com/r2m01.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m01.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m01.amazontrust.com/r2m01.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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