haris.gokseong.go.kr

- Government of Korea -

Issued by CA131100001

About this certificate

This digital certificate with serial number 07:32:1d:59:b6:32:e0:b4:64:d8:24:30:8f:a5:50:9a:7c:b5:78:48 was issued on by Government of Korea.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • KeyUsage [DigitalSignature ContentCommitment KeyEncipherment DataEncipherment KeyAgreement] (00011111) inconsistent with ExtKeyUsage serverAuth The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
  • Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
  • Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
  • Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
  • Subscriber certificate cRLDistributionPoints extension must contain the HTTP URL of the CA’s CRL service (BRs: 7.1.2.3)
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)

Government of Korea

Organization: Government of Korea
Organization unit: Group of Server
Country: KR

Government of Korea

Organization: Government of Korea
Organization unit: GPKI
Country: KR

This certificate has expire since

Certificate Details

Serial Number (hex): 07:32:1d:59:b6:32:e0:b4:64:d8:24:30:8f:a5:50:9a:7c:b5:78:48
Serial Number (int): 41080529439299752465196494043478191140800657480
Serial Number lenght: 155 bits, 20 octets

SubjectKeyId: 39:7d:61:dd:e8:5f:e4:06:d6:07:5a:9f:23:17:4b:5f:10:62:0c:db
AuthorityKeyId: 92:a4:78:17:b1:aa:2f:19:d8:2b:3f:b9:b3:2b:23:15:83:d5:97:35

Fingerprint (sha1): 05:fc:d5:1c:1b:7d:1d:5b:31:de:52:28:68:4f:a3:c3:80:4f:4c:7a
Fingerprint (sha256): 35:d0:57:3e:1f:66:4b:27:61:09:88:c0:39:2c:b3:ed:9c:ad:24:8c:43:a1:86:bb:cc:ef:f9:82:4c:f0:04:2a


Revocation information

CRL Distribution Point: ldap://cen.dir.go.kr:389/cn=crl1p1dp472,cn=CA131100001,ou=GPKI,o=Government of Korea,c=KR?certificateRevocationList;binary

Check the revocation status for certificate haris.gokseong.go.kr

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for haris.gokseong.go.kr

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

7 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

haris.gokseong.go.kr

Other certificates including the domain name gokseong.go.kr

(limited to 100 certificates)
nanum.gokseong.go.kr
city.gokseong.go.kr
haris.gokseong.go.kr
nanum.gokseong.go.kr
haris.gokseong.go.kr
eminwon.gokseong.go.kr
haris.gokseong.go.kr
*.gokseong.go.kr
*.gokseong.go.kr
www.gokseong.go.kr
*.gokseong.go.kr
nanum.gokseong.go.kr
eminwon.gokseong.go.kr
eminwon.gokseong.go.kr

Certificate

The complete raw certificate details for haris.gokseong.go.kr in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uQh8z7X27ql9L6SQTUv
yjZDa5x4DLxV4PdveN87gZNKmRS3Zx2aSYcho/qkGpGUSi7g+Cy24U0yl8p2fVLz
hduHrrvip4utd41tu8Lld0WWLco8iUMZf4hrp1BZ3qH49seN6j+4YbDrsHtHxBrO
ZiaXmySePnnYlj8/WXYyZkz9ycdk18rbuzLKt1X9t8ecwvPRh25dK1ahTlIFMvyb
dd0V28ieOvPU7pK6FvtPm1vY4prH0/7/hH8lyhamSWxq/RukDFt9+tF6D9WrA/jZ
TPk2gtpa9Z3dzjJQq5KKl+UR0udGpl/YLaDZbb8GtCP4xNKqHvKz61gf+BYbKiZA
1QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 41080529439299752465196494043478191140800657480
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'KR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government of Korea'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GPKI'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CA131100001'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-12-26 06:45:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-03-26 14:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'KR'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government of Korea'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Group of Server'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'haris.gokseong.go.kr'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26622540429547422690736438606848512574187655548823208470683904266107635286647395844588139703703203147607673027202739523520264581280201962506462216796679921813132309795613272474814527486815308211309270791444173559698230340113459930826702766306682506310249640830444727870046884697325413123681897096359618497036120262741608732166828936897523410130881366843344185372296191754531394392863941402478492150803127129994481964316381820399983625832628346762923473069611705619045258244396749771715696511222697852822502301256113682513883202475704762836339086662296620129210438518002535178056447665444994050307914739647305832874197
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (114 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 92a47817b1aa2f19d82b3fb9b32b231583d59735
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:1|true] IA5String 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:4|true] Name 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'KR'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Government of Korea'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GPKI'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GPKIRootCA1'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '''
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							397d61dde85fe406d6075a9f23174b5f10620cdb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits)
							03f8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.410.100001.2.1.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haris.gokseong.go.kr'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://cen.dir.go.kr:389/cn=crl1p1dp472,cn=CA131100001,ou=GPKI,o=Government of Korea,c=KR?certificateRevocationList;binary'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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