mailapi.ryoujimail.mofa.go.jp

- The Ministry of Foreign Affairs -

Issued by SECOM Passport for Web SR 3.0 CA

About this certificate

This digital certificate with serial number 64:76:1f:fd:5f:a4:e0:e2:04:44:05:77:df:84:6b:ec was issued on by SECOM Trust Systems CO.,LTD..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

The Ministry of Foreign Affairs

Organization: The Ministry of Foreign Affairs
State / Province: Tokyo-to
Locality: Chiyoda-ku
Country: JP

SECOM Trust Systems CO.,LTD.

Organization: SECOM Trust Systems CO.,LTD.
Country: JP

This certificate has expire since

Certificate Details

Serial Number (hex): 64:76:1f:fd:5f:a4:e0:e2:04:44:05:77:df:84:6b:ec
Serial Number (int): 133536139436821928008016138985661557740
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: dd:d2:3b:26:07:19:2f:86:d5:44:53:6b:c3:4d:85:f4:19:8b:6e:a9
AuthorityKeyId: cb:ef:3d:ef:83:74:a1:a8:42:f0:3b:40:36:fa:6d:82:94:a9:27:36

Fingerprint (sha1): 65:7c:aa:79:9e:62:86:37:fd:e9:d0:4f:3b:61:b8:9d:f4:22:4f:60
Fingerprint (sha256): 39:ef:00:af:40:32:bd:9d:ec:c8:66:5f:fa:b0:93:7e:e9:5d:d8:4d:d5:95:46:77:fc:df:00:ce:dd:d9:9f:be

Issuing Certificate URL: http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/ca2-der.cer

Revocation information

OCSP Server: http://sr30.ocsp.secomtrust.net
CRL Distribution Point: http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/fullcrl2.crl

Check the revocation status for certificate mailapi.ryoujimail.mofa.go.jp

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for mailapi.ryoujimail.mofa.go.jp

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mailapi.ryoujimail.mofa.go.jp

Other certificates including the domain name mofa.go.jp

(limited to 100 certificates)
www.ezairyu.mofa.go.jp
www3.a.anzen.mofa.go.jp
www3.a.anzen.mofa.go.jp
www.ezairyu.mofa.go.jp
www3.mofa.go.jp
www3.mofa.go.jp
www.pilot.evisa.mofa.go.jp
t.mofa.go.jp
remote.ezairyu.mofa.go.jp
www.anzen.mofa.go.jp
www3.anzen.mofa.go.jp
www3.anzen.mofa.go.jp
ft1.iws.mofa.go.jp
www.anzen.mofa.go.jp
www.enq.ezairyu.mofa.go.jp
www.enq.ezairyu.mofa.go.jp
www3.anzen.mofa.go.jp
www3.a.anzen.mofa.go.jp
www.pilot.evisa.mofa.go.jp
www.da.mofa.go.jp
www.deliver.mofa.go.jp
mofa.go.jp
www.ezairyu.mofa.go.jp
www3.anzen.mofa.go.jp
www3.mofa.go.jp
www3.anzen.mofa.go.jp
remote.ezairyu.mofa.go.jp
www.a.ezairyu.mofa.go.jp
mailapi.ryoujimail.mofa.go.jp
*.mofa.go.jp
www3.mofa.go.jp
www.t.mofa.go.jp
www3.mofa.go.jp
mailapi.ryoujimail.mofa.go.jp
www.mofa.go.jp
www.mmwtojapan.mofa.go.jp
www.a.ezairyu.mofa.go.jp
www3.t.mofa.go.jp
www.mofa.go.jp
www.deliver.mofa.go.jp
www.anzen.mofa.go.jp
mofa.go.jp
mailapi.ryoujimail.mofa.go.jp
remote.a.ezairyu.mofa.go.jp
www1.anpi.mofa.go.jp
content.evisa.mofa.go.jp
www.ezairyu.mofa.go.jp
www.pilot.evisa.mofa.go.jp
www3.a.anzen.mofa.go.jp
mofa.go.jp
www.anzen.mofa.go.jp
www.deliver.mofa.go.jp
www3.anzen.mofa.go.jp
www.mofa.go.jp
remote.a.ezairyu.mofa.go.jp
remote.ezairyu.mofa.go.jp
www.contact.nextweb.mofa.go.jp
www.enq.ezairyu.mofa.go.jp
*.mofa.go.jp
remote.ezairyu.mofa.go.jp
www3.mofa.go.jp
*.mofa.go.jp
www.pilot.evisa.mofa.go.jp
www3.anzen.mofa.go.jp
remote.ezairyu.mofa.go.jp
mailmng.ryoujimail.mofa.go.jp
www3.mofa.go.jp
www.enq.ezairyu.mofa.go.jp
www.pilot.a.evisa.mofa.go.jp
www3.anzen.mofa.go.jp
www3.mofa.go.jp
www.contact.nextweb.mofa.go.jp
www.ezairyu.mofa.go.jp
wwwc.e-procurement.mofa.go.jp
www.mofa.go.jp
www.ezairyu.mofa.go.jp
www1.anpi.mofa.go.jp
mailmng.ryoujimail.mofa.go.jp
www.ezairyu.mofa.go.jp
mofa.go.jp
www.contact.mofa.go.jp
rmac.mofa.go.jp
www.deliver.mofa.go.jp
rgp.mofa.go.jp
www.enq.ezairyu.mofa.go.jp
www.mofa.go.jp
www3.nextweb.mofa.go.jp
www.a.evisa.mofa.go.jp
www.e-procurement.mofa.go.jp
www1.anpi.mofa.go.jp
remote.ezairyu.mofa.go.jp
www.anzen.mofa.go.jp
mailmng.ryoujimail.mofa.go.jp
www.evisa.mofa.go.jp
www.evisa.mofa.go.jp
www3.a.anzen.mofa.go.jp
www3.n.mofa.go.jp
www.da.mofa.go.jp
mailapi.ryoujimail.mofa.go.jp
www3.mofa.go.jp

Certificate

The complete raw certificate details for mailapi.ryoujimail.mofa.go.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxGbnwzgfhrUW/7k5Pxv
M+d3jLlCKMjGaeBnqyZaQ3Hjp2b5QLkTnVY8c06EVKFtU6MbIc8qcnwZbCEAYChk
d0ZWCx0h6TXhMUsb3/B9w1MQMsDjFy6QjR+/f8PYYAyiDQthgjAyaxFunuOg3F7k
Hcdt04MNRMSi/ODuyO9ricx/lvECOOHYzG0I+jXQbsEZsJvwdRM9Z0M+0tqj5JGe
fydaRJpErkX7jhrvUFksmV11Whp6SB4sO2uaR5niIyGjk7FKO2P+y6FxKX4iL4wu
FtsA6P6BN1JijkvFCyG7H+zMc/gzwK6ugz37kI8Lyx5kcJJHPv/Gjmt2XPAvP0LH
GQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 133536139436821928008016138985661557740
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SECOM Trust Systems CO.,LTD.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SECOM Passport for Web SR 3.0 CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-12 05:57:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 14:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Tokyo-to'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chiyoda-ku'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The Ministry of Foreign Affairs'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mailapi.ryoujimail.mofa.go.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25635058685073833806328625361934224440095716072867189794841647672408709949046812456147002613085526258894836198838734941705367663661205312212846866292428988525809721547126017803694858575079711768811519965436149888338554305601310559377831704835134894267777785336906897972687146971846652743676899835933041653171384834576807542327423627974870818549963105242440539409005704805510377166307910153243115616187089483400468052548945932659209597834943596023154040664659407551226299120986352064474709234488735023093121978849088873042079700954865126336838213992407240064663933196165650375158412372124488392347526752553177792562969
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName cbef3def8374a1a842f03b4036fa6d8294a92736
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (119 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/ca2-der.cer'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sr30.ocsp.secomtrust.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (33 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mailapi.ryoujimail.mofa.go.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.392.200091.100.751.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://repo1.secomtrust.net/spcpp/pfw/pfwsr3ca/fullcrl2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ddd23b2607192f86d544536bc34d85f4198b6ea9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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