niziiro-hoken.jp
Issued by GlobalSign GCC R3 DV TLS CA 2020
About this certificate
This digital certificate with serial number 22:fd:55:16:99:ff:d7:13:66:fc:02:cc was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=niziiro-hoken.jp
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 22:fd:55:16:99:ff:d7:13:66:fc:02:ccSerial Number (int): 10828750384364471544492851916
Serial Number lenght: 94 bits, 12 octets
SubjectKeyId: 03:41:b5:bb:3b:a3:b4:e8:29:33:33:18:8f:25:a5:7d:6f:0c:4c:52
AuthorityKeyId: 0d:98:c0:73:7f:ab:bd:bd:d9:47:4b:49:ad:0a:4a:0c:ac:3e:c7:7c
Fingerprint (sha1): ae:28:8c:a2:a7:ba:40:90:ca:b7:ab:fe:a6:3c:79:05:b1:25:6f:ed
Fingerprint (sha256): 55:ad:57:e8:57:51:fd:11:d2:21:93:f3:aa:88:c4:c3:dc:14:84:67:40:03:1f:97:63:d7:f8:c5:48:c8:be:14
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt
Revocation information
OCSP Server: http://ocsp.globalsign.com/gsgccr3dvtlsca2020CRL Distribution Point: http://crl.globalsign.com/gsgccr3dvtlsca2020.crl
Check the revocation status for certificate niziiro-hoken.jp
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for niziiro-hoken.jp
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
niziiro-hoken.jp
Other certificates including the domain name niziiro-hoken.jp
(limited to 100 certificates)
Certificate
The complete raw certificate details for niziiro-hoken.jp in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgIMIv1VFpn/1xNm/ALMMA0GCSqGSIb3DQEBCwUAMFMxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSkwJwYDVQQDEyBH bG9iYWxTaWduIEdDQyBSMyBEViBUTFMgQ0EgMjAyMDAeFw0yNDAyMTcwNTE5NDJa Fw0yNDAzMjAwMzEwMjVaMBsxGTAXBgNVBAMTEG5pemlpcm8taG9rZW4uanAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzPi4KpgaKoGuRpcZddO5WI/fZ pkHj9YRvBmF+ztFSwAgqXBdJqvnGRtncnFc5jJg9DYBSnujNAbzk7pTxXgfB4NeU 37EFWt8A5Sfc/vCJhKweS3pjtGkdvrGqqX2BZmAUho5HOOtHaCDc+gMNC1/Fp2it F+4uEFNP8ssfyTne21G93O5M1XPlgaZJmSntfIowM8riRoHi7hiG646PmSrQNCPR 9/dimhAHVVobfQD3YkXJ/kQsk080IGcYbj3zkoNI8FOrtL+rMbSvAzg7CwGqREDy 7rY8uSBsQYv2nmhDwUQ0PztNLTvMjMsun+9Z3YbFmGFNOKWYWS8eqCkzB23XAgMB AAGjggNRMIIDTTAOBgNVHQ8BAf8EBAMCBaAwDAYDVR0TAQH/BAIwADCBkwYIKwYB BQUHAQEEgYYwgYMwRgYIKwYBBQUHMAKGOmh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2ln bi5jb20vY2FjZXJ0L2dzZ2NjcjNkdnRsc2NhMjAyMC5jcnQwOQYIKwYBBQUHMAGG LWh0dHA6Ly9vY3NwLmdsb2JhbHNpZ24uY29tL2dzZ2NjcjNkdnRsc2NhMjAyMDBW BgNVHSAETzBNMEEGCSsGAQQBoDIBCjA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3 dy5nbG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAIBgZngQwBAgEwQQYDVR0fBDow ODA2oDSgMoYwaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc2djY3IzZHZ0bHNj YTIwMjAuY3JsMBsGA1UdEQQUMBKCEG5pemlpcm8taG9rZW4uanAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFA2YwHN/q7292UdLSa0K SgysPsd8MB0GA1UdDgQWBBQDQbW7O6O06CkzMxiPJaV9bwxMUjCCAX4GCisGAQQB 1nkCBAIEggFuBIIBagFoAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGNtYGSPAAABAMARzBFAiA+1CIafAmAId+Ikg7j3f1OA3XAVQFwVc2a01Cd DHWi2gIhAL2DKk9ZvALKTeIS5AW85Swyqx9o3l9EaNs5G6nX4nzxAHcA7s3QZNXb Gs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGNtYGSKQAABAMASDBGAiEA5jhk uyBstgLBbBe/zs3CmjD7OJyOfwW7a9PK5SAiM3UCIQCjYis9MBci47NaxVOXTO/+ btioQ7kXLIYp9qhtTEUNXQB1AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdM Wjp0AAABjbWBkm8AAAQDAEYwRAIgfe5NE4Ju6ycxoZAuWIi62doeikRMQvZ2ETTq h8w9mEgCIHlWkpPOZUu2hBZgbQwzNqijdv0WOJ09aeUMAzu+cOXeMA0GCSqGSIb3 DQEBCwUAA4IBAQBnlA+cVEdaEa0ntWQF1AYPv6AGG2fQfxurGnmZB+XN7IHZ3GrO j2i9UaZKnolAS04zBcFPCXkJkC6nqiJLXsPprvFACJ0hfzExly8z4O9BYABpALwI yO3N3ZTjDzkARc7EKDVSEyGxkMrpCsZAnAIxGpBfm8A8SlYznrhr8OzT7Rfh/iLg Vje3yPZMu20IeRRxPlLltZYZ4lSkSgie3VeAUYR/oiBI6uAXGvZoaqMVRz1IA6oN /+RCEmvtIFAi6MO9iml1HdaSxsn8I69s9DvrFSM0mPe/SmcaPZIDfnwTRaqy8X/i APVl2J776LU8zdQJW3rHB4FMjTSqx1LrB1pG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsz4uCqYGiqBrkaXGXXTu ViP32aZB4/WEbwZhfs7RUsAIKlwXSar5xkbZ3JxXOYyYPQ2AUp7ozQG85O6U8V4H weDXlN+xBVrfAOUn3P7wiYSsHkt6Y7RpHb6xqql9gWZgFIaORzjrR2gg3PoDDQtf xadorRfuLhBTT/LLH8k53ttRvdzuTNVz5YGmSZkp7XyKMDPK4kaB4u4YhuuOj5kq 0DQj0ff3YpoQB1VaG30A92JFyf5ELJNPNCBnGG4985KDSPBTq7S/qzG0rwM4OwsB qkRA8u62PLkgbEGL9p5oQ8FEND87TS07zIzLLp/vWd2GxZhhTTilmFkvHqgpMwdt 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 10828750384364471544492851916 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign GCC R3 DV TLS CA 2020' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 05:19:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 03:10:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'niziiro-hoken.jp' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22627318615740887100835321041038312797731203861421715650182553957863722979053769696253859149387142379526420395125851103554486046561798036043049012918731208198816739647406312921242192835524539354195152735026253977771271079247717339694184163060983043873384746108073761126243324017109210425902153506476251525360517549983803244066773152625497181797735296583398339538405903193840595987655575174078372978835774524992715767331706867353915039953340588468127469165390365055198430467612207708987166408398291596946714431973481237714907131851488728517539615741407956634461429853155390589746562205603627070613136527620296325688791 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsgccr3dvtlsca2020.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsgccr3dvtlsca2020' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsgccr3dvtlsca2020.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'niziiro-hoken.jp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0d98c0737fabbdbdd9474b49ad0a4a0cac3ec77c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0341b5bb3ba3b4e8293333188f25a57d6f0c4c52 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0067940f9c54475a11ad27b56405d4060fbfa0061b67d07f1bab1a799907e5cdec81d9dc6ace8f68bd51a64a9e89404b4e3305c14f097909902ea7aa224b5ec3e9aef140089d217f3131972f33e0ef4160006900bc08c8edcddd94e30f390045cec42835521321b190cae90ac6409c02311a905f9bc03c4a56339eb86bf0ecd3ed17e1fe22e05637b7c8f64cbb6d087914713e52e5b59619e254a44a089edd578051847fa22048eae0171af6686aa315473d4803aa0dffe442126bed205022e8c3bd8a69751dd692c6c9fc23af6cf43beb15233498f7bf4a671a3d92037e7c1345aab2f17fe200f565d89efbe8b53ccdd4095b7ac707814c8d34aac752eb075a46