www.city.hiroshima.lg.jp

Issued by AlphaSSL CA - SHA256 - G4

About this certificate

This digital certificate with serial number 46:b4:57:48:c4:2d:e5:b0:e1:6f:13:1a was issued on by GlobalSign nv-sa.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.city.hiroshima.lg.jp

GlobalSign nv-sa

Organization: GlobalSign nv-sa
Country: BE

This certificate will expire on

Certificate Details

Serial Number (hex): 46:b4:57:48:c4:2d:e5:b0:e1:6f:13:1a
Serial Number (int): 21881969523210578381648106266
Serial Number lenght: 95 bits, 12 octets

SubjectKeyId: 47:6d:45:78:a7:27:38:4b:ab:32:2e:ce:21:ff:37:af:a3:3d:79:af
AuthorityKeyId: 4f:cb:ac:a8:c2:ef:ab:dd:83:6f:6b:bf:ce:98:3d:5c:58:25:76:15

Fingerprint (sha1): 60:07:cf:74:71:4c:ec:7a:00:f6:23:79:d7:7b:c5:7d:bb:69:c1:ae
Fingerprint (sha256): 6c:ef:8a:b8:14:59:57:cf:c6:2c:9a:d8:e5:bd:6a:3c:c3:0b:18:1e:19:fb:c4:ac:b3:17:94:c8:ea:af:bc:dd

Issuing Certificate URL: http://secure.globalsign.com/cacert/alphasslcasha256g4.crt

Revocation information

OCSP Server: http://ocsp.globalsign.com/alphasslcasha256g4
CRL Distribution Point: http://crl.globalsign.com/alphasslcasha256g4.crl

Check the revocation status for certificate www.city.hiroshima.lg.jp

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.city.hiroshima.lg.jp

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.city.hiroshima.lg.jp
city.hiroshima.lg.jp

Other certificates including the domain name hiroshima.lg.jp

(limited to 100 certificates)
ebid.keiyaku.city.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
www.sabo-map.pref.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
*.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
sts.city.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
gyosei.bousai.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
www.iju-cms.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
*.saiyou.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
lw-dcn12athsv00.pref.hiroshima.lg.jp
*.sabo-map.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
nourin.pref.hiroshima.lg.jp
*.dogis.pref.hiroshima.lg.jp
lw-dcn12vpnsv00.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
chotatsu2.pref.hiroshima.lg.jp
eas.city.hiroshima.lg.jp
gyosei.bousai.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
hirodsv007.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
prefalb.dogis.pref.hiroshima.lg.jp
yo-ke.pref.hiroshima.lg.jp
saiyou.pref.hiroshima.lg.jp
gyosei.bousai.city.hiroshima.lg.jp
www.sabo-map.pref.hiroshima.lg.jp
chotatsu2.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
*.city.hiroshima.lg.jp
map.bousai.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
www.sabo.pref.hiroshima.lg.jp
vm.pref.hiroshima.lg.jp
www.manabi.pref.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
gc-dcn14exesv02.pref.hiroshima.lg.jp
dennyu.pref.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
saiyou.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
*.pref.hiroshima.lg.jp
*.pref.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
extgw.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
www.sabo.pref.hiroshima.lg.jp
hozen.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
yo-ke.pref.hiroshima.lg.jp
www.city.hiroshima.lg.jp
www.iju.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
chotatsu2.pref.hiroshima.lg.jp
lw-dcn12athsv00.pref.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
chotatsu.pref.hiroshima.lg.jp
hiroshima-brand.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
gc-dcn14exesv01.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
saiyou.pref.hiroshima.lg.jp
www.pref.hiroshima.lg.jp
*.city.hiroshima.lg.jp
www.ssl.city.hiroshima.lg.jp
touroku.keiyaku.city.hiroshima.lg.jp
ppi.keiyaku.city.hiroshima.lg.jp
lw-dcn12vpnsv00.pref.hiroshima.lg.jp
shokuin.bousai.city.hiroshima.lg.jp
ebid.keiyaku.city.hiroshima.lg.jp
extgw.pref.hiroshima.lg.jp

Certificate

The complete raw certificate details for www.city.hiroshima.lg.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZpdA+8c/dENRpMDypz7
It1MRlUPuOlvPv1Im0otmml/OeVbRoY1TTbq+Vk5fvDEQnsBBcs7ojqoScmWZWPu
AN2BcHG/vnk3MYmcqfb/pcbc82h/cE1yM0quq5MBwkcIsGdCTIwL7NR6rC8/T4FM
fqpxgCZh7q3bmvn8xzixaRcqzLmUO82Z+Y9Mq3lfWtlY8elpMwcfBObpjvANxBur
11gfXrjmsrf+gMiiBBokBhySHfYLp2mnIzaLcnL143b8k5MA1CzpU6XirjCTtjNy
AgPyZbrQiWEoqYDnUw04SCQP10CxzflEvamKiK0z/UdHe5HEIe493RAiK5zjwz5W
IwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 21881969523210578381648106266
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - SHA256 - G4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 23:42:31 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-01-25 23:42:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.city.hiroshima.lg.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25450018698771186006345413015899092397114634684668936491681377555110714887669867528674855277950475402827102975251942427916611869387274860573681789202950066486187382505128883008062249500676978966764504618650107172278012785432290076319115442449205856974912161312108669937474966242104524030873359806053003960171773683334660972450649395582021793156854226574125457277994941383215133827537052369655515070333984537845888629734219119486063635622292508351705162827915174068498749183954480641198110376679097880814946897208990420217241518160513725538604739636588347068487025444809217362431242293933106501616409487828760259352099
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (134 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/alphasslcasha256g4.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/alphasslcasha256g4'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.10.1.3
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/alphasslcasha256g4.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.city.hiroshima.lg.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'city.hiroshima.lg.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4fcbaca8c2efabdd836f6bbfce983d5c58257615
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							476d4578a727384bab322ece21ff37afa33d79af
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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