DV SSL/TLS Certificate for ichimoto.co.jp

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the ichimoto.co.jp DV SSL/TLS Certificate

This certificate with serial number 05:3e:40:62:15:0c:df:d7:2a:97:89:15:31:b0:37:28:e1:e4 for ichimoto.co.jp was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for ichimoto.co.jp provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:3e:40:62:15:0c:df:d7:2a:97:89:15:31:b0:37:28:e1:e4
Serial Number (int): 456744516271672403901054519355189995561444
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 16:5e:18:25:01:ca:54:ed:bb:f6:07:e4:4d:dc:27:c4:8d:c7:f0:28
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 3d:88:13:db:34:14:76:61:6e:65:dc:d2:16:a0:f8:4b:3b:67:68:7f
Fingerprint (SHA-256): a8:b2:bf:a7:96:49:46:32:ef:b7:af:04:91:8d:f5:97:db:53:a0:b7:13:76:3f:c1:bd:57:cf:b6:f9:ad:01:95

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/101.crl

Check the revocation status for certificate ichimoto.co.jp
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for ichimoto.co.jp

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for ichimoto.co.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0dz2de0GQlPswIImP9e
6HdTTXpRFTCC7yQvLfAdGtatblZYzhwIooNx7MMUMK3CL74++NW2Wip5CF8hEnz2
YWzSPafscB+DNMRdBjbF4oFTaR0dt3akBhpukWMCzTi4+bWFIYOF8y32IIua6835
ODvF+jqbywZ5dfnfPX0s46qR0zrq2peBBwBaBhhrst1SpSE2X83zUe8hoosj7hYM
kYq+uJsbnVfeW49F6iUnQz18zocxmyYKXfsvFvOkqC7DDg4G8+aqQRRNrPN+RXwp
Yb3yLiG5Mcqt0a1wC6AZtv5VuY89aYzT4/7dgJv5aZ6d133ow4iJIwNwaOk8V6UI
wQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 456744516271672403901054519355189995561444
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-16 00:07:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-14 00:07:16 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ichimoto.co.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24651704030428548751396933837331832374996827094663340304614798666053483586078682779494589660199003691683308076527236762110800248175073075638692627624346397971966623779823407979373061209902960969504757560132989188542051371999518759815356681910459019063878447604595518024834811663202791086491220564142766032454248879390957150334528904547536128915810470953234859878933076591792610155834776238072201295277987327247029258871513911345654905223259544272231778067984024477019025121873735285837931093710486831200498422414078277622422574194329670145335848172877072863581493210297446401262409257236139774333026198392059946404033
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							165e182501ca54edbbf607e44ddc27c48dc7f028
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ichimoto.co.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ichimoto.co.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/101.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a0000019810c427d7000004030047304502201c8690b0e3afd65765da925bf1f9150a837395fce9a2a4bb4d65b9ca81361117022100bbf5381eadd9be79321af93d749a93894cbc34974f508e71261b82e05a4a16d70076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa340000019810c42fa8000004030047304502210085cd0e84e6f3771bddd6c6bd74dbe71258567eb9c457a1c823e69ec63e3290840220556a2119513aac7f3b98feb745d054923dd79285ceabea7a38c5e8863dd08b94
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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