www.josa.or.jp

Issued by GlobalSign Domain Validation CA - SHA256 - G2

About this certificate

This digital certificate with serial number 17:31:68:0e:07:2c:e9:6e:d9:78:41:0f was issued on by GlobalSign nv-sa.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.josa.or.jp,OU=Domain Control Validated,C=JP

GlobalSign nv-sa

Organization: GlobalSign nv-sa
Country: BE

This certificate has expire since

Certificate Details

Serial Number (hex): 17:31:68:0e:07:2c:e9:6e:d9:78:41:0f
Serial Number (int): 7177883975937733604811489551
Serial Number lenght: 93 bits, 12 octets

SubjectKeyId: 76:95:d4:c2:c1:e5:ac:0f:21:5d:cc:8a:34:fd:91:d5:5b:86:ad:7b
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f

Fingerprint (sha1): 27:d1:b4:2e:12:5f:27:55:01:f7:01:df:fb:64:b7:94:c3:1b:05:c3
Fingerprint (sha256): b3:cd:d9:95:42:c2:ca:5d:48:24:59:9c:6a:1f:a6:c1:3c:dd:f7:66:8d:a1:e5:53:02:f5:3d:21:2d:4a:6b:c8

Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt

Revocation information

OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2
CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl

Check the revocation status for certificate www.josa.or.jp

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.josa.or.jp

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.josa.or.jp
josa.or.jp

Other certificates including the domain name josa.or.jp

(limited to 100 certificates)
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp
www.josa.or.jp

Certificate

The complete raw certificate details for www.josa.or.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6AQoeFWx90PTJFzYPf74
v7CgbJMd/6zKJ+4TALROyQkymWqSZh39wxsgn6n+wPqsTRFLlRmVowqv4hk2NE+e
s3EA1IqoIzXMGPYwfvz1OaUdWeVn5kaIstQYPupQAocGZoCnmmp+G02uhIMXIghF
TzIgjKy2yp/cWnI0K99nOpLRP+Un3UbNnb9q5ugQdjJBXvdibLQuDY9ougRMAffw
D6ytKUZY4jiuSMvFollllFvkLoska+FRU/iM15InVWI8ZQXWpZqhWtd7tfACWvK6
Dg9xj/HgLCBB4aly4c8NAi9a7SOXCswCArutox9Z/gtXrTaIe4Esp6Gre0kr4WzI
mQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7177883975937733604811489551
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-10 02:10:11 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-13 00:47:41 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.josa.or.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29289337180832862565276378396896735267077263337133697012883262097337494528161820631835743509775802265004915954944565101724578355222039051836029194357179138292089843621653165640577180779531471077482585208649493433112226243196131351401310671276731991661168194992723645148205312902338255630940224613486356359217755437679790600490621839579972169550492992013165898870599338238656872290990603729944302281168332169242329457400255196245871878770720080269736355478972582694984227542910489850626181756600833301211261424650020747665927452246524046353361215089474270090703072641886355407303375401209165031119150237116335592884377
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.10 (globalsignDVPolicy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.josa.or.jp'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'josa.or.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7695d4c2c1e5ac0f215dcc8a34fd91d55b86ad7b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (606 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (602 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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