OV SSL/TLS Certificate for www.visitnara.jp Issued to Nara Prefectural government

Certificate is witin its validity period

Issued by GlobalSign nv-sa (GlobalSign RSA OV SSL CA 2018)

About the www.visitnara.jp OV SSL/TLS Certificate

This certificate with serial number 32:63:2d:17:b6:97:2a:04:72:64:7b:da for www.visitnara.jp was issued on by GlobalSign nv-sa.

This OV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this OV SSL/TLS Certificate review for www.visitnara.jp provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

GlobalSign nv-sa

Organization: GlobalSign nv-sa
Country: BE

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 32:63:2d:17:b6:97:2a:04:72:64:7b:da
Serial Number (int): 15594147091132975588862884826
Serial Number Length: 94 bits, 12 octets

Subject Key Identifier: 7b:ac:c5:a3:21:a8:a8:b0:7a:d8:5e:cf:53:b7:94:5e:ac:9d:3c:bd
Authority Key Identifier: f8:ef:7f:f2:cd:78:67:a8:de:6f:8f:24:8d:88:f1:87:03:02:b3:eb

Fingerprint (SHA-1): f6:d3:fd:3f:9b:9b:01:f7:05:06:ed:bd:7c:ba:bf:67:e0:be:a8:aa
Fingerprint (SHA-256): 54:ef:4a:9f:76:cf:a7:12:53:3c:49:62:a3:1f:ae:ae:18:96:6b:40:87:0e:26:4e:fc:d2:f6:9c:66:a9:e4:86

Issuing Certificate URL: http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt

Revocation Information

OCSP Server: http://ocsp.globalsign.com/gsrsaovsslca2018
CRL Distribution Point: http://crl.globalsign.com/gsrsaovsslca2018.crl

Check the revocation status for certificate www.visitnara.jp
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.visitnara.jp

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.visitnara.jp

X.509 Certificate

The complete raw X.509 certificate details for www.visitnara.jp in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt26eRdPLwepzlM0lwIpl
DBo6AlijGlx4IbZjUEmrE5lgpdE8QnMfOuik7tNgMPEhwzyYHO06htdk4c3bB6TT
xv2l4yfXGFzdovydqHKyqo52PtFieyET5ozjYSEnyJwRsIRYwVXJM7wbYC6lW/gi
WfemYyEaF+0gLqD2DzsgU3uE4aXkqv12o/ZhTYzvHfJXhZ6sQfQHIqdnho4Hgtrr
xBBC5ODQYkKWxmPSpxfWK9p4mZJ+IhQ6fabwDHIS/vCPX1RaaHp+U1NXgAf3OIS9
Ppvy1w9AQW94Ugl2UR8TjfL3mpddYCpGSOzFX8A1OpLn1yGUeEJdL+ZJHdAunSdC
DwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15594147091132975588862884826
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign RSA OV SSL CA 2018'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-26 04:41:10 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-01-27 04:41:09 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'JP'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nara Prefecture'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nara City'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Nara Prefectural government'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.visitnara.jp'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23156157702361230741306326631155803912680591786109882658259813933266935999235652021203959418130202578402638283557616788510830116511257089476629190393308231705100931757573675833352391272520583603712241881092985350479983918388103448822317998134595071473017620680883125182108866851058989846536596955504095341319530092627555778399536458969466741714145139175388179061103123739415135341374655096338015639963255968714079560309926337061938193379245467262777910739137471538071747018084441418278607929572718698456787107399968247658467436019385435839114911503839111410476151618320743951499831125600484122748147331207131719746063
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (129 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsrsaovsslca2018.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.globalsign.com/gsrsaovsslca2018'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.4146.1.20
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsrsaovsslca2018.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.visitnara.jp'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f8ef7ff2cd7867a8de6f8f248d88f1870302b3eb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7bacc5a321a8a8b07ad85ecf53b7945eac9d3cbd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							01690076006411c46ca412eca7891ca2022e00bcab4f2807d41e3527abeafed503c97dcdf0000001940144c91b0000040300473045022100b00622489b824d54fe6fe1346b350d5b112043a170be1d07be624b3d973374c102203fb57f3fcc90e364a5910f84e1bc1eb849c701098f81450f05652fd7032b91c6007600566cd5a376be83dfe342b675c49c232498a769bac382cbab49a3877d9ab32d01000001940144ca5f0000040300473045022100ce19d327a783460e40d59cf0a6539b3b960c0e3b7aa93b136269a93662dc6a9102203bc3aa390c12697063693c654b3a6239283b3009659304a326453d7930e5ccc00077000e5794bcf3aea93e331b2c9907b3f790df9bc23d713225dd21a925ac61c54e21000001940144ca800000040300483046022100ba5c9c66bee8d16ee30a6e3df5609e44476a594ba86696899265a26a51a263db02210080ec2c2a1ec87459d08ac0e1367415ede7c0b30069eb708aedc98cfc11c5ded9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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