www.town.ichikai.tochigi.jp
Issued by GeoTrust DV SSL CA - G3
About this certificate
This digital certificate with serial number 40:ec:fc:a7:31:c7:49:1c:56:84:85:09:b8:ad:aa:0f was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.town.ichikai.tochigi.jp
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 40:ec:fc:a7:31:c7:49:1c:56:84:85:09:b8:ad:aa:0fSerial Number (int): 86301098202577782264113619003037821455
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ad:65:22:85:90:d0:3b:e3:a1:49:8b:37:f9:f1:0b:1d:5f:17:a0:77
Fingerprint (sha1): 3e:28:8b:f0:5a:b5:10:e6:de:7c:49:54:2e:5b:90:b5:2b:9a:b2:f4
Fingerprint (sha256): c3:3d:e9:0f:43:37:c2:15:7c:2e:19:6b:e7:86:73:6f:7c:f5:5b:b8:82:6a:4d:85:6f:dd:ab:1e:14:7e:5a:56
Issuing Certificate URL: http://gt.symcb.com/gt.crt
Revocation information
OCSP Server: http://gt.symcd.comCRL Distribution Point: http://gt.symcb.com/gt.crl
Check the revocation status for certificate www.town.ichikai.tochigi.jp
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.town.ichikai.tochigi.jp
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.town.ichikai.tochigi.jp
town.ichikai.tochigi.jp
town.ichikai.tochigi.jp
Other certificates including the domain name town.ichikai.tochigi.jp
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.town.ichikai.tochigi.jp in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgIQQOz8pzHHSRxWhIUJuK2qDzANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UECxMU RG9tYWluIFZhbGlkYXRlZCBTU0wxIDAeBgNVBAMTF0dlb1RydXN0IERWIFNTTCBD QSAtIEczMB4XDTE3MDMzMDAwMDAwMFoXDTE4MDMzMDIzNTk1OVowJjEkMCIGA1UE Awwbd3d3LnRvd24uaWNoaWthaS50b2NoaWdpLmpwMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAodi9Q8j1VTMGxA2OhVuuRo3UF1Q3pj+cUzBigG1kq1fE /osHjDOdbxtslcWrgkMdDeIVQwJ96zliDtXhFY2LUANY1O7CfrIjhi+JJYNQfd4z wcfJu795IIODo2DOA0gkZ6f3d4zwjLrWYmBJe69Qy4kfGUw0P3ZKpdvme8nzYqQG Q7yoXv6Y31B901WhVy6FHPXjZPk58Aq+kui4q0q00BOv/ey5nnSqEI5427NDlYUE UEYFx6E74Tez3R0zyXlpenRi8xJSB8hyWg5w1yiVJjKg0UoExiwli4qM7lpP3Ede oQerL7gzBHD4NtysgK+LQyKpmaVwXRfoI7c4fSL3YwIDAQABo4ICzTCCAskwPwYD VR0RBDgwNoIbd3d3LnRvd24uaWNoaWthaS50b2NoaWdpLmpwghd0b3duLmljaGlr YWkudG9jaGlnaS5qcDAJBgNVHRMEAjAAMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6 Ly9ndC5zeW1jYi5jb20vZ3QuY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECATCB hDA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNl cy9yZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdl b3RydXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAfBgNVHSMEGDAW gBStZSKFkNA746FJizf58QsdXxegdzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcw AYYTaHR0cDovL2d0LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2d0LnN5 bWNiLmNvbS9ndC5jcnQwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDd6x0reg1P piCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVsek+IvAAAEAwBGMEQCIBRuOE4E e3C8DEbz35/X1qiEzX//WOnsN9jqV4TUT1noAiA4VjtnI1sEmlXWZBe4jLJx9zZ1 Dm7mWO+9GV5D9b/2GQB2AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQ AAABWx6T4ksAAAQDAEcwRQIhALH9fuvgEpgThjYUMQmNdEuZwuSYZboiw60iUtlN VVqmAiAOM11hRgviJnM0tBxlig/4LlJwINayPeM6z4fWB69ycDANBgkqhkiG9w0B AQsFAAOCAQEAn03AnTLa08q3I5ARVjYh1Hctl/BdAdiyoHh8qRgEdrBoLes3rYXT 2Rl6idt9dVZ1suYZjeK7vC10n5rVIcLOwfo0gpQYK+EC6klcmMPd6YT8odb06sVg GHx2bfoIBpzoPZb0YAiuanb8BYQGYRD+Md/QHdaMqHlwYgzvmK2PqOMxZZ1Wx6Ed tNf6xZ77enegBSctFLvkW+KUZrjYfpYvWYGNlGBqKFUkhanexllb7w4H50jVN0Wj Oc1enHje0w4+3m9uZl78IuZ1oQIZ8NyzzPM+Ac2VRnrhsD1rmuNOQtisSa9FvL1c txMu/bwNkVP26PQ/d8HiyvbmJ844qjF4YQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodi9Q8j1VTMGxA2OhVuu Ro3UF1Q3pj+cUzBigG1kq1fE/osHjDOdbxtslcWrgkMdDeIVQwJ96zliDtXhFY2L UANY1O7CfrIjhi+JJYNQfd4zwcfJu795IIODo2DOA0gkZ6f3d4zwjLrWYmBJe69Q y4kfGUw0P3ZKpdvme8nzYqQGQ7yoXv6Y31B901WhVy6FHPXjZPk58Aq+kui4q0q0 0BOv/ey5nnSqEI5427NDlYUEUEYFx6E74Tez3R0zyXlpenRi8xJSB8hyWg5w1yiV JjKg0UoExiwli4qM7lpP3EdeoQerL7gzBHD4NtysgK+LQyKpmaVwXRfoI7c4fSL3 YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 86301098202577782264113619003037821455 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.town.ichikai.tochigi.jp' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20431245239444310461285674273363192274805104437101571503359394035935737606944709726551242601439705074871963315888967002244915527471472002394586672839023148241724070596740294856320467296460978626884579994866005640003813657930702255804725260166763399979527722209239712709952413113829144420850522174812658985387098863676898821229683608584214953599376248754776320693218340035039234447807271756732064033701517254548932786705252858102291164480724271082411490933354530330119722015988105014050643740323554936515026767679485189450460636594189179068018210676562070826404177097494926695929858337824840794760119787889288454272867 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.town.ichikai.tochigi.jp' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'town.ichikai.tochigi.jp' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ad65228590d03be3a1498b37f9f10b1d5f17a077 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015b1e93e22f00000403004630440220146e384e047b70bc0c46f3df9fd7d6a884cd7fff58e9ec37d8ea5784d44f59e8022038563b67235b049a55d66417b88cb271f736750e6ee658efbd195e43f5bff619007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015b1e93e24b0000040300473045022100b1fd7eebe012981386361431098d744b99c2e49865ba22c3ad2252d94d555aa602200e335d61460be2267334b41c658a0ff82e527020d6b23de33acf87d607af7270 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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