FujiSSLECCExtendedValidationSecureSiteCA.crt: CN=FujiSSL ECC Extended Validation Secure Site CA,OU=Controlled by Sectigo exclusively for Nijimo K.K.,O=Nijimo K.K.,L=Shibuya-ku,ST=Tokyo,C=JP

Page content

CA Certificate Basic Information

This certificate is intermediate certificate used for the issuance of other certificates.

  • Certificate download URL: http://nijimo.crt.sectigo.com/FujiSSLECCExtendedValidationSecureSiteCA.crt (DER format)
  • Serial number: 219619059367254096477462584166739464215
  • SHA-1 Fingerprint: 663f329ad73dfe46ee30b1ad306e1c65ce23d343
  • SHA-1 Fingerprint: 66:3f:32:9a:d7:3d:fe:46:ee:30:b1:ad:30:6e:1c:65:ce:23:d3:43
  • SHA-256 Fingerprint: 143dfe65832e203e4d28ec30fb60ba73bee3aeee308a3f8d194bb61e7d1d9bc0
  • SHA-256 Fingerprint: 14:3d:fe:65:83:2e:20:3e:4d:28:ec:30:fb:60:ba:73:be:e3:ae:ee:30:8a:3f:8d:19:4b:b6:1e:7d:1d:9b:c0
  • Signature hash algorithm: sha384
  • Subject: CN=FujiSSL ECC Extended Validation Secure Site CA,OU=Controlled by Sectigo exclusively for Nijimo K.K.,O=Nijimo K.K.,L=Shibuya-ku,ST=Tokyo,C=JP
  • Not valid before: 2019-05-15 00:00:00
  • Not valid after: 2029-05-14 23:59:59
  • Issuer:

Download certificate through curl:

curl -sSL http://nijimo.crt.sectigo.com/FujiSSLECCExtendedValidationSecureSiteCA.crt --output cert.crt

Download certificate through wget:

wget -q http://nijimo.crt.sectigo.com/FujiSSLECCExtendedValidationSecureSiteCA.crt --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a5:39:17:9f:9e:ac:fe:79:9b:03:38:bc:c0:8d:d0:17
    Signature Algorithm: ecdsa-with-SHA384
        Issuer: C=US, ST=New Jersey, L=Jersey City, O=The USERTRUST Network, CN=USERTrust ECC Certification Authority
        Validity
            Not Before: May 15 00:00:00 2019 GMT
            Not After : May 14 23:59:59 2029 GMT
        Subject: C=JP, ST=Tokyo, L=Shibuya-ku, O=Nijimo K.K., OU=Controlled by Sectigo exclusively for Nijimo K.K., CN=FujiSSL ECC Extended Validation Secure Site CA
        Subject Public Key Info:
            Public Key Algorithm: id-ecPublicKey
                Public-Key: (256 bit)
                pub: 
                    04:dd:6b:1e:f1:5c:d7:3b:a4:42:7c:00:7a:72:f4:
                    28:f2:1c:8f:76:d9:92:94:e0:28:da:c1:e4:51:fc:
                    21:11:b0:26:b0:9e:2e:44:a6:c9:bd:d2:7c:2f:a5:
                    45:5e:39:b4:20:97:49:25:19:9f:ad:e5:ee:8d:94:
                    b0:4d:0e:87:1b
                ASN1 OID: prime256v1
                NIST CURVE: P-256
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                keyid:3A:E1:09:86:D4:CF:19:C2:96:76:74:49:76:DC:E0:35:C6:63:63:9A

            X509v3 Subject Key Identifier: 
                33:EF:4A:29:16:DD:53:27:51:51:DD:0E:11:4F:F3:12:E3:11:E7:EA
            X509v3 Key Usage: critical
                Digital Signature, Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: X509v3 Any Policy
                  CPS: https://sectigo.com/CPS

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.usertrust.com/USERTrustECCCertificationAuthority.crl

            Authority Information Access: 
                CA Issuers - URI:http://crt.usertrust.com/USERTrustECCAddTrustCA.crt
                OCSP - URI:http://ocsp.usertrust.com

    Signature Algorithm: ecdsa-with-SHA384
         30:64:02:30:29:ad:d9:27:d5:9e:dc:0f:d1:cd:22:1f:c5:02:
         66:6f:ba:48:5a:1a:78:a9:27:bf:e8:9b:5c:6d:28:9f:0d:84:
         df:71:61:16:78:ca:83:af:70:0e:5a:a1:88:e8:22:e6:02:30:
         64:8d:6d:6c:ed:2e:e6:d9:3a:51:0d:a3:68:16:31:e9:08:38:
         b9:29:78:db:80:a5:0f:38:8c:b5:0f:f4:b9:a4:1d:ab:9f:96:
         8f:7a:d9:7a:28:cd:69:86:8d:b6:3d:cb

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List


Page version: a651bdd 2022-03-26