コカ・コーラのサイトで、ユーザ登録の際
当然SSLサイトに切り替わったので、
https://reg.cocacola.co.jp/
証明書を確認したら、OU に面白いのが入ってた。
OU=IBM HTTP Server1
$openssl s_client -connect reg.cocacola.co.jp:443
CONNECTED(00000003)
depth=3 C = US, O = "VeriSign, Inc.", OU = Class 3 Public Primary Certification Authority
verify error:num=19:self signed certificate in certificate chain
verify return:0
---
Certificate chain
0 s:/C=JP/ST=Tokyo/L=Shibuya-ku/O=Coca-Cola Japan Company Limited/OU=IBM HTTP Server2/CN=reg.cocacola.co.jp
i:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure Server CA - G3
1 s:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure Server CA - G3
i:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5
2 s:/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Primary Certification Authority - G5
i:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
3 s:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
i:/C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=JP/ST=Tokyo/L=Shibuya-ku/O=Coca-Cola Japan Company Limited/OU=IBM HTTP Server2/CN=reg.cocacola.co.jp
issuer=/C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=Terms of use at https://www.verisign.com/rpa (c)10/CN=VeriSign Class 3 Secure Server CA - G3
---
No client certificate CA names sent
---
SSL handshake has read 4805 bytes and written 510 bytes
---
New, TLSv1/SSLv3, Cipher is DES-CBC3-SHA
Server public key is 1024 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : DES-CBC3-SHA
Session-ID: 7050000044A3565302B26C1D7B983A48DE50713F58585858EBC39E4F974C0200
Session-ID-ctx:
Master-Key: DD8A75E236BEDCC4DFCF236B97AF0DA210A5ADEC46F25AA56F209A7D39A063716EBCE6A28F779555518090DFAE1B402E
Key-Arg : None
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1335804900
Timeout : 300 (sec)
Verify return code: 19 (self signed certificate in certificate chain)
---
$