DV SSL/TLS Certificate for www.stlfkc.org

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.stlfkc.org DV SSL/TLS Certificate

This certificate with serial number 06:84:88:59:42:ee:ce:52:69:e3:3d:5f:af:9e:d0:31:4e:47 for www.stlfkc.org was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.stlfkc.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:84:88:59:42:ee:ce:52:69:e3:3d:5f:af:9e:d0:31:4e:47
Serial Number (int): 567772226503531705278668582034593029377607
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: db:42:8e:50:52:f0:69:82:2f:39:b9:b5:b7:50:85:c7:b1:0a:a2:fe
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): ec:eb:c2:c2:7a:89:80:3e:dd:5f:43:ea:ae:7e:0d:f7:78:cf:8f:e1
Fingerprint (SHA-256): 27:2d:b5:15:46:92:39:a9:2d:ae:9e:82:33:9c:82:e2:23:c5:ab:6c:2d:4b:50:33:b6:a9:0d:19:c2:48:13:15

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/72.crl

Check the revocation status for certificate www.stlfkc.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.stlfkc.org

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.stlfkc.org

X.509 Certificate

The complete raw X.509 certificate details for www.stlfkc.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA88GFxWQ56CaRIPHuVFC1
QUd5LtJF3uPNd6nfEAmtqtnrelDsRPWyUOjI22XmJhuVUKE1Wagpea4Tz0+Yup7Q
Q8jI7CbrmF1I1phlRdrNvNHNGFIcnuIwBFPtRRvungsfrSqsFIo5Dr1vsfQfWvg2
n5hL9/r6CBsJK+Gdd1H1SxiAUjouC9QOllzLPWpASvcXeGThhMkePioGqVVW+63u
dmUWtNKIkIi4e2pExhJkqTyY4kJmrWze7BHhTagphIQhsfUbJGTa1Y4jebnoNXDK
s+1Nj48zJWE8dyFP5WCA60U76ODdjM6ofcOQzL7A1NEJSzxo/wVC49sUIpUs60df
euOE0iw70wJ2zAGRysFmKgp//xhRZ3obntYww+1f5DPTgChbGxV+6Y61MXE8v7ek
fzjQqFAQerHth+0HI34h+ZcdAdFirYau5vriJRgwZVNXoR3Rz8emHTin7D4lFaYm
vAjDQ6cw8F4+cfdm4hES18e0A2P7xusNrCFvX5z+/fCgBCAskGaq8U2xDT+QqBTa
Ah8mmv/kQg+qgAHo0+hWY3kbSqGJW5qImaujKLGWxHvEC5v2xqx/1y82yrZY/NbG
5sIVh9fJM784j2WOBLJjpI5j6l1ZrUooihOLuAhBQJ7J6Td6BGgK6FN6ErU84ZLh
KUVoTqNLm74hBycVrLfUqHMCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 567772226503531705278668582034593029377607
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-29 18:33:50 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-27 18:33:49 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.stlfkc.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 994437504995359790846910261276346168368698213576849878496533195938634566894821163476258881363305053737033206403946509257717011121576909336330914913613491864881908770961906288586368642320525926522010807073667476833066996973929920696115237520506422935694461611259245083687037590909567615213529804414023973072765768501793169096816615050092447868001860377686663868250720332232618137875586641538287975786868197369374498650894699977697463882174408145349479622075757275375004596290229948213734352992146568062772146726062359824945396747130538669391069332190044563823416884102493728391586312418767017446343889280581155118878107790026633037099403729264729831887284195040020821527934788091706377594995931763711174257576439896185954903900574494615792521242510315210209273632104114670801887285426123662677721755140970681515243994272054454962987450360245223049708568159817425061267293360406989226085695200134665752226270895983289270131824951307029213769049152985703515624409518433856337999143919568890203360798757571262280080468667303759144199419144143035834222507023842865577936043854271122641622118829765829501656074273814303066019819332011431693600533317858381164923051232877113239490400449612115468718997370734058196134062000655803016331700339
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							db428e5052f069822f39b9b5b75085c7b10aa2fe
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stlfkc.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/72.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db0000001971d87fdee000004030047304502210083e53a16b3f5ea7453931155767bcd9653fe1859966ca5a3540a357d572c9f5d022040ea0962abb20066767fbbc6ed9c70afca66b1ecfbdbbba5c9f6185be0008d1a00760012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a000001971d87fddb0000040300473045022100bab0c79866eb0010d954625fc00e8d62b91019c6d0ee2f33db4da0905e716b9202204f446e5c9b595e6a50c4ca97cfe3214277016f0bdef6a28139d18196e0ff606b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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