DV SSL/TLS Certificate for www.saintstephenschoolfoundation.org

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.saintstephenschoolfoundation.org DV SSL/TLS Certificate

This certificate with serial number 06:74:d2:ce:0f:6d:9c:37:0b:38:be:53:10:c0:ca:29:45:58 for www.saintstephenschoolfoundation.org was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.saintstephenschoolfoundation.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:74:d2:ce:0f:6d:9c:37:0b:38:be:53:10:c0:ca:29:45:58
Serial Number (int): 562426677958578392123570969337818828588376
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 6c:80:f9:ab:a9:aa:0e:b1:c7:f4:8d:d8:ff:3f:a5:64:08:ae:d9:cd
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 0e:4f:2d:57:17:65:ef:aa:f2:3c:de:d7:b7:ac:f7:ca:c4:48:23:c4
Fingerprint (SHA-256): 3a:40:bb:2d:27:09:1e:3e:da:55:1e:00:c6:c3:4b:2a:51:1c:2f:1a:47:c7:98:3f:9c:7e:36:42:19:ba:05:bd

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/89.crl

Check the revocation status for certificate www.saintstephenschoolfoundation.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.saintstephenschoolfoundation.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.saintstephenschoolfoundation.org

X.509 Certificate

The complete raw X.509 certificate details for www.saintstephenschoolfoundation.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGPMLkZBXMxfn9LN/dcb
qrOpiO9lHmSiKgxDJt8KFp6n5CgN6JCOerquhOhBwoD0HW0IGsEtg0O2m9mqGQn8
q9KEpW75Y10y9GzH+JKMOwPJUBRe1UPLkSV/Qd+CAJS5fLE6nGtj2oKWCVlJruU5
Re/kW6PeC3JXB03Mi6AQ++LCfJvTpaDAR8PMhQZdGVzHhj5NdGM6lk2VTMei0WX5
hC/vYl0+NBj1k469DhQjEeMlI1k0dqYNt5scyXwdedsU3FmlJVofPGplakpF5NQL
9zYTrCSWCZ8nY24gBESMtxY33leHoGmaZudbRUViW3D76WOZGnthN7FF2BxEJinl
YwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 562426677958578392123570969337818828588376
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-07 14:55:10 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-05 14:55:09 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.saintstephenschoolfoundation.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21762200475555624882196592881009435190366968933316553968457144468427668183500178516343914914484038511636303234618793644106407459963893513398919900781520432322294802700361381489672084791580900690682143439853468286153345046048881415223965836823060968635663428019184746119053408611869001344721102590907098084855834349304461606857531043973463336401791065004610034189361350331444158658291827519635012778886292698992754232711215000094758696020426273085666470749077596698080701573785171016605572587004343294251979085795132310505842351841512123824556696936088323170661124735551632050719823507500281667933252783185460520936803
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6c80f9aba9aa0eb1c7f48dd8ff3fa56408aed9cd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.saintstephenschoolfoundation.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/89.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000196ab73e4810000040300473045022100e619db095ca9c7e1f151cf623bae10ac9082a6745fced6beabc47bf33511bd3e02201856f2ec936380cd89c8ba24a5aa50d75f49d97fcefb500941b5464ad342db0d007500dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196ab73e50300000403004630440220201ff6218039ac3851c7e2bf8786d9fefb360f7ff836282289c155cfe4b0079b02203a4cf408b1cd23e048c4afda1f8ac189941d6dd0056a36bc460ded267956c05f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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