DV SSL/TLS Certificate for www.justinhanna.nyc

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.justinhanna.nyc DV SSL/TLS Certificate

This certificate with serial number 05:9d:87:ab:6d:0c:ea:40:da:58:f3:89:9f:b2:67:41:a2:a4 for www.justinhanna.nyc was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.justinhanna.nyc provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:9d:87:ab:6d:0c:ea:40:da:58:f3:89:9f:b2:67:41:a2:a4
Serial Number (int): 489166097139388227738106457368263468884644
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 86:50:30:f7:c2:36:23:c7:14:28:0f:88:c8:99:d6:f4:70:af:bb:cd
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 93:2c:2b:16:d1:4b:ce:f9:e1:9d:4c:2a:88:1f:09:e1:2e:6c:25:59
Fingerprint (SHA-256): ba:2d:60:14:95:ab:2c:ce:2b:59:bd:44:f9:55:98:2d:04:1f:38:6d:6f:b1:a7:96:f2:89:0c:cc:54:b5:99:04

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/37.crl

Check the revocation status for certificate www.justinhanna.nyc
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.justinhanna.nyc

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.justinhanna.nyc

X.509 Certificate

The complete raw X.509 certificate details for www.justinhanna.nyc in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISBZ2Hq20M6kDaWPOJn7JnQaKkMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNzA0MDU1MjU0WhcNMjUxMDAyMDU1MjUzWjAeMRwwGgYDVQQD
ExN3d3cuanVzdGluaGFubmEubnljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2VkUV0VxbUPvz3SRLT2VkvBzfcPicBpZE+kyJ1+umnl9U8Ify6R/cbnb
aL+E9P8mY0QVbPOkWAgkhb3EjgrXu6C5CAaySOqcBsQGEr4uy40/NptLEIDa9SzD
KzdkRzW7VYALvAOnHTdzYCq1Gpd8LhiyHRZ5XBuqugtefsmaIzSx5LfjrUwqoo/i
0f9ErtMA5+xWwHhk+ERA4NAK0NbwJ/lAcirR9Ig9Zf6JYQW4IlaU9yGVtQ6gExlH
9ZkOx12QC5IojBud2n74XHe3eJ3xU4lMr/WTcX799uhhXZj8NJV1QHCkIAFkKdO0
+0G+oSCP/JrRc12EnsszGuldEOpaUwIDAQABo4ICIzCCAh8wDgYDVR0PAQH/BAQD
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA
MB0GA1UdDgQWBBSGUDD3wjYjxxQoD4jImdb0cK+7zTAfBgNVHSMEGDAWgBS7vMNH
peS8qcbDpHIMEI2iNeHI6DAzBggrBgEFBQcBAQQnMCUwIwYIKwYBBQUHMAKGF2h0
dHA6Ly9yMTAuaS5sZW5jci5vcmcvMB4GA1UdEQQXMBWCE3d3dy5qdXN0aW5oYW5u
YS5ueWMwEwYDVR0gBAwwCjAIBgZngQwBAgEwLgYDVR0fBCcwJTAjoCGgH4YdaHR0
cDovL3IxMC5jLmxlbmNyLm9yZy8zNy5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHy
APAAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZfUNEVcAAAE
AwBHMEUCICL5PlUyRnn+cYYWNQ63fxSHo+E/NyWFY+SxjCZdhq9TAiEAg82zaR1B
pbpzwfjSUHLhORxdBwjQx7vgQ8HDomDnJxoAdgDM+w9qhXEJZf6Vm1PO6bJ8IumF
XA2XjbapflTA/kwNsAAAAZfUNFUKAAAEAwBHMEUCIQDCuPN1eMXEEOWt0ma4q8zV
kNzP2hp1TFwtoyM4hY4sgwIgBsEmAJSThMuuRDVP1b+KcfS1m1X4gM5wDJF9wJkv
7QcwDQYJKoZIhvcNAQELBQADggEBAIL4/9VPcR8//YjYKt+654ojpxogSPLFFkPr
xVg6rK+uRTv1mEveZwbBwVH4rKhu8hz9vY/vzYcUG7hfy5rolmuoDUnQGN7SeGmk
maQ8FYxckTLjzJjIMnOhqIbVYEeFpv4F1wNvh5Ix+0sBwWt8rYuuYQPGhy3eWipG
H7nsg1NrjEtn0ln7fMId4Bsf1B1688fx8VzWJZ1TOfl6dMiIrPTJxw1xh23xWOIB
JlHnBtD/xoDN6szMR/aeSxa3xTvNVt8elpXpObMc7BLolgQ8mv6T9GEdl9N8L5Wk
cK0qOSnANz7FTuY5/nNenBlDXDaQbzxg2d8CFoVyZPPa7BIAIEY=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VkUV0VxbUPvz3SRLT2V
kvBzfcPicBpZE+kyJ1+umnl9U8Ify6R/cbnbaL+E9P8mY0QVbPOkWAgkhb3EjgrX
u6C5CAaySOqcBsQGEr4uy40/NptLEIDa9SzDKzdkRzW7VYALvAOnHTdzYCq1Gpd8
LhiyHRZ5XBuqugtefsmaIzSx5LfjrUwqoo/i0f9ErtMA5+xWwHhk+ERA4NAK0Nbw
J/lAcirR9Ig9Zf6JYQW4IlaU9yGVtQ6gExlH9ZkOx12QC5IojBud2n74XHe3eJ3x
U4lMr/WTcX799uhhXZj8NJV1QHCkIAFkKdO0+0G+oSCP/JrRc12EnsszGuldEOpa
UwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 489166097139388227738106457368263468884644
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-04 05:52:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-02 05:52:53 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.justinhanna.nyc'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27437638894881871219893502293029573463999364589100296287079291962877858622117879740416317368371730748376779009928669313891656417032430382848427192870312530384852329450903524445797097799141400869030126042814638816110297513982894927595495253348873441781867756869313969573644699160679929413992196939396112692008154906930675690387738763121014759414485469638517690750243390268329726709729478433384607553270023120507903903505493567053069026781609738202394916929176238835885508236530786590227446864442112288235526886511269153663240540539844322013559797285786213578842369800257092123175251766255724723067569004331479564180051
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							865030f7c23623c714280f88c899d6f470afbbcd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.justinhanna.nyc'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/37.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076007d591e12e1782a7b1c61677c5efdf8d0875c14a04e959eb9032fd90e8c2e79b800000197d434455c0000040300473045022022f93e55324679fe718616350eb77f1487a3e13f37258563e4b18c265d86af5302210083cdb3691d41a5ba73c1f8d25072e1391c5d0708d0c7bbe043c1c3a260e7271a007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197d434550a0000040300473045022100c2b8f37578c5c410e5add266b8abccd590dccfda1a754c5c2da32338858e2c83022006c12600949384cbae44354fd5bf8a71f4b59b55f880ce700c917dc0992fed07
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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