DV SSL/TLS Certificate for communitylight.org

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the communitylight.org DV SSL/TLS Certificate

This certificate with serial number 05:6a:27:a1:35:d8:ae:4a:1f:0e:dc:5b:5c:ee:78:d2:28:7e for communitylight.org was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for communitylight.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:6a:27:a1:35:d8:ae:4a:1f:0e:dc:5b:5c:ee:78:d2:28:7e
Serial Number (int): 471684037496185478282035336472698989717630
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 56:04:f7:71:d2:e4:4f:8e:28:9e:05:f0:3c:c5:47:d4:44:ff:39:7c
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 6f:88:a9:59:8d:6b:7a:b2:ca:1f:0d:46:ce:80:74:1c:e3:75:49:53
Fingerprint (SHA-256): 07:e1:9f:1f:29:b0:eb:15:2f:32:a5:8c:a5:40:67:c8:7c:c5:7d:14:9b:e8:16:cd:c8:d6:08:e5:d4:03:ca:bd

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/127.crl

Check the revocation status for certificate communitylight.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for communitylight.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

communitylight.org

X.509 Certificate

The complete raw X.509 certificate details for communitylight.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVukpqSyyfPQN6vRwgyi
8pbCOzNl6/h75B2d1cgzum/h01rL9u61HX7JycqycTGl96uTbbThmmMYOihYisKE
3IDPJTKyxEdNTBswUNIRNT7vSRsHc+Xo+sg1RGqZTW2de/n4qHzxKz1IF/18ui1z
xLtkMwkVWdb5BnNmpdmwaXkz6GrimjbVOQ14m3D/ciVFkPUb8k/mLwG/gEKJdwkp
yKyWlXL+cNcrUKiePvpBQkPq8xvxUPvfYQPM01r2mmYF2PVJlZSgEHNRcrBA2bwJ
a6lanuT2ZTg7+mqPkRvhvWeVy9K685MCkk3hvR3cd9EFj29HbleykrKYyVJi0A30
RQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 471684037496185478282035336472698989717630
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-08 16:45:10 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-06 16:45:09 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'communitylight.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18349745150397772845848170541041612385104559704645061111756013065441702406272060539957353675202715916473668060212455909047804585872212184261219490391274006114546268221004262012967646195926900418298664989395463743731219359796071647603291778360099084444861218428406543531372079296555143581530907678876270489432823734465021791052199984416817559404468363240085186970841187376378014924007139631538595559342162361296606851511216016058718873414911112980248038214911381974900173640158561567219716707796441116481068315862575825404944503303712666597464277347120640419263042823393443002656228899758877872158841028255283395032133
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							5604f771d2e44f8e289e05f03cc547d444ff397c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'communitylight.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/127.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a84540000019750a418ba00000403004730450221009621c5559ebd77831b99984af0e152633e76ea309755a8bccfc2df088c42102402203e7b66dcd696b4a4a8f94c723859b3993c316d6b8edb281c97cc7388a97ba2e3007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a0000019750a418fa000004030047304502200b75798a4c11e96cecaed938aca06165398d8875f42a14b0b98f9c32c380c9db022100a4c1aeebfee2e2a6ca6acdea3dd6e5711c0f3f07b0e5fef362941d2c8befb839
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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