DV SSL/TLS Certificate for justinhanna.nyc

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the justinhanna.nyc DV SSL/TLS Certificate

This certificate with serial number 05:fe:9d:e7:f1:52:1c:c2:f9:20:0a:c7:cf:56:2c:a9:b7:11 for justinhanna.nyc was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for justinhanna.nyc provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:fe:9d:e7:f1:52:1c:c2:f9:20:0a:c7:cf:56:2c:a9:b7:11
Serial Number (int): 522203043967198481384611313669720983058193
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 81:8e:f2:35:9b:b9:8f:26:3f:86:c9:c6:9f:8f:72:d9:89:2c:30:0d
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): dc:b8:0c:70:5e:e1:8e:a7:95:92:82:66:60:75:da:53:24:48:dd:5c
Fingerprint (SHA-256): 20:ae:1d:20:d9:17:20:0a:ab:b3:16:d1:c1:7d:56:76:6a:15:e8:cf:3e:27:b7:ca:3a:9b:cc:ee:ee:52:58:a2

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/18.crl

Check the revocation status for certificate justinhanna.nyc
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for justinhanna.nyc

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

justinhanna.nyc

X.509 Certificate

The complete raw X.509 certificate details for justinhanna.nyc in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdKr6bvWVdza0nAKAxj9
1UlVMMA+08xs1vSqoq6l2SgrE1cZAdoGb+hUqxDmwIRxzdYl9fZTfecgthjMTVJT
6Kkyhq2vtidj+hOHscKs4stntlvVofzQEKHBxFR8omFen1tgclnZou+EQd4QCPBl
Y+ZUcBT7+sNp6NJcj9sDN4ayJ6wzggbnzAH5BJUW23XKSjOGcLtCJUS2sikVe70i
9y909J9xM56Fyw5BHAqAC/puLd7qFN4/UIsjkI04aAdOe2twCrOgQijfuF7k+5I2
FyGU04Wh5TaLfRjjuVlVJt1tJQb4RampMSdNvvsys/OV9O46yeQ4/dYzFs6NlmXU
3QIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 522203043967198481384611313669720983058193
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-02 02:15:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-30 02:15:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'justinhanna.nyc'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16388627346534756098485514498270537851734754744971039922376947618867771001095578971617604980165352047245893888425763152771978020599365998424302324408092741958140964079979414779779906578841307183659579639424333863619330275563510762317077160559527145173435657997672785962731230488261606256546374559210923376378175634689786859917833517356114385174945739762571013150513378033828177701122713224329574281832015684352223681274860485795331230182257185598223765936978664745681292084439539011250262831964993106818850064809315437687854667740395532195334445944593420734570887207316304092447912659305265825259813629145666587841757
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							818ef2359bb98f263f86c9c69f8f72d9892c300d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'justinhanna.nyc'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/18.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197c920cf12000004030046304402207f3b9ae4dcdb5c25c422a2e6cb4b01932c295a1fe2024e697ed84ca06ac1e8b1022059664ebb15d1f541513737ae7e16ba14f79e922f93ecb6924d885de3abea7d11007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197c920d0100000040300473045022100aa2885122763d5bb3156aa9c904a339c9315672b300b27c0b37d7f0e03692003022037105127cbb9d7dd84a9622b11223539df549573ccd7bbd0da70b7486b024e80
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004925a69a424579fb202f2e16c64921c48b861a63ded8efe841483be6406abf75ed72e028c83bdea7f1af95e8e0496122971cab9b649f8ad3e60fdb9477bf4d91e3af74043b13a3873eede866db56c08e05d054f3e1b7b3992059b543167e3db5f2cde615a8c8f7c4aa9074e145e18140105c97702f3d2b240eee4dc92e278c2309b1d5d8938c3e562a10a296cfca0495ccf6c90f744a3cc5b4064d7815b76e82070486f0532bc62c366985b7e84e4346d792d8de27fc8aa16333546e6b649e0472d9cca9b8cb53dc3ea981f3cdb765e7d29f16207f2061455bfcd800552da0bf3677d5637f57e7666843f7322a240662103ef98358166c45f5da044b952d1424