DV SSL/TLS Certificate for www.newhavenstakeyouth.org

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.newhavenstakeyouth.org DV SSL/TLS Certificate

This certificate with serial number 05:d6:4a:6b:1b:01:d8:0f:22:d2:25:42:05:90:62:56:f8:02 for www.newhavenstakeyouth.org was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.newhavenstakeyouth.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:d6:4a:6b:1b:01:d8:0f:22:d2:25:42:05:90:62:56:f8:02
Serial Number (int): 508480775175105165936987829914573674575874
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: d4:96:f0:27:4d:4f:76:cc:63:04:6f:18:00:dd:d4:b4:6f:0e:96:88
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 42:be:ea:cf:a8:b9:36:95:52:5b:1d:8e:76:db:41:bd:53:42:69:5b
Fingerprint (SHA-256): b9:e4:1a:3e:f1:a2:d7:3d:b6:2b:c9:9b:68:04:5f:ef:15:98:d8:44:71:87:90:32:a2:38:2f:04:a2:b1:23:76

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/3.crl

Check the revocation status for certificate www.newhavenstakeyouth.org
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.newhavenstakeyouth.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.newhavenstakeyouth.org

X.509 Certificate

The complete raw X.509 certificate details for www.newhavenstakeyouth.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2E7kJl30ZpEJOyXeHYK
MP6n/3XF1mod5XxCZ69r94suuf7h03U/fLT8h0sAzM1oPZ2Tb+SABDoiHC/+AHpa
8BT/Ma1668t/hu//qTUp/2rr783LOewRhUbFEKz7IibjvsN4dfnOCA0ghdtWuSpz
wnGPPySwFvWsFaJCP2qd5NfBXRB1xF6nGPfCZVO6DwMqgIQojG9QYkVQRKPmKWPh
bWAEji7G7aDGVisEwxgIQBihfKsebtKv9h+q4+9jK9JiNd8gCKsJc8NpW9NsaL/n
nnu4T/Mwnn1V+HQ3mWhphoWwFqU4sf5YpsiOcEg7sBh1peeZhtH08HnyN/h4rTuM
DQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 508480775175105165936987829914573674575874
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-29 04:06:44 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-27 04:06:43 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.newhavenstakeyouth.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16585165169693900962454977577893229209748500922894351532194924221581603485249369804577900905495786861180260026144349119729610781192314146646818392398996081246660201187292685176039848093352070655473635520291806019616786759979529531945239173861390695270172898722091223255599444131517659605749249464428235296055770944809032693161662276794335364171717057388504747545031668726885621661267201320972092644865161568865662793016588617501335669737026939468375350825636242631357367821357242551242247899258436379873509448252004983872502883894032392327082523945830112670210736207657812400723954808468512450867241243946192935291917
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d496f0274d4f76cc63046f1800ddd4b46f0e9688
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.newhavenstakeyouth.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/3.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a8454000001971a6e21500000040300473045022100e46c2596a2d543a3d3856fe4baaccbedb00e6fa5d7223a567a073bacdc3b51ce022029fb8239e2b4d4630e1adedc2a98f98eca4b85bae225c679e9946ba4e7959d88007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a000001971a6e2190000004030047304502204ffd871275fa4d0a34c4e58c54094c1965f6d987c39f724abd94b5964d44f16d022100ac1beb31d637ad6657daa0788c6359c8534b39bd4615466fb57928c150beaced
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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