I use LetsEncrypt for all my domains, so I am very familiar with it. However, I have always used it with very common TLDs, org, com, net, etc. Do "new" TLDs, like .rocks, work with LetsEncrypt?
I believe so, I've been able to use it with every TLD that I have tried:
.cc .com .icu .net .org .ovh .pw .tk .top .us .work .xyz
And we see all kinds of TLDs come through here.
[Unless the TLD is explicitly listed on some government block list - you should be fine]
rocks isn't new, see
// rocks : 2013-11-14 Dog Beach, LLC
So if a TLD is listet on the Public Suffix List, you should be able to create a certificate.
Or use the IANA list:
spa is the newest TLD - https://www.iana.org/domains/root/db/spa.html
In some cases it's possible that a domain is listed (PSL or IANA), but Letsencrypt doesn't have the newest version. But that's rare.
Thanks for the reply. I hadn't used it before, so I guess I should've said "new to me". I really appreciate the further documentation and information to review on this question.
Thanks for your reply! I was thinking it would, but having only used the most common TLD's, I didn't want my friend to buy a new domain that might not be compatible.
I think in the past, the cross-signed intermediate had a resitriction for the
.mil TLD. And I believe there are some restrictions to some TLDs like
.ir due to some kind of block list from the USA goverment. But in principle, any TLD should work.
I myself, being a M.D. have a website with the
.md TLD and for which I have a LE cert of course
There’s not a restriction for the entire TLD.
This post was flagged by the community and is temporarily hidden.
Sorry, I didn't mean the entire TLD, but to some domains of that TLD, more as an example, as the US gvrmt blocklist includes domains from other TLDs too (but not 100 % sure).
Checked my local version (used in "check-your-website"):