Let's Encrypt bans certificate usage in US sanctioned territories
Original: Let's Encrypt bans certificate usage in any US sanctioned territory [pdf]
Why This Matters
Major free SSL provider restricts access based on geopolitical sanctions
Let's Encrypt, the non-profit certificate authority, has updated its subscriber agreement to prohibit the use of SSL certificates in any US sanctioned territory, effective June 2026, expanding compliance with American trade restrictions.
Let's Encrypt has revised its subscriber agreement to explicitly ban the use of its SSL certificates in any territory subject to US economic sanctions. The updated terms, effective June 2026, represent a significant policy change for the nonprofit certificate authority that provides free SSL certificates to millions of websites globally. The move appears designed to ensure compliance with US trade restrictions and export controls. Let's Encrypt, operated by the Internet Security Research Group, has become a critical infrastructure provider for web security, issuing over 200 million active certificates. The policy change could impact website operators in sanctioned regions who rely on Let's Encrypt for SSL encryption.