DV SSL/TLS Certificate for roseengineering.co.nz

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the roseengineering.co.nz DV SSL/TLS Certificate

This certificate with serial number 06:d5:8b:84:a2:28:96:4a:2e:94:d7:23:5b:af:83:fc:8f:2d for roseengineering.co.nz was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for roseengineering.co.nz provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:d5:8b:84:a2:28:96:4a:2e:94:d7:23:5b:af:83:fc:8f:2d
Serial Number (int): 595339311108286797225122297701185563168557
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 64:11:f8:15:60:d9:fa:3e:00:12:45:07:9b:8c:e2:6f:7b:28:38:eb
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): ba:71:33:9f:4d:92:3e:c4:5c:bf:78:2f:79:3a:a3:c4:5b:11:fe:5e
Fingerprint (SHA-256): 06:22:2b:8b:6b:f8:e6:4d:78:8c:41:c9:e0:a7:ed:da:1c:74:9b:60:1b:a2:54:18:7b:d8:a2:7e:a5:76:60:c5

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/46.crl

Check the revocation status for certificate roseengineering.co.nz
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for roseengineering.co.nz

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

roseengineering.co.nz

X.509 Certificate

The complete raw X.509 certificate details for roseengineering.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 595339311108286797225122297701185563168557
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-19 04:09:57 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-17 04:09:56 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roseengineering.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 766659274895420397900413694373097725425457637194026518513199062267790742031810354944877007683342609759439421195162454349366153822801921385506510952102737418239656525856445496742097159184133672240981436292264841975113946378593451024082846519512405101193329206573511845856148655616578039953572596045618355770610321839674952629583737888671315722482598574170064179116563397665744145128955363408586944155770176882590510049829623490079048847753833348680279633827560157201901692399672867089034265527943974311805161167318479251888670645767320475784240482900008374873793648167055899678173165515663844607095256092439837184078005593466333276886271778994111717566609548204380964059394088828384954001077010940222430622614178058036235697009372142840718294028282446608881972634831907023676737945406038113448432547338289511397650862613913255512545098529963547861114431144551430335717253693909774357447446374048348915514578705031446716992517794925711575082084179054012894001490255160510506577861124278362854244171863613758654314072100430598589337833591880401408214622416044600924793318845048964390296262369244623984511090725020424276511233662328294951161316017203328772297569756158189962253329891058333335177922822557291137888611052335448744657228291
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6411f81560d9fa3e001245079b8ce26f7b2838eb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roseengineering.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/46.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe000000196e6f17dc80000040300483046022100dd492ed9b3ccab5a7d8e45bd361ddff2064bd5892a0cc6779fcb0c3487cbe17b0221009a66c56992b5e8db960e57dbe1fb5d573e29bc672a48aab3d61ae528a91ad49a007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196e6f18db100000403004730450220428a178046c962c44801e6eb6fca80a4351994882d4e8fddf83c15cdf7932d63022100ea1f59f30dd4f5ca6c7463f9096edfa7225b217ae407e3c769211bd206a8540d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00273d104c43474a923ef4a0708e61773345e0a7b7db279d38e82389d10806d69eaab654617464e9261a72dbc09a8f34bbdec5e6990bd84d86cd630680c9d47c8dde9c16b8532f52eb228f63e648ffada50d7072158b1d13ca4ed4cea638830fca32933a0b17141669bd97a5425108e909a21fd9e90b5ff5797f791e28080414c94653a7c4ec9e829b8e3cd149c3c05d6826945b46b3bfc92ee05113dfae6fa6ce8e512ec960c91ffeceaa82ae46ce151c96c1d0f49232d18925feaa86232e3fe6a598408c79e2a1236df984b23a2bab89d7cb4f9431e327c15509b1af17f0022f31dab60df93c19eb7db248197cb172ea150ea92f553ac0616d08639fa89c1f24