DV SSL/TLS Certificate for haarmanengineering.nl

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the haarmanengineering.nl DV SSL/TLS Certificate

This certificate with serial number 05:93:a8:67:e7:9c:12:d0:71:60:ce:d7:96:70:bb:18:e2:8b for haarmanengineering.nl was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for haarmanengineering.nl provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:93:a8:67:e7:9c:12:d0:71:60:ce:d7:96:70:bb:18:e2:8b
Serial Number (int): 485806787403649516834050716225144285094539
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: f4:0c:a6:e3:18:64:00:ec:1b:b2:57:7f:c8:1f:6b:22:02:b0:4e:c0
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 60:6c:3f:37:4e:32:a0:59:5f:bb:b7:29:ce:eb:22:32:93:4f:c3:ba
Fingerprint (SHA-256): 9f:dc:f3:36:9e:2a:25:f4:5e:f9:b8:4c:d8:9b:30:9c:fa:b1:37:08:8a:d3:0d:58:30:02:e0:0b:26:dc:d0:73

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/12.crl

Check the revocation status for certificate haarmanengineering.nl
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for haarmanengineering.nl

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for haarmanengineering.nl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTY+fvOdAJs4tZtIScy9
y0SnBio5EVbcGv6Q2SO09/Hf7mcD2b/PLli7p0zPdIxkPBsI83EqWaJcXqZRSFp3
vOGfu4ZJvsOP3NYgdRbSi5Q4JphqE+lMCAGL7NsIa6lfHWL0dwUc16wOGOx4ZfXU
uCWQQAeS532+Lfsar6r0xOuY3fwNa8X83lN2t6UKkV8vcyCJh16NaoRLwnxq3HX2
Y3i3/qpPgf1WSIg5YrASlOHuuESR9ew9g2T/nidDEH/xVNSOCw3NcBNe/ZTUTiCs
qFFVL/mp6Rb4oUmGops+Nna+SplxRX2n10FIQcEtIlYiDSCIosbvyUiVlrKeq6Ht
UQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 485806787403649516834050716225144285094539
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-25 12:58:57 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-23 12:58:56 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'haarmanengineering.nl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17826349775008775224065877776821386867888574056850331326522574752614664083190409352625291531378089749445559663277209900012117989715357129807259642299099989683456555717372602581973156039566608443195630190722780048379684840563272524654034797371630569484261102905748024695897006015084120695677596540653045755680055775800765261367638322514098077274374718547531408491831485492670972668094529319322718149158513248724649543401861311980264842805354988639085183597357223631300557245635980734034273591381637690826989742000416124096532960061435566556528673136703530279169233219760009230985481656258935899763424690722132398828881
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f40ca6e3186400ec1bb2577fc81f6b2202b04ec0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'haarmanengineering.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.haarmanengineering.nl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/12.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000197a76117a1000004030047304502210081e72b38e0846216162715e7e574fc3300d777657c855151fa329ac7fbaac42402207b1c3a26867e33bca09ee51b2966c3611a4732e2e0a5e64181323fd6f99b843a00770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000197a7611f630000040300483046022100fb2d4c8b29b771f59aafde9561586dc7b1331d2bc24bd8261a38c1fc7bcc2569022100d8b9a28f4fa744e76f844810a732e14e37254a423e4230b0eecf0d1d87c97c30
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00490b235a5b4b2e19184f8be70613a8e28c2cea827db776f487489169ba368fd6e820d1fa5af6adb480056118deea07d590c7d5458c693042988f8f17104b3894d65c4f73b992c19d4c400a821c7c6778709e45cf43ec4c9ad4c40c5ba5341422ac3fca22fd4c05ddcefe09558942043c5095d019d7b015e705986a44db3baec3a6ac026b54adeb4df59882cd29f6e9dbee8f9475fd5de070ce511537e1cf577d4cf6d8ea1c0bde9d272e4302e8d60c845202c5caa7ef68d0602ef8b572f74d08c7b011d255862458e31497b3f307f95fbf54fb86b4f2a2f54bb4d5fc3117860781dbc321b951bb22b94f3523e1d0b614da77577fa43fc65130878c8bd3e37b4b