www.stuff.co.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f7:5a:67:a8:ba:53:a1:c5:d5:e9:03:a5:06:8a:f8:a8:e9 was issued on by Let's Encrypt.
With 57 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.stuff.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f7:5a:67:a8:ba:53:a1:c5:d5:e9:03:a5:06:8a:f8:a8:e9Serial Number (int): 345506771173156746399390379489634079516905
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 06:58:1c:18:2b:95:26:45:e3:57:39:3b:b6:5c:58:9e:e6:43:04:9a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 52:70:b6:5c:db:27:84:08:65:43:e7:fc:c6:f1:d4:e9:27:5e:2b:e9
Fingerprint (sha256): 26:fa:4d:58:82:55:65:a4:c9:e2:2e:27:92:9d:e1:42:14:7c:12:a3:f3:8d:a1:c1:3a:16:fa:ab:68:51:a8:f7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.stuff.co.nz
57
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.stuff.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
99.fairfaxmedia.co.nz
advertise.fairfaxmedia.co.nz
alpha.stuff.co.nz
api-preprod.stuff.co.nz
api.indexed.co.nz
api.stuff.co.nz
assets.stuff.co.nz
beta.stuff.co.nz
canary-alpha.stuff.co.nz
canary-beta.stuff.co.nz
canary-preprod.stuff.co.nz
canary.stuff.co.nz
cdn-my.stuff.co.nz
file2.stuff.co.nz
i-alpha.stuff.co.nz
i-beta.stuff.co.nz
i-preprod.stuff.co.nz
i.preprod.stuff.co.nz
i.stuff.co.nz
interactives.stuff.co.nz
media.stuff.co.nz
np.fairfaxmedia.co.nz
nzcms.fairfaxmedia.co.nz
nznp.fairfaxmedia.co.nz
popshop-api.stuff.co.nz
popshop.stuff.co.nz
popshop2.stuff.co.nz
production-ugc-api.fairfaxmedia.co.nz
production-ugc.fairfaxmedia.co.nz
resources-preprod.stuff.co.nz
resources.stuff.co.nz
staging-api.indexed.co.nz
staging-nzcms.fairfaxmedia.co.nz
staging-popshop-api.stuff.co.nz
staging-popshop.stuff.co.nz
staging-ugc-api.fairfaxmedia.co.nz
staging-ugc.fairfaxmedia.co.nz
staging.indexed.co.nz
static.fairfaxmedia.co.nz
static.stuff.co.nz
static2.stuff.co.nz
technology.fairfaxmedia.co.nz
uat-ugc-api.fairfaxmedia.co.nz
uat-ugc.fairfaxmedia.co.nz
ugc-api.stuff.co.nz
ugc.stuff.co.nz
widgets.stuff.co.nz
www-alpha.stuff.co.nz
www-beta.stuff.co.nz
www-preprod-alpha.stuff.co.nz
www-preprod-beta.stuff.co.nz
www-preprod.stuff.co.nz
www.bestonthebox.co.nz
www.fairfaxmagazines.co.nz
www.preprod.stuff.co.nz
www.stuff.co.nz
www2.indexed.co.nz
advertise.fairfaxmedia.co.nz
alpha.stuff.co.nz
api-preprod.stuff.co.nz
api.indexed.co.nz
api.stuff.co.nz
assets.stuff.co.nz
beta.stuff.co.nz
canary-alpha.stuff.co.nz
canary-beta.stuff.co.nz
canary-preprod.stuff.co.nz
canary.stuff.co.nz
cdn-my.stuff.co.nz
file2.stuff.co.nz
i-alpha.stuff.co.nz
i-beta.stuff.co.nz
i-preprod.stuff.co.nz
i.preprod.stuff.co.nz
i.stuff.co.nz
interactives.stuff.co.nz
media.stuff.co.nz
np.fairfaxmedia.co.nz
nzcms.fairfaxmedia.co.nz
nznp.fairfaxmedia.co.nz
popshop-api.stuff.co.nz
popshop.stuff.co.nz
popshop2.stuff.co.nz
production-ugc-api.fairfaxmedia.co.nz
production-ugc.fairfaxmedia.co.nz
resources-preprod.stuff.co.nz
resources.stuff.co.nz
staging-api.indexed.co.nz
staging-nzcms.fairfaxmedia.co.nz
staging-popshop-api.stuff.co.nz
staging-popshop.stuff.co.nz
staging-ugc-api.fairfaxmedia.co.nz
staging-ugc.fairfaxmedia.co.nz
staging.indexed.co.nz
static.fairfaxmedia.co.nz
static.stuff.co.nz
static2.stuff.co.nz
technology.fairfaxmedia.co.nz
uat-ugc-api.fairfaxmedia.co.nz
uat-ugc.fairfaxmedia.co.nz
ugc-api.stuff.co.nz
ugc.stuff.co.nz
widgets.stuff.co.nz
www-alpha.stuff.co.nz
www-beta.stuff.co.nz
www-preprod-alpha.stuff.co.nz
www-preprod-beta.stuff.co.nz
www-preprod.stuff.co.nz
www.bestonthebox.co.nz
www.fairfaxmagazines.co.nz
www.preprod.stuff.co.nz
www.stuff.co.nz
www2.indexed.co.nz
Other certificates including the domain name stuff.co.nz
(limited to 100 certificates)
*.stuff.co.nz
deaths.stuff.co.nz
composer.contentstaging.shift21.ffx.nz
popshop.stuff.co.nz
t.comms.stuff.co.nz
coupons.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
www.stuff.co.nz
social.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
playwidget.stuff.co.nz
somniture.stuff.co.nz
somniture.stuff.co.nz
devices.play.stuff.co.nz
my.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
www.stuff.co.nz
subscribers.theage.com.au
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.fairfaxmedia.com.au
prospective2.shared.global.fastly.net
*.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
test.communications.stuff.co.nz
ssl470690.cloudflaressl.com
pressphotocomp.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
www.stuff.co.nz
prospective2.shared.global.fastly.net
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
prospective2.shared.global.fastly.net
analytics.stuff.co.nz
prospective2.shared.global.fastly.net
somniture.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
deaths.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.idm.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
pressfanzone.stuff.co.nz
www.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
*.stuff.co.nz
stuff.co.nz
shop.stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
ssl470689.cloudflaressl.com
www.communications.stuff.co.nz
somniture.stuff.co.nz
stuff.co.nz
*.stuff.co.nz
deaths.stuff.co.nz
stuff.co.nz
knowthecrew.stuff.co.nz
prospective2.shared.global.fastly.net
play.stuff.co.nz
popshop.stuff.co.nz
www.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
playwidget.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
deaths.stuff.co.nz
composer.contentstaging.shift21.ffx.nz
popshop.stuff.co.nz
t.comms.stuff.co.nz
coupons.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
www.stuff.co.nz
social.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
playwidget.stuff.co.nz
somniture.stuff.co.nz
somniture.stuff.co.nz
devices.play.stuff.co.nz
my.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
www.stuff.co.nz
subscribers.theage.com.au
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.fairfaxmedia.com.au
prospective2.shared.global.fastly.net
*.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
test.communications.stuff.co.nz
ssl470690.cloudflaressl.com
pressphotocomp.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
www.stuff.co.nz
prospective2.shared.global.fastly.net
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
prospective2.shared.global.fastly.net
analytics.stuff.co.nz
prospective2.shared.global.fastly.net
somniture.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
deaths.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.idm.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
pressfanzone.stuff.co.nz
www.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
*.stuff.co.nz
stuff.co.nz
shop.stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
ssl470689.cloudflaressl.com
www.communications.stuff.co.nz
somniture.stuff.co.nz
stuff.co.nz
*.stuff.co.nz
deaths.stuff.co.nz
stuff.co.nz
knowthecrew.stuff.co.nz
prospective2.shared.global.fastly.net
play.stuff.co.nz
popshop.stuff.co.nz
www.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
playwidget.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
Certificate
The complete raw certificate details for www.stuff.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKcTCCCVmgAwIBAgISA/daZ6i6U6HF1ekDpQaK+KjpMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA2MjcyMzA4MDBaFw0x NzA5MjUyMzA4MDBaMBoxGDAWBgNVBAMTD3d3dy5zdHVmZi5jby5uejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKIn0lMR3XgX+tO2eW4yhnl3UPVylW+Y qPVvaOTj3+ZLfZqT8fytq9vYLADmIPNGupjhH+aHjR3EiyUgc/xjxBdd1rL+jtUH /hAWMdsMtkOcF3347H3zngFdsxAAb3/KV6Wn+OmJdSHOsPhdlNe+dU8JtxBYB90Q sl25cvNjA9C3P5Q8W19PNzZb6n72/9rFZIOF0zJs37KFKcFfFRk9f0FXvusOhc0l E2Hn/DT4IhJFD7CnorGg+wXTFZ3qvZcgTOaGGA9jGr/ZoVorJ5iF9bF2dpQFSjV4 BNyt3eHiiuZ/WPp4yBvSjaUECH2fVKK4vV7XrdcxPfvInA9UyGjGZE8CAwEAAaOC B38wggd7MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBlgcGCuVJkXjVzk7tlxYnuZD BJowHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzCCBYgGA1UdEQSCBX8wggV7ghU5OS5mYWlyZmF4bWVkaWEuY28ubnqCHGFk dmVydGlzZS5mYWlyZmF4bWVkaWEuY28ubnqCEWFscGhhLnN0dWZmLmNvLm56ghdh cGktcHJlcHJvZC5zdHVmZi5jby5ueoIRYXBpLmluZGV4ZWQuY28ubnqCD2FwaS5z dHVmZi5jby5ueoISYXNzZXRzLnN0dWZmLmNvLm56ghBiZXRhLnN0dWZmLmNvLm56 ghhjYW5hcnktYWxwaGEuc3R1ZmYuY28ubnqCF2NhbmFyeS1iZXRhLnN0dWZmLmNv Lm56ghpjYW5hcnktcHJlcHJvZC5zdHVmZi5jby5ueoISY2FuYXJ5LnN0dWZmLmNv Lm56ghJjZG4tbXkuc3R1ZmYuY28ubnqCEWZpbGUyLnN0dWZmLmNvLm56ghNpLWFs cGhhLnN0dWZmLmNvLm56ghJpLWJldGEuc3R1ZmYuY28ubnqCFWktcHJlcHJvZC5z dHVmZi5jby5ueoIVaS5wcmVwcm9kLnN0dWZmLmNvLm56gg1pLnN0dWZmLmNvLm56 ghhpbnRlcmFjdGl2ZXMuc3R1ZmYuY28ubnqCEW1lZGlhLnN0dWZmLmNvLm56ghVu cC5mYWlyZmF4bWVkaWEuY28ubnqCGG56Y21zLmZhaXJmYXhtZWRpYS5jby5ueoIX bnpucC5mYWlyZmF4bWVkaWEuY28ubnqCF3BvcHNob3AtYXBpLnN0dWZmLmNvLm56 ghNwb3BzaG9wLnN0dWZmLmNvLm56ghRwb3BzaG9wMi5zdHVmZi5jby5ueoIlcHJv ZHVjdGlvbi11Z2MtYXBpLmZhaXJmYXhtZWRpYS5jby5ueoIhcHJvZHVjdGlvbi11 Z2MuZmFpcmZheG1lZGlhLmNvLm56gh1yZXNvdXJjZXMtcHJlcHJvZC5zdHVmZi5j by5ueoIVcmVzb3VyY2VzLnN0dWZmLmNvLm56ghlzdGFnaW5nLWFwaS5pbmRleGVk LmNvLm56giBzdGFnaW5nLW56Y21zLmZhaXJmYXhtZWRpYS5jby5ueoIfc3RhZ2lu Zy1wb3BzaG9wLWFwaS5zdHVmZi5jby5ueoIbc3RhZ2luZy1wb3BzaG9wLnN0dWZm LmNvLm56giJzdGFnaW5nLXVnYy1hcGkuZmFpcmZheG1lZGlhLmNvLm56gh5zdGFn aW5nLXVnYy5mYWlyZmF4bWVkaWEuY28ubnqCFXN0YWdpbmcuaW5kZXhlZC5jby5u eoIZc3RhdGljLmZhaXJmYXhtZWRpYS5jby5ueoISc3RhdGljLnN0dWZmLmNvLm56 ghNzdGF0aWMyLnN0dWZmLmNvLm56gh10ZWNobm9sb2d5LmZhaXJmYXhtZWRpYS5j by5ueoIedWF0LXVnYy1hcGkuZmFpcmZheG1lZGlhLmNvLm56ghp1YXQtdWdjLmZh aXJmYXhtZWRpYS5jby5ueoITdWdjLWFwaS5zdHVmZi5jby5ueoIPdWdjLnN0dWZm LmNvLm56ghN3aWRnZXRzLnN0dWZmLmNvLm56ghV3d3ctYWxwaGEuc3R1ZmYuY28u bnqCFHd3dy1iZXRhLnN0dWZmLmNvLm56gh13d3ctcHJlcHJvZC1hbHBoYS5zdHVm Zi5jby5ueoIcd3d3LXByZXByb2QtYmV0YS5zdHVmZi5jby5ueoIXd3d3LXByZXBy b2Quc3R1ZmYuY28ubnqCFnd3dy5iZXN0b250aGVib3guY28ubnqCGnd3dy5mYWly ZmF4bWFnYXppbmVzLmNvLm56ghd3d3cucHJlcHJvZC5zdHVmZi5jby5ueoIPd3d3 LnN0dWZmLmNvLm56ghJ3d3cyLmluZGV4ZWQuY28ubnowgf4GA1UdIASB9jCB8zAI BgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRp ZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGll cyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBv bGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5 LzANBgkqhkiG9w0BAQsFAAOCAQEAkuQRWnVO0Ev88rwjOMIaxr3I5U/pj7757bO3 wvLkcWXE3RaTmDw1F0xn5JhtY1v+bHkTli+jFzjQmbuKAb9NI0ePvRRQCZDeeki3 n0IKT/CT00wDEDH/m9I9TN8LuAmIpvPMeTzthWITToPEAN+5buJPUoI2vf8ozuBw vEQeQ3BrcejUz+c8oi5iuUwMfr09g4PaLFXG78iogyXrQy1L3pT5vnGyVP2EFKbM 4TITdDbXkJS7BcWET8IR/g3QW+OPAc13PURJWuIr7VlxHnptr9ZXdbkTlJlg1EmR 1kv4Sl7/bJGGFTVoYCZq2VRF1mLOsnrNcfAxQetX1mgcTJ3ZkA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoifSUxHdeBf607Z5bjKG eXdQ9XKVb5io9W9o5OPf5kt9mpPx/K2r29gsAOYg80a6mOEf5oeNHcSLJSBz/GPE F13Wsv6O1Qf+EBYx2wy2Q5wXffjsffOeAV2zEABvf8pXpaf46Yl1Ic6w+F2U1751 Twm3EFgH3RCyXbly82MD0Lc/lDxbX083Nlvqfvb/2sVkg4XTMmzfsoUpwV8VGT1/ QVe+6w6FzSUTYef8NPgiEkUPsKeisaD7BdMVneq9lyBM5oYYD2Mav9mhWisnmIX1 sXZ2lAVKNXgE3K3d4eKK5n9Y+njIG9KNpQQIfZ9Uori9Xtet1zE9+8icD1TIaMZk TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 345506771173156746399390379489634079516905 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-27 23:08:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-25 23:08:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.stuff.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20470242157493165539197147699783127477138161367488181468966662256596250732267708701177407383979610475413495810637224935912047789125503311993080969394248340392814651756653385965823525031272037637608134545463522827465568316516830033364544390514614379068357641348374864010989784896554169935145203676042483870414555472927303480759941207782335630961381196435549480908971168740483573492463985386544364592758101840435349273050338047598636541551359560398942417735876978092760396812458334625146147398379260606477050799444979520514539669581374914431204966081941614872408866579805546508657089558401702448007096634923264579626063 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 06581c182b952645e357393bb65c589ee643049a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1407 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '99.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advertise.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.indexed.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary-alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary-beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn-my.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'file2.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i-alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i-beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i.preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'interactives.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'np.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nzcms.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nznp.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'popshop-api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'popshop.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'popshop2.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production-ugc-api.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production-ugc.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-api.indexed.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-nzcms.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-popshop-api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-popshop.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-ugc-api.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-ugc.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.indexed.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static2.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'technology.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-ugc-api.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-ugc.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc-api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'widgets.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-preprod-alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-preprod-beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestonthebox.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fairfaxmagazines.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www2.indexed.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0092e4115a754ed04bfcf2bc2338c21ac6bdc8e54fe98fbef9edb3b7c2f2e47165c4dd1693983c35174c67e4986d635bfe6c7913962fa31738d099bb8a01bf4d23478fbd14500990de7a48b79f420a4ff093d34c031031ff9bd23d4cdf0bb80988a6f3cc793ced8562134e83c400dfb96ee24f528236bdff28cee070bc441e43706b71e8d4cfe73ca22e62b94c0c7ebd3d8383da2c55c6efc8a88325eb432d4bde94f9be71b254fd8414a6cce132137436d79094bb05c5844fc211fe0dd05be38f01cd773d44495ae22bed59711e7a6dafd65775b913949960d44991d64bf84a5eff6c918615356860266ad95445d662ceb27acd71f03141eb57d6681c4c9dd990