sporty.org.nz

Issued by R3

About this certificate

This digital certificate with serial number 03:bf:4b:52:94:80:4b:b2:d7:62:41:91:0d:e6:b1:7c:97:f6 was issued on by Let's Encrypt.

With 27 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=sporty.org.nz

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:bf:4b:52:94:80:4b:b2:d7:62:41:91:0d:e6:b1:7c:97:f6
Serial Number (int): 326430910757167508731636423106565825665014
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6f:12:28:53:1a:f5:30:6d:b3:25:1b:be:d3:a1:de:b5:52:0d:39:2a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 9b:10:28:68:32:c1:12:e0:c9:2f:29:41:eb:1c:96:e5:dd:90:15:db
Fingerprint (sha256): 31:f2:44:70:87:2c:58:12:45:06:97:ad:a0:54:2d:25:d6:ac:92:95:ee:e4:96:0f:80:74:7e:73:e3:49:13:95

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate sporty.org.nz

27

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for sporty.org.nz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

akaranacityrifleclub.co.nz
canterburywaterpolo.org.nz
crossrecreationcentre.co.nz
edenrugby.co.nz
goodmanrural.co.nz
hampsteadclub.co.nz
havelocknorthbridgeclub.co.nz
hawkesbayrugbyreferees.co.nz
hawkfootball.org.nz
hbrfu.co.nz
hbru.co.nz
healthyfamiliesinvercargill.org.nz
huttaikido.org.nz
invercargillnetball.co.nz
maristrugby.org.nz
merivalepap.co.nz
mtsquashclub.co.nz
nzssfootball.co.nz
papakurarugbyleague.co.nz
photocard.co.nz
rangatiragolf.co.nz
sporty.org.nz
supersixes.co.nz
totaltouch.org.nz
turbotouch.co.nz
turbotouch.org.nz
wellingtonsoftball.org.nz

Other certificates including the domain name sporty.org.nz

(limited to 100 certificates)
sporty.org.nz
www.sportycrm.com
sporty.org.nz
sporty.org.nz
www.giafc.co.nz
sportycrm.com
sporty.org.nz
fdmc.school.nz
arrowtownrugby.co.nz
sporty.org.nz
sporty.org.nz
www.sportsground.com
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
www.sportsground.com
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
freyberg.ac.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
sporty.org.nz
www.sporty.org.nz
www.ams.school.nz
www.skeggsfoundation.nz
sporty.org.nz
sporty.org.nz

Certificate

The complete raw certificate details for sporty.org.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIHaDCCBlCgAwIBAgISA79LUpSAS7LXYkGRDeaxfJf2MA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzAzMDUyMDQyMzNaFw0yMzA2MDMyMDQyMzJaMBgxFjAUBgNVBAMT
DXNwb3J0eS5vcmcubnowggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe
OvZuPxqULtbN3U4uqrwmSRV8G7QgwXK/ouRK92RUMJi9mtcXk9kMm0Wk9m+BRmu1
vw8Bjh1uX3c4nQKwnZQM76u9ajF3KBOiAKQOOwfL4hg0m5eyzul9mciTJwR4taP/
3xh9w5kKZAmG8Vxm2HNQCnFmAnMQv4M4b3zBVt6Eq3lxQi4KipH2Yi4OkxU8n4z2
mHL7kCPZcXxvDG2CM3/SNJv44iPE0bXX+/01VNCNRJ1T4dsxrHRASkbf8/vB5U2I
7q/L5ced5YIimliBRZNGcJTwiK/2OAJfUZuS+3NCBgsNBAbtTM7ZHr+trbAo9NGw
tHUlbTDmV60Mppq8QuklAgMBAAGjggSQMIIEjDAOBgNVHQ8BAf8EBAMCBaAwHQYD
VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O
BBYEFG8SKFMa9TBtsyUbvtOh3rVSDTkqMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ
QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz
Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv
MIICXQYDVR0RBIICVDCCAlCCGmFrYXJhbmFjaXR5cmlmbGVjbHViLmNvLm56ghpj
YW50ZXJidXJ5d2F0ZXJwb2xvLm9yZy5ueoIbY3Jvc3NyZWNyZWF0aW9uY2VudHJl
LmNvLm56gg9lZGVucnVnYnkuY28ubnqCEmdvb2RtYW5ydXJhbC5jby5ueoITaGFt
cHN0ZWFkY2x1Yi5jby5ueoIdaGF2ZWxvY2tub3J0aGJyaWRnZWNsdWIuY28ubnqC
HGhhd2tlc2JheXJ1Z2J5cmVmZXJlZXMuY28ubnqCE2hhd2tmb290YmFsbC5vcmcu
bnqCC2hicmZ1LmNvLm56ggpoYnJ1LmNvLm56giJoZWFsdGh5ZmFtaWxpZXNpbnZl
cmNhcmdpbGwub3JnLm56ghFodXR0YWlraWRvLm9yZy5ueoIZaW52ZXJjYXJnaWxs
bmV0YmFsbC5jby5ueoISbWFyaXN0cnVnYnkub3JnLm56ghFtZXJpdmFsZXBhcC5j
by5ueoISbXRzcXVhc2hjbHViLmNvLm56ghJuenNzZm9vdGJhbGwuY28ubnqCGXBh
cGFrdXJhcnVnYnlsZWFndWUuY28ubnqCD3Bob3RvY2FyZC5jby5ueoITcmFuZ2F0
aXJhZ29sZi5jby5ueoINc3BvcnR5Lm9yZy5ueoIQc3VwZXJzaXhlcy5jby5ueoIR
dG90YWx0b3VjaC5vcmcubnqCEHR1cmJvdG91Y2guY28ubnqCEXR1cmJvdG91Y2gu
b3JnLm56ghl3ZWxsaW5ndG9uc29mdGJhbGwub3JnLm56MEwGA1UdIARFMEMwCAYG
Z4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMu
bGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYAtz77JN+c
Tbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGGs7nzIwAABAMARzBFAiBhqLcY
7V5+XC87mweHbID20btdoD6gkMeZ8qfiDGY7SgIhAO5p73/VWLgLJ3OLytjfFWpt
fsCp0Jj499595ROFWGgTAHcAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS
61IAAAGGs7nzSQAABAMASDBGAiEA4oJuKbpSTwnXgpAed3b+PPmIigK2N7Fqa0EL
H2wdd5YCIQDCVnnAB8UOKffajO82mPOS3rnJ7SWhlt4KLlwdVi5e2zANBgkqhkiG
9w0BAQsFAAOCAQEAi/+5T+pD0Rs78mvG8PsPYDGRCP5u+fBvqfaKJ4v6ENggofcI
TeB3PPCqq/xdwJSrEPWrm1df3ldZldy+lVrT6p3WSbCz7B3RANrSzhqsQKEN2DZg
7zErbOBwgmjoa4lM5VBoIU+gwMO52KauvFWgphZsLB8qfp6yS9V8csoFBtRCj/vC
Cn6x9J53ipZp9B52jPRPG0h6f0Gz//KOybXrdZajQ5OtosOA7ZiJxtLTlLzJ3Pok
zjIGClA0kTBYpk+AoNpxXRH18BvpKOq0n1qC+m77MOO+OBaZ/MuT+gpWkd9JHpXY
VPmFuGCkelNjlgfKfMapFw5LP8HKw0Pu8Jzr4A==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jr2bj8alC7Wzd1OLqq8
JkkVfBu0IMFyv6LkSvdkVDCYvZrXF5PZDJtFpPZvgUZrtb8PAY4dbl93OJ0CsJ2U
DO+rvWoxdygTogCkDjsHy+IYNJuXss7pfZnIkycEeLWj/98YfcOZCmQJhvFcZthz
UApxZgJzEL+DOG98wVbehKt5cUIuCoqR9mIuDpMVPJ+M9phy+5Aj2XF8bwxtgjN/
0jSb+OIjxNG11/v9NVTQjUSdU+HbMax0QEpG3/P7weVNiO6vy+XHneWCIppYgUWT
RnCU8Iiv9jgCX1GbkvtzQgYLDQQG7UzO2R6/ra2wKPTRsLR1JW0w5letDKaavELp
JQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 326430910757167508731636423106565825665014
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-05 20:42:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-03 20:42:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sporty.org.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28053979253913572104280831186450035435467369668488027189998987581832416291620579614467829370872037934829904840900308882590395942945807973954433660067782758707810667745913216734280964733342406478358845155128345038943637409414231388380729464781279600659344907706585849904397064700172853754226996642504528127156960043663618992954422058606811695105171204745993049461447028824829585812608272042451593849591575325771947697161915148973926204190944727550250853242234025841975924617108046155866404609527188926272452241681328716439213129244258669273003289078441266910273842681773559457033259426778105510442635486833768849926437
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6f1228531af5306db3251bbed3a1deb5520d392a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (596 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'akaranacityrifleclub.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canterburywaterpolo.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crossrecreationcentre.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edenrugby.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goodmanrural.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hampsteadclub.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'havelocknorthbridgeclub.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hawkesbayrugbyreferees.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hawkfootball.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hbrfu.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hbru.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthyfamiliesinvercargill.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huttaikido.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'invercargillnetball.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maristrugby.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'merivalepap.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mtsquashclub.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nzssfootball.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papakurarugbyleague.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'photocard.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rangatiragolf.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sporty.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'supersixes.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'totaltouch.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turbotouch.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turbotouch.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wellingtonsoftball.org.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000186b3b9f3230000040300473045022061a8b718ed5e7e5c2f3b9b07876c80f6d1bb5da03ea090c799f2a7e20c663b4a022100ee69ef7fd558b80b27738bcad8df156a6d7ec0a9d098f8f7de7de513855868130077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000186b3b9f3490000040300483046022100e2826e29ba524f09d782901e7776fe3cf9888a02b637b16a6b410b1f6c1d7796022100c25679c007c50e29f7da8cef3698f392deb9c9ed25a196de0a2e5c1d562e5edb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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