www.stuff.co.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:99:bb:79:19:e4:88:5d:c2:7c:c1:c1:ab:44:b9:08:6e:68 was issued on by Let's Encrypt.
With 52 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.stuff.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:99:bb:79:19:e4:88:5d:c2:7c:c1:c1:ab:44:b9:08:6e:68Serial Number (int): 313649254362482451286565489785338535112296
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 07:98:82:83:13:e8:b0:da:4a:37:ad:c2:6d:cd:d0:8e:e4:b4:7f:4a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5e:67:4d:f9:94:5c:b1:08:5e:6c:63:69:21:c2:df:e7:00:b0:dd:a0
Fingerprint (sha256): 38:d2:92:2a:81:6a:2e:bc:1e:5c:86:e4:89:7e:14:c6:3f:ac:25:a9:fe:48:7e:26:d2:31:89:67:5b:ec:8b:8c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.stuff.co.nz
52
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.stuff.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
99.fairfaxmedia.co.nz
advertise.fairfaxmedia.co.nz
alpha.stuff.co.nz
api-preprod.stuff.co.nz
api.stuff.co.nz
assets.stuff.co.nz
beta.stuff.co.nz
canary-alpha.stuff.co.nz
canary-beta.stuff.co.nz
canary-preprod.stuff.co.nz
canary.stuff.co.nz
cdn-my.stuff.co.nz
file2.stuff.co.nz
i-preprod.stuff.co.nz
i.preprod.stuff.co.nz
i.stuff.co.nz
interactives.stuff.co.nz
media.stuff.co.nz
np.fairfaxmedia.co.nz
nzcms.fairfaxmedia.co.nz
nznp.fairfaxmedia.co.nz
popshop-api.stuff.co.nz
popshop2-staging.stuff.co.nz
popshop2.stuff.co.nz
production-ugc-api.fairfaxmedia.co.nz
production-ugc.fairfaxmedia.co.nz
resources-preprod.stuff.co.nz
resources.stuff.co.nz
staging-api.indexed.co.nz
staging-nzcms.fairfaxmedia.co.nz
staging-popshop-api.stuff.co.nz
staging-popshop.stuff.co.nz
staging-ugc-api.fairfaxmedia.co.nz
staging-ugc.fairfaxmedia.co.nz
staging.indexed.co.nz
static.fairfaxmedia.co.nz
static.stuff.co.nz
static2.stuff.co.nz
technology.fairfaxmedia.co.nz
uat-ugc-api.fairfaxmedia.co.nz
uat-ugc.fairfaxmedia.co.nz
ugc-api.stuff.co.nz
ugc.stuff.co.nz
widgets.stuff.co.nz
www-preprod-alpha.stuff.co.nz
www-preprod-beta.stuff.co.nz
www-preprod.stuff.co.nz
www.bestonthebox.co.nz
www.fairfaxmagazines.co.nz
www.preprod.stuff.co.nz
www.stuff.co.nz
www2.indexed.co.nz
advertise.fairfaxmedia.co.nz
alpha.stuff.co.nz
api-preprod.stuff.co.nz
api.stuff.co.nz
assets.stuff.co.nz
beta.stuff.co.nz
canary-alpha.stuff.co.nz
canary-beta.stuff.co.nz
canary-preprod.stuff.co.nz
canary.stuff.co.nz
cdn-my.stuff.co.nz
file2.stuff.co.nz
i-preprod.stuff.co.nz
i.preprod.stuff.co.nz
i.stuff.co.nz
interactives.stuff.co.nz
media.stuff.co.nz
np.fairfaxmedia.co.nz
nzcms.fairfaxmedia.co.nz
nznp.fairfaxmedia.co.nz
popshop-api.stuff.co.nz
popshop2-staging.stuff.co.nz
popshop2.stuff.co.nz
production-ugc-api.fairfaxmedia.co.nz
production-ugc.fairfaxmedia.co.nz
resources-preprod.stuff.co.nz
resources.stuff.co.nz
staging-api.indexed.co.nz
staging-nzcms.fairfaxmedia.co.nz
staging-popshop-api.stuff.co.nz
staging-popshop.stuff.co.nz
staging-ugc-api.fairfaxmedia.co.nz
staging-ugc.fairfaxmedia.co.nz
staging.indexed.co.nz
static.fairfaxmedia.co.nz
static.stuff.co.nz
static2.stuff.co.nz
technology.fairfaxmedia.co.nz
uat-ugc-api.fairfaxmedia.co.nz
uat-ugc.fairfaxmedia.co.nz
ugc-api.stuff.co.nz
ugc.stuff.co.nz
widgets.stuff.co.nz
www-preprod-alpha.stuff.co.nz
www-preprod-beta.stuff.co.nz
www-preprod.stuff.co.nz
www.bestonthebox.co.nz
www.fairfaxmagazines.co.nz
www.preprod.stuff.co.nz
www.stuff.co.nz
www2.indexed.co.nz
Other certificates including the domain name stuff.co.nz
(limited to 100 certificates)
*.stuff.co.nz
deaths.stuff.co.nz
composer.contentstaging.shift21.ffx.nz
popshop.stuff.co.nz
t.comms.stuff.co.nz
coupons.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
www.stuff.co.nz
social.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
playwidget.stuff.co.nz
somniture.stuff.co.nz
somniture.stuff.co.nz
devices.play.stuff.co.nz
my.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
www.stuff.co.nz
subscribers.theage.com.au
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.fairfaxmedia.com.au
prospective2.shared.global.fastly.net
*.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
test.communications.stuff.co.nz
ssl470690.cloudflaressl.com
pressphotocomp.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
www.stuff.co.nz
prospective2.shared.global.fastly.net
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
prospective2.shared.global.fastly.net
analytics.stuff.co.nz
prospective2.shared.global.fastly.net
somniture.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
deaths.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.idm.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
pressfanzone.stuff.co.nz
www.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
*.stuff.co.nz
stuff.co.nz
shop.stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
ssl470689.cloudflaressl.com
www.communications.stuff.co.nz
somniture.stuff.co.nz
stuff.co.nz
*.stuff.co.nz
deaths.stuff.co.nz
stuff.co.nz
knowthecrew.stuff.co.nz
prospective2.shared.global.fastly.net
play.stuff.co.nz
popshop.stuff.co.nz
www.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
playwidget.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
deaths.stuff.co.nz
composer.contentstaging.shift21.ffx.nz
popshop.stuff.co.nz
t.comms.stuff.co.nz
coupons.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
www.stuff.co.nz
social.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
www.stuff.co.nz
coupons.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
playwidget.stuff.co.nz
somniture.stuff.co.nz
somniture.stuff.co.nz
devices.play.stuff.co.nz
my.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
www.stuff.co.nz
subscribers.theage.com.au
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.fairfaxmedia.com.au
prospective2.shared.global.fastly.net
*.stuff.co.nz
stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
test.communications.stuff.co.nz
ssl470690.cloudflaressl.com
pressphotocomp.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
www.stuff.co.nz
prospective2.shared.global.fastly.net
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
prospective2.shared.global.fastly.net
analytics.stuff.co.nz
prospective2.shared.global.fastly.net
somniture.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
prospective2.shared.global.fastly.net
deaths.stuff.co.nz
www.communications.stuff.co.nz
www.stuff.co.nz
*.stuff.co.nz
prospective2.shared.global.fastly.net
*.idm.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
pressfanzone.stuff.co.nz
www.stuff.co.nz
*.preprod.stuff.co.nz
shop.stuff.co.nz
*.stuff.co.nz
events.stuff.co.nz
*.stuff.co.nz
stuff.co.nz
shop.stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
ssl470689.cloudflaressl.com
www.communications.stuff.co.nz
somniture.stuff.co.nz
stuff.co.nz
*.stuff.co.nz
deaths.stuff.co.nz
stuff.co.nz
knowthecrew.stuff.co.nz
prospective2.shared.global.fastly.net
play.stuff.co.nz
popshop.stuff.co.nz
www.stuff.co.nz
shop.stuff.co.nz
*.preprod.stuff.co.nz
stuff.co.nz
www.stuff.co.nz
www.stuff.co.nz
playwidget.stuff.co.nz
prospective2.shared.global.fastly.net
*.stuff.co.nz
Certificate
The complete raw certificate details for www.stuff.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIKETCCCPmgAwIBAgISA5m7eRnkiF3CfMHBq0S5CG5oMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA2MTQyMzI2MDBaFw0x NzA5MTIyMzI2MDBaMBoxGDAWBgNVBAMTD3d3dy5zdHVmZi5jby5uejCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBAN/iWxfXVf2E+bxbCRAQG6NIB/JQ/lqc ztyAkOHiEG8HSVD2wnqt4q6JK/zakSp5wKXT7hxWQD8PJYAmmQVxnRsms5TD3ZSw P+mEDz3oZBwcWd74tZZHeYlfp4A0OO5UlHdFHoACnxDo2/KXvM/dkyT58PoD4cFE 5S7VQlbyuNFj+LEk58AOTQilMjWZPP7RJ6eL2nGK9VqsEbQRDMIQNYL6P//xb8D5 lUHRTLBf9V4K+yl0quuKi0lCbSxviR4ihFSoipcjLtq9OfyRDUptrr0dC5fsmkPh 9M9G29pTyYyrDsGlkiGa5szO1gwaZschrdXExzzcWjlSjsT+qjwhMRECAwEAAaOC Bx8wggcbMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUB5iCgxPosNpKN63Cbc3QjuS0 f0owHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu b3JnLzCCBSgGA1UdEQSCBR8wggUbghU5OS5mYWlyZmF4bWVkaWEuY28ubnqCHGFk dmVydGlzZS5mYWlyZmF4bWVkaWEuY28ubnqCEWFscGhhLnN0dWZmLmNvLm56ghdh cGktcHJlcHJvZC5zdHVmZi5jby5ueoIPYXBpLnN0dWZmLmNvLm56ghJhc3NldHMu c3R1ZmYuY28ubnqCEGJldGEuc3R1ZmYuY28ubnqCGGNhbmFyeS1hbHBoYS5zdHVm Zi5jby5ueoIXY2FuYXJ5LWJldGEuc3R1ZmYuY28ubnqCGmNhbmFyeS1wcmVwcm9k LnN0dWZmLmNvLm56ghJjYW5hcnkuc3R1ZmYuY28ubnqCEmNkbi1teS5zdHVmZi5j by5ueoIRZmlsZTIuc3R1ZmYuY28ubnqCFWktcHJlcHJvZC5zdHVmZi5jby5ueoIV aS5wcmVwcm9kLnN0dWZmLmNvLm56gg1pLnN0dWZmLmNvLm56ghhpbnRlcmFjdGl2 ZXMuc3R1ZmYuY28ubnqCEW1lZGlhLnN0dWZmLmNvLm56ghVucC5mYWlyZmF4bWVk aWEuY28ubnqCGG56Y21zLmZhaXJmYXhtZWRpYS5jby5ueoIXbnpucC5mYWlyZmF4 bWVkaWEuY28ubnqCF3BvcHNob3AtYXBpLnN0dWZmLmNvLm56ghxwb3BzaG9wMi1z dGFnaW5nLnN0dWZmLmNvLm56ghRwb3BzaG9wMi5zdHVmZi5jby5ueoIlcHJvZHVj dGlvbi11Z2MtYXBpLmZhaXJmYXhtZWRpYS5jby5ueoIhcHJvZHVjdGlvbi11Z2Mu ZmFpcmZheG1lZGlhLmNvLm56gh1yZXNvdXJjZXMtcHJlcHJvZC5zdHVmZi5jby5u eoIVcmVzb3VyY2VzLnN0dWZmLmNvLm56ghlzdGFnaW5nLWFwaS5pbmRleGVkLmNv Lm56giBzdGFnaW5nLW56Y21zLmZhaXJmYXhtZWRpYS5jby5ueoIfc3RhZ2luZy1w b3BzaG9wLWFwaS5zdHVmZi5jby5ueoIbc3RhZ2luZy1wb3BzaG9wLnN0dWZmLmNv Lm56giJzdGFnaW5nLXVnYy1hcGkuZmFpcmZheG1lZGlhLmNvLm56gh5zdGFnaW5n LXVnYy5mYWlyZmF4bWVkaWEuY28ubnqCFXN0YWdpbmcuaW5kZXhlZC5jby5ueoIZ c3RhdGljLmZhaXJmYXhtZWRpYS5jby5ueoISc3RhdGljLnN0dWZmLmNvLm56ghNz dGF0aWMyLnN0dWZmLmNvLm56gh10ZWNobm9sb2d5LmZhaXJmYXhtZWRpYS5jby5u eoIedWF0LXVnYy1hcGkuZmFpcmZheG1lZGlhLmNvLm56ghp1YXQtdWdjLmZhaXJm YXhtZWRpYS5jby5ueoITdWdjLWFwaS5zdHVmZi5jby5ueoIPdWdjLnN0dWZmLmNv Lm56ghN3aWRnZXRzLnN0dWZmLmNvLm56gh13d3ctcHJlcHJvZC1hbHBoYS5zdHVm Zi5jby5ueoIcd3d3LXByZXByb2QtYmV0YS5zdHVmZi5jby5ueoIXd3d3LXByZXBy b2Quc3R1ZmYuY28ubnqCFnd3dy5iZXN0b250aGVib3guY28ubnqCGnd3dy5mYWly ZmF4bWFnYXppbmVzLmNvLm56ghd3d3cucHJlcHJvZC5zdHVmZi5jby5ueoIPd3d3 LnN0dWZmLmNvLm56ghJ3d3cyLmluZGV4ZWQuY28ubnowgf4GA1UdIASB9jCB8zAI BgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRp ZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGll cyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBv bGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5 LzANBgkqhkiG9w0BAQsFAAOCAQEAa/r9Ebjl+m9VyUMgQP79LR8nk4hN0yjQEUND JgqtVT1FGojT7Yg+5b4qPySBLDkzP2D9BxM6pVwCrOLDNSyFqx3hh65Gm0fukPea qChpDyiaiAAExAk/d1pp/urG0KovfFb+NOMkvJKzyBEFqwwUNyKP0SjqBvyVtQna TILGet497IeJSqU1rFXl/PaLItThjRDOnfRznUlh9WRVJR3IX5gvmP6P4oPIre29 vCZjbWfWdetUT0fFVcjTdmPgUyQB6WsJ7fXAozKeim95vKG1C7RJBCU0gRPVtOJx 24iuRx0lOdu+CiNNPu0Qt4tqm6MAnDTD1aFWJl+Bt1aM/2Fhqw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+JbF9dV/YT5vFsJEBAb o0gH8lD+WpzO3ICQ4eIQbwdJUPbCeq3irokr/NqRKnnApdPuHFZAPw8lgCaZBXGd GyazlMPdlLA/6YQPPehkHBxZ3vi1lkd5iV+ngDQ47lSUd0UegAKfEOjb8pe8z92T JPnw+gPhwUTlLtVCVvK40WP4sSTnwA5NCKUyNZk8/tEnp4vacYr1WqwRtBEMwhA1 gvo///FvwPmVQdFMsF/1Xgr7KXSq64qLSUJtLG+JHiKEVKiKlyMu2r05/JENSm2u vR0Ll+yaQ+H0z0bb2lPJjKsOwaWSIZrmzM7WDBpmxyGt1cTHPNxaOVKOxP6qPCEx EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313649254362482451286565489785338535112296 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-14 23:26:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-09-12 23:26:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.stuff.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28262762228597764717989003575930204773083775201624874398105223056400558543864048126057126768588535374912137201806844565321135758612526629066551339680400180813871086513460786122140963479728067784118072703684083462419708698335912266760633864253192616298417421898376370099194983222926868100656601090639481625519890862953612796106050784200873575433859978402220241882938702113491359805225753002384923035681858145607641402852316354676016727548418332960616607385593017977099424365538381831507542064632189792841167081382212846112646180373768502789950525830291878601627518108238976412187440676309775421827978813275538959970577 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0798828313e8b0da4a37adc26dcdd08ee4b47f4a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1311 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '99.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advertise.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'assets.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary-alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary-beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canary.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cdn-my.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'file2.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i.preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'i.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'interactives.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'np.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nzcms.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nznp.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'popshop-api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'popshop2-staging.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'popshop2.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production-ugc-api.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'production-ugc.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'resources.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-api.indexed.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-nzcms.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-popshop-api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-popshop.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-ugc-api.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging-ugc.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.indexed.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'static2.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'technology.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-ugc-api.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uat-ugc.fairfaxmedia.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc-api.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ugc.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'widgets.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-preprod-alpha.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-preprod-beta.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bestonthebox.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fairfaxmagazines.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.preprod.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stuff.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www2.indexed.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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