my.kaingaora.govt.nz

- Kainga Ora Homes and Communities -

Issued by DigiCert TLS RSA SHA256 2020 CA1

About this certificate

This digital certificate with serial number 08:21:95:cc:6d:76:14:0b:21:85:40:57:c1:e1:14:9f was issued on by DigiCert Inc.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Kainga Ora Homes and Communities

Organization: Kainga Ora Homes and Communities
Locality: Wellington
Country: NZ

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 08:21:95:cc:6d:76:14:0b:21:85:40:57:c1:e1:14:9f
Serial Number (int): 10808208038063687273690388542653535391
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: c8:50:f7:08:26:61:db:65:d3:af:e9:04:76:5c:33:5c:66:27:7a:1c
AuthorityKeyId: b7:6b:a2:ea:a8:aa:84:8c:79:ea:b4:da:0f:98:b2:c5:95:76:b9:f4

Fingerprint (sha1): c8:54:6b:6e:ec:92:e9:b9:30:b8:4b:23:da:82:e0:30:4b:a5:0d:8b
Fingerprint (sha256): 3c:96:58:a6:5d:4d:84:65:d6:b0:e1:6e:31:c3:4f:34:79:9b:a8:c2:29:a0:2b:19:37:cc:dc:5e:56:6a:56:0b

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl

Check the revocation status for certificate my.kaingaora.govt.nz

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for my.kaingaora.govt.nz

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA384 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

my.kaingaora.govt.nz
my.hnz.co.nz

Other certificates including the domain name kaingaora.govt.nz

(limited to 100 certificates)
my.npe4.kaingaora.govt.nz
careers.hnzc.co.nz
ucweb02.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
access02.kaingaora.govt.nz
iaf.portal.kaingaora.govt.nz
ucweb01.kaingaora.govt.nz
my.kaingaora.govt.nz
ciam.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
myaccount.firsthomepartner.kaingaora.govt.nz
access01.kaingaora.govt.nz
ciam.kaingaora.govt.nz
my.kaingaora.govt.nz
help.cloudpayroll.com.au
kaaingaora.govt.nz
ucweb01.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
my.kaingaora.govt.nz
desk.aquion.com.au
kaaingaora.govt.nz
access02.kaingaora.govt.nz
careers.hnzc.co.nz
live.madeopen.co.uk
kaaingaora.govt.nz
access01.kaingaora.govt.nz
helpdesk.csxpi.com
live.madeopen.co.uk
mail.hnzc.co.nz
desk.mygpmptool.com.au
kaaingaora.govt.nz
careers.hnzc.co.nz
access02.kaingaora.govt.nz
zohosd.mbav.com.au
kaaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
my.kaingaora.govt.nz
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
my.kaingaora.govt.nz
live.madeopen.co.uk
live.madeopen.co.uk
kaaingaora.govt.nz
rawa.kaingaora.govt.nz
my.npe4.kaingaora.govt.nz
live.madeopen.co.uk
kaaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
ucweb02.kaingaora.govt.nz
my.kaingaora.govt.nz
hnzaadexpwe01.hnzc.co.nz
ciam.kaingaora.govt.nz
ciam.npe4.kaingaora.govt.nz
kaaingaora.govt.nz
ucweb02.kaingaora.govt.nz

Certificate

The complete raw certificate details for my.kaingaora.govt.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10808208038063687273690388542653535391
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert TLS RSA SHA256 2020 CA1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-03 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-24 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NZ'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Wellington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Kainga Ora Homes and Communities'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'my.kaingaora.govt.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 815351410830646764211359090163924459982741722977634850268061101416118691997648322658342942212256883069529756056555829642594207550762582610951815897314875067676923494528777477385580289721066640625876255061571999462053615473373713958717503217748114053377419993997261739765345097313665502592997459792405046700817032773551135007872956937120830570224320392441570320547609488308275455366595746141474209024552108094264551282371182348701141727216669354891804101516192018253142079365674405452945318362171115127257246173696922988144667829682685248266414409317954856296001884516893592876023024882906036927791879553827829446363205481510323197822987672642813714186262334813293847998262663727311194831411708891504443990146024421330391309432462631841137347090610576693400798352400425839644500019378431901140457726869103992012529542831533797542220577929193214394470260682754907668565080405975002851451106398723296663070451686249916077144528221448847129180759802060288796269724801307216950049146751810223438867085870800523500233207835783741069494829073613148167091279550996104562598357003675374311738753477602359933278794239493585215724705925847295904246474600965341282153675616287524136090427065332910978351884291838860494253137369603264187843207969
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c850f7082661db65d3afe904765c335c66277a1c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.kaingaora.govt.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.hnz.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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