www.horizons.govt.nz
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 22:83:37:cd:7a:13:75:c7:44:6b:5c:96:10:6c:a6:04 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.horizons.govt.nz
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 22:83:37:cd:7a:13:75:c7:44:6b:5c:96:10:6c:a6:04Serial Number (int): 45875074557237415345616937616101123588
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 66:35:f1:4c:51:69:5c:b0:04:ff:58:a5:0b:c6:cf:c8:c6:95:92:79
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 04:3c:7e:7b:b5:92:0f:4e:44:c0:67:33:0d:b5:a1:b0:b7:0b:60:c4
Fingerprint (sha256): 63:f3:29:e0:55:3e:dc:c1:a3:ec:ae:a1:ce:fb:90:53:18:83:d0:1c:56:c7:3e:6a:5f:ea:fc:d1:38:21:76:62
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate www.horizons.govt.nz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.horizons.govt.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.horizons.govt.nz
horizons.govt.nz
horizons.govt.nz
Other certificates including the domain name horizons.govt.nz
(limited to 100 certificates)
support.canterbury.qld.edu.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
www.horizons.govt.nz
remote.horizons.govt.nz
dev.horizons.govt.nz
dev.horizons.govt.nz
*.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
helpdesk.thescapegroup.com.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
servicedesk.bluechipit.com.au
servicedesk.yooralla.com.au
www.horizons.govt.nz
esm.parracatholic.org
test.barkuma.com.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
help.cygnetwest.com
support.calvary.qld.edu.au
www.horizons.govt.nz
help.cygnetwest.com
servicedesk.yooralla.com.au
esm.parracatholic.org
www.horizons.govt.nz
servicedesk.eqt.com.au
help.cygnetwest.com
www.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.eqt.com.au
servicedesk.eqt.com.au
www.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
helpdesk.grv.org.au
envirodata.horizons.govt.nz
esm.parracatholic.org
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
theportal.horizons.govt.nz
support.canterbury.qld.edu.au
servicedesk.hrha.org.au
envirodata.horizons.govt.nz
theportal.horizons.govt.nz
test.barkuma.com.au
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
remote.horizons.govt.nz
dev.horizons.govt.nz
servicedesk.yooralla.com.au
help.cygnetwest.com
support.calvary.qld.edu.au
test.barkuma.com.au
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
remote.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.bluechipit.com.au
test.barkuma.com.au
helpdesk.thescapegroup.com.au
envirodata.horizons.govt.nz
*.horizons.govt.nz
servicedesk.bluechipit.com.au
esm.parracatholic.org
*.horizons.govt.nz
horizons.govt.nz
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
dev.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
support.canterbury.qld.edu.au
dev.horizons.govt.nz
servicedesk.bluechipit.com.au
envirodata.horizons.govt.nz
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
support.canterbury.qld.edu.au
remote.horizons.govt.nz
servicedesk.yooralla.com.au
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.eqt.com.au
envirodata.horizons.govt.nz
helpdesk.grv.org.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
www.horizons.govt.nz
remote.horizons.govt.nz
dev.horizons.govt.nz
dev.horizons.govt.nz
*.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
helpdesk.thescapegroup.com.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
servicedesk.bluechipit.com.au
servicedesk.yooralla.com.au
www.horizons.govt.nz
esm.parracatholic.org
test.barkuma.com.au
theportal.horizons.govt.nz
helpdesk.grv.org.au
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
help.cygnetwest.com
support.calvary.qld.edu.au
www.horizons.govt.nz
help.cygnetwest.com
servicedesk.yooralla.com.au
esm.parracatholic.org
www.horizons.govt.nz
servicedesk.eqt.com.au
help.cygnetwest.com
www.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.eqt.com.au
servicedesk.eqt.com.au
www.horizons.govt.nz
envirodata.horizons.govt.nz
servicedesk.yooralla.com.au
helpdesk.grv.org.au
envirodata.horizons.govt.nz
esm.parracatholic.org
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
theportal.horizons.govt.nz
support.canterbury.qld.edu.au
servicedesk.hrha.org.au
envirodata.horizons.govt.nz
theportal.horizons.govt.nz
test.barkuma.com.au
servicedesk.yooralla.com.au
servicedesk.yooralla.com.au
remote.horizons.govt.nz
dev.horizons.govt.nz
servicedesk.yooralla.com.au
help.cygnetwest.com
support.calvary.qld.edu.au
test.barkuma.com.au
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
envirodata.horizons.govt.nz
remote.horizons.govt.nz
support.calvary.qld.edu.au
servicedesk.bluechipit.com.au
test.barkuma.com.au
helpdesk.thescapegroup.com.au
envirodata.horizons.govt.nz
*.horizons.govt.nz
servicedesk.bluechipit.com.au
esm.parracatholic.org
*.horizons.govt.nz
horizons.govt.nz
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
dev.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.yooralla.com.au
portal.thescapegroup.com.au
support.canterbury.qld.edu.au
dev.horizons.govt.nz
servicedesk.bluechipit.com.au
envirodata.horizons.govt.nz
wireless.horizons.govt.nz
servicedesk.yooralla.com.au
support.canterbury.qld.edu.au
remote.horizons.govt.nz
servicedesk.yooralla.com.au
www.horizons.govt.nz
servicedesk.cockburn.wa.gov.au
servicedesk.eqt.com.au
envirodata.horizons.govt.nz
helpdesk.grv.org.au
Certificate
The complete raw certificate details for www.horizons.govt.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQjCCBSqgAwIBAgIQIoM3zXoTdcdEa1yWEGymBDANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTIzMDUwMTAwMDAwMFoXDTI0MDUzMTIzNTk1OVowHzEdMBsGA1UEAxMUd3d3 Lmhvcml6b25zLmdvdnQubnowggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFgS+k+WNqYhsMuqxXi+Gbgy8uXjhQ1UPubgMMAu/9hf9NfE6tCT63VvGuncIu QoPQDg7HyhYRmb3pYEiWbm4JLVG8jWiWn1pKM3DzZp1BLSrTkbBviaqU3SoHiFBr gU87++C4OwYEiVgKBVckWIshzyAh22dzEejOTl7gsSTSgcs4AYO3YaIXgIRS9xVa N91pAX1H6R4VGwtu691TYoO8oivW15yWme5Kdu70GOBo02d0ulgq0h9N5kFe0cLV wPNR4r73/RptQtLCGPDokYRhaCaocuEGJ4OyDoPKyp21EUymsksk2Vh6Wte12KUf nXiegQ8O1GcKn20lLcIBi5c9AgMBAAGjggMHMIIDAzAfBgNVHSMEGDAWgBSNjF7E VK2K4Xfpm/mbBeG4AY1h4TAdBgNVHQ4EFgQUZjXxTFFpXLAE/1ilC8bPyMaVknkw DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAgcwJTAjBggrBgEF BQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQIBMIGEBggrBgEF BQcBAQR4MHYwTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2Vj dGlnb1JTQURvbWFpblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYB BQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMDEGA1UdEQQqMCiCFHd3dy5o b3Jpem9ucy5nb3Z0Lm56ghBob3Jpem9ucy5nb3Z0Lm56MIIBfQYKKwYBBAHWeQIE AgSCAW0EggFpAWcAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAA AYfVRHIMAAAEAwBHMEUCIQCIGcTQ0CU/Rkqz9c+/t7jZhcEsDrevnEwlgI0WGWDj hAIgSqV+G1f46Z+am9YXSePOrj3x2IuesHz+nceOK2HPg+IAdQDatr9rP7W2Ip+b wrtca+hwkXFsu1GEhTS9pD0wSNf7qwAAAYfVRHJWAAAEAwBGMEQCIE6UxDvTbzSQ C+JCQrJF4oh48AGgswFdU5fm7a9Pkb0DAiBwFVYTmEq2Ahrr6hShey+17n8TBZJt 8sk75CFx0iyiFAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAAB h9VEcnoAAAQDAEcwRQIhAMr9/8Y9KqR7VJaoAsjixJ6PSjYvrdW/NP9KsRavpnH/ AiBAVsktM/Z/U+0E3RDGClmikuURYgfnoz05N+Ldh5GEnzANBgkqhkiG9w0BAQsF AAOCAQEAESW7gQZISteYEA4GdP3ACCzBVH6yNb6Pm9yb1DX0gpQrDiUCGPSmXVJX 2Nd4f1Bl27tDGFyafjn6L2cjDlzL8m9J8cNWgSRi+IYRe5PRyEriGdGQOTFtPjrk Le9R1PLRVTghc4yMUNrdUa5NDj9qTs3wTU/YUjXPRNCv12ZjiWf6eDXXlDUssLD7 klqUJqBLFJ7A35VK39IenHXBArQwdeIjJ6tYGWwTQNgycC8wJfL2GIAeTywpcpvo YE+5EGXpeYggeCQWYwtl9KQ07hGglpVdvtH3TH7DFGLYx9vFYzu6gQE/cYmxPViX envMjzBhIn97IxRYKWIPVG+Uk0BRDQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYEvpPljamIbDLqsV4vh m4MvLl44UNVD7m4DDALv/YX/TXxOrQk+t1bxrp3CLkKD0A4Ox8oWEZm96WBIlm5u CS1RvI1olp9aSjNw82adQS0q05Gwb4mqlN0qB4hQa4FPO/vguDsGBIlYCgVXJFiL Ic8gIdtncxHozk5e4LEk0oHLOAGDt2GiF4CEUvcVWjfdaQF9R+keFRsLbuvdU2KD vKIr1teclpnuSnbu9BjgaNNndLpYKtIfTeZBXtHC1cDzUeK+9/0abULSwhjw6JGE YWgmqHLhBieDsg6DysqdtRFMprJLJNlYelrXtdilH514noEPDtRnCp9tJS3CAYuX PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 45875074557237415345616937616101123588 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-01 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-31 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.horizons.govt.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24932650123957612277930722411273609244504983525475566697706595363723893796801144150571813359775187866557078219213685347811888079204286600350833224459566181358192307645894859953803587062392190890520994272006630613483117275303090892748765486399313593849622112002213436124786944024822701701121761961872122680331896846140950839476942190748058839932008693387170920313310649883692413835326438928796811124732733543609607248557216968351652213710262139047963295184775502138986026201722718275199852665620258131238846451001302565838800092586467554437473584749279598380273512782225441481408456146632012909935831217379788125345597 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6635f14c51695cb004ff58a50bc6cfc8c6959279 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.horizons.govt.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horizons.govt.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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