www.mysporty.co.nz
Issued by R3
About this certificate
This digital certificate with serial number 04:bf:c8:fe:f9:f0:86:5b:7b:82:83:cc:92:74:78:3f:de:00 was issued on by Let's Encrypt.
With 26 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.mysporty.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:bf:c8:fe:f9:f0:86:5b:7b:82:83:cc:92:74:78:3f:de:00Serial Number (int): 413710245320875616028312229192793956802048
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2a:1c:40:05:6d:ab:da:94:f8:05:8f:33:7e:80:e0:24:f3:d8:88:f3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d3:e1:1b:8b:08:29:6f:f0:d3:f6:56:8d:72:58:1b:eb:5c:fa:ef:d8
Fingerprint (sha256): 7a:08:ff:01:39:dc:ea:0b:51:4c:35:48:02:c3:d4:2f:42:5b:53:74:07:39:49:f0:9e:34:6a:71:09:e7:e2:16
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.mysporty.co.nz
26
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mysporty.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.baybowler.co.nz
www.bmxnz.co.nz
www.cartertonnetball.club
www.centralmotorspeedway.co.nz
www.cmtouch.co.nz
www.cyclingchb.co.nz
www.hbfutsal.co.nz
www.kiwirandonneurs.org.nz
www.mahurangirugbyclub.co.nz
www.mymotorsportnz.co.nz
www.mysporty.co.nz
www.mytouch.co.nz
www.mytouch.nz
www.nightowlsportsadmin.co.nz
www.papertiger.org.nz
www.paremataboatingclub.org.nz
www.pinesvolleyball.co.nz
www.pinesvolleyball.com
www.raglanfootball.nz
www.schoolboss.co.nz
www.sportstartshere.co.nz
www.sportstartshere.nz
www.touchtoolbox.nz
www.waterview.school.nz
www.whakatipurowingclub.co.nz
www.youthtown.org.nz
www.bmxnz.co.nz
www.cartertonnetball.club
www.centralmotorspeedway.co.nz
www.cmtouch.co.nz
www.cyclingchb.co.nz
www.hbfutsal.co.nz
www.kiwirandonneurs.org.nz
www.mahurangirugbyclub.co.nz
www.mymotorsportnz.co.nz
www.mysporty.co.nz
www.mytouch.co.nz
www.mytouch.nz
www.nightowlsportsadmin.co.nz
www.papertiger.org.nz
www.paremataboatingclub.org.nz
www.pinesvolleyball.co.nz
www.pinesvolleyball.com
www.raglanfootball.nz
www.schoolboss.co.nz
www.sportstartshere.co.nz
www.sportstartshere.nz
www.touchtoolbox.nz
www.waterview.school.nz
www.whakatipurowingclub.co.nz
www.youthtown.org.nz
Other certificates including the domain name mysporty.co.nz
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.mysporty.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHVzCCBj+gAwIBAgISBL/I/vnwhlt7goPMknR4P94AMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMDYyMjU2MDhaFw0yNDAyMDQyMjU2MDdaMB0xGzAZBgNVBAMT End3dy5teXNwb3J0eS5jby5uejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPtvc2KerZniWUoHG88VJgl8fJ/NAdNCyaG9TJpc+EqeeER/mpd/47delemL bkC7L8jUOpxVvbhPPc5RyKyHBxwrVMAiX8o05N3KAwMLntBW+ni8Bxkb32+DB3ZO XcpjCi8Alh6c4FuIwlI00cOhYmcFcMfOThZKfj/O/n8ZsIgypGS2jF0ToDTmd+6i JTtnkeBk3OM47IopIpNnk5ob4E+yJUcnqQU8oxGcbyFoeB9Qafms6sqPLK5f3S2N 2vvBSKHY0QejLNlVFUswJFm1rOplYvy1w8kVBynscLF8weuko761I76PEh3jKC+c jtsecuGaa3WUA2rmE8DnMIhe3SUCAwEAAaOCBHowggR2MA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUKhxABW2r2pT4BY8zfoDgJPPYiPMwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wggKDBgNVHREEggJ6MIICdoITd3d3LmJheWJvd2xlci5jby5ueoIPd3d3 LmJteG56LmNvLm56ghl3d3cuY2FydGVydG9ubmV0YmFsbC5jbHVigh53d3cuY2Vu dHJhbG1vdG9yc3BlZWR3YXkuY28ubnqCEXd3dy5jbXRvdWNoLmNvLm56ghR3d3cu Y3ljbGluZ2NoYi5jby5ueoISd3d3LmhiZnV0c2FsLmNvLm56ghp3d3cua2l3aXJh bmRvbm5ldXJzLm9yZy5ueoIcd3d3Lm1haHVyYW5naXJ1Z2J5Y2x1Yi5jby5ueoIY d3d3Lm15bW90b3JzcG9ydG56LmNvLm56ghJ3d3cubXlzcG9ydHkuY28ubnqCEXd3 dy5teXRvdWNoLmNvLm56gg53d3cubXl0b3VjaC5ueoIdd3d3Lm5pZ2h0b3dsc3Bv cnRzYWRtaW4uY28ubnqCFXd3dy5wYXBlcnRpZ2VyLm9yZy5ueoIed3d3LnBhcmVt YXRhYm9hdGluZ2NsdWIub3JnLm56ghl3d3cucGluZXN2b2xsZXliYWxsLmNvLm56 ghd3d3cucGluZXN2b2xsZXliYWxsLmNvbYIVd3d3LnJhZ2xhbmZvb3RiYWxsLm56 ghR3d3cuc2Nob29sYm9zcy5jby5ueoIZd3d3LnNwb3J0c3RhcnRzaGVyZS5jby5u eoIWd3d3LnNwb3J0c3RhcnRzaGVyZS5ueoITd3d3LnRvdWNodG9vbGJveC5ueoIX d3d3LndhdGVydmlldy5zY2hvb2wubnqCHXd3dy53aGFrYXRpcHVyb3dpbmdjbHVi LmNvLm56ghR3d3cueW91dGh0b3duLm9yZy5uejATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1ADtTd3U+LbmAToswWwb+QDtn2E/D 9Me9AA0tcm/h+tQXAAABi6cQqooAAAQDAEYwRAIgIigh4Hs9LUngJ2hAA5RCcjNy 95W+ot91iyMBg4Y9ouoCIEd4kvjQ86CvUrcqQGqadezfKJgnFoYN7F6Y8m7scbzA AHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGLpxCqxgAABAMA RjBEAiBTX1N0lN5saeKc4X/Xwh8FRrbrWy2e8ZfshC35B2CgBQIgUeaB+BxLXFEb iWL+dVbztYSkTF0Cj+/SqEhRXvfhA2kwDQYJKoZIhvcNAQELBQADggEBALOJpdHC OyJYPHQijVANZ+4KbM+QvTzP0ks2WYJgfZPCRtJ/qa4NZncRehVPxCa4jkZ9h895 i6bRzODmGVljeKdjphU2IPpIyJCz9s3NOv8X4PSaGsHkfLk+CdiQTJAYUhxC+Xun pmYzWLqo4/SApp2uiyChTTWzzujcgSSyELDoLyBD53VixxEEbX9VzKJjZxxCDKlQ uo/pp+mteGiyPmPYQ55jnCDytGlzP6IdnZNHtpQhOZzfMA+YlMX4V4MaGzYgXhBq Vw+NDHRIsmsfwS5L0HTj4s40TnElqCtTqlXQcR4vJwt1D+68nEf6ZWZXQwLXoVtW nCjIiy4Wdx8zXgA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+29zYp6tmeJZSgcbzxUm CXx8n80B00LJob1Mmlz4Sp54RH+al3/jt16V6YtuQLsvyNQ6nFW9uE89zlHIrIcH HCtUwCJfyjTk3coDAwue0Fb6eLwHGRvfb4MHdk5dymMKLwCWHpzgW4jCUjTRw6Fi ZwVwx85OFkp+P87+fxmwiDKkZLaMXROgNOZ37qIlO2eR4GTc4zjsiikik2eTmhvg T7IlRyepBTyjEZxvIWh4H1Bp+azqyo8srl/dLY3a+8FIodjRB6Ms2VUVSzAkWbWs 6mVi/LXDyRUHKexwsXzB66SjvrUjvo8SHeMoL5yO2x5y4ZprdZQDauYTwOcwiF7d JQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 413710245320875616028312229192793956802048 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-06 22:56:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-04 22:56:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mysporty.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31740772946600350421518205788326356254452327801859168653912174602828269762846075266949436416845551987382495343672172668942826362248215130146434092983457192168133378965354959290739129652766733991301334345269336672774881627362783279740571940655802976845479971409797843803943419380658745809701109703714550934488944799989293161210969295020509219583607627811514535490054648087680825586780091614299431963487945797392284920150986452500548402040341162272812722286880454258225769643083432712296518636444026614073232972018139576392063500533199059144125301575017430418826710633769874247484483952770268615133062115906444943351077 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2a1c40056dabda94f8058f337e80e024f3d888f3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (634 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.baybowler.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bmxnz.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cartertonnetball.club' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.centralmotorspeedway.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cmtouch.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cyclingchb.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hbfutsal.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kiwirandonneurs.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mahurangirugbyclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mymotorsportnz.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mysporty.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mytouch.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mytouch.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nightowlsportsadmin.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.papertiger.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.paremataboatingclub.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pinesvolleyball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pinesvolleyball.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.raglanfootball.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.schoolboss.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sportstartshere.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sportstartshere.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.touchtoolbox.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.waterview.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.whakatipurowingclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.youthtown.org.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ba710aa8a00000403004630440220222821e07b3d2d49e0276840039442723372f795bea2df758b230183863da2ea0220477892f8d0f3a0af52b72a406a9a75ecdf28982716860dec5e98f26eec71bcc000750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ba710aac600000403004630440220535f537494de6c69e29ce17fd7c21f0546b6eb5b2d9ef197ec842df90760a005022051e681f81c4b5c511b8962fe7556f3b584a44c5d028fefd2a848515ef7e10369 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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