maristalbion.co.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e1:d6:34:7e:7e:f8:e5:e1:cf:99:dc:39:18:36:50:a3:2c was issued on by Let's Encrypt.
With 87 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=maristalbion.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e1:d6:34:7e:7e:f8:e5:e1:cf:99:dc:39:18:36:50:a3:2cSerial Number (int): 338185117708669898756687270225806783193900
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 07:a6:63:a2:21:e9:0c:5a:c7:a5:81:2e:1a:e4:4e:4b:c8:4b:c1:49
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): fa:07:71:94:78:c1:d5:21:bf:d8:f2:37:46:01:cc:09:7d:2e:91:c6
Fingerprint (sha256): ce:2c:42:7a:9c:ef:c1:8e:5f:51:82:a3:05:46:bf:67:fb:29:9b:7f:40:a0:ab:8f:33:7f:d7:81:b4:c5:bd:33
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate maristalbion.co.nz
87
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for maristalbion.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aff.org.nz
aoraki-dragons.co.nz
ardmoremarist.co.nz
arra.org.nz
bayolympic.co.nz
bbafc.org.nz
bopbadminton.co.nz
bowlssouthland.co.nz
brooklyncroquetclub.org
burwoodafc.co.nz
businesshb.nz
canoeslalomnz.org.nz
capitalfootball.org.nz
carltonjuniorsrugby.co.nz
clevedontennisclub.co.nz
cmydt.co.nz
cornwallcricket.co.nz
druryfootball.co.nz
ecbafc.co.nz
foxtongolf.co.nz
gksports.co.nz
glenviewsoccer.co.nz
greenhithefootball.org
hbcc.org.nz
helensvillerugby.co.nz
hockeymanawatu.org.nz
howicknetball.org.nz
karakasportspark.co.nz
katikatifc.co.nz
kbhs.school.nz
mainlandfootball.co.nz
maristalbion.co.nz
marlboroughfootball.co.nz
mbnc.co.nz
mrra.co.nz
nelsonbaysfootball.co.nz
newplymouthcroquetclub.co.nz
nff.org.nz
nhrra.co.nz
norths.co.nz
northsrugby.co.nz
nzfootball.co.nz
oratiaunited.co.nz
otahuhusoccer.org.nz
papakuracityfc.org.nz
papakuranetball.org.nz
papamoafootballclub.co.nz
papamoafootballclub.nz
papanuiredwoodafc.co.nz
papatoetoeunited.co.nz
parklandsunited.co.nz
parklandsunitedsportsclub.net.nz
pcbasketballclub.co.nz
phoenixsynchro.co.nz
ravensbourne.co.nz
redbeachsquashclub.co.nz
rivertongolf.co.nz
sasfootball.club
sasfootball.org.nz
schoolground.co.nz
schoolground.nz
scpacers.co.nz
slalomnz.org.nz
southlandfootball.org.nz
speedway.co.nz
sportcanterbury.org.nz
sportnorthland.co.nz
sportnorthland.nz
sporttasman.org.nz
sportwaitakere.co.nz
sportwaitakere.nz
sydenhamrugby.co.nz
takapunaafc.co.nz
taradalefootball.org.nz
tcafc.co.nz
teawamutuafc.co.nz
thesalmonrun.nz
unimountafc.org.nz
waibopfootball.co.nz
waihekeunited.org.nz
waihoraclaytarget.co.nz
waitakerecityfc.org.nz
waitakererugby.co.nz
wakefieldfc.nz
westernafc.com
worldseriescricket.co.nz
wssfa.nz
aoraki-dragons.co.nz
ardmoremarist.co.nz
arra.org.nz
bayolympic.co.nz
bbafc.org.nz
bopbadminton.co.nz
bowlssouthland.co.nz
brooklyncroquetclub.org
burwoodafc.co.nz
businesshb.nz
canoeslalomnz.org.nz
capitalfootball.org.nz
carltonjuniorsrugby.co.nz
clevedontennisclub.co.nz
cmydt.co.nz
cornwallcricket.co.nz
druryfootball.co.nz
ecbafc.co.nz
foxtongolf.co.nz
gksports.co.nz
glenviewsoccer.co.nz
greenhithefootball.org
hbcc.org.nz
helensvillerugby.co.nz
hockeymanawatu.org.nz
howicknetball.org.nz
karakasportspark.co.nz
katikatifc.co.nz
kbhs.school.nz
mainlandfootball.co.nz
maristalbion.co.nz
marlboroughfootball.co.nz
mbnc.co.nz
mrra.co.nz
nelsonbaysfootball.co.nz
newplymouthcroquetclub.co.nz
nff.org.nz
nhrra.co.nz
norths.co.nz
northsrugby.co.nz
nzfootball.co.nz
oratiaunited.co.nz
otahuhusoccer.org.nz
papakuracityfc.org.nz
papakuranetball.org.nz
papamoafootballclub.co.nz
papamoafootballclub.nz
papanuiredwoodafc.co.nz
papatoetoeunited.co.nz
parklandsunited.co.nz
parklandsunitedsportsclub.net.nz
pcbasketballclub.co.nz
phoenixsynchro.co.nz
ravensbourne.co.nz
redbeachsquashclub.co.nz
rivertongolf.co.nz
sasfootball.club
sasfootball.org.nz
schoolground.co.nz
schoolground.nz
scpacers.co.nz
slalomnz.org.nz
southlandfootball.org.nz
speedway.co.nz
sportcanterbury.org.nz
sportnorthland.co.nz
sportnorthland.nz
sporttasman.org.nz
sportwaitakere.co.nz
sportwaitakere.nz
sydenhamrugby.co.nz
takapunaafc.co.nz
taradalefootball.org.nz
tcafc.co.nz
teawamutuafc.co.nz
thesalmonrun.nz
unimountafc.org.nz
waibopfootball.co.nz
waihekeunited.org.nz
waihoraclaytarget.co.nz
waitakerecityfc.org.nz
waitakererugby.co.nz
wakefieldfc.nz
westernafc.com
worldseriescricket.co.nz
wssfa.nz
Other certificates including the domain name maristalbion.co.nz
(limited to 100 certificates)
www.sportycrm.com
amdg.org.nz
belmontparkbowlingclub.co.nz
www.giafc.co.nz
sporty.co.nz
belmontparkbowlingclub.co.nz
www.sportsground.com
sporty.co.nz
squashauckland.org.nz
sporty.co.nz
www.sportsground.com
sporty.co.nz
www.marlboroughtrampingclub.co.nz
www.pukekohesoftball.co.nz
sporty.co.nz
www.eden.rugby
amdg.org.nz
sporty.co.nz
sporty.co.nz
maristalbion.co.nz
www.mooloocommunityrugby.co.nz
sporty.co.nz
belmontparkbowlingclub.co.nz
sporty.co.nz
www.sporty.org.nz
www.christchurchmetrocricket.co.nz
www.ams.school.nz
www.skeggsfoundation.nz
www.cfc.co.nz
trfu.co.nz
sporty.co.nz
amdg.org.nz
belmontparkbowlingclub.co.nz
www.giafc.co.nz
sporty.co.nz
belmontparkbowlingclub.co.nz
www.sportsground.com
sporty.co.nz
squashauckland.org.nz
sporty.co.nz
www.sportsground.com
sporty.co.nz
www.marlboroughtrampingclub.co.nz
www.pukekohesoftball.co.nz
sporty.co.nz
www.eden.rugby
amdg.org.nz
sporty.co.nz
sporty.co.nz
maristalbion.co.nz
www.mooloocommunityrugby.co.nz
sporty.co.nz
belmontparkbowlingclub.co.nz
sporty.co.nz
www.sporty.org.nz
www.christchurchmetrocricket.co.nz
www.ams.school.nz
www.skeggsfoundation.nz
www.cfc.co.nz
trfu.co.nz
sporty.co.nz
Certificate
The complete raw certificate details for maristalbion.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMNjCCCx6gAwIBAgISA+HWNH5++OXhz5ncORg2UKMsMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjYyMjUzMzdaFw0x OTA2MjQyMjUzMzdaMB0xGzAZBgNVBAMTEm1hcmlzdGFsYmlvbi5jby5uejCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJnBMNfWTr3x0EawxaOYO5R1wz+W Ohf/O8s49L2e+8+NmOf1asNE+kVZlH16Gy7hfX7zHx+g1z/24cePrZkAr+kclSJP vJXVbBD6qMcMTcI2Md4Sno5SxYFPV2LtJdPBDDP0tMc9MWVmzz0H1uGdcWEb+bno abvEDPha/D1iEe1eXatn2gTelaaoxj63QwGStbQSkAT8h31fKpRXLgKUnRrNX+tq 4TaLjRqevL3/9ejrvaOMJ0OmQlW8lZC6JJGEAJth3oPUuqmJTINKg4I/RtxozF85 shrSxsmkTTBLTXUxX9KSMqwWPbqwldCBcS4IaIi7cqzdbKqtm/jg5uwKJlMCAwEA AaOCCUEwggk9MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUB6ZjoiHpDFrHpYEuGuRO S8hLwUkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzCCBvYGA1UdEQSCBu0wggbpggphZmYub3JnLm56ghRhb3Jha2ktZHJh Z29ucy5jby5ueoITYXJkbW9yZW1hcmlzdC5jby5ueoILYXJyYS5vcmcubnqCEGJh eW9seW1waWMuY28ubnqCDGJiYWZjLm9yZy5ueoISYm9wYmFkbWludG9uLmNvLm56 ghRib3dsc3NvdXRobGFuZC5jby5ueoIXYnJvb2tseW5jcm9xdWV0Y2x1Yi5vcmeC EGJ1cndvb2RhZmMuY28ubnqCDWJ1c2luZXNzaGIubnqCFGNhbm9lc2xhbG9tbnou b3JnLm56ghZjYXBpdGFsZm9vdGJhbGwub3JnLm56ghljYXJsdG9uanVuaW9yc3J1 Z2J5LmNvLm56ghhjbGV2ZWRvbnRlbm5pc2NsdWIuY28ubnqCC2NteWR0LmNvLm56 ghVjb3Jud2FsbGNyaWNrZXQuY28ubnqCE2RydXJ5Zm9vdGJhbGwuY28ubnqCDGVj YmFmYy5jby5ueoIQZm94dG9uZ29sZi5jby5ueoIOZ2tzcG9ydHMuY28ubnqCFGds ZW52aWV3c29jY2VyLmNvLm56ghZncmVlbmhpdGhlZm9vdGJhbGwub3JnggtoYmNj Lm9yZy5ueoIWaGVsZW5zdmlsbGVydWdieS5jby5ueoIVaG9ja2V5bWFuYXdhdHUu b3JnLm56ghRob3dpY2tuZXRiYWxsLm9yZy5ueoIWa2FyYWthc3BvcnRzcGFyay5j by5ueoIQa2F0aWthdGlmYy5jby5ueoIOa2Jocy5zY2hvb2wubnqCFm1haW5sYW5k Zm9vdGJhbGwuY28ubnqCEm1hcmlzdGFsYmlvbi5jby5ueoIZbWFybGJvcm91Z2hm b290YmFsbC5jby5ueoIKbWJuYy5jby5ueoIKbXJyYS5jby5ueoIYbmVsc29uYmF5 c2Zvb3RiYWxsLmNvLm56ghxuZXdwbHltb3V0aGNyb3F1ZXRjbHViLmNvLm56ggpu ZmYub3JnLm56ggtuaHJyYS5jby5ueoIMbm9ydGhzLmNvLm56ghFub3J0aHNydWdi eS5jby5ueoIQbnpmb290YmFsbC5jby5ueoISb3JhdGlhdW5pdGVkLmNvLm56ghRv dGFodWh1c29jY2VyLm9yZy5ueoIVcGFwYWt1cmFjaXR5ZmMub3JnLm56ghZwYXBh a3VyYW5ldGJhbGwub3JnLm56ghlwYXBhbW9hZm9vdGJhbGxjbHViLmNvLm56ghZw YXBhbW9hZm9vdGJhbGxjbHViLm56ghdwYXBhbnVpcmVkd29vZGFmYy5jby5ueoIW cGFwYXRvZXRvZXVuaXRlZC5jby5ueoIVcGFya2xhbmRzdW5pdGVkLmNvLm56giBw YXJrbGFuZHN1bml0ZWRzcG9ydHNjbHViLm5ldC5ueoIWcGNiYXNrZXRiYWxsY2x1 Yi5jby5ueoIUcGhvZW5peHN5bmNocm8uY28ubnqCEnJhdmVuc2JvdXJuZS5jby5u eoIYcmVkYmVhY2hzcXVhc2hjbHViLmNvLm56ghJyaXZlcnRvbmdvbGYuY28ubnqC EHNhc2Zvb3RiYWxsLmNsdWKCEnNhc2Zvb3RiYWxsLm9yZy5ueoISc2Nob29sZ3Jv dW5kLmNvLm56gg9zY2hvb2xncm91bmQubnqCDnNjcGFjZXJzLmNvLm56gg9zbGFs b21uei5vcmcubnqCGHNvdXRobGFuZGZvb3RiYWxsLm9yZy5ueoIOc3BlZWR3YXku Y28ubnqCFnNwb3J0Y2FudGVyYnVyeS5vcmcubnqCFHNwb3J0bm9ydGhsYW5kLmNv Lm56ghFzcG9ydG5vcnRobGFuZC5ueoISc3BvcnR0YXNtYW4ub3JnLm56ghRzcG9y dHdhaXRha2VyZS5jby5ueoIRc3BvcnR3YWl0YWtlcmUubnqCE3N5ZGVuaGFtcnVn YnkuY28ubnqCEXRha2FwdW5hYWZjLmNvLm56ghd0YXJhZGFsZWZvb3RiYWxsLm9y Zy5ueoILdGNhZmMuY28ubnqCEnRlYXdhbXV0dWFmYy5jby5ueoIPdGhlc2FsbW9u cnVuLm56ghJ1bmltb3VudGFmYy5vcmcubnqCFHdhaWJvcGZvb3RiYWxsLmNvLm56 ghR3YWloZWtldW5pdGVkLm9yZy5ueoIXd2FpaG9yYWNsYXl0YXJnZXQuY28ubnqC FndhaXRha2VyZWNpdHlmYy5vcmcubnqCFHdhaXRha2VyZXJ1Z2J5LmNvLm56gg53 YWtlZmllbGRmYy5ueoIOd2VzdGVybmFmYy5jb22CGHdvcmxkc2VyaWVzY3JpY2tl dC5jby5ueoIId3NzZmEubnowTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC 3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcw ggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIg CMY3NXnmEHvMVgAAAWm8bHGpAAAEAwBGMEQCIHUKJ1bWAaMGUJDHHjJnmZk67S3A 6sh0G4RZr2SoWKIzAiBJLIOOmdNvYKurP8/PHBTlHJygKq1esTWjqh1x63sOywB2 AGPy283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABabxschgAAAQDAEcw RQIhAJM2SzF8I8djEJgGTiSY1+cE5y1Lj+Ri97c3K9riXSS8AiBtoDEhzv5vIxWm iFf49idU25eqE6y9f8frA4gg57WnhTANBgkqhkiG9w0BAQsFAAOCAQEACGGqxFL1 LTSaFaDevlJLileC2O4xHe5G4oxhVPO3H1m4xHoaFOflU9Zv3jUqDJaK4P1JMEac rCflM9GMDRuYwCEmtNoMnbW/WrJ//orQ4SsSmVLNs7Y1YwUA9CQMwH5hYs/GdWxx kn2SilMPatcTWRAGdBk/1X1mifIgzT7hOzkAfVv/4rMgRvY96RDigTK//egNIlIS jLTsmSSgfH7xLd5SVBg80FYju3AOTnzesjfRokn0wS/blLPzlXanqt10npSzVDHU wRuNWEEwc0Xb9lZ+4Wzqo92ONR0pAUbbUm0mvKIfBsPh16GKyaMmhHNTOe4qLAxU 7SuAZdG36W0Cpg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcEw19ZOvfHQRrDFo5g7 lHXDP5Y6F/87yzj0vZ77z42Y5/Vqw0T6RVmUfXobLuF9fvMfH6DXP/bhx4+tmQCv 6RyVIk+8ldVsEPqoxwxNwjYx3hKejlLFgU9XYu0l08EMM/S0xz0xZWbPPQfW4Z1x YRv5uehpu8QM+Fr8PWIR7V5dq2faBN6VpqjGPrdDAZK1tBKQBPyHfV8qlFcuApSd Gs1f62rhNouNGp68vf/16Ou9o4wnQ6ZCVbyVkLokkYQAm2Heg9S6qYlMg0qDgj9G 3GjMXzmyGtLGyaRNMEtNdTFf0pIyrBY9urCV0IFxLghoiLtyrN1sqq2b+ODm7Aom UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 338185117708669898756687270225806783193900 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-26 22:53:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-24 22:53:37 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maristalbion.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19409726590648971489226457341348022838804989564343237875234422777296250233977175206314944109897595184362050122122492916257605614819253116859967930201482394119881308701453988066006752841642569874936490520250579738483374875542484569357509636714387753422336341180577413900800389519631721912047806479296495353141530049136505083504262980577741710523040874176761090582521901683294047505915722903989231567034413743898264412215703233747131902923948311809254675292676564240718850769340578253913467530968144457134912585410940261473137964798756156979378251794434034552201006076895096197400933184804935606303593234627424300967507 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 07a663a221e90c5ac7a5812e1ae44e4bc84bc149 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1773 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aff.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aoraki-dragons.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ardmoremarist.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arra.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bayolympic.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bbafc.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bopbadminton.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bowlssouthland.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brooklyncroquetclub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'burwoodafc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'businesshb.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canoeslalomnz.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capitalfootball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'carltonjuniorsrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clevedontennisclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmydt.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cornwallcricket.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'druryfootball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ecbafc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'foxtongolf.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gksports.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glenviewsoccer.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'greenhithefootball.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hbcc.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'helensvillerugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hockeymanawatu.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'howicknetball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'karakasportspark.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'katikatifc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kbhs.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mainlandfootball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maristalbion.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marlboroughfootball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mbnc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mrra.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nelsonbaysfootball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newplymouthcroquetclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nff.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nhrra.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'norths.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'northsrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nzfootball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oratiaunited.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'otahuhusoccer.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papakuracityfc.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papakuranetball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papamoafootballclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papamoafootballclub.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papanuiredwoodafc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papatoetoeunited.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parklandsunited.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parklandsunitedsportsclub.net.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pcbasketballclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'phoenixsynchro.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ravensbourne.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redbeachsquashclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rivertongolf.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sasfootball.club' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sasfootball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'schoolground.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'schoolground.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scpacers.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'slalomnz.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southlandfootball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'speedway.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportcanterbury.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportnorthland.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportnorthland.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sporttasman.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportwaitakere.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportwaitakere.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sydenhamrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'takapunaafc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taradalefootball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tcafc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'teawamutuafc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thesalmonrun.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unimountafc.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waibopfootball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waihekeunited.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waihoraclaytarget.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waitakerecityfc.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'waitakererugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wakefieldfc.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'westernafc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worldseriescricket.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wssfa.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169bc6c71a900000403004630440220750a2756d601a3065090c71e326799993aed2dc0eac8741b8459af64a858a2330220492c838e99d36f60abab3fcfcf1c14e51c9ca02aad5eb135a3aa1d71eb7b0ecb00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169bc6c7218000004030047304502210093364b317c23c7631098064e2498d7e704e72d4b8fe462f7b7372bdae25d24bc02206da03121cefe6f2315a68857f8f62754db97aa13acbd7fc7eb038820e7b5a785 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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