mtwswim.co.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:23:ba:d8:af:a8:c7:1e:98:42:4a:a4:fe:92:c5:d3:2b:9d was issued on by Let's Encrypt.
With 88 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mtwswim.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:23:ba:d8:af:a8:c7:1e:98:42:4a:a4:fe:92:c5:d3:2b:9dSerial Number (int): 273495102143644660481408018690977188490141
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a6:1b:aa:d3:4f:fd:ca:59:4e:1b:49:1a:44:fc:f5:fb:59:f7:a0:2d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9d:37:f3:8d:74:27:d3:d1:d4:cc:07:a3:c1:99:03:cf:5f:d3:6d:67
Fingerprint (sha256): ff:83:a9:40:f3:38:09:e9:fb:16:28:e3:a4:78:1b:f8:0d:4a:c1:2e:44:fc:ea:db:44:21:88:60:0d:8f:d9:ab
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate mtwswim.co.nz
88
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mtwswim.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
acwpa.co.nz
ashleyrugby.co.nz
badmintonhb.co.nz
bowlsdunedin.co.nz
bowlswanganui.org.nz
boxingnz.org.nz
bushmultisport.org.nz
c33sports.kiwi
cambridgenetball.org.nz
canamju.org
canterburycommunityrugby.co.nz
canterburyrugby.co.nz
clevedoncricketclub.co.nz
clevedonrifleclub.co.nz
cmih.co.nz
countiesbadminton.co.nz
crfu.co.nz
cyclingtimaru.com
devonportsquash.org.nz
distanceridingnewzealand.co.nz
ellesmererugby.org.nz
forcepass.co.nz
gisborneharriers.co.nz
glenburniceskatingclub.co.nz
grammarcarlton.co.nz
grammartec.co.nz
halswellcricket.co.nz
hastingsintermediate.school.nz
mahedrysdale.co.nz
mahedrysdale.com
manukaumasters.co.nz
manurewarugby.co.nz
maorirugby.co.nz
marewa.school.nz
mariancollege.school.nz
maristalbionnetball.co.nz
maristfc.co.nz
maristnh.co.nz
marlboroughtennis.co.nz
martinboroughsquash.co.nz
martinboroughtennisclub.co.nz
mchockey.co.nz
meeanee.school.nz
midcanterburyrugby.co.nz
mttauharagymnastics.co.nz
mtwswim.co.nz
myhockey.co.nz
ncnc.org.nz
netballkapiti.org.nz
netballtaranaki.org.nz
nhcc.co.nz
northharbourcycling.co.nz
oacnz.org
ophc.co.nz
orfu.co.nz
orokohangamusictrust.co.nz
otagoindoorbowls.co.nz
papakurarugby.co.nz
paparoa.school.nz
parkvale.school.nz
pickleball.org.nz
poolburn.school.nz
primarysportwellington.org.nz
rangi.school.nz
rollestonrugby.co.nz
rosmini.school.nz
rotoruahockey.co.nz
safepass.co.nz
smognetball.org.nz
southlandmtbclub.co.nz
southlandtriclub.co.nz
sportsouthland.co.nz
stanthony.ac.nz
stjos.school.nz
suburbsrugby.co.nz
taierirugby.co.nz
taniwha.co.nz
taranakihockey.org.nz
tasmanrugbyreferees.co.nz
technicalharriers.co.nz
timarusquashclub.co.nz
touchcanterbury.co.nz
uniss.co.nz
valleyhockey.org.nz
wellingtontouch.org.nz
whtc.co.nz
willowpark.school.nz
wmsc.org.nz
ashleyrugby.co.nz
badmintonhb.co.nz
bowlsdunedin.co.nz
bowlswanganui.org.nz
boxingnz.org.nz
bushmultisport.org.nz
c33sports.kiwi
cambridgenetball.org.nz
canamju.org
canterburycommunityrugby.co.nz
canterburyrugby.co.nz
clevedoncricketclub.co.nz
clevedonrifleclub.co.nz
cmih.co.nz
countiesbadminton.co.nz
crfu.co.nz
cyclingtimaru.com
devonportsquash.org.nz
distanceridingnewzealand.co.nz
ellesmererugby.org.nz
forcepass.co.nz
gisborneharriers.co.nz
glenburniceskatingclub.co.nz
grammarcarlton.co.nz
grammartec.co.nz
halswellcricket.co.nz
hastingsintermediate.school.nz
mahedrysdale.co.nz
mahedrysdale.com
manukaumasters.co.nz
manurewarugby.co.nz
maorirugby.co.nz
marewa.school.nz
mariancollege.school.nz
maristalbionnetball.co.nz
maristfc.co.nz
maristnh.co.nz
marlboroughtennis.co.nz
martinboroughsquash.co.nz
martinboroughtennisclub.co.nz
mchockey.co.nz
meeanee.school.nz
midcanterburyrugby.co.nz
mttauharagymnastics.co.nz
mtwswim.co.nz
myhockey.co.nz
ncnc.org.nz
netballkapiti.org.nz
netballtaranaki.org.nz
nhcc.co.nz
northharbourcycling.co.nz
oacnz.org
ophc.co.nz
orfu.co.nz
orokohangamusictrust.co.nz
otagoindoorbowls.co.nz
papakurarugby.co.nz
paparoa.school.nz
parkvale.school.nz
pickleball.org.nz
poolburn.school.nz
primarysportwellington.org.nz
rangi.school.nz
rollestonrugby.co.nz
rosmini.school.nz
rotoruahockey.co.nz
safepass.co.nz
smognetball.org.nz
southlandmtbclub.co.nz
southlandtriclub.co.nz
sportsouthland.co.nz
stanthony.ac.nz
stjos.school.nz
suburbsrugby.co.nz
taierirugby.co.nz
taniwha.co.nz
taranakihockey.org.nz
tasmanrugbyreferees.co.nz
technicalharriers.co.nz
timarusquashclub.co.nz
touchcanterbury.co.nz
uniss.co.nz
valleyhockey.org.nz
wellingtontouch.org.nz
whtc.co.nz
willowpark.school.nz
wmsc.org.nz
Other certificates including the domain name mtwswim.co.nz
(limited to 100 certificates)
willowpark.school.nz
sporty.co.nz
sporty.co.nz
meeanee.school.nz
sporty.co.nz
www.taranakihockey.org.nz
www.canterburybaseball.co.nz
southlandmtbclub.co.nz
www.opotikicol.school.nz
www.oacnz.org
sporty.co.nz
distanceridingnewzealand.co.nz
sporty.co.nz
www.rollestonrugby.co.nz
sporty.co.nz
sporty.co.nz
canterburybaseball.co.nz
www.wmsc.org.nz
uniss.co.nz
rosmini.school.nz
www.badmintonhb.co.nz
canterburybaseball.co.nz
meeanee.school.nz
www.mttauharagymnastics.co.nz
yes.stockx.co.nz
mtwswim.co.nz
www.schoolground.com
sporty.co.nz
sporty.co.nz
meeanee.school.nz
sporty.co.nz
www.taranakihockey.org.nz
www.canterburybaseball.co.nz
southlandmtbclub.co.nz
www.opotikicol.school.nz
www.oacnz.org
sporty.co.nz
distanceridingnewzealand.co.nz
sporty.co.nz
www.rollestonrugby.co.nz
sporty.co.nz
sporty.co.nz
canterburybaseball.co.nz
www.wmsc.org.nz
uniss.co.nz
rosmini.school.nz
www.badmintonhb.co.nz
canterburybaseball.co.nz
meeanee.school.nz
www.mttauharagymnastics.co.nz
yes.stockx.co.nz
mtwswim.co.nz
www.schoolground.com
Certificate
The complete raw certificate details for mtwswim.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMaTCCC1GgAwIBAgISAyO62K+oxx6YQkqk/pLF0yudMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAxMjkwMjM1MDZaFw0x OTA0MjkwMjM1MDZaMBgxFjAUBgNVBAMTDW10d3N3aW0uY28ubnowggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJRwrP151t4YxDx7hP+YX4355LT1dZ/PWw V/cfnKijTbiVs1e680yQWCweALHXwNwh8Dl2zS57SAOrgADPxoSDACNLjsmDJky6 r753yV8rw88LHbhoW3oMuNrkHt+xM8NIY/bhkzjySbRTxPl0zyE464Z3ixTMbglJ z15qoVtpcWwv1iUUcLdanSJz/48n47Lg49e3jWPXy8p0B9IQ0nH+QW7CBjqYC+dy XNnJS/eylgvHhaKdoMdFoc6tOLSNovCQkgSEfDXFPPUaJazF3U/ixMJGAJ1t+oxT ddvS7wyvE2aeLQAR6oZBLMM0iU4DgFP7Po9kFffHp5Y8jm+H0YRNAgMBAAGjggl5 MIIJdTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKYbqtNP/cpZThtJGkT89ftZ96At MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMw YTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9y ZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9y Zy8wggcuBgNVHREEggclMIIHIYILYWN3cGEuY28ubnqCEWFzaGxleXJ1Z2J5LmNv Lm56ghFiYWRtaW50b25oYi5jby5ueoISYm93bHNkdW5lZGluLmNvLm56ghRib3ds c3dhbmdhbnVpLm9yZy5ueoIPYm94aW5nbnoub3JnLm56ghVidXNobXVsdGlzcG9y dC5vcmcubnqCDmMzM3Nwb3J0cy5raXdpghdjYW1icmlkZ2VuZXRiYWxsLm9yZy5u eoILY2FuYW1qdS5vcmeCHmNhbnRlcmJ1cnljb21tdW5pdHlydWdieS5jby5ueoIV Y2FudGVyYnVyeXJ1Z2J5LmNvLm56ghljbGV2ZWRvbmNyaWNrZXRjbHViLmNvLm56 ghdjbGV2ZWRvbnJpZmxlY2x1Yi5jby5ueoIKY21paC5jby5ueoIXY291bnRpZXNi YWRtaW50b24uY28ubnqCCmNyZnUuY28ubnqCEWN5Y2xpbmd0aW1hcnUuY29tghZk ZXZvbnBvcnRzcXVhc2gub3JnLm56gh5kaXN0YW5jZXJpZGluZ25ld3plYWxhbmQu Y28ubnqCFWVsbGVzbWVyZXJ1Z2J5Lm9yZy5ueoIPZm9yY2VwYXNzLmNvLm56ghZn aXNib3JuZWhhcnJpZXJzLmNvLm56ghxnbGVuYnVybmljZXNrYXRpbmdjbHViLmNv Lm56ghRncmFtbWFyY2FybHRvbi5jby5ueoIQZ3JhbW1hcnRlYy5jby5ueoIVaGFs c3dlbGxjcmlja2V0LmNvLm56gh5oYXN0aW5nc2ludGVybWVkaWF0ZS5zY2hvb2wu bnqCEm1haGVkcnlzZGFsZS5jby5ueoIQbWFoZWRyeXNkYWxlLmNvbYIUbWFudWth dW1hc3RlcnMuY28ubnqCE21hbnVyZXdhcnVnYnkuY28ubnqCEG1hb3JpcnVnYnku Y28ubnqCEG1hcmV3YS5zY2hvb2wubnqCF21hcmlhbmNvbGxlZ2Uuc2Nob29sLm56 ghltYXJpc3RhbGJpb25uZXRiYWxsLmNvLm56gg5tYXJpc3RmYy5jby5ueoIObWFy aXN0bmguY28ubnqCF21hcmxib3JvdWdodGVubmlzLmNvLm56ghltYXJ0aW5ib3Jv dWdoc3F1YXNoLmNvLm56gh1tYXJ0aW5ib3JvdWdodGVubmlzY2x1Yi5jby5ueoIO bWNob2NrZXkuY28ubnqCEW1lZWFuZWUuc2Nob29sLm56ghhtaWRjYW50ZXJidXJ5 cnVnYnkuY28ubnqCGW10dGF1aGFyYWd5bW5hc3RpY3MuY28ubnqCDW10d3N3aW0u Y28ubnqCDm15aG9ja2V5LmNvLm56ggtuY25jLm9yZy5ueoIUbmV0YmFsbGthcGl0 aS5vcmcubnqCFm5ldGJhbGx0YXJhbmFraS5vcmcubnqCCm5oY2MuY28ubnqCGW5v cnRoaGFyYm91cmN5Y2xpbmcuY28ubnqCCW9hY256Lm9yZ4IKb3BoYy5jby5ueoIK b3JmdS5jby5ueoIab3Jva29oYW5nYW11c2ljdHJ1c3QuY28ubnqCFm90YWdvaW5k b29yYm93bHMuY28ubnqCE3BhcGFrdXJhcnVnYnkuY28ubnqCEXBhcGFyb2Euc2No b29sLm56ghJwYXJrdmFsZS5zY2hvb2wubnqCEXBpY2tsZWJhbGwub3JnLm56ghJw b29sYnVybi5zY2hvb2wubnqCHXByaW1hcnlzcG9ydHdlbGxpbmd0b24ub3JnLm56 gg9yYW5naS5zY2hvb2wubnqCFHJvbGxlc3RvbnJ1Z2J5LmNvLm56ghFyb3NtaW5p LnNjaG9vbC5ueoITcm90b3J1YWhvY2tleS5jby5ueoIOc2FmZXBhc3MuY28ubnqC EnNtb2duZXRiYWxsLm9yZy5ueoIWc291dGhsYW5kbXRiY2x1Yi5jby5ueoIWc291 dGhsYW5kdHJpY2x1Yi5jby5ueoIUc3BvcnRzb3V0aGxhbmQuY28ubnqCD3N0YW50 aG9ueS5hYy5ueoIPc3Rqb3Muc2Nob29sLm56ghJzdWJ1cmJzcnVnYnkuY28ubnqC EXRhaWVyaXJ1Z2J5LmNvLm56gg10YW5pd2hhLmNvLm56ghV0YXJhbmFraWhvY2tl eS5vcmcubnqCGXRhc21hbnJ1Z2J5cmVmZXJlZXMuY28ubnqCF3RlY2huaWNhbGhh cnJpZXJzLmNvLm56ghZ0aW1hcnVzcXVhc2hjbHViLmNvLm56ghV0b3VjaGNhbnRl cmJ1cnkuY28ubnqCC3VuaXNzLmNvLm56ghN2YWxsZXlob2NrZXkub3JnLm56ghZ3 ZWxsaW5ndG9udG91Y2gub3JnLm56ggp3aHRjLmNvLm56ghR3aWxsb3dwYXJrLnNj aG9vbC5ueoILd21zYy5vcmcubnowTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYB BAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5v cmcwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQApPFGWVMg5ZbqqUPxYB9S3b79Y eily3KTDDPTlRUf0eAAAAWiXrLrgAAAEAwBGMEQCIBFOE0XEYDRfMS5zH6wG1ns0 OhkOmBfYbQfkq6cHq4b8AiBS2fFlbeZMr4z0Ub43eIfY3HIpGYqN4j2hWXBK2ngR 1QB2AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAABaJesvNYAAAQD AEcwRQIgIdkOHiiRyP0wwLOl+EH6a7J1fai4aBxvHr7WCCnqDyECIQDAhX635wPM C6Y7KVxBzWEd8PUQjBGC1AsoIxBu6pYL7DANBgkqhkiG9w0BAQsFAAOCAQEAG59i 85V0Jqvbbb2xUwUi3u8styXKlxDfH9gJhYuobE4QyziUdQVznpy/GM8yrDo0fnTD c4oggOxbwcWyJtEeMJCW1TtYpTFlPnNi7knO8PHe8vFiFzmZKtQbQEa0/yoODPAP RFkOjZO1SnJIBjNHGfEZYAycZmYI+FrfBGuMIRkJhB7SVqj9rrmydp7nkJ0JB4PE BUkSq8M9WjZL59FraF4s6O0srRjxmyUsYNZlBPLa61f3xh54sISCSN/t4v4BNDI8 Z9EC+irpaj+Cjyy4QEssuLqgrs6kDnWMSNQPLPvfKbBbB0Cy9yHvwomNYaiy44Jl ZZG57Hsg6sLTHALb+g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiUcKz9edbeGMQ8e4T/mF +N+eS09XWfz1sFf3H5yoo024lbNXuvNMkFgsHgCx18DcIfA5ds0ue0gDq4AAz8aE gwAjS47JgyZMuq++d8lfK8PPCx24aFt6DLja5B7fsTPDSGP24ZM48km0U8T5dM8h OOuGd4sUzG4JSc9eaqFbaXFsL9YlFHC3Wp0ic/+PJ+Oy4OPXt41j18vKdAfSENJx /kFuwgY6mAvnclzZyUv3spYLx4WinaDHRaHOrTi0jaLwkJIEhHw1xTz1GiWsxd1P 4sTCRgCdbfqMU3Xb0u8MrxNmni0AEeqGQSzDNIlOA4BT+z6PZBX3x6eWPI5vh9GE TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273495102143644660481408018690977188490141 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-29 02:35:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-04-29 02:35:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mtwswim.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17329680011565608878953556702411237811104573690987263691500825919187720597335150996427636463914074615917486005328613061465259704843968113156779546170659171759915489343462658383514132241481406886163920729833117327020638245183234123061588020550465318352081509765374459435243520053869127329276919348556563489012010284493304851325717879231766253705456444159848446053480340403449260645248074738700593628825469577244670255118484045410998079335279524254703687075270216254547081711035818367707750658736508102099176497665122309117704071532100561385117537322042501068714563972709781096349975340095570705650430909450711012049997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a61baad34ffdca594e1b491a44fcf5fb59f7a02d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1829 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'acwpa.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ashleyrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'badmintonhb.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bowlsdunedin.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bowlswanganui.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'boxingnz.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bushmultisport.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'c33sports.kiwi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cambridgenetball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canamju.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canterburycommunityrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canterburyrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clevedoncricketclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clevedonrifleclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cmih.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'countiesbadminton.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crfu.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cyclingtimaru.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'devonportsquash.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'distanceridingnewzealand.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ellesmererugby.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forcepass.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gisborneharriers.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'glenburniceskatingclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grammarcarlton.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'grammartec.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'halswellcricket.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hastingsintermediate.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mahedrysdale.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mahedrysdale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manukaumasters.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'manurewarugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maorirugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marewa.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mariancollege.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maristalbionnetball.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maristfc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maristnh.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marlboroughtennis.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'martinboroughsquash.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'martinboroughtennisclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mchockey.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meeanee.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'midcanterburyrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mttauharagymnastics.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mtwswim.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myhockey.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ncnc.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'netballkapiti.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'netballtaranaki.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nhcc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'northharbourcycling.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oacnz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ophc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orfu.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orokohangamusictrust.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'otagoindoorbowls.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'papakurarugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paparoa.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'parkvale.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pickleball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'poolburn.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'primarysportwellington.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rangi.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rollestonrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rosmini.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rotoruahockey.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'safepass.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smognetball.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southlandmtbclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southlandtriclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sportsouthland.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stanthony.ac.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stjos.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'suburbsrugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taierirugby.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taniwha.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taranakihockey.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tasmanrugbyreferees.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'technicalharriers.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'timarusquashclub.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'touchcanterbury.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uniss.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valleyhockey.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wellingtontouch.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whtc.co.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'willowpark.school.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wmsc.org.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016897acbae000000403004630440220114e1345c460345f312e731fac06d67b343a190e9817d86d07e4aba707ab86fc022052d9f1656de64caf8cf451be377887d8dc7229198a8de23da159704ada7811d5007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016897acbcd60000040300473045022021d90e1e2891c8fd30c0b3a5f841fa6bb2757da8b8681c6f1ebed60829ea0f21022100c0857eb7e703cc0ba63b295c41cd611df0f5108c1182d40b2823106eea960bec . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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