We recently learned that stackoverflow.com (and example given in original post) uses the long chain but only with proper SNI host name. Without that it sends a faulty cert. Someone was going to contact them but seems like a problem still
See
3 Likes