dit2.cnmobile.globalcommonbuild.citibank.com
- Citigroup Inc. -
Issued by Symantec Class 3 Extended Validation SHA256 SSL CA
About this certificate
This digital certificate with serial number 34:dc:2d:1d:ca:a4:0f:12:27:34:d1:c0:6b:e4:4e:b5 was issued on by Symantec Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Citigroup Inc.
Company registration number:
2154254
Organization: Citigroup Inc.
Organization unit: Citibank NA
Organization: Citigroup Inc.
Organization unit: Citibank NA
Address:
399 Park Avenue
Postal code: 10043
State / Province: New York
Locality: New York
Country: US
Postal code: 10043
State / Province: New York
Locality: New York
Country: US
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Symantec Trust Network
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 34:dc:2d:1d:ca:a4:0f:12:27:34:d1:c0:6b:e4:4e:b5Serial Number (int): 70263076158456471696801797095238684341
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: b2:6d:e3:e4:14:0f:8c:3c:73:42:a6:5a:99:1a:d3:14:75:b6:86:db
Fingerprint (sha1): f1:e1:83:77:ad:38:b9:7b:26:6f:e7:21:c8:92:bb:c2:20:5c:00:70
Fingerprint (sha256): 03:4e:c7:52:41:cb:ea:dc:95:b1:83:70:27:28:76:ed:d7:54:d3:2c:93:d8:9b:44:32:4b:e9:d3:a5:ea:a9:72
Issuing Certificate URL: http://sh.symcb.com/sh.crt
Revocation information
OCSP Server: http://sh.symcd.comCRL Distribution Point: http://sh.symcb.com/sh.crl
Check the revocation status for certificate dit2.cnmobile.globalcommonbuild.citibank.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dit2.cnmobile.globalcommonbuild.citibank.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dit2.cnmobile.globalcommonbuild.citibank.com
Other certificates including the domain name citibank.com
(limited to 100 certificates)
cust.exacttarget.com
sit2.idmobile.globalcommonbuild.citibank.com
mobileuat.privatebank.citibank.com
sit1.asia.citibank.com
fxdocs.cititreasury.argentina.citibank.com
www.citibank.com
uat.citi.com
cbgsalesforcesit.citibank.com
uat1.digitalengagement.citibank.com
uat.accountonline.com
sit2.idmobile.globalcommonbuild.citibank.com
m.citiprivatebankinviewqa.americas.privatebank.citibank.com
www.privatebank.citibank.com
uat1.content.api.citibank.com
citiretailservices.dit.citibank.com
portal.brazil.citibank.com
idmobile.gcb.globalcommonbuild.uat1.citibank.com
sit2.sgmobile.globalcommonbuild.citibank.com
shim.citiprivatebankinviewqa.emea.privatebank.citibank.com
campo.argentina.citibank.com
cust.exacttarget.com
mobileuat.privatebank.citibank.com
uat2.marketingportal.citibank.com
www.citibank.com
citibusinessonline.da-us.citibank.com
uat2.thgcb.globalcommonbuild.citibank.com
www.uatmerchant.asia.citibank.com
wpm02.eccmp.com
feedback.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.ew8.privatebank.citibank.com
metrics1.citibank.com
dit2b.hkmobile.globalcommonbuild.citibank.com
www2.citibank.com
portal.brazil.citibank.com
israelsfe.citibank.com
www.uatmerchantserver.citibank.com
sit08.mobile.citibank.com
WWW.ASIAEXTENDEDSERVICES.CITIBANK.COM
www.merchant.citibank.com
uat06.mobile.citibank.com
sit2.hkmobile.globalcommonbuild.citibank.com
sit2.ipbmobile.globalcommonbuild.citibank.com
uat1.asia.citibank.com
dit2.cnmobile.globalcommonbuild.citibank.com
disputes.accountonline.com
www.privatebank.citibank.com
uat.citi.com
citiprivatebankinview.privatebank.citibank.com
serviceemail2.citibank.com
www.cdn.citibank.com
www.citiconnect.asia.citibank.com
online.citibank.com
uat2.vngcb.globalcommonbuild.citibank.com
sit09.mobile.citibank.com
b2bservices.citibank.com
uat.citi.com
centralamerica.citibank.com
uat2.cdn.citibank.com
sit11.mobile.citibank.com
shim.citiprivatebankinview.emea.privatebank.citibank.com
uat2.content.api.citibank.com
dit02.mobile.citibank.com
www.asiaextendedservices.citibank.com
sit2.mobile.aucolesfinancial.globalcommonbuild.citibank.com
www.ceemea.citibank.com
offer.citibank.com
uat2.socialconnect.globalcommonbuild.citibank.com
www.ceemea.citibank.com
marketingportal.citibank.com
www.accountonline.com
sit2.ipbmobile.globalcommonbuild.citibank.com
wpm02.eccmp.com
www.citibank.com
cust.exacttarget.com
marketingportal.citibank.com
uat2.vnmobile.globalcommonbuild.citibank.com
webcashmanagercitidirect.citibank.com
legal.brazil.citibank.com
websocketsit.americas.privatebank.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.qacobrosonline.citibank.com
sgmobile.ipb.globalcommonbuild.uat1.citibank.com
uat1.phgcb.globalcommonbuild.citibank.com
sit2.mycbz.globalcommonbuild.citibank.com
uat1.vngcb.globalcommonbuild.citibank.com
cust.exacttarget.com
m.uat.asia.citibank.com
uat1.online.citi.com
corporateportal.brazil.citibank.com
campo.argentina.citibank.com
uat07.mobile.citibank.com
relsalesforcedev.citibank.com
cbnasalesforceprod.citibank.com
www.asiaextendedservicesuat1.citibank.com
sit08.mobile.citibank.com
hkmobile.gcb.globalcommonbuild.uat.citibank.com
alerts.citibank.com
wpm01.eccmp.com
dit02.mobile.citibank.com
sit2.idmobile.globalcommonbuild.citibank.com
mobileuat.privatebank.citibank.com
sit1.asia.citibank.com
fxdocs.cititreasury.argentina.citibank.com
www.citibank.com
uat.citi.com
cbgsalesforcesit.citibank.com
uat1.digitalengagement.citibank.com
uat.accountonline.com
sit2.idmobile.globalcommonbuild.citibank.com
m.citiprivatebankinviewqa.americas.privatebank.citibank.com
www.privatebank.citibank.com
uat1.content.api.citibank.com
citiretailservices.dit.citibank.com
portal.brazil.citibank.com
idmobile.gcb.globalcommonbuild.uat1.citibank.com
sit2.sgmobile.globalcommonbuild.citibank.com
shim.citiprivatebankinviewqa.emea.privatebank.citibank.com
campo.argentina.citibank.com
cust.exacttarget.com
mobileuat.privatebank.citibank.com
uat2.marketingportal.citibank.com
www.citibank.com
citibusinessonline.da-us.citibank.com
uat2.thgcb.globalcommonbuild.citibank.com
www.uatmerchant.asia.citibank.com
wpm02.eccmp.com
feedback.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.ew8.privatebank.citibank.com
metrics1.citibank.com
dit2b.hkmobile.globalcommonbuild.citibank.com
www2.citibank.com
portal.brazil.citibank.com
israelsfe.citibank.com
www.uatmerchantserver.citibank.com
sit08.mobile.citibank.com
WWW.ASIAEXTENDEDSERVICES.CITIBANK.COM
www.merchant.citibank.com
uat06.mobile.citibank.com
sit2.hkmobile.globalcommonbuild.citibank.com
sit2.ipbmobile.globalcommonbuild.citibank.com
uat1.asia.citibank.com
dit2.cnmobile.globalcommonbuild.citibank.com
disputes.accountonline.com
www.privatebank.citibank.com
uat.citi.com
citiprivatebankinview.privatebank.citibank.com
serviceemail2.citibank.com
www.cdn.citibank.com
www.citiconnect.asia.citibank.com
online.citibank.com
uat2.vngcb.globalcommonbuild.citibank.com
sit09.mobile.citibank.com
b2bservices.citibank.com
uat.citi.com
centralamerica.citibank.com
uat2.cdn.citibank.com
sit11.mobile.citibank.com
shim.citiprivatebankinview.emea.privatebank.citibank.com
uat2.content.api.citibank.com
dit02.mobile.citibank.com
www.asiaextendedservices.citibank.com
sit2.mobile.aucolesfinancial.globalcommonbuild.citibank.com
www.ceemea.citibank.com
offer.citibank.com
uat2.socialconnect.globalcommonbuild.citibank.com
www.ceemea.citibank.com
marketingportal.citibank.com
www.accountonline.com
sit2.ipbmobile.globalcommonbuild.citibank.com
wpm02.eccmp.com
www.citibank.com
cust.exacttarget.com
marketingportal.citibank.com
uat2.vnmobile.globalcommonbuild.citibank.com
webcashmanagercitidirect.citibank.com
legal.brazil.citibank.com
websocketsit.americas.privatebank.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.qacobrosonline.citibank.com
sgmobile.ipb.globalcommonbuild.uat1.citibank.com
uat1.phgcb.globalcommonbuild.citibank.com
sit2.mycbz.globalcommonbuild.citibank.com
uat1.vngcb.globalcommonbuild.citibank.com
cust.exacttarget.com
m.uat.asia.citibank.com
uat1.online.citi.com
corporateportal.brazil.citibank.com
campo.argentina.citibank.com
uat07.mobile.citibank.com
relsalesforcedev.citibank.com
cbnasalesforceprod.citibank.com
www.asiaextendedservicesuat1.citibank.com
sit08.mobile.citibank.com
hkmobile.gcb.globalcommonbuild.uat.citibank.com
alerts.citibank.com
wpm01.eccmp.com
dit02.mobile.citibank.com
Certificate
The complete raw certificate details for dit2.cnmobile.globalcommonbuild.citibank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHTjCCBjagAwIBAgIQNNwtHcqkDxInNNHAa+ROtTANBgkqhkiG9w0BAQsFADCB ijELMAkGA1UEBhMCVVMxHTAbBgNVBAoTFFN5bWFudGVjIENvcnBvcmF0aW9uMR8w HQYDVQQLExZTeW1hbnRlYyBUcnVzdCBOZXR3b3JrMTswOQYDVQQDEzJTeW1hbnRl YyBDbGFzcyAzIEV4dGVuZGVkIFZhbGlkYXRpb24gU0hBMjU2IFNTTCBDQTAeFw0x NjA3MjcwMDAwMDBaFw0xODA3MjgyMzU5NTlaMIIBJDETMBEGCysGAQQBgjc8AgED EwJVUzEZMBcGCysGAQQBgjc8AgECDAhEZWxhd2FyZTEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEDAOBgNVBAUTBzIxNTQyNTQxCzAJBgNVBAYTAlVTMQ4w DAYDVQQRDAUxMDA0MzERMA8GA1UECAwITmV3IFlvcmsxETAPBgNVBAcMCE5ldyBZ b3JrMRgwFgYDVQQJDA8zOTkgUGFyayBBdmVudWUxFzAVBgNVBAoMDkNpdGlncm91 cCBJbmMuMRQwEgYDVQQLDAtDaXRpYmFuayBOQTE1MDMGA1UEAwwsZGl0Mi5jbm1v YmlsZS5nbG9iYWxjb21tb25idWlsZC5jaXRpYmFuay5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCR+yPtgCTviQptkuE003GsMQfsC0O1TDX+z8hj +QCSaOHhbsdCU6VL57rr4NtCKkek6L6FjvS6D8TlR8OJe50A1TLi6Tw+rRgE72uz eUWMdP/SGFrCbYWbe3D5OmSJC7FhGfPlG8svPJg7ZCt039txZF7Ur0G8/7q3eiQX JbPm7nZsyyG3TFjRxnpOpWQoMTteyt+bWjJrUAZWoUosdd6P/u46E6hByn5toOPd IphPHDNe+bAcro8lK1k3mo0hiY3yiJRoZHjhol4/EWaiZQtA1ZvQR8WkouCPIRiB qWzyM9bmbgBApfOk+3TyOx6yfjolUgsR6z11aSlvezV7o8bXAgMBAAGjggMRMIID DTA3BgNVHREEMDAugixkaXQyLmNubW9iaWxlLmdsb2JhbGNvbW1vbmJ1aWxkLmNp dGliYW5rLmNvbTAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwbwYDVR0gBGgwZjAHBgVngQwBATBbBgtghkgB hvhFAQcXBjBMMCMGCCsGAQUFBwIBFhdodHRwczovL2Quc3ltY2IuY29tL2NwczAl BggrBgEFBQcCAjAZDBdodHRwczovL2Quc3ltY2IuY29tL3JwYTAfBgNVHSMEGDAW gBSybePkFA+MPHNCplqZGtMUdbaG2zArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8v c2guc3ltY2IuY29tL3NoLmNybDBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGG E2h0dHA6Ly9zaC5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9zaC5zeW1j Yi5jb20vc2guY3J0MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdQDd6x0reg1P piCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVYt7MKxAAAEAwBGMEQCIHbRZjJp quQR2MxQOKWRUB6Q3rlgl86+R1HLrKciPiskAiAToaOa8cY2H4Ty1TxwoEhMbgTk 7zeuo7576vpJLBh8TAB3AKS5CZC0GFgUh7sTosxncAo8NZgE+RvfuON3zQ7IDdwQ AAABVi3sw0wAAAQDAEgwRgIhAMn+3JI6QdiEqSqfn26VHAR761gFLCl60/XBkYAF XY1jAiEAybyfj/7sHz+MWVd32DaXUlGw8EDUACypzp+lThOtx90AdgBo9pj4H2SC vjqM7rkoHUz8cVFdZ5PURNEKZ6y7T0/7xAAAAVYt7MNNAAAEAwBHMEUCICG6xdZ7 SIJO8en47zhNVcZIbzBPFugtWzs7kv35wZ5WAiEAupagxIOZ+EXNWakHj/J4Sty0 Vu9/ZLOOzTwDes69s8swDQYJKoZIhvcNAQELBQADggEBAEWf490VKFj3GLm6tpof C3lOK5pAlTQka+n1X/oaj/tQBNJXytJXsNEOaqqP19ADJXV9ghbi9kJSRpnU05tv cGnpRbU5eBwjsxCti9O+2a4EK80X3yLM5zYnCP5sXF0q5hhV/m2xGzZBdL134KDU I2T5bb2RlCIk6ywLuK6Y4fv+0uFnVjo2de21CQM8nilKsYzeV1c6rTY+c06qwM5w DAl+qbVbXDFa+z6+9oZZ4y0P1LbYn8+Us23NG7/aKwDWLOiQf4DZicmqNmD+S5jO ZAlTP5+1IhfTSGHd2Ma2U2lhr8ZeL43hrsWmj7lopMMw5Fg+K08/QaiF1+S/y6rx riA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfsj7YAk74kKbZLhNNNx rDEH7AtDtUw1/s/IY/kAkmjh4W7HQlOlS+e66+DbQipHpOi+hY70ug/E5UfDiXud ANUy4uk8Pq0YBO9rs3lFjHT/0hhawm2Fm3tw+TpkiQuxYRnz5RvLLzyYO2QrdN/b cWRe1K9BvP+6t3okFyWz5u52bMsht0xY0cZ6TqVkKDE7Xsrfm1oya1AGVqFKLHXe j/7uOhOoQcp+baDj3SKYTxwzXvmwHK6PJStZN5qNIYmN8oiUaGR44aJePxFmomUL QNWb0EfFpKLgjyEYgals8jPW5m4AQKXzpPt08jsesn46JVILEes9dWkpb3s1e6PG 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 70263076158456471696801797095238684341 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 Extended Validation SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2154254' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '10043' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '399 Park Avenue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Citigroup Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Citibank NA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'dit2.cnmobile.globalcommonbuild.citibank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18428396138725743760760258661081175950031502970670689512423630749848268079035381696272091485185338565951988524619622500867301141204181899801840666460531376268779279940706017772131898200367316085721354336302294937433048070346853318134475298439421002900145626184135711865056947036962451000195453615658006035199449818359673298671166998857585137696426712602091192294257896754833942707067335932958754428580353882556023372470501097100416489250368935979222967914237307631574576571287376432029359853673706362474881187700702261980493571956863288499802603281520032317005807475905510848990744218238108777278597070402439616906967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dit2.cnmobile.globalcommonbuild.citibank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.23.6 (VeriSign EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b26de3e4140f8c3c7342a65a991ad31475b686db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sh.symcb.com/sh.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sh.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sh.symcb.com/sh.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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