www.ceemea.citibank.com
- Citigroup Inc. -
Issued by DigiCert SHA2 Extended Validation Server CA
About this certificate
This digital certificate with serial number 05:77:e0:a7:8d:c9:a3:53:a4:4f:e1:15:4b:e9:a2:e1 was issued on by DigiCert Inc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Citigroup Inc.
Company registration number:
2154254
Organization: Citigroup Inc.
Organization unit: Web Hosting Group
Organization: Citigroup Inc.
Organization unit: Web Hosting Group
State / Province:
New York
Locality: New York
Country: US
Locality: New York
Country: US
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:77:e0:a7:8d:c9:a3:53:a4:4f:e1:15:4b:e9:a2:e1Serial Number (int): 7268579839825733471842097122043863777
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId: 25:27:e9:b8:ca:65:98:44:3c:ef:a9:45:e3:8b:6f:b0:ec:8c:dc:aa
AuthorityKeyId: 3d:d3:50:a5:d6:a0:ad:ee:f3:4a:60:0a:65:d3:21:d4:f8:f8:d6:0f
Fingerprint (sha1): df:df:4e:02:68:cf:4e:46:ca:f5:0e:46:fd:ae:1c:18:bc:e9:f9:95
Fingerprint (sha256): 04:9c:dd:36:52:6c:6f:12:b2:d2:07:4f:e0:fc:de:42:66:34:1a:ef:f5:c2:6f:cb:35:1b:9d:bb:ed:85:eb:29
Issuing Certificate URL: http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCRL Distribution Point: http://crl3.digicert.com/sha2-ev-server-g2.crl
CRL Distribution Point: http://crl4.digicert.com/sha2-ev-server-g2.crl
Check the revocation status for certificate www.ceemea.citibank.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ceemea.citibank.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.ceemea.citibank.com
Other certificates including the domain name citibank.com
(limited to 100 certificates)
cust.exacttarget.com
sit2.idmobile.globalcommonbuild.citibank.com
mobileuat.privatebank.citibank.com
sit1.asia.citibank.com
fxdocs.cititreasury.argentina.citibank.com
www.citibank.com
uat.citi.com
cbgsalesforcesit.citibank.com
uat1.digitalengagement.citibank.com
uat.accountonline.com
sit2.idmobile.globalcommonbuild.citibank.com
m.citiprivatebankinviewqa.americas.privatebank.citibank.com
www.privatebank.citibank.com
uat1.content.api.citibank.com
citiretailservices.dit.citibank.com
portal.brazil.citibank.com
idmobile.gcb.globalcommonbuild.uat1.citibank.com
sit2.sgmobile.globalcommonbuild.citibank.com
shim.citiprivatebankinviewqa.emea.privatebank.citibank.com
campo.argentina.citibank.com
cust.exacttarget.com
mobileuat.privatebank.citibank.com
uat2.marketingportal.citibank.com
www.citibank.com
citibusinessonline.da-us.citibank.com
uat2.thgcb.globalcommonbuild.citibank.com
www.uatmerchant.asia.citibank.com
wpm02.eccmp.com
feedback.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.ew8.privatebank.citibank.com
metrics1.citibank.com
dit2b.hkmobile.globalcommonbuild.citibank.com
www2.citibank.com
portal.brazil.citibank.com
israelsfe.citibank.com
www.uatmerchantserver.citibank.com
sit08.mobile.citibank.com
WWW.ASIAEXTENDEDSERVICES.CITIBANK.COM
www.merchant.citibank.com
uat2.phmobile.globalcommonbuild.citibank.com
uat06.mobile.citibank.com
sit2.hkmobile.globalcommonbuild.citibank.com
sit2.ipbmobile.globalcommonbuild.citibank.com
uat1.asia.citibank.com
dit2.cnmobile.globalcommonbuild.citibank.com
disputes.accountonline.com
www.privatebank.citibank.com
uat.citi.com
citiprivatebankinview.privatebank.citibank.com
serviceemail2.citibank.com
www.cdn.citibank.com
www.citiconnect.asia.citibank.com
online.citibank.com
uat2.vngcb.globalcommonbuild.citibank.com
sit09.mobile.citibank.com
b2bservices.citibank.com
uat.citi.com
centralamerica.citibank.com
uat2.cdn.citibank.com
sit11.mobile.citibank.com
shim.citiprivatebankinview.emea.privatebank.citibank.com
uat2.content.api.citibank.com
dit02.mobile.citibank.com
www.asiaextendedservices.citibank.com
sit2.mobile.aucolesfinancial.globalcommonbuild.citibank.com
www.ceemea.citibank.com
offer.citibank.com
uat2.socialconnect.globalcommonbuild.citibank.com
www.ceemea.citibank.com
marketingportal.citibank.com
www.accountonline.com
sit2.ipbmobile.globalcommonbuild.citibank.com
wpm02.eccmp.com
www.citibank.com
cust.exacttarget.com
marketingportal.citibank.com
uat2.vnmobile.globalcommonbuild.citibank.com
webcashmanagercitidirect.citibank.com
legal.brazil.citibank.com
websocketsit.americas.privatebank.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.qacobrosonline.citibank.com
sgmobile.ipb.globalcommonbuild.uat1.citibank.com
uat1.phgcb.globalcommonbuild.citibank.com
sit2.mycbz.globalcommonbuild.citibank.com
uat1.vngcb.globalcommonbuild.citibank.com
cust.exacttarget.com
m.uat.asia.citibank.com
uat1.online.citi.com
corporateportal.brazil.citibank.com
campo.argentina.citibank.com
uat07.mobile.citibank.com
relsalesforcedev.citibank.com
cbnasalesforceprod.citibank.com
www.asiaextendedservicesuat1.citibank.com
sit08.mobile.citibank.com
hkmobile.gcb.globalcommonbuild.uat.citibank.com
alerts.citibank.com
wpm01.eccmp.com
sit2.idmobile.globalcommonbuild.citibank.com
mobileuat.privatebank.citibank.com
sit1.asia.citibank.com
fxdocs.cititreasury.argentina.citibank.com
www.citibank.com
uat.citi.com
cbgsalesforcesit.citibank.com
uat1.digitalengagement.citibank.com
uat.accountonline.com
sit2.idmobile.globalcommonbuild.citibank.com
m.citiprivatebankinviewqa.americas.privatebank.citibank.com
www.privatebank.citibank.com
uat1.content.api.citibank.com
citiretailservices.dit.citibank.com
portal.brazil.citibank.com
idmobile.gcb.globalcommonbuild.uat1.citibank.com
sit2.sgmobile.globalcommonbuild.citibank.com
shim.citiprivatebankinviewqa.emea.privatebank.citibank.com
campo.argentina.citibank.com
cust.exacttarget.com
mobileuat.privatebank.citibank.com
uat2.marketingportal.citibank.com
www.citibank.com
citibusinessonline.da-us.citibank.com
uat2.thgcb.globalcommonbuild.citibank.com
www.uatmerchant.asia.citibank.com
wpm02.eccmp.com
feedback.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.ew8.privatebank.citibank.com
metrics1.citibank.com
dit2b.hkmobile.globalcommonbuild.citibank.com
www2.citibank.com
portal.brazil.citibank.com
israelsfe.citibank.com
www.uatmerchantserver.citibank.com
sit08.mobile.citibank.com
WWW.ASIAEXTENDEDSERVICES.CITIBANK.COM
www.merchant.citibank.com
uat2.phmobile.globalcommonbuild.citibank.com
uat06.mobile.citibank.com
sit2.hkmobile.globalcommonbuild.citibank.com
sit2.ipbmobile.globalcommonbuild.citibank.com
uat1.asia.citibank.com
dit2.cnmobile.globalcommonbuild.citibank.com
disputes.accountonline.com
www.privatebank.citibank.com
uat.citi.com
citiprivatebankinview.privatebank.citibank.com
serviceemail2.citibank.com
www.cdn.citibank.com
www.citiconnect.asia.citibank.com
online.citibank.com
uat2.vngcb.globalcommonbuild.citibank.com
sit09.mobile.citibank.com
b2bservices.citibank.com
uat.citi.com
centralamerica.citibank.com
uat2.cdn.citibank.com
sit11.mobile.citibank.com
shim.citiprivatebankinview.emea.privatebank.citibank.com
uat2.content.api.citibank.com
dit02.mobile.citibank.com
www.asiaextendedservices.citibank.com
sit2.mobile.aucolesfinancial.globalcommonbuild.citibank.com
www.ceemea.citibank.com
offer.citibank.com
uat2.socialconnect.globalcommonbuild.citibank.com
www.ceemea.citibank.com
marketingportal.citibank.com
www.accountonline.com
sit2.ipbmobile.globalcommonbuild.citibank.com
wpm02.eccmp.com
www.citibank.com
cust.exacttarget.com
marketingportal.citibank.com
uat2.vnmobile.globalcommonbuild.citibank.com
webcashmanagercitidirect.citibank.com
legal.brazil.citibank.com
websocketsit.americas.privatebank.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.qacobrosonline.citibank.com
sgmobile.ipb.globalcommonbuild.uat1.citibank.com
uat1.phgcb.globalcommonbuild.citibank.com
sit2.mycbz.globalcommonbuild.citibank.com
uat1.vngcb.globalcommonbuild.citibank.com
cust.exacttarget.com
m.uat.asia.citibank.com
uat1.online.citi.com
corporateportal.brazil.citibank.com
campo.argentina.citibank.com
uat07.mobile.citibank.com
relsalesforcedev.citibank.com
cbnasalesforceprod.citibank.com
www.asiaextendedservicesuat1.citibank.com
sit08.mobile.citibank.com
hkmobile.gcb.globalcommonbuild.uat.citibank.com
alerts.citibank.com
wpm01.eccmp.com
Certificate
The complete raw certificate details for www.ceemea.citibank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8zCCBNugAwIBAgIQBXfgp43Jo1OkT+EVS+mi4TANBgkqhkiG9w0BAQsFADB1 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMTQwMgYDVQQDEytEaWdpQ2VydCBTSEEyIEV4dGVuZGVk IFZhbGlkYXRpb24gU2VydmVyIENBMB4XDTIwMDIxNDAwMDAwMFoXDTIyMDUwMTEy MDAwMFowgesxHTAbBgNVBA8MFFByaXZhdGUgT3JnYW5pemF0aW9uMRMwEQYLKwYB BAGCNzwCAQMTAlVTMRkwFwYLKwYBBAGCNzwCAQITCERlbGF3YXJlMRAwDgYDVQQF EwcyMTU0MjU0MQswCQYDVQQGEwJVUzERMA8GA1UECBMITmV3IFlvcmsxETAPBgNV BAcTCE5ldyBZb3JrMRcwFQYDVQQKEw5DaXRpZ3JvdXAgSW5jLjEaMBgGA1UECxMR V2ViIEhvc3RpbmcgR3JvdXAxIDAeBgNVBAMTF3d3dy5jZWVtZWEuY2l0aWJhbmsu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1H7dJseU18bTweiU ZCfPeG4iOet3v2AuzZqIgaozE19FocJMRFJJmudTfy8Iwk5dXhhibUjF7mOESg+h 8DQlSQwErJ/dYEKhYh1uE2j5pZCsVZvVM9lsXzMiYhYbdfpmhMjp6jFB2tH0arGk a4cN8nM62LhUQ/V7Tg/EOi7OkAgI6lvcA/v3Un/mK3tnurZmFWb8oLyHXK9Ub4LO jgR0XLuQhb6YEplsjUQ8orNp4CH+GKELTyRduPi1KlihUOp2VDguzh/XSP6f/Wjy 3Wbv10rOChQgbB8Nq/1gYpQ8xWEQvKYPpHrYhtaHwJdDUJf//ZMU30Uyoy9lYluV KkedmwIDAQABo4ICBjCCAgIwHwYDVR0jBBgwFoAUPdNQpdagre7zSmAKZdMh1Pj4 1g8wHQYDVR0OBBYEFCUn6bjKZZhEPO+pReOLb7DsjNyqMCIGA1UdEQQbMBmCF3d3 dy5jZWVtZWEuY2l0aWJhbmsuY29tMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwdQYDVR0fBG4wbDA0oDKgMIYuaHR0cDovL2Ny bDMuZGlnaWNlcnQuY29tL3NoYTItZXYtc2VydmVyLWcyLmNybDA0oDKgMIYuaHR0 cDovL2NybDQuZGlnaWNlcnQuY29tL3NoYTItZXYtc2VydmVyLWcyLmNybDBLBgNV HSAERDBCMDcGCWCGSAGG/WwCATAqMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5k aWdpY2VydC5jb20vQ1BTMAcGBWeBDAEBMIGIBggrBgEFBQcBAQR8MHowJAYIKwYB BQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBSBggrBgEFBQcwAoZGaHR0 cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0U0hBMkV4dGVuZGVkVmFs aWRhdGlvblNlcnZlckNBLmNydDAJBgNVHRMEAjAAMBMGCisGAQQB1nkCBAMBAf8E AgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBm0oNqRIYwTweNLtXVZlpTs5dF32bVhjYi AiruwY4yujf+28fJdpaBtz3ZYxGmgnJwzSW/9T1nHn2ggD+m4t0WMAN0fRkzcivT nl35eT6O9Ht4oXs3A+uIzneEusMayMlye13wiGww82zreOWyBV0ziqPjoA7Rnm/h lBgc2vOb339twuAX4Rz6G/oG81sYFzjfTF86b8RaHOUyR2bLpiPHopB33d7kiIHf knzZKNpWP1uAPdI3iQrOmg2zybcwuuTetNYLFXh5/f5hMCKG68R/lPBIXXhkXShC gmB7ySfCct+SOVlt90J0VJpFFWxkI7swaV3xjMCcUHe3jH9Ob1G+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1H7dJseU18bTweiUZCfP eG4iOet3v2AuzZqIgaozE19FocJMRFJJmudTfy8Iwk5dXhhibUjF7mOESg+h8DQl SQwErJ/dYEKhYh1uE2j5pZCsVZvVM9lsXzMiYhYbdfpmhMjp6jFB2tH0arGka4cN 8nM62LhUQ/V7Tg/EOi7OkAgI6lvcA/v3Un/mK3tnurZmFWb8oLyHXK9Ub4LOjgR0 XLuQhb6YEplsjUQ8orNp4CH+GKELTyRduPi1KlihUOp2VDguzh/XSP6f/Wjy3Wbv 10rOChQgbB8Nq/1gYpQ8xWEQvKYPpHrYhtaHwJdDUJf//ZMU30Uyoy9lYluVKked mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7268579839825733471842097122043863777 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert SHA2 Extended Validation Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-14 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-05-01 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2154254' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Citigroup Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Web Hosting Group' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ceemea.citibank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26825079560173256057866163535105719059504057721117438380209900654116277143491304771283127658344127640072809908877296599375207886655540527977026471408244394238134615800043166835014567731671397409205640901013479165359132727948028628207174418472363720637692727874983343509005112282648592547857427229753759145323248638672366915928361951268645796871060178538241796806347513795684496499998112170872719933924625568387911798574940574147303411811890405408009866903234780336559658992213714503953355683307315056381946471251324618921269689256537228651648915073410098619717493511011319775089986645544501803740770774472437508054427 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3dd350a5d6a0adeef34a600a65d321d4f8f8d60f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2527e9b8ca6598443cefa945e38b6fb0ec8cdcaa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ceemea.citibank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/sha2-ev-server-g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.2.1 (DigiCert EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertSHA2ExtendedValidationServerCA.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0066d2836a4486304f078d2ed5d5665a53b39745df66d5863622022aeec18e32ba37fedbc7c9769681b73dd96311a6827270cd25bff53d671e7da0803fa6e2dd163003747d1933722bd39e5df9793e8ef47b78a17b3703eb88ce7784bac31ac8c9727b5df0886c30f36ceb78e5b2055d338aa3e3a00ed19e6fe194181cdaf39bdf7f6dc2e017e11cfa1bfa06f35b181738df4c5f3a6fc45a1ce5324766cba623c7a29077dddee48881df927cd928da563f5b803dd237890ace9a0db3c9b730bae4deb4d60b157879fdfe61302286ebc47f94f0485d78645d284282607bc927c272df9239596df74274549a45156c6423bb30695df18cc09c5077b78c7f4e6f51be