dit02.mobile.citibank.com
- Citigroup Inc. -
Issued by Symantec Class 3 EV SSL CA - G3
About this certificate
This digital certificate with serial number 11:a2:e3:91:21:fa:88:0a:7f:74:cb:da:0e:76:9d:b7 was issued on by Symantec Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Citigroup Inc.
Company registration number:
2154254
Organization: Citigroup Inc.
Organization unit: Citi Digital
Organization: Citigroup Inc.
Organization unit: Citi Digital
Address:
399 Park Avenue
Postal code: 10043
State / Province: New York
Locality: New York
Country: US
Postal code: 10043
State / Province: New York
Locality: New York
Country: US
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Symantec Trust Network
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 11:a2:e3:91:21:fa:88:0a:7f:74:cb:da:0e:76:9d:b7Serial Number (int): 23442643625005684627203192767974383031
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 01:59:ab:e7:dd:3a:0b:59:a6:64:63:d6:cf:20:07:57:d5:91:e7:6a
Fingerprint (sha1): 89:98:a4:cc:ec:48:fb:28:fe:c7:57:74:27:be:d7:a7:03:cc:d3:1b
Fingerprint (sha256): 08:66:6e:84:fa:4c:66:a4:b8:61:31:ad:36:32:59:37:07:ab:2e:df:7d:7b:25:7c:5b:4e:bd:33:db:72:9b:7c
Issuing Certificate URL: http://sr.symcb.com/sr.crt
Revocation information
OCSP Server: http://sr.symcd.comCRL Distribution Point: http://sr.symcb.com/sr.crl
Check the revocation status for certificate dit02.mobile.citibank.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dit02.mobile.citibank.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dit02.mobile.citibank.com
Other certificates including the domain name citibank.com
(limited to 100 certificates)
cust.exacttarget.com
sit2.idmobile.globalcommonbuild.citibank.com
mobileuat.privatebank.citibank.com
sit1.asia.citibank.com
fxdocs.cititreasury.argentina.citibank.com
www.citibank.com
uat.citi.com
cbgsalesforcesit.citibank.com
uat1.digitalengagement.citibank.com
uat.accountonline.com
sit2.idmobile.globalcommonbuild.citibank.com
m.citiprivatebankinviewqa.americas.privatebank.citibank.com
www.privatebank.citibank.com
uat1.content.api.citibank.com
citiretailservices.dit.citibank.com
portal.brazil.citibank.com
idmobile.gcb.globalcommonbuild.uat1.citibank.com
sit2.sgmobile.globalcommonbuild.citibank.com
shim.citiprivatebankinviewqa.emea.privatebank.citibank.com
campo.argentina.citibank.com
cust.exacttarget.com
mobileuat.privatebank.citibank.com
uat2.marketingportal.citibank.com
www.citibank.com
citibusinessonline.da-us.citibank.com
uat2.thgcb.globalcommonbuild.citibank.com
www.uatmerchant.asia.citibank.com
wpm02.eccmp.com
feedback.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.ew8.privatebank.citibank.com
metrics1.citibank.com
dit2b.hkmobile.globalcommonbuild.citibank.com
www2.citibank.com
portal.brazil.citibank.com
israelsfe.citibank.com
www.uatmerchantserver.citibank.com
sit08.mobile.citibank.com
WWW.ASIAEXTENDEDSERVICES.CITIBANK.COM
www.merchant.citibank.com
uat06.mobile.citibank.com
sit2.hkmobile.globalcommonbuild.citibank.com
sit2.ipbmobile.globalcommonbuild.citibank.com
uat1.asia.citibank.com
dit2.cnmobile.globalcommonbuild.citibank.com
disputes.accountonline.com
www.privatebank.citibank.com
uat.citi.com
citiprivatebankinview.privatebank.citibank.com
serviceemail2.citibank.com
www.cdn.citibank.com
www.citiconnect.asia.citibank.com
online.citibank.com
uat2.vngcb.globalcommonbuild.citibank.com
sit09.mobile.citibank.com
b2bservices.citibank.com
uat.citi.com
centralamerica.citibank.com
uat2.cdn.citibank.com
sit11.mobile.citibank.com
shim.citiprivatebankinview.emea.privatebank.citibank.com
uat2.content.api.citibank.com
dit02.mobile.citibank.com
www.asiaextendedservices.citibank.com
sit2.mobile.aucolesfinancial.globalcommonbuild.citibank.com
www.ceemea.citibank.com
offer.citibank.com
uat2.socialconnect.globalcommonbuild.citibank.com
www.ceemea.citibank.com
marketingportal.citibank.com
www.accountonline.com
sit2.ipbmobile.globalcommonbuild.citibank.com
wpm02.eccmp.com
www.citibank.com
cust.exacttarget.com
marketingportal.citibank.com
uat2.vnmobile.globalcommonbuild.citibank.com
webcashmanagercitidirect.citibank.com
legal.brazil.citibank.com
websocketsit.americas.privatebank.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.qacobrosonline.citibank.com
sgmobile.ipb.globalcommonbuild.uat1.citibank.com
uat1.phgcb.globalcommonbuild.citibank.com
sit2.mycbz.globalcommonbuild.citibank.com
uat1.vngcb.globalcommonbuild.citibank.com
cust.exacttarget.com
m.uat.asia.citibank.com
uat1.online.citi.com
corporateportal.brazil.citibank.com
campo.argentina.citibank.com
uat07.mobile.citibank.com
relsalesforcedev.citibank.com
cbnasalesforceprod.citibank.com
www.asiaextendedservicesuat1.citibank.com
sit08.mobile.citibank.com
hkmobile.gcb.globalcommonbuild.uat.citibank.com
alerts.citibank.com
wpm01.eccmp.com
dit02.mobile.citibank.com
sit2.idmobile.globalcommonbuild.citibank.com
mobileuat.privatebank.citibank.com
sit1.asia.citibank.com
fxdocs.cititreasury.argentina.citibank.com
www.citibank.com
uat.citi.com
cbgsalesforcesit.citibank.com
uat1.digitalengagement.citibank.com
uat.accountonline.com
sit2.idmobile.globalcommonbuild.citibank.com
m.citiprivatebankinviewqa.americas.privatebank.citibank.com
www.privatebank.citibank.com
uat1.content.api.citibank.com
citiretailservices.dit.citibank.com
portal.brazil.citibank.com
idmobile.gcb.globalcommonbuild.uat1.citibank.com
sit2.sgmobile.globalcommonbuild.citibank.com
shim.citiprivatebankinviewqa.emea.privatebank.citibank.com
campo.argentina.citibank.com
cust.exacttarget.com
mobileuat.privatebank.citibank.com
uat2.marketingportal.citibank.com
www.citibank.com
citibusinessonline.da-us.citibank.com
uat2.thgcb.globalcommonbuild.citibank.com
www.uatmerchant.asia.citibank.com
wpm02.eccmp.com
feedback.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.ew8.privatebank.citibank.com
metrics1.citibank.com
dit2b.hkmobile.globalcommonbuild.citibank.com
www2.citibank.com
portal.brazil.citibank.com
israelsfe.citibank.com
www.uatmerchantserver.citibank.com
sit08.mobile.citibank.com
WWW.ASIAEXTENDEDSERVICES.CITIBANK.COM
www.merchant.citibank.com
uat06.mobile.citibank.com
sit2.hkmobile.globalcommonbuild.citibank.com
sit2.ipbmobile.globalcommonbuild.citibank.com
uat1.asia.citibank.com
dit2.cnmobile.globalcommonbuild.citibank.com
disputes.accountonline.com
www.privatebank.citibank.com
uat.citi.com
citiprivatebankinview.privatebank.citibank.com
serviceemail2.citibank.com
www.cdn.citibank.com
www.citiconnect.asia.citibank.com
online.citibank.com
uat2.vngcb.globalcommonbuild.citibank.com
sit09.mobile.citibank.com
b2bservices.citibank.com
uat.citi.com
centralamerica.citibank.com
uat2.cdn.citibank.com
sit11.mobile.citibank.com
shim.citiprivatebankinview.emea.privatebank.citibank.com
uat2.content.api.citibank.com
dit02.mobile.citibank.com
www.asiaextendedservices.citibank.com
sit2.mobile.aucolesfinancial.globalcommonbuild.citibank.com
www.ceemea.citibank.com
offer.citibank.com
uat2.socialconnect.globalcommonbuild.citibank.com
www.ceemea.citibank.com
marketingportal.citibank.com
www.accountonline.com
sit2.ipbmobile.globalcommonbuild.citibank.com
wpm02.eccmp.com
www.citibank.com
cust.exacttarget.com
marketingportal.citibank.com
uat2.vnmobile.globalcommonbuild.citibank.com
webcashmanagercitidirect.citibank.com
legal.brazil.citibank.com
websocketsit.americas.privatebank.citibank.com
sit2.cnmobile.globalcommonbuild.citibank.com
www.qacobrosonline.citibank.com
sgmobile.ipb.globalcommonbuild.uat1.citibank.com
uat1.phgcb.globalcommonbuild.citibank.com
sit2.mycbz.globalcommonbuild.citibank.com
uat1.vngcb.globalcommonbuild.citibank.com
cust.exacttarget.com
m.uat.asia.citibank.com
uat1.online.citi.com
corporateportal.brazil.citibank.com
campo.argentina.citibank.com
uat07.mobile.citibank.com
relsalesforcedev.citibank.com
cbnasalesforceprod.citibank.com
www.asiaextendedservicesuat1.citibank.com
sit08.mobile.citibank.com
hkmobile.gcb.globalcommonbuild.uat.citibank.com
alerts.citibank.com
wpm01.eccmp.com
dit02.mobile.citibank.com
Certificate
The complete raw certificate details for dit02.mobile.citibank.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHDDCCBfSgAwIBAgIQEaLjkSH6iAp/dMvaDnadtzANBgkqhkiG9w0BAQsFADB3 MQswCQYDVQQGEwJVUzEdMBsGA1UEChMUU3ltYW50ZWMgQ29ycG9yYXRpb24xHzAd BgNVBAsTFlN5bWFudGVjIFRydXN0IE5ldHdvcmsxKDAmBgNVBAMTH1N5bWFudGVj IENsYXNzIDMgRVYgU1NMIENBIC0gRzMwHhcNMTUwNTE1MDAwMDAwWhcNMTcwNTE1 MjM1OTU5WjCCARIxEzARBgsrBgEEAYI3PAIBAxMCVVMxGTAXBgsrBgEEAYI3PAIB AgwIRGVsYXdhcmUxHTAbBgNVBA8TFFByaXZhdGUgT3JnYW5pemF0aW9uMRAwDgYD VQQFEwcyMTU0MjU0MQswCQYDVQQGEwJVUzEOMAwGA1UEEQwFMTAwNDMxETAPBgNV BAgMCE5ldyBZb3JrMREwDwYDVQQHDAhOZXcgWW9yazEYMBYGA1UECQwPMzk5IFBh cmsgQXZlbnVlMRcwFQYDVQQKDA5DaXRpZ3JvdXAgSW5jLjEVMBMGA1UECwwMQ2l0 aSBEaWdpdGFsMSIwIAYDVQQDDBlkaXQwMi5tb2JpbGUuY2l0aWJhbmsuY29tMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2lTsAFc9cH++ffqIFYZudSR 1GDj5mK49nNMtdbAGaS5rqaNs43QoC7ELJuuodxGHfAbAj10op3LI4sH93KILOXi RDgpBL8b3Y+LNnqEPZmKqCKkSMOITPyfsxGxoZrlOPb8gPwbyl3kwnyZAf+DjVfV GmMRg+Djn5tog4ZVo2po0Dk0NutVdbq9Wl9ch6Zvy54g/uHjnUF6XRSm/UGf4q56 hNDoO2fufu557wLMoNpnxya6t3chYT38Bbrqv9CQUJ05r4bCMDskIjfSFA5c4ZGM Hr5QlqUppkLYFi8PL5k5pDl2Wi4mwYkdjTuVhzqRt6iaUmPwtcOiVTLOF4wFAwID AQABo4IC9TCCAvEwJAYDVR0RBB0wG4IZZGl0MDIubW9iaWxlLmNpdGliYW5rLmNv bTAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwZgYDVR0gBF8wXTBbBgtghkgBhvhFAQcXBjBMMCMGCCsGAQUF BwIBFhdodHRwczovL2Quc3ltY2IuY29tL2NwczAlBggrBgEFBQcCAjAZGhdodHRw czovL2Quc3ltY2IuY29tL3JwYTAfBgNVHSMEGDAWgBQBWavn3ToLWaZkY9bPIAdX 1ZHnajArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vc3Iuc3ltY2IuY29tL3NyLmNy bDBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9zci5zeW1jZC5j b20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9zci5zeW1jYi5jb20vc3IuY3J0MIIBfgYK KwYBBAHWeQIEAgSCAW4EggFqAWgAdgCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jj d80OyA3cEAAAAU1VRjYGAAAEAwBHMEUCICT1kd3wFmB8lhQjVUjrZ9wb6BLDsGkz 4c6Ujs4m6r1WAiEAvaWSDsUlkJZg2VVOOfLifiDc0w2m2SYjjr3RIrWLQCcAdgBW FAaaL9fC7NP14b1Esj7HRna5vJkRXMDvlJhV1onQ3QAAAU1VRjcLAAAEAwBHMEUC IQDceqVknym8hjVX77FuBB8OctMxhs+0PpfmRBbfAJ/Y4gIgGiPeMUZ22QfG3bNu hmSduD6bcIDp4OeU0WwgSCoCXnUAdgBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEK Z6y7T0/7xAAAAU1VRjY1AAAEAwBHMEUCIQDGZgg2vQbtfj7ays313ZB9OjiRok6Y jQgAsDO/8bSA3QIgKqTP0EF1FwD++rNDPYOXAc4vH4nywz1ytmjMW3vQJKcwDQYJ KoZIhvcNAQELBQADggEBANN/hseJnkemvW0w9bkRA6hddNxmbR8Ij8mO/axKcHVC Wr2k7x7HsqaWfduBbUFNqPiAq0JLcYrBz87Sm1u8Vj55srAO9GvxbB/RPmYlNUKQ jQwpag4wtQ0PrCVrblWStPHqczC6kJ7u3FhuGmy3MbxZt7N5ukYqJ3Kzw0J4ZiwT JRFE5cE0f5bca6JWblARgkayZJo4qhNCXj+J7TrYJlWcgwWpRpNjf69AAgmkf+Wp vuO1uw8iCFuDWFsMUwq5zJwubSmsZ+FujLWuloXaPKcsPxZmu1ydoGxSG1r4nF8F BGBAhVHF+jItLocxARoajnMScm5tJeMlLLNpRLiDYuA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2lTsAFc9cH++ffqIFYZ udSR1GDj5mK49nNMtdbAGaS5rqaNs43QoC7ELJuuodxGHfAbAj10op3LI4sH93KI LOXiRDgpBL8b3Y+LNnqEPZmKqCKkSMOITPyfsxGxoZrlOPb8gPwbyl3kwnyZAf+D jVfVGmMRg+Djn5tog4ZVo2po0Dk0NutVdbq9Wl9ch6Zvy54g/uHjnUF6XRSm/UGf 4q56hNDoO2fufu557wLMoNpnxya6t3chYT38Bbrqv9CQUJ05r4bCMDskIjfSFA5c 4ZGMHr5QlqUppkLYFi8PL5k5pDl2Wi4mwYkdjTuVhzqRt6iaUmPwtcOiVTLOF4wF AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23442643625005684627203192767974383031 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 EV SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-05-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2154254' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '10043' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '399 Park Avenue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Citigroup Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Citi Digital' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'dit02.mobile.citibank.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23658501660981151659107804802537859482362882950907345335595554258594921276189068758360177001332185721592130352589340355734197213095068680778390398691674375765199300783418314795805508134445787302224495142903199366184123517171344220981406267820221835372405883016128316605200836613983934345615397128644832667808207736963316665342844522953346419859789882530783019074296577353594265184820060056398960806981566054820067149532836735164575642275585025640720845842782507792835466305289133683390484191013012217400425151613088115752824994211849144472848497154791819005071917554273692249404902113703736098284650176668436223755523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dit02.mobile.citibank.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (95 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.23.6 (VeriSign EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [104 116 116 112 115 58 47 47 100 46 115 121 109 99 98 46 99 111 109 47 114 112 97] . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0159abe7dd3a0b59a66463d6cf200757d591e76a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sr.symcb.com/sr.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sr.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sr.symcb.com/sr.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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