front.citibank.co.uk
- Citigroup Inc. -
Issued by Symantec Class 3 Extended Validation SHA256 SSL CA
About this certificate
This digital certificate with serial number 30:17:b3:3a:83:b1:a7:7d:2d:7a:8f:08:a6:30:f0:73 was issued on by Symantec Corporation.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Citigroup Inc.
Company registration number:
2154254
Organization: Citigroup Inc.
Organization unit: Global Consumer Bank
Organization: Citigroup Inc.
Organization unit: Global Consumer Bank
Address:
399 Park Avenue
Postal code: 10043
State / Province: New York
Locality: New York
Country: US
Postal code: 10043
State / Province: New York
Locality: New York
Country: US
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Symantec Trust Network
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 30:17:b3:3a:83:b1:a7:7d:2d:7a:8f:08:a6:30:f0:73Serial Number (int): 63926001812732049512167138050048061555
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: b2:6d:e3:e4:14:0f:8c:3c:73:42:a6:5a:99:1a:d3:14:75:b6:86:db
Fingerprint (sha1): 38:34:42:5d:55:c3:81:20:6a:13:bb:67:4d:c0:18:d3:fb:95:47:8a
Fingerprint (sha256): 44:fa:9b:f1:13:92:b0:a7:1f:57:82:67:f0:08:9e:20:ae:44:6b:5e:73:ef:e8:24:3d:91:b3:6d:8e:2a:dc:35
Issuing Certificate URL: http://sh.symcb.com/sh.crt
Revocation information
OCSP Server: http://sh.symcd.comCRL Distribution Point: http://sh.symcb.com/sh.crl
Check the revocation status for certificate front.citibank.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for front.citibank.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
front.citibank.co.uk
Other certificates including the domain name citibank.co.uk
(limited to 100 certificates)
uat.citi.com
view.uat.mail.citibank.co.uk
uat2.marketingportal.citibank.com
www.citibank.co.uk
conversationalbanking.citibank.co.uk
uat.citi.com
uat.citi.com
www.citibank.co.uk
marketingportal.citibank.com
uat2.msa.citibank.co.uk
www.citi.com
uat.citi.com
www.citi.com
sit.digitalengagement.citi.eu
www.citi.com
www.citi.com
alertingservice.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
akamai-san76.exacttarget.com
akamai-san134.exacttarget.com
akamai-san76.exacttarget.com
www.citibank.co.uk
cukehb1.cd.citibank.co.uk
www.citi.com
uat.citi.com
www.citi.com
citibankonline.ipb.citibank.co.uk
www.citi.com
uat2.marketingportal.citibank.com
akamai-san134.exacttarget.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
sit.digitalengagement.citi.eu
www.citi.com
www.citi.com
www.citibank.co.uk
www.citi.com
www.citibank.co.uk
uat2.marketingportal.citibank.com
www.citi.com
www.citi.com
uat.citi.com
uat2.marketingportal.citibank.com
www.citi.com
www.citi.com
www.citi.com
uat.citi.com
www.citi.com
alertingservice1.citibank.co.uk
uat2.marketingportal.citibank.com
uat.citi.com
www.citi.com
marketingportal.citibank.com
uatuk.ipb.citibank.co.uk
www.citi.com
www.citi.com
sit.digitalengagement.citibank.co.uk
uat.conversationalbanking.globalcommonbuild.citibank.co.uk
www.citi.com
click.uat.mail.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
akamai-san134.exacttarget.com
front.citibank.co.uk
akamai-san76.exacttarget.com
www.citi.com
www.citi.com
www.citibank.co.uk
cukehb2.cd.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
uat2.marketingportal.citibank.com
www.citibank.co.uk
www.citi.com
click.mail.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
frontuat.citibank.co.uk
uat2.marketingportal.citibank.com
www.citibank.co.uk
uat2.msa.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
citibankonline.ipb.citibank.co.uk
www.citibank.co.uk
view.uat.mail.citibank.co.uk
uat2.marketingportal.citibank.com
www.citibank.co.uk
conversationalbanking.citibank.co.uk
uat.citi.com
uat.citi.com
www.citibank.co.uk
marketingportal.citibank.com
uat2.msa.citibank.co.uk
www.citi.com
uat.citi.com
www.citi.com
sit.digitalengagement.citi.eu
www.citi.com
www.citi.com
alertingservice.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
akamai-san76.exacttarget.com
akamai-san134.exacttarget.com
akamai-san76.exacttarget.com
www.citibank.co.uk
cukehb1.cd.citibank.co.uk
www.citi.com
uat.citi.com
www.citi.com
citibankonline.ipb.citibank.co.uk
www.citi.com
uat2.marketingportal.citibank.com
akamai-san134.exacttarget.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
sit.digitalengagement.citi.eu
www.citi.com
www.citi.com
www.citibank.co.uk
www.citi.com
www.citibank.co.uk
uat2.marketingportal.citibank.com
www.citi.com
www.citi.com
uat.citi.com
uat2.marketingportal.citibank.com
www.citi.com
www.citi.com
www.citi.com
uat.citi.com
www.citi.com
alertingservice1.citibank.co.uk
uat2.marketingportal.citibank.com
uat.citi.com
www.citi.com
marketingportal.citibank.com
uatuk.ipb.citibank.co.uk
www.citi.com
www.citi.com
sit.digitalengagement.citibank.co.uk
uat.conversationalbanking.globalcommonbuild.citibank.co.uk
www.citi.com
click.uat.mail.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
akamai-san134.exacttarget.com
front.citibank.co.uk
akamai-san76.exacttarget.com
www.citi.com
www.citi.com
www.citibank.co.uk
cukehb2.cd.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
uat2.marketingportal.citibank.com
www.citibank.co.uk
www.citi.com
click.mail.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
www.citi.com
frontuat.citibank.co.uk
uat2.marketingportal.citibank.com
www.citibank.co.uk
uat2.msa.citibank.co.uk
www.citi.com
www.citi.com
www.citi.com
citibankonline.ipb.citibank.co.uk
www.citibank.co.uk
Certificate
The complete raw certificate details for front.citibank.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIHJzCCBg+gAwIBAgIQMBezOoOxp30teo8IpjDwczANBgkqhkiG9w0BAQsFADCB ijELMAkGA1UEBhMCVVMxHTAbBgNVBAoTFFN5bWFudGVjIENvcnBvcmF0aW9uMR8w HQYDVQQLExZTeW1hbnRlYyBUcnVzdCBOZXR3b3JrMTswOQYDVQQDEzJTeW1hbnRl YyBDbGFzcyAzIEV4dGVuZGVkIFZhbGlkYXRpb24gU0hBMjU2IFNTTCBDQTAeFw0x NjA4MjcwMDAwMDBaFw0xODA4MzEyMzU5NTlaMIIBFTETMBEGCysGAQQBgjc8AgED EwJVUzEZMBcGCysGAQQBgjc8AgECDAhEZWxhd2FyZTEdMBsGA1UEDxMUUHJpdmF0 ZSBPcmdhbml6YXRpb24xEDAOBgNVBAUTBzIxNTQyNTQxCzAJBgNVBAYTAlVTMQ4w DAYDVQQRDAUxMDA0MzERMA8GA1UECAwITmV3IFlvcmsxETAPBgNVBAcMCE5ldyBZ b3JrMRgwFgYDVQQJDA8zOTkgUGFyayBBdmVudWUxFzAVBgNVBAoMDkNpdGlncm91 cCBJbmMuMR0wGwYDVQQLDBRHbG9iYWwgQ29uc3VtZXIgQmFuazEdMBsGA1UEAwwU ZnJvbnQuY2l0aWJhbmsuY28udWswggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCv6hOiCnr+mCppRsH53HkoWoGIBy0qDWU8G9WSWC3hQWBWcpMD4ryMZKqv SoYVMFSCQu0IoEDjIPQfTdNk3NtNBY5ZYJHqabK+yEdL05EQtjM6qfSsJABqgOP5 EurT1hSqgqp8Q2LSaaRKz2RAuaLUKyOXcO+HpHjAT+Qh6CylrEJWHmxYMhS9DBY4 jvJh6CJehOfl8cJyWVh0u8225Fp2nwDXePEQ2ksqCHPevfmcVlXSa8xuiEK1L/7A 6Bw+VGkBQY22jXwZ3bTDLkT2M6ZXqetgK6J0aFOt6F4mFIwZ8mJr9NxXPM1xHjOo r11zi3SC45M1rhpLwnwageC3eeLLAgMBAAGjggL5MIIC9TAfBgNVHREEGDAWghRm cm9udC5jaXRpYmFuay5jby51azAJBgNVHRMEAjAAMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwbwYDVR0gBGgwZjAHBgVngQwB ATBbBgtghkgBhvhFAQcXBjBMMCMGCCsGAQUFBwIBFhdodHRwczovL2Quc3ltY2Iu Y29tL2NwczAlBggrBgEFBQcCAjAZDBdodHRwczovL2Quc3ltY2IuY29tL3JwYTAf BgNVHSMEGDAWgBSybePkFA+MPHNCplqZGtMUdbaG2zArBgNVHR8EJDAiMCCgHqAc hhpodHRwOi8vc2guc3ltY2IuY29tL3NoLmNybDBXBggrBgEFBQcBAQRLMEkwHwYI KwYBBQUHMAGGE2h0dHA6Ly9zaC5zeW1jZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6 Ly9zaC5zeW1jYi5jb20vc2guY3J0MIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgA dgDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVbJenNqAAAEAwBH MEUCIQCeo50OqY+OzZ1/2gi8EaeSgYqERz12fFDIfmsnIYxQmgIgFEE1igE38+Pj lH26E3Uc2PeqyRPaJ4N3NOU9MKVVME8AdwCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb 37jjd80OyA3cEAAAAVbJenTxAAAEAwBIMEYCIQCWdtwnm7DUkw+3r4IjAUpCDDua sTvvQ9dPRyjD+SeVIQIhAMq01R+jQDbQIAvRodmjXzLa4LW9R8wYz49LKlgQG4tN AHUAaPaY+B9kgr46jO65KB1M/HFRXWeT1ETRCmesu09P+8QAAAFWyXp1TwAABAMA RjBEAiA2/UpkBfbSYb6B8cLbQR/ZQojMfTClLT6DmzKq8AU2dAIgfVi/tfSpfuTZ s3eB+rCB8a7SF5Ug81X29oWYjEzlwY4wDQYJKoZIhvcNAQELBQADggEBALGQKUkm oyAxYb07UBQzk/0A3Zl1A/eZ4WPnGZBsKo3Q/79vA60/yfd8y3R+DhKByyU1VcJh uj5rtFxgMSL8e2vT9pgMrOICbEptWff0ya69pddfImDtwB2M0SPvYOcq3ibdC2vo TzEONOgZY4uyqpHTrpBZ7LFMjF7f/GEF8R+6/vz6rO7RvoS+813gUg/4z1gto0Lq 5MuFo/EGsFmbJtdRAdKa0PYPJ3uJBggL+0Dk1nhFvOxbvvbfMpwDEbCw4WzY6Szq toOAQQFsrUfy1/JRHzcdsMEHqVjGsMEVmEq0yxN6ngd63ONuWMs4qNeEODtMBDtD NItvxmnZGaZOb/w= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+oTogp6/pgqaUbB+dx5 KFqBiActKg1lPBvVklgt4UFgVnKTA+K8jGSqr0qGFTBUgkLtCKBA4yD0H03TZNzb TQWOWWCR6mmyvshHS9ORELYzOqn0rCQAaoDj+RLq09YUqoKqfENi0mmkSs9kQLmi 1Csjl3Dvh6R4wE/kIegspaxCVh5sWDIUvQwWOI7yYegiXoTn5fHCcllYdLvNtuRa dp8A13jxENpLKghz3r35nFZV0mvMbohCtS/+wOgcPlRpAUGNto18Gd20wy5E9jOm V6nrYCuidGhTreheJhSMGfJia/TcVzzNcR4zqK9dc4t0guOTNa4aS8J8GoHgt3ni ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 63926001812732049512167138050048061555 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Class 3 Extended Validation SHA256 SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-31 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.3 (jurisdictionOfIncorporationC) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.60.2.1.2 (jurisdictionOfIncorporationSP) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Delaware' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.15 (businessCategory) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Private Organization' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '2154254' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.17 (postalCode) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '10043' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'New York' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.9 (streetAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '399 Park Avenue' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Citigroup Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Global Consumer Bank' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'front.citibank.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22207130887582084876591043135134056423604757873833695078273332752792010968212340503618836899766605662475124020860686724461095433634525463407884610962274746852189511628109724620301772811058061211665674171947405920923195764022018500573532647338523400721122143586444186944930753420312931368847072504011321122053016860886130071909110118484164806611651755992272283877823259344695244586213847665589461888258590610326190222077590660262620457428870007812772477995719715194381656605871040195521468902745935216587257752935189908324316733053617165220357683118116729230645954217036579508062707076118301279910984306295623640539851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'front.citibank.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.23.6 (VeriSign EV policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b26de3e4140f8c3c7342a65a991ad31475b686db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sh.symcb.com/sh.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sh.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sh.symcb.com/sh.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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