citi1-login.com Threat Intelligence and Information

Jul 17, 2022 domainpage

Host Location

Dig Results

  • Got answer:
  • -»HEADER«- opcode: QUERY, status: NOERROR, id: 8412
  • flags: qr rd ra QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
  • OPT PSEUDOSECTION:
  • EDNS: version: 0, flags: udp: 1232
  • QUESTION SECTION:
  • citi1-login.com. IN A
  • ANSWER SECTION:
  • citi1-login.com. 299 IN A 172.67.179.163
  • citi1-login.com. 299 IN A 104.21.18.22
  • Query time: 84 msec
  • SERVER: 192.168.1.153(192.168.1.1)
  • WHEN: Sun Jul 17 13:32:44 UTC 2022
  • MSG SIZE rcvd: 76

DNS Records

  • SOA joyce.ns.cloudflare.com 108.162.194.14
  • SOA joyce.ns.cloudflare.com 162.159.38.14
  • SOA joyce.ns.cloudflare.com 172.64.34.14
  • NS joyce.ns.cloudflare.com 172.64.34.14
  • NS joyce.ns.cloudflare.com 108.162.194.14
  • NS joyce.ns.cloudflare.com 162.159.38.14
  • NS joyce.ns.cloudflare.com 2606:4700:50::a29f:260e
  • NS joyce.ns.cloudflare.com 2803:f800:50::6ca2:c20e
  • NS joyce.ns.cloudflare.com 2a06:98c1:50::ac40:220e
  • NS pranab.ns.cloudflare.com 108.162.195.199
  • NS pranab.ns.cloudflare.com 162.159.44.199
  • NS pranab.ns.cloudflare.com 172.64.35.199
  • NS pranab.ns.cloudflare.com 2606:4700:58::a29f:2cc7
  • NS pranab.ns.cloudflare.com 2803:f800:50::6ca2:c3c7
  • NS pranab.ns.cloudflare.com 2a06:98c1:50::ac40:23c7
  • A citi1-login.com 172.67.179.163
  • A citi1-login.com 104.21.18.22
  • AAAA citi1-login.com 2606:4700:3032::ac43:b3a3
  • AAAA citi1-login.com 2606:4700:3037::6815:1216

Whois Data

  • Domain Name: CITI1-LOGIN.COM
  • Registry Domain ID: 2710745248_DOMAIN_COM-VRSN
  • Registrar URL: http://www.ownregistrar.com
  • Updated Date: 2022-07-13T17:13:55Z
  • Creation Date: 2022-07-13T17:13:55Z
  • Registry Expiry Date: 2023-07-13T17:13:55Z
  • Registrar: OwnRegistrar, Inc.
  • Registrar IANA ID: 1250
  • Registrar Abuse Contact Email:
  • Registrar Abuse Contact Phone:
  • Name Server: JOYCE.NS.CLOUDFLARE.COM
  • Name Server: PRANAB.NS.CLOUDFLARE.COM
  • DNSSEC: unsigned
  • Domain Name: Citi1-login.com
  • Registry Domain ID: 1222715
  • Registrar URL: http://www.ownregistrar.com
  • Updated Date: 2022-07-14T00:00:00Z
  • Creation Date:2022-07-14T00:00:00Z
  • Registrar Registration Expiration Date: 2023-07-14T00:00:00Z
  • Registrar: OwnRegistrar, Inc.
  • Registrar IANA ID: 1250
  • Registrar Abuse Contact Email: abuse@ownregistrar.com
  • Registrar Abuse Contact Phone:+91.2261426042
  • Reseller: Hostior
  • Registry Registrant ID: OR_1396
  • Registrant Name: WhoisSecure
  • Registrant Organization: WhoisSecure
  • Registrant Street: 18 San Carlos Street
  • Registrant City: Los Angeles
  • Registrant State/Province: California
  • Registrant Postal Code: 94110
  • Registrant Country: United States
  • Registrant Phone:+1.6144481974
  • Registrant Phone Ext: 1
  • Registrant Fax:
  • Registrant Fax Ext:
  • Registry Admin ID: OR_1396
  • Admin Name: WhoisSecure
  • Admin Organization: WhoisSecure
  • Admin Street: 18 San Carlos Street
  • Admin City: Los Angeles
  • Admin State/Province: California
  • Admin Postal Code: 94110
  • Admin Country: United States
  • Admin Phone:+1-6144481974
  • Admin Phone Ext: 1
  • Admin Fax:
  • Admin Fax Ext:
  • Registry Tech ID: OR_1396
  • Tech Name: WhoisSecure
  • Tech Organization: WhoisSecure
  • Tech Street: 18 San Carlos Street
  • Tech City: Los Angeles
  • Tech State/Province: California
  • Tech Postal Code: 94110
  • Tech Country: United States
  • Tech Phone:+1-6144481974
  • Tech Phone Ext: 1
  • Tech Fax:
  • Tech Fax Ext:
  • Name Server: joyce.ns.cloudflare.com
  • Name Server: pranab.ns.cloudflare.com
  • Name Server:
  • Name Server:
  • DNSSEC: Unsigned

SSL Certificate Information

  • Certificate:
  • Data:
  • Version: 3 (0x2)
  • Serial Number:
  • e0:9c:ee:4b:08:ee:ac:9c:13:6a:50:38:c5:86:0b:30
  • Signature Algorithm: sha256WithRSAEncryption
  • Issuer: C = US, O = Google Trust Services LLC, CN = GTS CA 1P5
  • Validity
  • Not Before: Jul 13 16:18:09 2022 GMT
  • Not After : Oct 11 16:18:08 2022 GMT
  • Subject: CN = *.citi1-login.com
  • Subject Public Key Info:
  • Public Key Algorithm: rsaEncryption
  • RSA Public-Key: (2048 bit)
  • Modulus:
  • 00:bc:2b:5a:cd:04:55:df:e8:3f:20:f0:e6:bf:63:
  • eb:7e:a3:e1:a8:ea:93:e9:48:b2:e2:ca:e6:19:e5:
  • c5:45:9c:10:cb:04:a2:09:e2:2d:60:69:46:47:17:
  • f8:7d:55:f7:83:71:77:a4:b6:7a:a8:a2:7a:81:bf:
  • 7d:b6:fa:a7:a8:30:a2:99:73:bf:10:29:e8:47:50:
  • 52:13:ee:75:05:3d:56:fc:8a:5b:94:e5:0c:c6:51:
  • 61:87:7b:c9:fa:2d:d2:aa:e1:a8:b1:1e:21:5b:fa:
  • fc:ed:86:38:1c:28:30:19:b6:3f:16:ca:9a:c2:a7:
  • f3:17:a1:65:2a:68:26:ae:15:33:02:28:e5:76:f0:
  • ee:0a:6b:c8:b1:a2:97:d8:24:44:cf:ad:92:39:17:
  • 6a:78:60:68:e3:f1:df:a7:8b:0b:0e:df:19:81:fb:
  • 62:84:b9:20:e4:1e:71:61:40:3d:ea:51:6f:26:9c:
  • d6:fa:84:a9:59:73:c5:aa:6c:75:ab:6f:bb:cc:c3:
  • 4b:6a:7b:15:a7:f6:91:76:d2:fe:44:da:29:b9:d2:
  • ca:ab:da:5d:bf:5b:de:66:5f:71:07:b2:5d:5e:92:
  • 4c:dd:d2:cc:87:d7:be:a0:1d:d4:48:c1:01:b6:dd:
  • f3:7d:ed:d1:63:a3:1e:c3:68:de:14:46:10:47:d2:
  • 5d:69
  • Exponent: 65537 (0x10001)
  • X509v3 extensions:
  • X509v3 Key Usage: critical
  • Digital Signature, Key Encipherment
  • X509v3 Extended Key Usage:
  • TLS Web Server Authentication
  • X509v3 Basic Constraints: critical
  • CA:FALSE
  • X509v3 Subject Key Identifier:
  • 9C:8C:F4:21:0F:EA:C9:6F:35:77:5B:E1:2B:B0:AA:CE:85:15:0C:93
  • X509v3 Authority Key Identifier:
  • keyid:D5:FC:9E:0D:DF:1E:CA:DD:08:97:97:6E:2B:C5:5F:C5:2B:F5:EC:B8
  • Authority Information Access:
  • OCSP - URI:http://ocsp.pki.goog/s/gts1p5/9ifggasMPG0
  • CA Issuers - URI:http://pki.goog/repo/certs/gts1p5.der
  • X509v3 Subject Alternative Name:
  • DNS:*.citi1-login.com, DNS:citi1-login.com
  • X509v3 Certificate Policies:
  • Policy: 2.23.140.1.2.1
  • Policy: 1.3.6.1.4.1.11129.2.5.3
  • X509v3 CRL Distribution Points:
  • Full Name:
  • URI:http://crls.pki.goog/gts1p5/utt2fHukd6E.crl
  • CT Precertificate SCTs:
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 51:A3:B0:F5:FD:01:79:9C:56:6D:B8:37:78:8F:0C:A4:
  • 7A:CC:1B:27:CB:F7:9E:88:42:9A:0D:FE:D4:8B:05:E5
  • Timestamp : Jul 13 17:18:10.359 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:51:76:50:C2:84:9E:AD:09:8B:FC:E0:1C:
  • B6:9F:E9:AE:99:8F:55:F8:A6:FC:A0:72:42:60:E2:71:
  • 50:71:36:65:02:20:35:95:7E:72:14:22:81:EE:8E:53:
  • FF:9D:94:A7:6E:82:2D:86:22:32:E2:65:1A:7B:0E:A0:
  • 7D:33:A8:88:80:0D
  • Signed Certificate Timestamp:
  • Version : v1 (0x0)
  • Log ID : 46:A5:55:EB:75:FA:91:20:30:B5:A2:89:69:F4:F3:7D:
  • 11:2C:41:74:BE:FD:49:B8:85:AB:F2:FC:70:FE:6D:47
  • Timestamp : Jul 13 17:18:10.396 2022 GMT
  • Extensions: none
  • Signature : ecdsa-with-SHA256
  • 30:44:02:20:27:4A:8D:8D:73:A5:9E:C3:E8:04:34:B3:
  • 2A:36:A2:A6:77:02:0D:31:2C:FB:79:A7:6D:BB:72:77:
  • 59:73:D7:0E:02:20:32:8E:B6:54:03:16:EF:98:82:92:
  • A1:32:1A:02:DF:87:E9:36:25:2A:4D:82:F9:3B:4B:D6:
  • D3:42:57:CD:F2:03
  • Signature Algorithm: sha256WithRSAEncryption
  • 00:78:0b:11:2b:46:c5:38:9a:d6:c7:ce:3d:67:10:3f:2c:94:
  • 15:67:c1:29:3f:17:1c:8a:fc:c7:45:31:e7:a3:fa:fc:4f:0f:
  • 99:32:f7:71:ce:a5:98:bf:81:09:af:7b:29:85:88:c1:64:84:
  • 62:83:c3:bd:fb:5c:36:1e:45:cf:5e:2e:ff:bb:51:1b:f2:42:
  • 15:6c:41:7d:f5:e2:5c:3c:92:84:e5:e8:39:4f:69:50:f1:61:
  • 5b:22:a4:29:0a:b6:41:73:5e:3e:78:9e:35:c8:cb:ad:b8:93:
  • 24:67:4f:30:3c:a5:b6:a2:91:a5:56:22:08:af:70:fd:45:ce:
  • 1a:5e:a7:2b:5c:c0:f5:54:2b:99:af:a3:1d:9d:e9:98:c3:dd:
  • 3d:a9:1b:91:57:37:7c:d3:34:d1:40:e5:a6:f9:02:be:e9:43:
  • 19:3d:80:b8:28:a7:d9:e1:2c:7e:32:37:35:00:fc:7f:06:ea:
  • 3b:7f:1c:2d:fd:84:ef:1a:ed:e5:88:b2:9b:d5:ef:06:8d:d9:
  • 58:eb:8a:ad:24:d7:b6:fe:e5:68:a0:46:d2:bb:51:56:10:59:
  • 58:d3:43:91:09:28:d9:7b:27:67:3e:44:81:2d:9f:dd:5d:99:
  • 8b:b3:a4:55:aa:45:b3:49:92:18:77:de:d8:c6:60:fc:fb:a4:
  • d8:b4:63:88

Sitemap

Technologies

*** Virustotal ***

*** WayBackMachine ***

Share on: