ci5izens.web.app/
199.36.158.100200 OK 570 B IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2465), with no line terminators
Hash 8133082083969b6f47b7e99799859fbd
ebe920c27877bb7d853135de7516d8904f5190d0
0e65ee998abc859c643480de77118ff758ed27e9477cd4b5ade87955ce932367
Analyzer Verdict Alert openphish RBS Citizens Bank
fortinet Phishing
quad9 Sinkholed
GET / HTTP/1.1
Host: ci5izens.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "ba27025b0d78e2971ce1ce770b02f68611fe9259ca0e2a378a1f03e0e4702b6e-br"
last-modified: Mon, 22 Aug 2022 11:56:37 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Sat, 10 Sep 2022 22:01:10 GMT
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662847270.493718,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 570
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 21:07:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B0xv12cIEAAzsY5CVdLcM82DafqBPiaTDoOMD_i3dHODviENpUXlCA==
Age: 3248
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7902
Expires: Sun, 11 Sep 2022 00:12:52 GMT
Date: Sat, 10 Sep 2022 22:01:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dVgEuqnb-u5KS8N2DMQi12pUU2BzYrTIWWjW0qQvpEQI19XyDgxwHw==
age: 53038
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/7ZBQLSBvJ5A
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/7ZBQLSBvJ5A
IP 142.250.74.3:0
Hash 6ace658f8a5b37a380f471a32e1f7779
0407a47aec2133fdaedda4cb97f172f53dcb79fa
f47e6cc361fae1dfce76c47f7c9aa729b269132e99ed89d1ad1d29a92f3890e5
POST /s/gts1d4int/7ZBQLSBvJ5A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 22:01:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 21:56:07 GMT
Expires: Sat, 10 Sep 2022 22:12:09 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: y0Ih6PHtn6iBARvXjwJ0Yxs0Zk1Au01Z1Z1wH3U7Z2C0wFa6TLjq3A==
Age: 304
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 2dadfb5ef71c87f74a410b1f109a7798
9470642bbb4728975017db2e1e8bb3d992fbd710
cf98db0999d1ccfba03c94242873939bbcb3909611fbc8f3a755a144a07e40de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CF98DB0999D1CCFBA03C94242873939BBCB3909611FBC8F3A755A144A07E40DE"
Last-Modified: Fri, 09 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8823
Expires: Sun, 11 Sep 2022 00:28:14 GMT
Date: Sat, 10 Sep 2022 22:01:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5079
Cache-Control: max-age=127814
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:11 GMT
Etag: "631c4596-1d7"
Expires: Mon, 12 Sep 2022 09:31:25 GMT
Last-Modified: Sat, 10 Sep 2022 08:06:46 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash befa2a03001b444f528a57285ea58578
72bdf39b89d0730c59840955c41d27808ce64865
7c6aa31a676d7a7097ed786cedf6d889bec7e27588e0b59680a269b8019b668b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 22:01:11 GMT
Last-Modified: Sat, 10 Sep 2022 20:46:25 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Az0DwiIO75atdPjE7VDq7s4ArDjRR81msBAT81-cgQ9oiAuKF6s-Xg==
Age: 4486
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash befa2a03001b444f528a57285ea58578
72bdf39b89d0730c59840955c41d27808ce64865
7c6aa31a676d7a7097ed786cedf6d889bec7e27588e0b59680a269b8019b668b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 22:01:11 GMT
Last-Modified: Sat, 10 Sep 2022 20:29:05 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 38n0geWBaT3ctkx-rQ1IVDcuq0dQj51sx6i0Jk8JBFG0OcYnApp5YQ==
Age: 5526
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xy+SSjaXRg9AdQH1x1HRGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: prV5YEwI0NcF3aZht7faVqB0/oM=
ocsp.entrust.net/
23.13.44.131200 OK 1.6 kB IP 23.13.44.131:0
Hash d9026b723f4af5a10820577e2a1304dc
2eb09c3826156ad0818e6e2d9875ecbde920012c
82f71a2e369ac444fd9396c31ae7cd2381736af37b04097cd40ec640c5a654bc
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "82F71A2E369AC444FD9396C31AE7CD2381736AF37B04097CD40EC640C5A654BC"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1750
Expires: Sat, 10 Sep 2022 22:30:21 GMT
Date: Sat, 10 Sep 2022 22:01:11 GMT
Connection: keep-alive
heycnt.herokuapp.com/count
3.209.172.72200 OK 0 B URL HTTP/1.1 heycnt.herokuapp.com/count
IP 3.209.172.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /count HTTP/1.1
Host: heycnt.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ci5izens.web.app/
Origin: https://ci5izens.web.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Server: gunicorn
Date: Sat, 10 Sep 2022 22:01:11 GMT
Content-Type: text/html; charset=utf-8
Allow: GET, POST, OPTIONS, HEAD
Access-Control-Allow-Origin: https://ci5izens.web.app
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
Vary: Origin
Content-Length: 0
Via: 1.1 vegur
heycnt.herokuapp.com/count
3.209.172.72200 OK 34 B URL HTTP/1.1 heycnt.herokuapp.com/count
IP 3.209.172.72:0
File type JSON data\012- , ASCII text
Hash 2d174d1d33d3699d0063282b722cb519
a14e9f8eae3b63071da7b1e8256b7d6c08d28a4f
b4259a5d4cc8a907804ac195e0ecc850695c175979674c25769acc8ee1add471
POST /count HTTP/1.1
Host: heycnt.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 21
Origin: https://ci5izens.web.app
Connection: keep-alive
Referer: https://ci5izens.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Server: gunicorn
Date: Sat, 10 Sep 2022 22:01:11 GMT
Content-Type: application/json
Content-Length: 34
Access-Control-Allow-Origin: https://ci5izens.web.app
Vary: Origin
Via: 1.1 vegur
ocsp.entrust.net/
23.13.44.131200 OK 1.6 kB IP 23.13.44.131:0
Hash d9026b723f4af5a10820577e2a1304dc
2eb09c3826156ad0818e6e2d9875ecbde920012c
82f71a2e369ac444fd9396c31ae7cd2381736af37b04097cd40ec640c5a654bc
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "82F71A2E369AC444FD9396C31AE7CD2381736AF37B04097CD40EC640C5A654BC"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1749
Expires: Sat, 10 Sep 2022 22:30:21 GMT
Date: Sat, 10 Sep 2022 22:01:12 GMT
Connection: keep-alive
www.citizensbank.com/HomePage.aspx
104.85.180.233200 OK 21 kB URL HTTP/2 www.citizensbank.com/HomePage.aspx
IP 104.85.180.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4398), with CRLF, LF line terminators
Hash b342fe0e6193dff7aa20dba335ad93ab
6771fade37e3b282edf0bbb09b1826b391b81560
7c789aac8c217eca5f644b4983327aeb2e97c1d3684bdf54d27287013eac906e
GET /HomePage.aspx HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ci5izens.web.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
x-akamai-transformed: 9 - 0 pmb=mTOE,3mRUM,2
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
content-length: 20912
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=2
link: <https://nexus.ensighten.com>;rel="preconnect", <https://lpcdn.lpsnmedia.net>;rel="preconnect"
strict-transport-security: max-age=15768000
set-cookie: AKA_A2=A; expires=Sat, 10-Sep-2022 23:01:12 GMT; path=/; domain=citizensbank.com; secure; HttpOnly
_abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; Domain=.citizensbank.com; Path=/; Expires=Sun, 10 Sep 2023 22:01:12 GMT; Max-Age=31536000; Secure
ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:12 GMT; Max-Age=7200; HttpOnly
bm_mi=EB015977DEC020CDB91F7444888660B1~YAAQlQVJF4DGRxmDAQAAPcVrKRGBBAd01oMJzuQIsteV7+gFqmJ9D8AMbd9661RnNT8hm7mAD6yiqfIDFap5upZKRRgKAKvpDcHMENGDewa6Y2tWtkaseyHZpFhqMdgS9rcsXDlYVE/viGRAp4OTE+4LPYBFYdaz3Vj3VM0kiClOExSfn40PQZI0Vs0qREIP0cHvXGVnAhof4YI7l8xPaXMKMcyXItzYzNzt8CzKYQeE5Bgaic5JCFD/oytPfLfjmjDgP0nT4lts6Qwn7+QzY3zo2PTPrBDIkS0gjDsF8Xf7RkbL7AqFzuDNPBI52ZjDsqbw+sCto8hxwCpPsEJx4w==~1; Domain=.citizensbank.com; Path=/; Expires=Sat, 10 Sep 2022 22:01:12 GMT; Max-Age=0; Secure
bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 02:01:12 GMT; Max-Age=14400
X-Firefox-Spdy: h2
www.citizensbank.com/iwov-resources/fixed-layout/Full-width-fixed-layout.css
104.85.180.233200 OK 11 kB URL HTTP/2 www.citizensbank.com/iwov-resources/fixed-layout/Full-width-fixed-layout.css
IP 104.85.180.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2261), with CRLF, LF line terminators
Hash 6a05890965cdafbf83418fd1c0293218
731273b163f592e3486a5229430cc39b7ba40867
a80bb8949a454a8443a280eab6ae9cfdc3ebf47dcf390dc6925dfcd6b0dfc400
GET /iwov-resources/fixed-layout/Full-width-fixed-layout.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 11126
cache-control: private, max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
104.85.180.233200 OK 37 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
IP 104.85.180.233:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4781e2a88906d75eeabaa5ab956c39b7
a4d9e00a8693c26f540098cc6599c0afb610cfec
903ed3aa391f7afd36d5c349829e003afb58b0c131585c5549c7620fd6a8d743
GET /assets/CB_resources/styles/globalComponents.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 29 Aug 2022 21:15:04 GMT
accept-ranges: bytes
etag: "03c1068ecbbd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 37019
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/vendor/jquery-2.2.0.min.js
104.85.180.233200 OK 30 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/vendor/jquery-2.2.0.min.js
IP 104.85.180.233:0
File type ASCII text, with very long lines (32069)
Hash 79a6ab11dc83630dee9de0a504f5dc33
c43a184745e404f583bc9871d37f01f8d01aa314
08169a0d568ed4d427887ddcbe697e067508291dc677a83d01041afcd51884d4
GET /assets/CB_resources/scripts/vendor/jquery-2.2.0.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 11 May 2018 21:40:18 GMT
accept-ranges: bytes
etag: "0d85a770e9d31:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 29918
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/styles/main.css
104.85.180.233200 OK 180 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/styles/main.css
IP 104.85.180.233:0
File type ASCII text, with very long lines (9267), with CRLF, LF line terminators
Size 180 kB (180313 bytes)
Hash 73347ae1ea454e09c54c9cc099d762ec
607e39d25dd681f76cfb0607f47abbe2f7d16d51
76e67715a7082b6a34018802883defa5f731a79a6fa72aebf2980389f0720ef1
GET /assets/CB_resources/styles/main.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 21 Jan 2022 22:09:27 GMT
accept-ranges: bytes
etag: "8085158e13fd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 180313
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/vendor/main.js
104.85.180.233200 OK 887 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/vendor/main.js
IP 104.85.180.233:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash b69abd058bcb8c6d0c01e0ec94481150
e5340fc0b4012726ad4f42babe3fa507ec32c640
4908ac9507b13f5859ee5c27e8010293a636b99a8b7f23cd217b1ac9b39103c4
GET /assets/CB_resources/scripts/vendor/main.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 24 Dec 2019 17:11:54 GMT
accept-ranges: bytes
etag: "0a9553d7dbad51:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
vary: Accept-Encoding
content-encoding: gzip
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
content-length: 887
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/vendor/vendor-top.min.js
104.85.180.233200 OK 7.5 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/vendor/vendor-top.min.js
IP 104.85.180.233:0
File type HTML document, ASCII text, with very long lines (20905), with no line terminators
Hash e8eed823049df1c159ce8c0f80e80f03
ab753fb1c88d2af6ab901200a2118b6008414e25
3cc3b514d2fcc34b26193e11dea3033117d477d5e6f37855acf34985156dc328
GET /assets/CB_resources/scripts/vendor/vendor-top.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 11 May 2018 21:40:18 GMT
accept-ranges: bytes
etag: "0d85a770e9d31:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 7544
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/vendor/vendor-bottom.min.js
104.85.180.233200 OK 190 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/vendor/vendor-bottom.min.js
IP 104.85.180.233:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 190 kB (190269 bytes)
Hash 54a91ffcae46b374e7af37972a702744
1ad02f02b5b9248605e027422649dfa743bdad3a
cc1a9524c7cf04cffe40f6580432ece5ce224a327c4b9a08ce314c38de50773a
GET /assets/CB_resources/scripts/vendor/vendor-bottom.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 30 Apr 2021 21:41:26 GMT
accept-ranges: bytes
etag: "0c73f9293ed71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 190269
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/globalComponentsSupport.js
104.85.180.233200 OK 3.5 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/globalComponentsSupport.js
IP 104.85.180.233:0
File type ASCII text, with CRLF line terminators
Hash c4fb73891d35881b108180613a004e81
72043a45eb2b283989ab91548023334952bb59fd
1b9c6abaa6ea05e1cc5cd2ec6d931d0adb4f325ec8d9b28ec90cee3f936dca46
GET /assets/CB_resources/scripts/globalComponentsSupport.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 03 Aug 2022 20:40:23 GMT
accept-ranges: bytes
etag: "8055f34079a7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 3524
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/globalComponentsControl.js
104.85.180.233200 OK 489 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/globalComponentsControl.js
IP 104.85.180.233:0
File type HTML document, ASCII text, with CRLF line terminators
Hash e5905af9635df106fb860bd3c2dd8768
489024b5111cca5767287c2e6f9fa87b5d9d6af3
2e15834950c036a5232283f0b1157c2676980d2dfbe9c1b8c10c4e59767e2af6
GET /assets/CB_resources/scripts/globalComponentsControl.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 03 Aug 2022 20:40:23 GMT
accept-ranges: bytes
etag: "8055f34079a7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 489
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/custom/canonical.js
104.85.180.233200 OK 431 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/custom/canonical.js
IP 104.85.180.233:0
File type ASCII text, with CRLF line terminators
Hash e816f5c8c27029849ff79ecfaadc967d
cc14ab268e5fbf498d6e3fd0c892dc9c0da1e190
ba7c4688822695f771b9d5ea3ba7ada9cfd857478a5b27e4c08e7df5b6ce52eb
GET /assets/CB_resources/scripts/custom/canonical.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 13:22:01 GMT
accept-ranges: bytes
etag: "80a2ff53f3b6d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 431
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/styles/Desktop_Mobile_FilterView.css
104.85.180.233200 OK 164 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/styles/Desktop_Mobile_FilterView.css
IP 104.85.180.233:0
File type ASCII text, with CRLF line terminators
Hash 6be09d7f39b26e76c3f117335da6c6a2
e705f2cf50cd8b5fe2e6102d4682a7d24ec0f103
0314fcea8dedc0c223ca070bc401b8296623c72a80e932516867b80de45eb85d
GET /assets/CB_resources/styles/Desktop_Mobile_FilterView.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 03 Jun 2020 17:56:45 GMT
accept-ranges: bytes
etag: "802c3758d039d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 164
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/styles/fonts-thehand.css
104.85.180.233200 OK 213 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/styles/fonts-thehand.css
IP 104.85.180.233:0
File type ASCII text, with CRLF line terminators
Hash f79f3b24175df7303c4498deb1162667
d9e532406ac5a4b0ecae46358c4df3cd9273c987
e62832130fcdf73d9f9b822652fffc1429eda1decf1eea30c36c0f694befd7fc
GET /assets/CB_resources/styles/fonts-thehand.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Fri, 27 Mar 2020 21:48:28 GMT
accept-ranges: bytes
etag: "09ef572814d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 213
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/GlobalComponents/Alerts/alert.min.css
104.85.180.233200 OK 978 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/GlobalComponents/Alerts/alert.min.css
IP 104.85.180.233:0
File type ASCII text, with very long lines (4656), with CRLF line terminators
Hash 4f37e161d1c518c1ab59e5d641bb17ab
29961244374a4260b6f4cc531077b4720f38a522
cf839b0a87f98b6ef2a04e57df1b68bf0c479082fcbbde7a2d473f93b9334cc0
GET /assets/CB_resources/GlobalComponents/Alerts/alert.min.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 07 Mar 2022 21:43:24 GMT
accept-ranges: bytes
etag: "066d5f6c32d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 978
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/GlobalComponents/Alerts/alert.min.js
104.85.180.233200 OK 405 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/GlobalComponents/Alerts/alert.min.js
IP 104.85.180.233:0
File type ASCII text, with very long lines (675), with no line terminators
Hash 2c38d60e0c1d33c3c345dc4ebe6f62a6
3fb7c4c2fc2d171a334654d41cea24dda2bc4e06
e5376c4cc9c3086cadf2d5709d547341f318d10e5c9481077bef2c3916101dc7
GET /assets/CB_resources/GlobalComponents/Alerts/alert.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 21:43:24 GMT
accept-ranges: bytes
etag: "066d5f6c32d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 405
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/CBP_HP_HighlightUnit_488x275.jpg
104.85.180.233200 OK 55 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/CBP_HP_HighlightUnit_488x275.jpg
IP 104.85.180.233:0
File type JPEG image data, progressive, precision 8, 488x275, components 3\012- data
Hash cd22293d32093c9338f79fdec5ea06c4
9de43a19e3315966cd15838eff4f27db5bf545cb
b4937f326f2b8600b82dc5ea5233b4b7638e4669d18b7e0688de20f01eb771e7
GET /assets/CB_resources/images/HP%20Refresh%20Highlights/CBP_HP_HighlightUnit_488x275.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 54655
last-modified: Wed, 20 Jul 2022 19:42:28 GMT
accept-ranges: bytes
etag: "0eae7d7709cd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/global/homepage/1796164_PA22_HAM_KM1_home_HIGHLIGHT-UNIT_NR_488x275px.jpg
104.85.180.233200 OK 39 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/global/homepage/1796164_PA22_HAM_KM1_home_HIGHLIGHT-UNIT_NR_488x275px.jpg
IP 104.85.180.233:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 488x275, components 3\012- data
Hash a9f43f2469e19c4ade2683205f4f1598
8617195b835d8c9962930cfd96d0e73848295c31
7f5cfed399770340f7e68bec32fd39fddff3680561653907e83d88a2d586646f
GET /assets/CB_resources/images/global/homepage/1796164_PA22_HAM_KM1_home_HIGHLIGHT-UNIT_NR_488x275px.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 38838
last-modified: Thu, 18 Aug 2022 13:24:16 GMT
accept-ranges: bytes
etag: "04066d05b3d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/080122_StudentPeak_Homepage_Highlight.jpg
104.85.180.233200 OK 168 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/080122_StudentPeak_Homepage_Highlight.jpg
IP 104.85.180.233:0
File type JPEG image data, progressive, precision 8, 976x550, components 3\012- data
Size 168 kB (167698 bytes)
Hash 64183584692b889f1bf9d7a89516de0f
47c9428be090a3322f8a153c10577bf54c58b90d
9a8b653c93aa8d8fb6f7ac5d15a5d04152e2a8a94e40bfbf6d394edcb8683228
GET /assets/CB_resources/images/HP%20Refresh%20Highlights/080122_StudentPeak_Homepage_Highlight.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 167698
last-modified: Wed, 10 Aug 2022 16:58:53 GMT
accept-ranges: bytes
etag: "80846278daacd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/1687757_Responsive_NonRetina_488x275.jpg
104.85.180.233200 OK 75 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/1687757_Responsive_NonRetina_488x275.jpg
IP 104.85.180.233:0
File type JPEG image data, baseline, precision 8, 488x275, components 3\012- data
Hash 196859a790f5e3d3c4d30f8869d635cd
13abb15bbe0568ee65035de7ced41df2ab7fcdb8
e721dc9e888e1c1ca66a206c48b6e441c24a36ffe2167b655c381cf1a629f604
GET /assets/CB_resources/images/HP%20Refresh%20Highlights/1687757_Responsive_NonRetina_488x275.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 74926
last-modified: Mon, 18 Jul 2022 20:19:29 GMT
accept-ranges: bytes
etag: "801ee6aee39ad81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/College_976x550_Retina.jpg
104.85.180.233200 OK 96 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/College_976x550_Retina.jpg
IP 104.85.180.233:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 976x550, components 3\012- data
Hash e943cd8397a6c7c56ae183306efcd95b
56c540f7a0fbefb7555692d54d2ef815a4c32250
39cf29abfa85623b9353615a6cb561c763e9c7244ea0ec145f2c5c9ed8c94a0e
GET /assets/CB_resources/images/HP%20Refresh%20Highlights/College_976x550_Retina.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 96036
last-modified: Tue, 14 Jun 2022 12:54:22 GMT
accept-ranges: bytes
etag: "0d33ddeed7fd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/Balance%20Transfer_976x550_Retina.jpg
104.85.180.233200 OK 108 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/Balance%20Transfer_976x550_Retina.jpg
IP 104.85.180.233:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 976x550, components 3\012- data
Size 108 kB (107675 bytes)
Hash 7ca884096b202b5f4da5ee8afdb493d2
a1443ea68bb6f3809b47403869ffec617ebbbe29
921e518e9731487aa7ab9fb878db50ea8a0008a489029ce53c111d9708dc4cb7
GET /assets/CB_resources/images/HP%20Refresh%20Highlights/Balance%20Transfer_976x550_Retina.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 107675
last-modified: Tue, 14 Jun 2022 12:54:21 GMT
accept-ranges: bytes
etag: "803ca5dded7fd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/globalComponents.min.js
104.85.180.233200 OK 503 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/globalComponents.min.js
IP 104.85.180.233:0
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
GET /assets/CB_resources/scripts/globalComponents.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 03 Dec 2021 21:39:59 GMT
accept-ranges: bytes
etag: "80618528ee8d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 44270
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2705
Expires: Sat, 10 Sep 2022 22:46:17 GMT
Date: Sat, 10 Sep 2022 22:01:12 GMT
Connection: keep-alive
geolocation-db.com/json/8dd79c70-0801-11ec-a29f-e381a788c2c0
159.89.102.253200 OK 503 B URL HTTP/2 geolocation-db.com/json/8dd79c70-0801-11ec-a29f-e381a788c2c0
IP 159.89.102.253:0
ASN #14061 DIGITALOCEAN-ASN
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
GET /json/8dd79c70-0801-11ec-a29f-e381a788c2c0 HTTP/1.1
Host: geolocation-db.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ci5izens.web.app
Connection: keep-alive
Referer: https://ci5izens.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.14.0 (Ubuntu)
date: Sat, 10 Sep 2022 22:01:11 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb1a86dcf94db0a29a6ebe21866766d4
b3491a6f12c97c8e1848a206a185fae29213c1e5
d05619e519fed6c0b6c0616cf540908006a68f127b25e38fb9d041dfe2546df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc91b46a1-040b-46aa-a7a1-af67f0058b83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7519
x-amzn-requestid: bef8445b-1f8b-4c00-a9ad-b32fdefe3d13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3zXoHOhIAMFfNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312ff63-1a6c3ef64362a4d052a761ae;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:16:51 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Pzv2DSpqnXB0UP3C5EF-YUzRmveFwmal_8YyRfEuHuhZ1FcUWgHocg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 14:09:01 GMT
age: 28331
etag: "b3491a6f12c97c8e1848a206a185fae29213c1e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8092dc3d-1f2d-4e22-b40a-bf1c53ea42e6.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8092dc3d-1f2d-4e22-b40a-bf1c53ea42e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99bd16c51d8e4853d6ee542d2ec9fb22
a9f77626875d68e1aea2516f78d491eba9969e37
b360c3c9fa12dc4f57fdbfc88fe820ecee1c049f2d43f44cd38b740513d8e9f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8092dc3d-1f2d-4e22-b40a-bf1c53ea42e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10298
x-amzn-requestid: f2e2d57b-1f6f-401a-bf0d-ca5c05dd5e59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YE-nmHBKIAMFrZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63184496-52d1369463143fc94894e347;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 07:13:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xW7Lli2tEVlm-nAL_JANbf0u4uZcPpslrE3rd2rWPoj_af_2WpiJ8Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:01 GMT
age: 1211
etag: "a9f77626875d68e1aea2516f78d491eba9969e37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8625e0707046e7a3715a8dbb40b1cae2
0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78
abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13568
x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X3yN1F2BIAMFoqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 14:09:02 GMT
age: 28330
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3d8bcb1-416c-44eb-ac9e-6196bed61280.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3d8bcb1-416c-44eb-ac9e-6196bed61280.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0119f7d5458bbad12e972d04221e49ea
f05c46d74d8dfdd7fee763ec1e80e498399fffd2
eaefac45720584447a601fd90300464fbca5092117a670ac73be3b47884ba7fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3d8bcb1-416c-44eb-ac9e-6196bed61280.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8005
x-amzn-requestid: 5320b7ef-2f75-4eac-8d83-1bc96bd45257
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHwPNG8CoAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631960c7-41a84d81050c6a330140b9cb;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:25:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 1X-LfoG8xFWFoTGNlZ3xbETUL56rduGLwReSSEaTohdeZ_SWIf6ArQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:40:58 GMT
age: 1214
etag: "f05c46d74d8dfdd7fee763ec1e80e498399fffd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234d0658-5bd0-4cc9-a828-3300a0005951.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234d0658-5bd0-4cc9-a828-3300a0005951.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash de6622cfd812509b317913e1a5e9cfc8
84e4a39c92ab111cc1072f898990cea6b05da6cf
6d41b564c2e15215d05ba74ba2ae08abf74f6aef9e58e808d31afc6d1ba123af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F234d0658-5bd0-4cc9-a828-3300a0005951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9319
x-amzn-requestid: 44d731e9-1da0-4ad0-9fbb-1b170fac3bf0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTxaFtpIAMFWAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c666f-2e155359546dae806f6dbfe2;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:10:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cZslQ5Qc4PPIlpAtmGVbfr3NaPybUWZMJBz_pCrXkCSSq6hUztXVjA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:41:01 GMT
age: 1211
etag: "84e4a39c92ab111cc1072f898990cea6b05da6cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/ctz-apple-app-image_2022.png
104.85.180.233200 OK 24 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/ctz-apple-app-image_2022.png
IP 104.85.180.233:0
File type PNG image data, 597 x 178, 8-bit/color RGBA, non-interlaced\012- data
Hash dd6830b7921eaa5c5eb2d9dd4d81438f
aa5a50d4c0cf2e1fa74941406c361a4b8490b52d
56f6e433530f2fe7326cd3bd72bb2e0a34c040f7a759cc9f0ead5679b2d46273
GET /assets/CB_resources/images/ctz-apple-app-image_2022.png HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 23481
last-modified: Tue, 01 Mar 2022 15:30:09 GMT
accept-ranges: bytes
etag: "80161d3c812dd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec2646c56c4c522f0744768ad20342b
ad1d9eee90556a359547dc7cbb6758aee2c804cd
0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: ee29c85d-45cf-4a22-abca-d72b275dc961
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YMCYWFpkoAMFS7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631b1768-0cc0c1627478461a7be696b2;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 10:37:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: X82JttDKpdvG8Sqya2EjvIIgfwllq6sujxNqZkmBLELGLKNxyXOTnQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 00:41:02 GMT
age: 76810
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/ctz-google-play-image_2022.png
104.85.180.233200 OK 24 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/ctz-google-play-image_2022.png
IP 104.85.180.233:0
File type PNG image data, 597 x 178, 8-bit/color RGBA, non-interlaced\012- data
Hash 37f0625303e4ee6945baf79f84805dbf
d831c4385955719cf55e2565ab572df6a6ab87bd
8c0118b0e0cd79f57d9f02172e453725ef38b2acd5128e42d0123e99d8803c3c
GET /assets/CB_resources/images/ctz-google-play-image_2022.png HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 24385
last-modified: Tue, 01 Mar 2022 15:30:09 GMT
accept-ranges: bytes
etag: "80161d3c812dd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/akam/13/2e3627f5
104.85.180.233200 OK 8.8 kB URL HTTP/2 www.citizensbank.com/akam/13/2e3627f5
IP 104.85.180.233:0
File type ASCII text, with very long lines (14360)
Hash 326ef82b6748b30d63247de6bedea1d3
2f711812044c6e2301df70de2b8a0f6368fd50b3
fcd62d9034565723c5641b290a98cf2c862701b6edc881658a107b7bf0e63679
GET /akam/13/2e3627f5 HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Feb 2022 15:10:39 GMT
etag: "c9fe1debc28999a4cc3a4dde7f752be28412c4f1e4a965370754de86975ff392"
content-type: application/javascript
content-encoding: gzip
content-length: 8792
expires: Sat, 10 Sep 2022 22:01:12 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:12 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=284
strict-transport-security: max-age=15768000
set-cookie: fcf-done=true; path=/
ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:12 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/Direct_Deposit_Goals_Carousel_488x275_NR.png
104.85.180.233200 OK 291 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/HP%20Refresh%20Highlights/Direct_Deposit_Goals_Carousel_488x275_NR.png
IP 104.85.180.233:0
File type PNG image data, 488 x 275, 8-bit/color RGBA, non-interlaced\012- data
Size 291 kB (291336 bytes)
Hash b73b34511ea23f7d0595bb3338c697bc
8f8688c55dfacfaccc0390d568a1424e70a3b537
2b446c6b47d709a2c765d9a7bc91ca1a09e4bc3cf194347719918dec1167f61a
GET /assets/CB_resources/images/HP%20Refresh%20Highlights/Direct_Deposit_Goals_Carousel_488x275_NR.png HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 291336
last-modified: Thu, 18 Aug 2022 14:27:20 GMT
accept-ranges: bytes
etag: "0d4d69feb3d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 57b75ea93de540716c45f1397781431a
431cc2c684385c4e46facd7210b5ac49b9dd09cc
4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.citizensbank.com/assets/CB_resources/images/Mobile_App_NR_488x275.png
104.85.180.233200 OK 167 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/Mobile_App_NR_488x275.png
IP 104.85.180.233:0
File type PNG image data, 488 x 275, 8-bit/color RGB, non-interlaced\012- data
Size 167 kB (166919 bytes)
Hash ca412e980be30bcc94c2a6f2d9d14d2b
360763b2d6d542a7cf16912cf29ea21e480e59c7
c89e40c4f815cd1407964ce180810660b17db78695275014a30cc2b08879f393
GET /assets/CB_resources/images/Mobile_App_NR_488x275.png HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 166919
last-modified: Mon, 25 Oct 2021 16:13:38 GMT
accept-ranges: bytes
etag: "0a5bc44bbc9d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:12 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/cbds-icons/disclosureIcons/housing.svg
104.85.180.233200 OK 2.5 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/cbds-icons/disclosureIcons/housing.svg
IP 104.85.180.233:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1528), with CRLF line terminators
Hash 2e4aaafcc0b0d4c5c61d4b24a9d9dc27
9108b9e67adad00143edb2c393de5e9e0dfd0fda
45549e196fd1e2443d00961621f11e42be50137e5c36a976013a88da4e2ea6ec
GET /assets/CB_resources/images/cbds-icons/disclosureIcons/housing.svg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 08 Dec 2020 22:01:07 GMT
accept-ranges: bytes
etag: "80d31ba1adcdd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 2451
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
s.go-mpulse.net/boomerang/5BMP7-Q46DH-MA9ZE-K574A-MZT88
184.24.44.135200 OK 50 kB URL HTTP/2 s.go-mpulse.net/boomerang/5BMP7-Q46DH-MA9ZE-K574A-MZT88
IP 184.24.44.135:0
File type C source, ASCII text, with very long lines (65103)
Hash 8991c3ec80ec8fbc41382a55679e3911
8cc8cee91d671038acd9e3ae611517d6801b0909
f55bacd4a20fef96f5c736a912d1947be85c268df18003395e511c1e860e8800
GET /boomerang/5BMP7-Q46DH-MA9ZE-K574A-MZT88 HTTP/1.1
Host: s.go-mpulse.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Thu, 18 Aug 2022 11:20:06 GMT
timing-allow-origin: *
vary: Accept-Encoding
content-length: 50393
date: Sat, 10 Sep 2022 22:01:12 GMT
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=DC-8253365
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-8253365
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 8a7d67bd3594702482ffb159fc74dcd1
c536bb4580fedfc495f110759339bc6c70ca6453
b6bbaebbaedadb7381b3d2d18f2e90a0449324fb7c09fcbad337be5566446117
GET /gtag/js?id=DC-8253365 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Sep 2022 22:01:13 GMT
expires: Sat, 10 Sep 2022 22:01:13 GMT
cache-control: private, max-age=900
last-modified: Sat, 10 Sep 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41948
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/main.min.js
104.85.180.233200 OK 59 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/main.min.js
IP 104.85.180.233:0
File type ASCII text, with very long lines (65508)
Hash 590df14bcf2c7accee828618bbec23cb
1e9067116d6456a5dbcdd4d0f5276481211a9466
9fda54b2beb733bb783ac67db2be7ac88c01780a9588dc0111e2f155be207698
GET /assets/CB_resources/scripts/main.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 21 Jan 2022 23:42:57 GMT
accept-ranges: bytes
etag: "8096e79d20fd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 58843
expires: Sat, 10 Sep 2022 22:01:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
104.85.180.233200 OK 72 kB URL HTTP/2 www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
IP 104.85.180.233:0
Hash 9b92b14ecea47f0bef8018dffe886a6b
fd6c0ff9467601891bf2b29dd92bd67962071a43
f3dcf751c4f532118df2fe54b1baacfb712e34f58cb2936e33c668c560f9da6f
GET /sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 03 Aug 2022 13:25:52 GMT
etag: "2000504ef61113a85c086866f4d548af5a3cac1c69647b9a9abc7222b6e000b7"
content-type: application/javascript
content-encoding: gzip
content-length: 71520
expires: Sat, 10 Sep 2022 22:01:13 GMT
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
cache-control: max-age=21600
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
set-cookie: fcf-done=true; path=/
_abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF83GRxmDAQAAcchrKQjB9tTIenvBsSJFFg+8tK+/IbqgPIDHYXZaNmfk0VanNjHul5hRrtSilDRpOB66YikLhJt6uADn9fe5dZKHiOHuySNI0b3AYjXDXCQ3w71e4pWASAelyBv8qwT/XChum7dkdBQM1mo47Rje8bOj5vhq4qfLxXOgZ3uUvKpuocW3pDsTfq2XdzFDQ8qgp0uC5nN73NwwWBQ+Rwch16JoTDZ4u/yGu7nLz3rpvXFv9odz/Tlq1r7eogWSJIByJSCsbe42BgkTKSBJsdAUPJ96CHMp1iB8P4vFjlVz5uipQhAZ4GMn+j7FH2+dJ2s80gXNDBkuRLYa0V4JuAbYyWZJZ74RSTMFr/TLNNqm4jluTP67nt0nREonN9NnBicVKqwbSE1S1TI9LokzZYGJRpvrUCA=~-1~-1~-1; Domain=.citizensbank.com; Path=/; Expires=Sun, 10 Sep 2023 22:01:13 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/fonts/citi-sans/CitiSans-Roman.woff
104.85.180.233200 OK 32 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/fonts/citi-sans/CitiSans-Roman.woff
IP 104.85.180.233:0
File type Web Open Font Format, TrueType, length 32212, version 1.0\012- data
Hash 283e6573c811899012591ae25a7009c6
03d78249037ffac6327554f14f4d7ce708ea9177
28c606ca7d39a8d8a87ae9a3b2465c1df8c8c1dddb2b65cf2f150bc501182ce3
GET /assets/CB_resources/fonts/citi-sans/CitiSans-Roman.woff HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 32212
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
cache-control: private, max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 57b75ea93de540716c45f1397781431a
431cc2c684385c4e46facd7210b5ac49b9dd09cc
4581d7dd422dc110fa7cfe667297cdb75d92a02ce7226db6db89448befa5b780
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.citizensbank.com/assets/CB_resources/GlobalComponents/MultiColumn/multicolumn-shell-master.min.css
104.85.180.233200 OK 818 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/GlobalComponents/MultiColumn/multicolumn-shell-master.min.css
IP 104.85.180.233:0
File type ASCII text, with very long lines (2425)
Hash 7326c465d0810ae601884f1d304ada2e
df4d92a663643f408197e17dd34c71df34f1bfcc
ccf11a8eeb7efe17c5ae39d75831adad27244bc5bcc8f387841a82dd85effa83
GET /assets/CB_resources/GlobalComponents/MultiColumn/multicolumn-shell-master.min.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 06 Jun 2022 20:36:48 GMT
accept-ranges: bytes
etag: "070d724e579d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 818
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/GlobalComponents/MultiColumn/multicolumn-card.min.css
104.85.180.233200 OK 665 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/GlobalComponents/MultiColumn/multicolumn-card.min.css
IP 104.85.180.233:0
File type ASCII text, with very long lines (1546)
Hash e5cad055ec296e57c27e422d1a18a91b
8a2584b7c178b2af22600be0928a63267cf14d7a
3e6e8106ebb392940945b61ea985fb6603162af8c9d9eec67f0c6033d48a443a
GET /assets/CB_resources/GlobalComponents/MultiColumn/multicolumn-card.min.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Mon, 06 Jun 2022 20:36:48 GMT
accept-ranges: bytes
etag: "070d724e579d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 665
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=3
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/GlobalComponents/Breadcrumbs/breadcrumbs.min.css
104.85.180.233200 OK 499 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/GlobalComponents/Breadcrumbs/breadcrumbs.min.css
IP 104.85.180.233:0
File type ASCII text, with very long lines (1754)
Hash 7ea640bb1776413746ea40ae52e663b9
9a0bf37ce16b5829f745f966282246d42414e64d
33eedf3e5a81f1e825ef49f648a3ff0803eaf8559872e6bd55dbd3f2a054f40c
GET /assets/CB_resources/GlobalComponents/Breadcrumbs/breadcrumbs.min.css HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Wed, 03 Aug 2022 20:40:23 GMT
accept-ranges: bytes
etag: "8055f34079a7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 499
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/GlobalComponents/Alerts/alert.min.js
104.85.180.233200 OK 405 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/GlobalComponents/Alerts/alert.min.js
IP 104.85.180.233:0
File type ASCII text, with very long lines (675), with no line terminators
Hash 2c38d60e0c1d33c3c345dc4ebe6f62a6
3fb7c4c2fc2d171a334654d41cea24dda2bc4e06
e5376c4cc9c3086cadf2d5709d547341f318d10e5c9481077bef2c3916101dc7
GET /assets/CB_resources/GlobalComponents/Alerts/alert.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 21:43:24 GMT
accept-ranges: bytes
etag: "066d5f6c32d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 405
expires: Sat, 10 Sep 2022 22:01:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/cbds-icons/cbds-icons-ui.svg
104.85.180.233200 OK 8.0 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/cbds-icons/cbds-icons-ui.svg
IP 104.85.180.233:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (31170), with no line terminators
Hash 05e45a686957288c87ee1a87c2187ac9
675d7420757f6fc374518571e374e810ce3573d4
e816035dedd2b4eb982410379cbfab97e9557a529f9a24964cfa4cd8c2ff41b7
GET /assets/CB_resources/images/cbds-icons/cbds-icons-ui.svg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 08 Dec 2020 22:01:07 GMT
accept-ranges: bytes
etag: "80d31ba1adcdd61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 7980
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/cbds-logos/cbds-logos-citizens.svg
104.85.180.233200 OK 2.9 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/cbds-logos/cbds-logos-citizens.svg
IP 104.85.180.233:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (24629), with no line terminators
Hash 13e140c8ff70884877d5a2adef399768
c9fdf83a8f32ca76305a86083db69b4b4f7d4204
455cdec3d5a2113118547eff6a9eab0cc01a34a48265839a804caed482cc54ac
GET /assets/CB_resources/images/cbds-logos/cbds-logos-citizens.svg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 16 Feb 2021 21:40:10 GMT
accept-ranges: bytes
etag: "059cb4cac4d71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 2854
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/mamp-1763-2560x770_Retina-two.jpg
104.85.180.233200 OK 75 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/mamp-1763-2560x770_Retina-two.jpg
IP 104.85.180.233:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2560x770, components 3\012- data
Hash 06eab697d20ce29e981901553653c64f
a89ba9f69d17faadca44a87abfa4384e0cef5d7a
d2e3a25593a52e8a45a6fb9bc5f9835be9f6ca0bd7153910452865a9cf20ec8b
GET /assets/CB_resources/images/mamp-1763-2560x770_Retina-two.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 74696
last-modified: Tue, 26 Oct 2021 20:08:33 GMT
accept-ranges: bytes
etag: "80b66c40a5cad71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/images/cbds-icons/cbds-icons-brand.svg
104.85.180.233200 OK 82 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/images/cbds-icons/cbds-icons-brand.svg
IP 104.85.180.233:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (65536), with no line terminators
Hash 2a6cb62053ad0e7a5c8dcddbb6245d06
207b990e4d420cb6852d774afa329b14367b8311
aa6c59c17e54d57f6f30446bcbc483bc4df12edc265fe76b460d04e8db78d2d2
GET /assets/CB_resources/images/cbds-icons/cbds-icons-brand.svg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Tue, 13 Oct 2020 20:53:45 GMT
accept-ranges: bytes
etag: "8092c1f0a2a1d61:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 81534
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/fonts/fira-sans/FiraSans-Regular.woff
104.85.180.233200 OK 183 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/fonts/fira-sans/FiraSans-Regular.woff
IP 104.85.180.233:0
File type Web Open Font Format, TrueType, length 183268, version 0.0\012- data
Size 183 kB (183268 bytes)
Hash 200d5e7cc951bbffda6945f883e3123e
f8bbc899989fc50fe9c1c1e99aac46cb924dc827
f424919647a665eebd5f5f6fb13f022b46f8542365f2892d6e5cf9318574379b
GET /assets/CB_resources/fonts/fira-sans/FiraSans-Regular.woff HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 183268
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
cache-control: private, max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/fonts/fira-sans/FiraSans-Medium.woff
104.85.180.233200 OK 187 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/fonts/fira-sans/FiraSans-Medium.woff
IP 104.85.180.233:0
File type Web Open Font Format, TrueType, length 186824, version 0.0\012- data
Size 187 kB (186824 bytes)
Hash 181fa5a2e6e9b5730eb6fe46c30b5228
d44dca97abb2bd6be5d95eaadb742e59439c42cd
5ee4973232b036b54b12153243e7eb6a263fb7bc43d585149002327ad7e7483b
GET /assets/CB_resources/fonts/fira-sans/FiraSans-Medium.woff HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 186824
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
cache-control: private, max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/fonts/fira-sans/FiraSans-SemiBold.woff
104.85.180.233200 OK 198 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/fonts/fira-sans/FiraSans-SemiBold.woff
IP 104.85.180.233:0
File type Web Open Font Format, TrueType, length 198128, version 0.0\012- data
Size 198 kB (198128 bytes)
Hash defc482e83c81d8844cd30c0f5882129
74864dd467242cb8fa0a22d4ba3ce6abbda1dd84
db1aa0a77c24b18b0c6091853f025abc4fc197a46169ceb3423009856655353a
GET /assets/CB_resources/fonts/fira-sans/FiraSans-SemiBold.woff HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 198128
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
cache-control: private, max-age=600
date: Sat, 10 Sep 2022 22:01:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/scripts/vendor/vendor-bottom.min.js
104.85.180.233200 OK 190 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/scripts/vendor/vendor-bottom.min.js
IP 104.85.180.233:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size 190 kB (190269 bytes)
Hash 54a91ffcae46b374e7af37972a702744
1ad02f02b5b9248605e027422649dfa743bdad3a
cc1a9524c7cf04cffe40f6580432ece5ce224a327c4b9a08ce314c38de50773a
GET /assets/CB_resources/scripts/vendor/vendor-bottom.min.js HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 30 Apr 2021 21:41:26 GMT
accept-ranges: bytes
etag: "0c73f9293ed71:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
content-encoding: gzip
content-length: 190269
expires: Sat, 10 Sep 2022 22:01:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:13 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2
cdn.glassboxcdn.com/citizen/com/p/detector-dom.min.js
104.18.14.22200 OK 128 kB URL HTTP/2 cdn.glassboxcdn.com/citizen/com/p/detector-dom.min.js
IP 104.18.14.22:0
File type ASCII text, with very long lines (61872), with CRLF line terminators
Size 128 kB (127704 bytes)
Hash 345b60254c5f11ca33f7f9cfb614d7f3
a6c50889c5dd8b959f5027890e5774de18c6c4ea
5569c5a505bf84a4ca68fa81f8b26c7135b39deb844f7d13096a5ee825113c9b
GET /citizen/com/p/detector-dom.min.js HTTP/1.1
Host: cdn.glassboxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:13 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 20:45:14 GMT
etag: W/"f9ac9db67226b19eea3b413695b6722f"
x-amz-version-id: yRyIucrCGccuikrOdmeSp0r7kdpuYrEr
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 cc493ed59590651c91f2b3884a8bc9f6.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C1
x-amz-cf-id: hwO-Z463NRxFpPkAvl4qxjPVU1_es9e1n_54qVEByHkK6lNj8OSz2w==
cf-cache-status: HIT
expires: Sun, 11 Sep 2022 02:01:13 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 748b70e1b967b4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da7b1c24eee0db0c23872933557b7521
b8bc1215b4073784c048587e51a40152bd88c8ed
6ba38b5c68971135ed3f1fbe7afa658ce883240142a4244ce7d84fa251a64c3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.citizensbank.com/favicon.ico
104.85.180.233200 OK 318 B URL HTTP/2 www.citizensbank.com/favicon.ico
IP 104.85.180.233:0
File type MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Hash 1c2347c166d02ef7b144d4a5c4b950bb
ddce0cf5b6f9c03ea62a4b60a6b93406d635cc71
9c2137e4a90fa960dd5c22d7b78f801a513e0c304c908c5178bf4c0cf9fbefed
GET /favicon.ico HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF83GRxmDAQAAcchrKQjB9tTIenvBsSJFFg+8tK+/IbqgPIDHYXZaNmfk0VanNjHul5hRrtSilDRpOB66YikLhJt6uADn9fe5dZKHiOHuySNI0b3AYjXDXCQ3w71e4pWASAelyBv8qwT/XChum7dkdBQM1mo47Rje8bOj5vhq4qfLxXOgZ3uUvKpuocW3pDsTfq2XdzFDQ8qgp0uC5nN73NwwWBQ+Rwch16JoTDZ4u/yGu7nLz3rpvXFv9odz/Tlq1r7eogWSJIByJSCsbe42BgkTKSBJsdAUPJ96CHMp1iB8P4vFjlVz5uipQhAZ4GMn+j7FH2+dJ2s80gXNDBkuRLYa0V4JuAbYyWZJZ74RSTMFr/TLNNqm4jluTP67nt0nREonN9NnBicVKqwbSE1S1TI9LokzZYGJRpvrUCA=~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 318
last-modified: Thu, 25 Jun 2009 14:06:36 GMT
accept-ranges: bytes
etag: "0feb7269ef5c91:0"
server: Microsoft-IIS/10.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:14 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1623)
Hash 4738d969770682feba80f04bf171d65b
be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 10 Sep 2022 22:01:14 GMT
expires: Sat, 10 Sep 2022 22:01:14 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/json/label_lookup/RegionValues.json
104.85.180.233200 OK 855 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/json/label_lookup/RegionValues.json
IP 104.85.180.233:0
File type JSON data\012- , ASCII text, with CRLF line terminators
Hash fde75647c7de078d6cbcae98934679d7
58b51a80ca393ecb1ee9a602cc6fe7d9579b4020
edcc1b8297b555101b0bf126d9d0d9a8401f242101464fe174cab52c3c6d7a82
GET /assets/CB_resources/json/label_lookup/RegionValues.json HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF83GRxmDAQAAcchrKQjB9tTIenvBsSJFFg+8tK+/IbqgPIDHYXZaNmfk0VanNjHul5hRrtSilDRpOB66YikLhJt6uADn9fe5dZKHiOHuySNI0b3AYjXDXCQ3w71e4pWASAelyBv8qwT/XChum7dkdBQM1mo47Rje8bOj5vhq4qfLxXOgZ3uUvKpuocW3pDsTfq2XdzFDQ8qgp0uC5nN73NwwWBQ+Rwch16JoTDZ4u/yGu7nLz3rpvXFv9odz/Tlq1r7eogWSJIByJSCsbe42BgkTKSBJsdAUPJ96CHMp1iB8P4vFjlVz5uipQhAZ4GMn+j7FH2+dJ2s80gXNDBkuRLYa0V4JuAbYyWZJZ74RSTMFr/TLNNqm4jluTP67nt0nREonN9NnBicVKqwbSE1S1TI9LokzZYGJRpvrUCA=~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 855
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
expires: Sat, 10 Sep 2022 22:01:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:14 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=513, origin; dur=45
strict-transport-security: max-age=15768000
x-robots-tag: none
set-cookie: bm_sv=3076F700204EAB4267797BD71DD7B06E~YAAQlQVJFznHRxmDAQAACc1rKRE1KQRRMFnDXRg2ajVaJNz62N3LdcLLkDZzPJ6OzAVBqEzHLYcVvi9sFMBEwRORHAIQGgHvt02XRcbfi8pC1M/fYzDhqlTd4lmiXlUhA3QS7/jXq/5Z7VO7fnSk2o8o/Anx5OlN6pS7MK7fXfVwj78F30ojvN21GZ4mJt5i+UR9WrqJ99OZMzIungeYDLQRBTGcYNaNzGSaCNUdfm9/R5gbLqAf/E63b/CpiW6ZZJO1Iu2h~1; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:14 GMT; Max-Age=7200; Secure
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 09998aa911b452dd22d7a6649ae9d408
15a03e280145122469f04a918a13f73f698dfc53
a2884b113f9a8e9399d6d5b795c9fba766fe866edad595f466c1a69af44d53ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3898
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Last-Modified: Sat, 10 Sep 2022 20:56:16 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
www.citizensbank.com/assets/CB_resources/json/label_lookup/undefined.json
104.85.180.233490 No Reason Phrase 2.6 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/json/label_lookup/undefined.json
IP 104.85.180.233:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 8a097dc31dd3e16e61e145bc972277bc
4f6393545a76b03c8111674a721fd91e2ea024cf
3f37ebbea0cb1b544dc70565a0b57f2636de9da729789f15863e203e981c7e95
GET /assets/CB_resources/json/label_lookup/undefined.json HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF83GRxmDAQAAcchrKQjB9tTIenvBsSJFFg+8tK+/IbqgPIDHYXZaNmfk0VanNjHul5hRrtSilDRpOB66YikLhJt6uADn9fe5dZKHiOHuySNI0b3AYjXDXCQ3w71e4pWASAelyBv8qwT/XChum7dkdBQM1mo47Rje8bOj5vhq4qfLxXOgZ3uUvKpuocW3pDsTfq2XdzFDQ8qgp0uC5nN73NwwWBQ+Rwch16JoTDZ4u/yGu7nLz3rpvXFv9odz/Tlq1r7eogWSJIByJSCsbe42BgkTKSBJsdAUPJ96CHMp1iB8P4vFjlVz5uipQhAZ4GMn+j7FH2+dJ2s80gXNDBkuRLYa0V4JuAbYyWZJZ74RSTMFr/TLNNqm4jluTP67nt0nREonN9NnBicVKqwbSE1S1TI9LokzZYGJRpvrUCA=~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 490 No Reason Phrase
content-type: text/html; charset=utf-8
content-length: 2583
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
expires: Sat, 10 Sep 2022 22:01:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:14 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=540, origin; dur=48
strict-transport-security: max-age=15768000
x-robots-tag: none
set-cookie: bm_sv=552CA9F11841683A7AA4B44F14F18A2A~YAAQlQVJFzrHRxmDAQAAFM1rKRHj8ZluIt60zgftx04Jsr4s2Z98Q403iVoxkrVXBRd0/KfKgxIdadvTZ/D549jFv36CSMAFkhntc647f0Vlj2QvkE4Q8RuNilgCPcBxIFzrVKzurOAvSRg6LFCwDJTb32oHIjGUx6PQbi63QJykl9zeP5kKgP2KESw5kd8KB8upb7AfCAZa0DKbD9JXWrI4kJ5gy7JnBLu5tta9HxTRfzh6UJLOvKVnLD0VCx7z0sefMYd2~1; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:14 GMT; Max-Age=7200; Secure
X-Firefox-Spdy: h2
www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
104.85.180.233201 Created 18 B URL HTTP/2 www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
IP 104.85.180.233:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2511
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF83GRxmDAQAAcchrKQjB9tTIenvBsSJFFg+8tK+/IbqgPIDHYXZaNmfk0VanNjHul5hRrtSilDRpOB66YikLhJt6uADn9fe5dZKHiOHuySNI0b3AYjXDXCQ3w71e4pWASAelyBv8qwT/XChum7dkdBQM1mo47Rje8bOj5vhq4qfLxXOgZ3uUvKpuocW3pDsTfq2XdzFDQ8qgp0uC5nN73NwwWBQ+Rwch16JoTDZ4u/yGu7nLz3rpvXFv9odz/Tlq1r7eogWSJIByJSCsbe42BgkTKSBJsdAUPJ96CHMp1iB8P4vFjlVz5uipQhAZ4GMn+j7FH2+dJ2s80gXNDBkuRLYa0V4JuAbYyWZJZ74RSTMFr/TLNNqm4jluTP67nt0nREonN9NnBicVKqwbSE1S1TI9LokzZYGJRpvrUCA=~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 201 Created
content-length: 18
x_req_id: 8136ce52-3e99-4799-a9c1-efb130700845
date: Sat, 10 Sep 2022 22:01:14 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.citizensbank.com
access-control-allow-headers: Content-Type
server-timing: edge; dur=36, origin; dur=427, cdn-cache; desc=MISS
strict-transport-security: max-age=15768000
content-security-policy: frame-ancestors 'self' https://www.citizensbank.com;
set-cookie: _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJFz3HRxmDAQAAJ81rKQgsro1P4/YC4VlbzNr49CXWjdO1Al+PCJB5CXA1pfTCHuoVyi/4PBbgHuBQt4T2BqHgJHnGFE/fIaOlxmBuJ70LgpRFObqYqb4a8pg5uotNn+FDSo+Eo4fBnxxotMlOLtNGCG8Mz/PpOUEpCPcKXgagh/wE6WuaEmQXOjT3LRtY7jQcFpnS/NG0waC45E8K59Ex3zzb6HfKLvfd3azFT/ThAJmrHP5/soQdr91aYSiPatdp9cSKIkjkpqNaQg/2T0eKbyQQPgnYnu0ctmebHVTY+CaRSlIiWflJBriqegamfA91TGdjpNxjSLn8Xza/sS+HfDg/P7P2Uel1wJFufJWXl89uziQ+/Vzsx0AxLAMRK+qJrJqU082UmAv7cdpTFc5JYzJFf9e5wKYWfU6BkkA=~-1~||1-dzNNEcAFcv-1-10-1000-2||~-1; Domain=.citizensbank.com; Path=/; Expires=Sun, 10 Sep 2023 22:01:14 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dpm.demdex.net/id?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702
54.154.150.117302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702
IP 54.154.150.117:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.citizensbank.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v039-0799cb887.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=39558392408288315243833247535531909364; Max-Age=15552000; Expires=Thu, 09 Mar 2023 22:01:14 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: EHadndjBRbE=
Content-Length: 0
Connection: keep-alive
nexus.ensighten.com/citizensbank/prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/citizensbank/prod/code/&publishedOn=Thu%20Sep%2008%2015:12:08%20GMT%202022&ClientID=397&PageID=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx
54.230.111.14200 OK 506 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/citizensbank/prod/code/&publishedOn=Thu%20Sep%2008%2015:12:08%20GMT%202022&ClientID=397&PageID=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx
IP 54.230.111.14:0
File type ASCII text, with very long lines (1720)
Hash acd6adccf9c70319583c6e9dc02c8554
2d781eaf5f2e9ecd5e0416b187ac0fe14a918bbc
2fa6c97f133742c727b5f9dfeb30d4f0f0d3b90e463366138bbed8535aa37f1e
GET /citizensbank/prod/serverComponent.php?namespace=Bootstrapper&staticJsPath=nexus.ensighten.com/citizensbank/prod/code/&publishedOn=Thu%20Sep%2008%2015:12:08%20GMT%202022&ClientID=397&PageID=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
server: nginx
date: Sat, 10 Sep 2022 22:01:14 GMT
expires: Sat, 10 Sep 2022 22:01:13 GMT
cache-control: no-cache, no-store
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dz42lP_dzbAsUiAzMAF7AYDJ3rMKMHGgDTas6Do2JJ5AlNYqne5wBQ==
X-Firefox-Spdy: h2
www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
104.85.180.233201 Created 18 B URL HTTP/2 www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
IP 104.85.180.233:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2557
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJFz3HRxmDAQAAJ81rKQgsro1P4/YC4VlbzNr49CXWjdO1Al+PCJB5CXA1pfTCHuoVyi/4PBbgHuBQt4T2BqHgJHnGFE/fIaOlxmBuJ70LgpRFObqYqb4a8pg5uotNn+FDSo+Eo4fBnxxotMlOLtNGCG8Mz/PpOUEpCPcKXgagh/wE6WuaEmQXOjT3LRtY7jQcFpnS/NG0waC45E8K59Ex3zzb6HfKLvfd3azFT/ThAJmrHP5/soQdr91aYSiPatdp9cSKIkjkpqNaQg/2T0eKbyQQPgnYnu0ctmebHVTY+CaRSlIiWflJBriqegamfA91TGdjpNxjSLn8Xza/sS+HfDg/P7P2Uel1wJFufJWXl89uziQ+/Vzsx0AxLAMRK+qJrJqU082UmAv7cdpTFc5JYzJFf9e5wKYWfU6BkkA=~-1~||1-dzNNEcAFcv-1-10-1000-2||~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"; bm_sv=552CA9F11841683A7AA4B44F14F18A2A~YAAQlQVJFzrHRxmDAQAAFM1rKRHj8ZluIt60zgftx04Jsr4s2Z98Q403iVoxkrVXBRd0/KfKgxIdadvTZ/D549jFv36CSMAFkhntc647f0Vlj2QvkE4Q8RuNilgCPcBxIFzrVKzurOAvSRg6LFCwDJTb32oHIjGUx6PQbi63QJykl9zeP5kKgP2KESw5kd8KB8upb7AfCAZa0DKbD9JXWrI4kJ5gy7JnBLu5tta9HxTRfzh6UJLOvKVnLD0VCx7z0sefMYd2~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 201 Created
content-length: 18
x_req_id: 69fd28b5-aa3a-4c28-a5e7-92afc18ad0f8
date: Sat, 10 Sep 2022 22:01:14 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.citizensbank.com
access-control-allow-headers: Content-Type
server-timing: edge; dur=16, origin; dur=205, cdn-cache; desc=MISS
strict-transport-security: max-age=15768000
content-security-policy: frame-ancestors 'self' https://www.citizensbank.com;
set-cookie: _abck=5C215ABA8A095A6F7AAC806BCC9C6812~0~YAAQlQVJF1PHRxmDAQAALs5rKQiTHXOBTeADbYo9ekP7KP8rIw16JyhRxiW4j9vQ94AjikooE0bMTpuDcRhF2C1v2ZAP+R+aPSEszX1dWQA8Zcc/xZUEg76xq0ijOQu1mT73XcTwyJ7bbbD8xK6er8B+IIcFe+mgUN53LibTTHasiVLxrsgPsWN2aWBwiidR1Ngr6Absc8HLdt6Nke8NE+N28QmUhZCggEVdszgemImbRNm3W7UZ/TXM6rHh6YHgaPHtqy/uobQTLvFY3oKOnQqix9aBS9Xc7l2qzsdphECvcLly2W9icd7OQXo6DSfnrL33Fje39BhJoIU2bYxxiNp4dS1KqTsL9bd7F3+NHrbtFX5xhvKu56CWIB3KrMR1I/WljFlhoIZdCYJXtYF/CTm2LKOGUvceblfBOLG7ae5FPxsh0jB+VmR3bnPN7wBuIA==~-1~||1-dzNNEcAFcv-1-10-1000-2||~-1; Domain=.citizensbank.com; Path=/; Expires=Sun, 10 Sep 2023 22:01:14 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/53cc07bc582efbef8624cf446a760fd1.js?conditionId0=4923414
54.230.111.14200 OK 600 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/53cc07bc582efbef8624cf446a760fd1.js?conditionId0=4923414
IP 54.230.111.14:0
File type ASCII text, with very long lines (507)
Hash ae5cb2a5e388efaae57b4cde387f56e4
fabcc83184fbea8a821837eb602866ea9f8351b2
93d6b417114cb306e8061123567b942ee777a12429c42ea89a2a31d5774ed96e
GET /citizensbank/prod/code/53cc07bc582efbef8624cf446a760fd1.js?conditionId0=4923414 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 600
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Apr 2022 19:34:40 GMT
etag: "ae5cb2a5e388efaae57b4cde387f56e4"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: LH5KEjTcSAKOGypUy3yD482ccFZ_ymwr
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZRelyuMjS8n1mRpxAmUk0zYrUp3u2W3rVhJvLUYH1mJDc5JmJugQvA==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927434
54.230.111.14200 OK 701 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927434
IP 54.230.111.14:0
File type ASCII text, with very long lines (517)
Hash 98042c78dd5fecb62e33933ef4e4fca1
759d7bcf0985229918e6e6fabf3b2b9fed07f307
198e3d07548df42b6d35eaee2f62830641c8952d2c06acc84374be8277ed23c1
GET /citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927434 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 701
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 29 Jun 2022 18:29:07 GMT
etag: "98042c78dd5fecb62e33933ef4e4fca1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: d.MrPs40IlE5qoQExUZYB9vcJoNqFgKt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aaCzMnjz6ZBYY7Qdd9tAAAPhAjqgL1F7TwqEEuLHjCwyhTATrzhkwQ==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4918255
54.230.111.14200 OK 701 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4918255
IP 54.230.111.14:0
File type ASCII text, with very long lines (517)
Hash 98042c78dd5fecb62e33933ef4e4fca1
759d7bcf0985229918e6e6fabf3b2b9fed07f307
198e3d07548df42b6d35eaee2f62830641c8952d2c06acc84374be8277ed23c1
GET /citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4918255 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 701
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 29 Jun 2022 18:29:07 GMT
etag: "98042c78dd5fecb62e33933ef4e4fca1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: d.MrPs40IlE5qoQExUZYB9vcJoNqFgKt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _vfL4u8MLhORqN5deZCGH0QHYGdTSOIyOnyqcjOq-KzZy7Qf42sZyw==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/084ec8d8f33399609c33a4ceb996af2d.js?conditionId0=488868
54.230.111.14200 OK 830 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/084ec8d8f33399609c33a4ceb996af2d.js?conditionId0=488868
IP 54.230.111.14:0
File type ASCII text, with very long lines (303)
Hash f586b2fb9f2cb4a514f3f5b29500d60e
2b22680b20b4ece96f717575fc89df4871789e64
ce30cb36b19e083ed7afc365521b8a20f893e4fed9384e70f7bc8d55fb39c2f6
GET /citizensbank/prod/code/084ec8d8f33399609c33a4ceb996af2d.js?conditionId0=488868 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 830
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Jul 2021 20:02:07 GMT
etag: "f586b2fb9f2cb4a514f3f5b29500d60e"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: BchA0wBGCcnyWFuJtxuHbmr_nS8uaVVC
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -en7FRfTdX6_4ETKdcZFhQDomCj2o7FpSPJANxOYK5xaXjC-5fxqBQ==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927811
54.230.111.14200 OK 701 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927811
IP 54.230.111.14:0
File type ASCII text, with very long lines (517)
Hash 98042c78dd5fecb62e33933ef4e4fca1
759d7bcf0985229918e6e6fabf3b2b9fed07f307
198e3d07548df42b6d35eaee2f62830641c8952d2c06acc84374be8277ed23c1
GET /citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927811 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 701
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 29 Jun 2022 18:29:07 GMT
etag: "98042c78dd5fecb62e33933ef4e4fca1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: d.MrPs40IlE5qoQExUZYB9vcJoNqFgKt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zswsl4CDHL-3gkJEa-jcfwyGAf6d-NZG7covCPAkWY8v-FBj6D2wog==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4928348
54.230.111.14200 OK 701 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4928348
IP 54.230.111.14:0
File type ASCII text, with very long lines (517)
Hash 98042c78dd5fecb62e33933ef4e4fca1
759d7bcf0985229918e6e6fabf3b2b9fed07f307
198e3d07548df42b6d35eaee2f62830641c8952d2c06acc84374be8277ed23c1
GET /citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4928348 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 701
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 29 Jun 2022 18:29:07 GMT
etag: "98042c78dd5fecb62e33933ef4e4fca1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: d.MrPs40IlE5qoQExUZYB9vcJoNqFgKt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7GryVIdBEa8sVy-g2lhBTozKAANeaCOGdfT2xsmvrdzIlSvJDw8E8Q==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927443
54.230.111.14200 OK 701 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927443
IP 54.230.111.14:0
File type ASCII text, with very long lines (517)
Hash 98042c78dd5fecb62e33933ef4e4fca1
759d7bcf0985229918e6e6fabf3b2b9fed07f307
198e3d07548df42b6d35eaee2f62830641c8952d2c06acc84374be8277ed23c1
GET /citizensbank/prod/code/20f95b5e30718a5ced898daeea3bc2a9.js?conditionId0=4927443 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 701
date: Fri, 22 Jul 2022 21:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 29 Jun 2022 18:29:07 GMT
etag: "98042c78dd5fecb62e33933ef4e4fca1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: d.MrPs40IlE5qoQExUZYB9vcJoNqFgKt
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: S5h65UD52FGTDQ-mDvrXwUugL1OT8EVqpA4qc-CAfzrNdzqR-qBQvw==
age: 4320963
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/23f4acbc397f892ed23b3c685b5ef72b.js?conditionId0=226389
54.230.111.14200 OK 2.2 kB URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/23f4acbc397f892ed23b3c685b5ef72b.js?conditionId0=226389
IP 54.230.111.14:0
File type ASCII text, with very long lines (761)
Hash fbbdb82e9afc982a906f5228c4f4af7f
3e70d4a7d3c10353b029d290d875e79a9ed6f707
1f844021f88a7a4443d77b85585c308bfb5ac01af1c2eb971a0e553b208400ac
GET /citizensbank/prod/code/23f4acbc397f892ed23b3c685b5ef72b.js?conditionId0=226389 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 22 Jul 2022 04:27:53 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Jul 2021 20:02:07 GMT
etag: W/"a791abac3f560fbc74b7a8fa116a0810"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: U_kD4FMHh_7SDyQXQ0TVfdVwCT6tdCFr
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0K2F_xzb4yJYJa5QFIqqhz-8xgBAEmX35zchVqKw0TgkqYVJr_ahFQ==
age: 4383202
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/935344641/?random=1662847264119&cv=9&fst=1662847264119&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&ref=https%3A%2F%2Fci5izens.web.app%2F&tiba=Citizens%20%7C%20Personal%20%26%20Business%20Banking%2C%20Student%20Loans%2C%20Retirement&auid=1068001830.1662847263&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.162200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/935344641/?random=1662847264119&cv=9&fst=1662847264119&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&ref=https%3A%2F%2Fci5izens.web.app%2F&tiba=Citizens%20%7C%20Personal%20%26%20Business%20Banking%2C%20Student%20Loans%2C%20Retirement&auid=1068001830.1662847263&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2498), with no line terminators
Hash 7407fd13aa096cd65ad1e510641f019c
fe565a1c5d4918257fe5e164f5fb46fe4781f55e
25a9001eb1cf2cb9244739ca7ec1d842104435c53b39fdb89f2577319268a9ce
GET /pagead/viewthroughconversion/935344641/?random=1662847264119&cv=9&fst=1662847264119&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa970&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&ref=https%3A%2F%2Fci5izens.web.app%2F&tiba=Citizens%20%7C%20Personal%20%26%20Business%20Banking%2C%20Student%20Loans%2C%20Retirement&auid=1068001830.1662847263&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Sep 2022 22:01:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1102
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 10-Sep-2022 22:16:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 55d14c90ec16748861894ce8f82eafcd
f3ebe8972971c1201c1ec7c533f019f79c36cde5
fa0dc0f0a76f3407dad8dae59a4817ef6b1371fcaa930448373d64720a036698
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nebula-cdn.kampyle.com/wu/356861/onsite/embed.js
151.101.85.175200 OK 518 B URL HTTP/2 nebula-cdn.kampyle.com/wu/356861/onsite/embed.js
IP 151.101.85.175:0
File type ASCII text, with very long lines (573)
Hash 6494b7e5d828e7e5ca89fb871b8925fd
66d76ba282d8451ed7fca427870ee98bf0f4b888
453d15fbc5aa2363e4f8d271767f50730c3024c57e9da53102666936ec9e56b0
GET /wu/356861/onsite/embed.js HTTP/1.1
Host: nebula-cdn.kampyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LfcvVFjpckfpeQreCNGFsagCEkt8udkje+RHSmN9f9ar+aHmroIIPYohTBZ0ePrqZYVObyrRMW8=
x-amz-request-id: 1YVKH03S442G5XSF
last-modified: Mon, 29 Aug 2022 14:39:45 GMT
etag: "0376a68a68be3c5e059417e35a1e4d18"
x-amz-version-id: jHlt6HMakUpw4UnKABstHpVL8nsrUMja
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=0,must-revalidate
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Sep 2022 22:01:14 GMT
via: 1.1 varnish
age: 570728
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662847275.717174,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 518
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/XML/LoanAgents.xml
104.85.180.233200 OK 13 kB URL HTTP/2 www.citizensbank.com/assets/CB_resources/XML/LoanAgents.xml
IP 104.85.180.233:0
File type XML 1.0 document text\012- XML document, ASCII text, with CRLF line terminators
Hash 4ed7a01bb0c25881d095fe109f5620a9
05eb10abb0434e1a3b774f8adaa2be686922d295
d259f34151ef82f33a020be20000529e459fe3efc55ad43f7b4d4f21d3c50aac
GET /assets/CB_resources/XML/LoanAgents.xml HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.citizensbank.com/HomePage.aspx
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF83GRxmDAQAAcchrKQjB9tTIenvBsSJFFg+8tK+/IbqgPIDHYXZaNmfk0VanNjHul5hRrtSilDRpOB66YikLhJt6uADn9fe5dZKHiOHuySNI0b3AYjXDXCQ3w71e4pWASAelyBv8qwT/XChum7dkdBQM1mo47Rje8bOj5vhq4qfLxXOgZ3uUvKpuocW3pDsTfq2XdzFDQ8qgp0uC5nN73NwwWBQ+Rwch16JoTDZ4u/yGu7nLz3rpvXFv9odz/Tlq1r7eogWSJIByJSCsbe42BgkTKSBJsdAUPJ96CHMp1iB8P4vFjlVz5uipQhAZ4GMn+j7FH2+dJ2s80gXNDBkuRLYa0V4JuAbYyWZJZ74RSTMFr/TLNNqm4jluTP67nt0nREonN9NnBicVKqwbSE1S1TI9LokzZYGJRpvrUCA=~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF8TGRxmDAQAAAMhrKRG8WQh468sZcpwvGLhDtfDrhZ0qtdAri/9GgVaDo+lL3qDQUT+vzb7C5D92u72gB2BSGvc2wHqjyskS/vZPCf6g2+B3lXZ5bJKswC8QuSOMbgNJPu18cgOpYQU0bEpwawHC2//f9NOq9y35zQc98FYQFo1f1/yvCaAmSXVxaiOgGw+4A55RjH1Vag3mu0EYMePUTCLAwqv0jU/DzNNQj/6jv773vE5E8+Q8gWyDfhlJEjkpNfFeZtbiUggS+86MPag2lnTlxnwlPbqu0pdBH4lcBv+6pHQJJN4QK3r1vg7auSz8p4E6KYk+BRJdnchGcPeHbxtQj20qnyudFS9k4EHK8Jl4OLraee3MzhSoNwC84iZl6/nAdyFTA/75gODy0AvmRe/VZE2Iu8U11QaRXYCYGvgwKrsZI0EWM66KwyImU8kIxPpoaGcaerKJhwhetlta4inDSckSykWYirEQHcY=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
x-akamai-transformed: 9 215040 0 pmb=mTOE,2
vary: Accept-Encoding
content-encoding: gzip
expires: Sat, 10 Sep 2022 22:01:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:14 GMT
content-length: 13396
server-timing: cdn-cache; desc=MISS, edge; dur=666, origin; dur=46
strict-transport-security: max-age=15768000
x-robots-tag: none
set-cookie: bm_mi=8089684B9D6573B8A695C4BD2E914B0E~YAAQlQVJF2THRxmDAQAAMs9rKRFFlVFlDR9VCB9VaJqXhwxp+wAIPUE0sgpIGkHv2A0J4/HQ9sC+3YeOYHm2j2SDkysij3GmpQJpuzOdHXkW3VbszOJttcJTcOJCpPEPKLRV2bKHJ9T2GSZqRUtVpBBi8eW/JvNIt713ktckRFYxqDZ6rNs8ptvEvoNFSI2vk090Fko1S6oruTFe50FlLspuDlvG12lqoqijcrAPD1tp9r/uc0LTlkoa28v8BXQ0QaQrMrNI8csj4nw4A2uEZJ+od1sUL2J9xgeP/DxrHnf/PfwPy8CiM9KesjFZuSwy9Hc7DQtKrIu1PCIAZxDMXdZEWR0OD0f1ooF+agmCSNBtLqMxABUV/DA=~1; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:13 GMT; Max-Age=7199; Secure
bm_sv=982C617A2901CEA2CC67B3E47186B77B~YAAQlQVJF2XHRxmDAQAAMs9rKRF32kaiWr6nbt4DPFxV4qbTE4aP2Qe71p0J4tect/k6/FxQetRl6o7QC/N/7aPwGHa+UM0LDeobZJBFYjeyron9/2lmIwTyWdQn2SJ7Tiw0RThI273QncyD6yd6hvYfReF8SVjArtzYjaLu0lWJHDNh1B+1JwFkbQQ388E6OV+J2CbQ5kJhyPJ2nul8TAcEHiqPmbJzUDSf3HKbz0popxl4zstJwA+MBqs66QC6GPDZBNWH~1; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:14 GMT; Max-Age=7200; Secure
X-Firefox-Spdy: h2
dpm.demdex.net/id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702
54.154.150.117200 OK 124 B URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702
IP 54.154.150.117:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f6783349ac4177ec3b3845fd520dca6
d84e7a43a8c8ff6f1a568ad6cb4162767f5b32b7
64bc30aa6a9d9e5396bb67c6af32c31f5ca6610641f0bdea10d759281df6adca
GET /id/rd?d_visid_ver=5.0.1&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&ts=1662847262702 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.citizensbank.com
Content-Type: application/x-www-form-urlencoded
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.citizensbank.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v039-0d1df480d.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-Error: 172
X-TID: GRftyfHOQ9M=
Content-Length: 124
Connection: keep-alive
platform.twitter.com/oct.js
93.184.220.66301 Moved Permanently 0 B URL HTTP/1.1 platform.twitter.com/oct.js
IP 93.184.220.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /oct.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Date: Sat, 10 Sep 2022 22:01:14 GMT
Location: https://static.ads-twitter.com/oct.js
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= ,x-tw-cdn;desc=VZ,edge;dur=1
x-tw-cdn: VZ
Content-Length: 0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a8b934802b39ce62326f039ac83cd96
dbfe44bfbec869b99291881ce7c2539d34d7ca9c
c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2827
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Last-Modified: Sat, 10 Sep 2022 21:14:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 25e12d7b35a1a6efb4bc97945209072e
72b67424bbd3042de531de92a57bfd97036e9526
3836fa49727f6b0cff300e4aaa480a76848ceda64f98d1a6e4e4986284fcd1ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/wcm/loader.js
142.250.74.163200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 21:58:06 GMT
expires: Sat, 10 Sep 2022 22:58:06 GMT
cache-control: public, max-age=3600
age: 188
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
104.85.180.233201 Created 18 B URL HTTP/2 www.citizensbank.com/sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A
IP 104.85.180.233:0
File type JSON data\012- , ASCII text
Hash 78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6
POST /sC2p/mCxJ/N8/jTy4/CVIw/5wELfLJrV3h3/FmpeAQ/BwF/fFiNfF0A HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/HomePage.aspx
Content-Type: text/plain;charset=UTF-8
Content-Length: 3329
Origin: https://www.citizensbank.com
Connection: keep-alive
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~0~YAAQlQVJF1PHRxmDAQAALs5rKQiTHXOBTeADbYo9ekP7KP8rIw16JyhRxiW4j9vQ94AjikooE0bMTpuDcRhF2C1v2ZAP+R+aPSEszX1dWQA8Zcc/xZUEg76xq0ijOQu1mT73XcTwyJ7bbbD8xK6er8B+IIcFe+mgUN53LibTTHasiVLxrsgPsWN2aWBwiidR1Ngr6Absc8HLdt6Nke8NE+N28QmUhZCggEVdszgemImbRNm3W7UZ/TXM6rHh6YHgaPHtqy/uobQTLvFY3oKOnQqix9aBS9Xc7l2qzsdphECvcLly2W9icd7OQXo6DSfnrL33Fje39BhJoIU2bYxxiNp4dS1KqTsL9bd7F3+NHrbtFX5xhvKu56CWIB3KrMR1I/WljFlhoIZdCYJXtYF/CTm2LKOGUvceblfBOLG7ae5FPxsh0jB+VmR3bnPN7wBuIA==~-1~||1-dzNNEcAFcv-1-10-1000-2||~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~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; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"; bm_sv=552CA9F11841683A7AA4B44F14F18A2A~YAAQlQVJFzrHRxmDAQAAFM1rKRHj8ZluIt60zgftx04Jsr4s2Z98Q403iVoxkrVXBRd0/KfKgxIdadvTZ/D549jFv36CSMAFkhntc647f0Vlj2QvkE4Q8RuNilgCPcBxIFzrVKzurOAvSRg6LFCwDJTb32oHIjGUx6PQbi63QJykl9zeP5kKgP2KESw5kd8KB8upb7AfCAZa0DKbD9JXWrI4kJ5gy7JnBLu5tta9HxTRfzh6UJLOvKVnLD0VCx7z0sefMYd2~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 201 Created
content-length: 18
x_req_id: 9d81a217-0d61-48c6-af62-ab33b676628c
date: Sat, 10 Sep 2022 22:01:14 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.citizensbank.com
access-control-allow-headers: Content-Type
server-timing: edge; dur=73, origin; dur=209, cdn-cache; desc=MISS
strict-transport-security: max-age=15768000
content-security-policy: frame-ancestors 'self' https://www.citizensbank.com;
set-cookie: _abck=5C215ABA8A095A6F7AAC806BCC9C6812~0~YAAQlQVJF4HHRxmDAQAA8M9rKQglEQMDDXH25KCf2K/Z3iPsVTnpgBnTd/qRT7AfS7P7bvCvZjmmfKXXf/fUbVncE0K2Cz31QM20GMlgtYPgKMrefjQnO10eYqkQVNhkg8g6SinAoho24jiJMULq1Gwu2IL1r40XJIHaluvx9njxuxgOFvdkbBm4iv23tPR9jqbqPLuuiLjtjI/iHJmA9Rot3qJHEmVJbdmFVuAbL3/KAcWZ+2n7/Zt0gwfkn8gejL7dU2f8WBD48ZfPw+8X+kIBtZak4+g802vGHQ64qamGHi6tv6Izrko/FZv6Xq2MjxRBygLH1PauyFAt2wYMAsPRg8bwCtYv/K6E7ENjLt7j40CIMdMOIlYH247UVjx+8j8wmTaCo2im886+/373LUiQklgxaNHnTyHi2CWxe/iMjIOsg0yofzgof+hjwK04Mw==~-1~||-1||~-1; Domain=.citizensbank.com; Path=/; Expires=Sun, 10 Sep 2023 22:01:14 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 8e7e24fb3539746aa8b869558f589615
d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: F6tALNza4CLx/dPXD80wERj1rrRB2elshQnPLEDQYE7w8e9HiUlSSfZ/Hz0ZdN+a60IPZYNspjieEdwdCRJVXA==
priority: u=3,i
content-length: 26737
x-fb-trip-id: 1679558926
date: Sat, 10 Sep 2022 22:01:14 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/fbbb957eaeb4f6e13c0b7e9a96bfd8cc.js?conditionId0=421909
54.230.111.14200 OK 4.4 kB URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/fbbb957eaeb4f6e13c0b7e9a96bfd8cc.js?conditionId0=421909
IP 54.230.111.14:0
File type ASCII text, with very long lines (541)
Hash 9fb82422b9de9d0d45781a80535ff40e
ab6ba1cbc56d0dbbab93d9c8caf66fb0506c59b2
edd2f7ab39823d5f9792cf899bea2358097ba9db7b259538e098cc348b2a5bc1
GET /citizensbank/prod/code/fbbb957eaeb4f6e13c0b7e9a96bfd8cc.js?conditionId0=421909 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Mon, 05 Sep 2022 17:45:12 GMT
x-amz-replication-status: COMPLETED
last-modified: Mon, 05 Sep 2022 17:44:45 GMT
etag: W/"c021b244f5d686131834926f9f0b05e1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: A5QnqTpRsRA.PBPVYL.2LeArokwOoZoA
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0_W69ao2NmG9FdmNfz-FaDjkKsBTZ5wxCevmTXJqneCyJRWzWibqPw==
age: 447363
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4a8b934802b39ce62326f039ac83cd96
dbfe44bfbec869b99291881ce7c2539d34d7ca9c
c1d5a7058b585d2207c7162b7d0ed62443426b9b2e1262391ad3118884bda651
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2828
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Last-Modified: Sat, 10 Sep 2022 21:14:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
nexus.ensighten.com/citizensbank/prod/code/97b63f536bd706ffa74a35ce7dd781df.js?conditionId0=4890164
54.230.111.14200 OK 2.3 kB URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/97b63f536bd706ffa74a35ce7dd781df.js?conditionId0=4890164
IP 54.230.111.14:0
File type ASCII text, with very long lines (541)
Hash 153d7717bfd736848350f5d2ec0fb08a
5a973660e5c03642d3794cc994a85120460157d2
ad25a9d63a62c7f3306f122eead440d6399dfe0c6169d4c527cda90aeab09c66
GET /citizensbank/prod/code/97b63f536bd706ffa74a35ce7dd781df.js?conditionId0=4890164 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 22 Jul 2022 04:28:00 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 20 Jul 2021 20:02:08 GMT
etag: W/"29f27efc09d154e9448aec98aedab071"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: lzaLQpVKgtBXf1NrLMZRA.njkcP_3cqQ
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hzBI2nSaWme8wn0u9gO41zg0Ylx_Kgwz2_iWMmuVXFq4J2vvuJcnPQ==
age: 4383195
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 8f11f308738be117b104c6f030479e4e
6e9042517d6bbf60db274ab4db244329650a4400
59d18077bce809a29bf4f2d3225784c6a810846a19739aa250c069dc1b7a2344
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:15 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 10 Sep 2022 15:43:24 GMT
Expires: Sat, 17 Sep 2022 15:43:23 GMT
Etag: "6e9042517d6bbf60db274ab4db244329650a4400"
Cache-Control: max-age=581527,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b70ecbb230b65-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 25e12d7b35a1a6efb4bc97945209072e
72b67424bbd3042de531de92a57bfd97036e9526
3836fa49727f6b0cff300e4aaa480a76848ceda64f98d1a6e4e4986284fcd1ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lptag.liveperson.net/tag/tag.js?site=83789770
178.249.101.23200 OK 7.6 kB URL HTTP/2 lptag.liveperson.net/tag/tag.js?site=83789770
IP 178.249.101.23:0
File type ASCII text, with very long lines (21652), with no line terminators
Hash 6b675640425ec8551a433e26a377d954
7234f02cce1ccb2a4facf2b34b9185cfcf27299d
8c9716f14d2e964be7c93d3d8c28819cb35c529fce6206a79061cda509e05bfd
GET /tag/tag.js?site=83789770 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/javascript
content-length: 7567
last-modified: Thu, 03 Sep 2020 08:27:49 GMT
etag: "5f50a905-1d8f"
content-encoding: gzip
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
cache-control: public, max-age=630
x-content-type-options: nosniff
X-Firefox-Spdy: h2
static.ads-twitter.com/oct.js
151.101.84.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/oct.js
IP 151.101.84.157:0
File type ASCII text, with very long lines (57443), with no line terminators
Hash 1e9c4d503a9e162d8b549dc3d9c040e2
1fa99d7d7e878cdd45567af4b0c3c65542036c1d
f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
GET /oct.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Sat, 10 Sep 2022 22:01:15 GMT
x-served-by: cache-iad-kjyo7100053-IAD, cache-bma1679-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d278a4d2d9653a14270b74094bcab8cf
ba4b9fc06cae469867bd831d8017b147a1f53d30
a482809494678e6648a72cefe816c4eb0822d010b5453c3e5084eb529c4d886d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b24c0b0ff5117b42d1d6e6046df5005b
62d43d11f6a5add1baf7a48775f8add8218d9b06
6d989c065d81cdb29e4dc95315d1a84bcfa251165feb0a0b1caa84019a53bfb3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Last-Modified: Sat, 10 Sep 2022 20:46:23 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d33f85881c2cba9c13657e64bcda11c9
fbe2097a7beb36f170a74da9ab358a97e6faaa82
1aa104ceaff08d241c953c40e0afd8deb38b022f4108d8cb16c2189da49ebf94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6120
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Last-Modified: Sat, 10 Sep 2022 20:19:15 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313
t.co/i/adsct?bci=1&eci=1&event_id=b317a0a3-0347-4066-8482-b5018c47f6fa&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e3ce7510-167d-4dd4-8ede-6e585bb3ba53&tw_document_href=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nuw9t&type=javascript&version=2.3.27
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=1&eci=1&event_id=b317a0a3-0347-4066-8482-b5018c47f6fa&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e3ce7510-167d-4dd4-8ede-6e585bb3ba53&tw_document_href=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nuw9t&type=javascript&version=2.3.27
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=1&eci=1&event_id=b317a0a3-0347-4066-8482-b5018c47f6fa&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e3ce7510-167d-4dd4-8ede-6e585bb3ba53&tw_document_href=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nuw9t&type=javascript&version=2.3.27 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:14 GMT
server: tsa_o
set-cookie: muc_ads=90943e0c-14c6-4aee-b497-4720a1d3deac; Max-Age=63072000; Expires=Mon, 09 Sep 2024 22:01:15 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=0
x-response-time: 103
x-connection-hash: 575bad39caf0be008f741a967c4730907e28dda0f7449f2b3b37c92e2ab01b17
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_media/images/hero_home/q3-2022/1722558_SL22_Student_2560x770.jpg
104.85.180.233200 OK 653 kB URL HTTP/2 www.citizensbank.com/assets/CB_media/images/hero_home/q3-2022/1722558_SL22_Student_2560x770.jpg
IP 104.85.180.233:0
File type JPEG image data, baseline, precision 8, 2560x770, components 3\012- data
Size 653 kB (652810 bytes)
Hash 62a170ba656b10ad75b148e0c5fdca15
fbd0e197940c177f48eee247f5267ea4889c7165
9ba2dbe0b4f85d0aa786e4d3fd2995cf4654e5eca0853d786c410f3547b9773e
GET /assets/CB_media/images/hero_home/q3-2022/1722558_SL22_Student_2560x770.jpg HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/HomePage.aspx
Connection: keep-alive
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~0~YAAQlQVJF4HHRxmDAQAA8M9rKQglEQMDDXH25KCf2K/Z3iPsVTnpgBnTd/qRT7AfS7P7bvCvZjmmfKXXf/fUbVncE0K2Cz31QM20GMlgtYPgKMrefjQnO10eYqkQVNhkg8g6SinAoho24jiJMULq1Gwu2IL1r40XJIHaluvx9njxuxgOFvdkbBm4iv23tPR9jqbqPLuuiLjtjI/iHJmA9Rot3qJHEmVJbdmFVuAbL3/KAcWZ+2n7/Zt0gwfkn8gejL7dU2f8WBD48ZfPw+8X+kIBtZak4+g802vGHQ64qamGHi6tv6Izrko/FZv6Xq2MjxRBygLH1PauyFAt2wYMAsPRg8bwCtYv/K6E7ENjLt7j40CIMdMOIlYH247UVjx+8j8wmTaCo2im886+/373LUiQklgxaNHnTyHi2CWxe/iMjIOsg0yofzgof+hjwK04Mw==~-1~||-1||~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF0LHRxmDAQAAZM1rKRG0GW5ZW/9mtxX3p4qfk5B7nvmKCfy14Wvn+M2cMu4FOFYjgOIX2nlrZ8OsqTxAeWWyYx7NTppF7BeSzwkguD6KZzoVJ9PJSky9cDgT4bKMKk5XT4kYzutX2Xu/trYlqFJki7cBXdkmpfxUUHu5oniVKjWX0ZOEpWYI3hTthmVo6DkpNpvXA6MOyTu145zvLTgWI1N2nFCakSZuJ+Gx533SLCi5DK+1eMPB3CV+q+n85KEJgQDkusOr6LXVTHBz7DWWFKpaAiTLbgRGxuKioXcKGPpZXi2Ga+bjK2O40lZNEppgCeEj0pD4e10Uj1DCRKai1kNjfn6E2i9ULq/rcROGYydT+ThN47MID9OxIHnmXHeR2uCIvVquO1n9T2hsfRSE9+zZ/kgtirsbPgLTVqbkgdyJxujJ+TIZksEkzadxOoOd764vp4vYOPrZewA5oTJrWHQ2AfCEnz5s7oE/DTTbJ9r5XPEEprYarwE=; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123|PC#99e8b20fa57a4032ac0c5c5c026aa5f8.37_0#1726092066; fcf-done=true; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; RT="z=1&dm=www.citizensbank.com&si=80195b23-8512-441e-ba85-f56ef4ec5d85&ss=l7wgbqrm&sl=0&tt=0&bcn=%2F%2F02179916.akstat.io%2F"; bm_sv=982C617A2901CEA2CC67B3E47186B77B~YAAQlQVJF2XHRxmDAQAAMs9rKRF32kaiWr6nbt4DPFxV4qbTE4aP2Qe71p0J4tect/k6/FxQetRl6o7QC/N/7aPwGHa+UM0LDeobZJBFYjeyron9/2lmIwTyWdQn2SJ7Tiw0RThI273QncyD6yd6hvYfReF8SVjArtzYjaLu0lWJHDNh1B+1JwFkbQQ388E6OV+J2CbQ5kJhyPJ2nul8TAcEHiqPmbJzUDSf3HKbz0popxl4zstJwA+MBqs66QC6GPDZBNWH~1; bm_mi=8089684B9D6573B8A695C4BD2E914B0E~YAAQlQVJF2THRxmDAQAAMs9rKRFFlVFlDR9VCB9VaJqXhwxp+wAIPUE0sgpIGkHv2A0J4/HQ9sC+3YeOYHm2j2SDkysij3GmpQJpuzOdHXkW3VbszOJttcJTcOJCpPEPKLRV2bKHJ9T2GSZqRUtVpBBi8eW/JvNIt713ktckRFYxqDZ6rNs8ptvEvoNFSI2vk090Fko1S6oruTFe50FlLspuDlvG12lqoqijcrAPD1tp9r/uc0LTlkoa28v8BXQ0QaQrMrNI8csj4nw4A2uEZJ+od1sUL2J9xgeP/DxrHnf/PfwPy8CiM9KesjFZuSwy9Hc7DQtKrIu1PCIAZxDMXdZEWR0OD0f1ooF+agmCSNBtLqMxABUV/DA=~1; mboxEdgeCluster=37
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 652810
last-modified: Fri, 05 Aug 2022 13:16:58 GMT
accept-ranges: bytes
etag: "01f6a3cda8d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET, ARR/3.0
cache-control: max-age=600
date: Sat, 10 Sep 2022 22:01:15 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=16
strict-transport-security: max-age=15768000
x-robots-tag: none
set-cookie: ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~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; Domain=.citizensbank.com; Path=/; Expires=Sun, 11 Sep 2022 00:01:12 GMT; Max-Age=7197; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4cdbde80584d2279eb1c6c9b1fdb9bbf
14b77e01db704479edabadc93f3653e1c14c26d4
bc95731c4351824ededca8366bdf37439c256c87b46f15a6ff4abfbb05d92438
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Server: ECS (amb/6B85)
Content-Length: 471
smetrics.citizensbank.com/id?d_visid_ver=5.0.1&d_fieldgroup=MC&mcorgid=4C3B0C3755C3822E7F000101%40AdobeOrg&ts=1662847265033
15.236.176.210200 OK 48 B URL HTTP/2 smetrics.citizensbank.com/id?d_visid_ver=5.0.1&d_fieldgroup=MC&mcorgid=4C3B0C3755C3822E7F000101%40AdobeOrg&ts=1662847265033
IP 15.236.176.210:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7a4c27ae2d93bb3e10aabdabc1eba8e7
de4fbbf2d929c120447d18944ae60787ef4a0aab
444b8b1e3ba77036540f84732b9612e4d20c20402ea95fd43cde93c454193128
GET /id?d_visid_ver=5.0.1&d_fieldgroup=MC&mcorgid=4C3B0C3755C3822E7F000101%40AdobeOrg&ts=1662847265033 HTTP/1.1
Host: smetrics.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/HomePage.aspx
Content-Type: application/x-www-form-urlencoded
Origin: https://www.citizensbank.com
Connection: keep-alive
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~0~YAAQlQVJF4HHRxmDAQAA8M9rKQglEQMDDXH25KCf2K/Z3iPsVTnpgBnTd/qRT7AfS7P7bvCvZjmmfKXXf/fUbVncE0K2Cz31QM20GMlgtYPgKMrefjQnO10eYqkQVNhkg8g6SinAoho24jiJMULq1Gwu2IL1r40XJIHaluvx9njxuxgOFvdkbBm4iv23tPR9jqbqPLuuiLjtjI/iHJmA9Rot3qJHEmVJbdmFVuAbL3/KAcWZ+2n7/Zt0gwfkn8gejL7dU2f8WBD48ZfPw+8X+kIBtZak4+g802vGHQ64qamGHi6tv6Izrko/FZv6Xq2MjxRBygLH1PauyFAt2wYMAsPRg8bwCtYv/K6E7ENjLt7j40CIMdMOIlYH247UVjx+8j8wmTaCo2im886+/373LUiQklgxaNHnTyHi2CWxe/iMjIOsg0yofzgof+hjwK04Mw==~-1~||-1||~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~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; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; bm_sv=982C617A2901CEA2CC67B3E47186B77B~YAAQlQVJF2XHRxmDAQAAMs9rKRF32kaiWr6nbt4DPFxV4qbTE4aP2Qe71p0J4tect/k6/FxQetRl6o7QC/N/7aPwGHa+UM0LDeobZJBFYjeyron9/2lmIwTyWdQn2SJ7Tiw0RThI273QncyD6yd6hvYfReF8SVjArtzYjaLu0lWJHDNh1B+1JwFkbQQ388E6OV+J2CbQ5kJhyPJ2nul8TAcEHiqPmbJzUDSf3HKbz0popxl4zstJwA+MBqs66QC6GPDZBNWH~1; bm_mi=8089684B9D6573B8A695C4BD2E914B0E~YAAQlQVJF2THRxmDAQAAMs9rKRFFlVFlDR9VCB9VaJqXhwxp+wAIPUE0sgpIGkHv2A0J4/HQ9sC+3YeOYHm2j2SDkysij3GmpQJpuzOdHXkW3VbszOJttcJTcOJCpPEPKLRV2bKHJ9T2GSZqRUtVpBBi8eW/JvNIt713ktckRFYxqDZ6rNs8ptvEvoNFSI2vk090Fko1S6oruTFe50FlLspuDlvG12lqoqijcrAPD1tp9r/uc0LTlkoa28v8BXQ0QaQrMrNI8csj4nw4A2uEZJ+od1sUL2J9xgeP/DxrHnf/PfwPy8CiM9KesjFZuSwy9Hc7DQtKrIu1PCIAZxDMXdZEWR0OD0f1ooF+agmCSNBtLqMxABUV/DA=~1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://www.citizensbank.com
access-control-allow-credentials: true
date: Sat, 10 Sep 2022 22:01:15 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1%7CMCMID%7C68840371114121799732657114906725734036; Path=/; Domain=citizensbank.com; Max-Age=63072000; Expires=Mon, 09 Sep 2024 22:01:01 GMT;
s_ecid=MCMID%7C68840371114121799732657114906725734036; Path=/; Domain=citizensbank.com; Max-Age=63072000; Expires=Mon, 09 Sep 2024 22:01:01 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 530257dede9f07a1804fc8ae87649bf1
562d97e934db7e0b6413ba798938fc8531f9d40a
b10222661a8739c3cb325ddb9742a883342ebd6777a64df4935042861d1c9d93
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3513
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:15 GMT
Last-Modified: Sat, 10 Sep 2022 21:02:43 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 314
www.facebook.com/tr/?id=707569535948495&ev=PageView&dl=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&rl=https%3A%2F%2Fci5izens.web.app%2F&if=false&ts=1662847265531&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmensighten&ec=0&o=29&fbp=fb.1.1662847265530.837647336&it=1662847264979&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=75a50b34-1d73-417e-9d76-419c057fe648&rqm=GET
157.240.200.35200 OK 6.9 kB URL HTTP/2 www.facebook.com/tr/?id=707569535948495&ev=PageView&dl=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&rl=https%3A%2F%2Fci5izens.web.app%2F&if=false&ts=1662847265531&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmensighten&ec=0&o=29&fbp=fb.1.1662847265530.837647336&it=1662847264979&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=75a50b34-1d73-417e-9d76-419c057fe648&rqm=GET
IP 157.240.200.35:0
File type gzip compressed data, from Unix\012- data
Hash 3f2305375bcfe2b6be1759e714eccb95
ba5437c7a458ebdaf712139ef8cfcb6ab0437bf4
a868f88d43e2cbc8133920116cda7f4e4f833bcfdf3b51dae3c60be1684dd50c
GET /tr/?id=707569535948495&ev=PageView&dl=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&rl=https%3A%2F%2Fci5izens.web.app%2F&if=false&ts=1662847265531&sw=1280&sh=1024&v=2.9.79&r=stable&a=tmensighten&ec=0&o=29&fbp=fb.1.1662847265530.837647336&it=1662847264979&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=75a50b34-1d73-417e-9d76-419c057fe648&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Sat, 10 Sep 2022 22:01:15 GMT
expires: Sat, 10 Sep 2022 22:01:15 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=1&eci=1&event_id=b317a0a3-0347-4066-8482-b5018c47f6fa&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e3ce7510-167d-4dd4-8ede-6e585bb3ba53&tw_document_href=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nuw9t&type=javascript&version=2.3.27
104.244.42.3200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=1&eci=1&event_id=b317a0a3-0347-4066-8482-b5018c47f6fa&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e3ce7510-167d-4dd4-8ede-6e585bb3ba53&tw_document_href=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nuw9t&type=javascript&version=2.3.27
IP 104.244.42.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=1&eci=1&event_id=b317a0a3-0347-4066-8482-b5018c47f6fa&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=e3ce7510-167d-4dd4-8ede-6e585bb3ba53&tw_document_href=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nuw9t&type=javascript&version=2.3.27 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
server: tsa_o
set-cookie: personalization_id="v1_fMpc98GeNyr5sPnTiq0b2Q=="; Max-Age=63072000; Expires=Mon, 09 Sep 2024 22:01:15 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: d715c92e30e69d134de43c180148777cf22ff823e0d38856ccd1fd802131b9e0
X-Firefox-Spdy: h2
dpm.demdex.net/id?d_visid_ver=5.0.1&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&d_mid=68840371114121799732657114906725734036&ts=1662847265581
54.154.150.117200 OK 1.3 kB URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.0.1&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&d_mid=68840371114121799732657114906725734036&ts=1662847265581
IP 54.154.150.117:0
File type JSON data\012- , ASCII text, with very long lines (3749), with no line terminators
Hash 524e05c909dd850e160acd1a1cc7fac6
8c2af86c6e5439cabf6447c4d7041b1117c93f8d
dd458dc43582bb60fd1830df213190541bcca2454515b0e1b6b821ae1a0eed49
GET /id?d_visid_ver=5.0.1&d_fieldgroup=AAM&d_rtbd=json&d_ver=2&d_orgid=4C3B0C3755C3822E7F000101%40AdobeOrg&d_nsid=0&d_mid=68840371114121799732657114906725734036&ts=1662847265581 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.citizensbank.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v039-031e36f1b.edge-irl1.demdex.com 3 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=68832426732453054422652835772327307507; Max-Age=15552000; Expires=Thu, 09 Mar 2023 22:01:15 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: wskIec9GTkA=
Content-Length: 1306
Connection: keep-alive
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash abaee6ad9821254ddb087b8e85629533
f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a
d1c5e704aba4c2fb6aa25ce5ba8b800a759e2538a36c10d64d5af922079c45af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 16:31:55 GMT
Expires: Fri, 16 Sep 2022 16:31:54 GMT
Etag: "f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a"
Cache-Control: max-age=498038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b70f23925b505-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash abaee6ad9821254ddb087b8e85629533
f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a
d1c5e704aba4c2fb6aa25ce5ba8b800a759e2538a36c10d64d5af922079c45af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 16:31:55 GMT
Expires: Fri, 16 Sep 2022 16:31:54 GMT
Etag: "f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a"
Cache-Control: max-age=498038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b70f268ddb4fa-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash abaee6ad9821254ddb087b8e85629533
f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a
d1c5e704aba4c2fb6aa25ce5ba8b800a759e2538a36c10d64d5af922079c45af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:15 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 16:31:55 GMT
Expires: Fri, 16 Sep 2022 16:31:54 GMT
Etag: "f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a"
Cache-Control: max-age=498038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b70f26d0f0b61-OSL
smetrics.citizensbank.com/b/ss/citizensbankglobalprod,citizensbankmarketingprod/10/JS-2.22.0/s77523142609214?AQB=1&ndh=1&pf=1&callback=s_c_il[3].doPostbacks&et=1&t=10%2F8%2F2022%2022%3A1%3A5%206%200&sdid=5D4B3C9AA58F4668-6BCB4F164DC513D6&mid=68840371114121799732657114906725734036&aamlh=6&ce=UTF-8&ns=citizensbank&pageName=marketing%7Cgeneric%7Chome%7Chomepage%7C%7Cview&g=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F&c.&expWidth=1268&expOrientation=landscape&getTimeParting=6%3A01%20PM%7CSaturday&getDateParting=5%3A01%20PM%7CSaturday&newRepeat=New&visitnum=1&lastVisitDay=First%20Visit&.c&cc=USD&ch=marketing%7Cgeneric&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=D%3Dv1&v1=us%7Ceng&c2=D%3Dv2&v2=marketing&c3=D%3Dv3&v3=desk&c4=D%3Dv4&v4=generic&c5=D%3Dv5&v5=generic&c6=D%3Dv6&c7=D%3Dv7&v7=home&c8=D%3Dv8&v8=homepage&c9=D%3Dv9&c10=D%3Dv10&v10=view&c18=D%3Dv18&v18=home&c35=D%3Dv35&v35=generic%7Chome%7Chomepage%7C%7Cview&c59=D%3Dv59&c60=D%3Dv90&c62=VisitorAPI%20Present&c63=dotcom%7Camversion%3A2.22.0%7Cmcidversion%3A5.0.1%7Ctarget%3A2.3.3&c73=D%3Dv73&v73=cb&v90=generic%7Chome%7Chomepage%7C%7Cview&v181=cbdotcom&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=4C3B0C3755C3822E7F000101%40AdobeOrg&AQE=1
15.236.176.210200 OK 146 B URL HTTP/2 smetrics.citizensbank.com/b/ss/citizensbankglobalprod,citizensbankmarketingprod/10/JS-2.22.0/s77523142609214?AQB=1&ndh=1&pf=1&callback=s_c_il[3].doPostbacks&et=1&t=10%2F8%2F2022%2022%3A1%3A5%206%200&sdid=5D4B3C9AA58F4668-6BCB4F164DC513D6&mid=68840371114121799732657114906725734036&aamlh=6&ce=UTF-8&ns=citizensbank&pageName=marketing%7Cgeneric%7Chome%7Chomepage%7C%7Cview&g=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F&c.&expWidth=1268&expOrientation=landscape&getTimeParting=6%3A01%20PM%7CSaturday&getDateParting=5%3A01%20PM%7CSaturday&newRepeat=New&visitnum=1&lastVisitDay=First%20Visit&.c&cc=USD&ch=marketing%7Cgeneric&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=D%3Dv1&v1=us%7Ceng&c2=D%3Dv2&v2=marketing&c3=D%3Dv3&v3=desk&c4=D%3Dv4&v4=generic&c5=D%3Dv5&v5=generic&c6=D%3Dv6&c7=D%3Dv7&v7=home&c8=D%3Dv8&v8=homepage&c9=D%3Dv9&c10=D%3Dv10&v10=view&c18=D%3Dv18&v18=home&c35=D%3Dv35&v35=generic%7Chome%7Chomepage%7C%7Cview&c59=D%3Dv59&c60=D%3Dv90&c62=VisitorAPI%20Present&c63=dotcom%7Camversion%3A2.22.0%7Cmcidversion%3A5.0.1%7Ctarget%3A2.3.3&c73=D%3Dv73&v73=cb&v90=generic%7Chome%7Chomepage%7C%7Cview&v181=cbdotcom&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=4C3B0C3755C3822E7F000101%40AdobeOrg&AQE=1
IP 15.236.176.210:0
Hash 45f14eb0d0253d587d5751e7bb04b973
a81bb8bb5ed5184d40bb41a898ab698c00b38a61
ed4dd97e7435f77a95bf7e391f9d117415b90411174bd795ebe422cf51e99dea
GET /b/ss/citizensbankglobalprod,citizensbankmarketingprod/10/JS-2.22.0/s77523142609214?AQB=1&ndh=1&pf=1&callback=s_c_il[3].doPostbacks&et=1&t=10%2F8%2F2022%2022%3A1%3A5%206%200&sdid=5D4B3C9AA58F4668-6BCB4F164DC513D6&mid=68840371114121799732657114906725734036&aamlh=6&ce=UTF-8&ns=citizensbank&pageName=marketing%7Cgeneric%7Chome%7Chomepage%7C%7Cview&g=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F&c.&expWidth=1268&expOrientation=landscape&getTimeParting=6%3A01%20PM%7CSaturday&getDateParting=5%3A01%20PM%7CSaturday&newRepeat=New&visitnum=1&lastVisitDay=First%20Visit&.c&cc=USD&ch=marketing%7Cgeneric&aamb=j8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI&c1=D%3Dv1&v1=us%7Ceng&c2=D%3Dv2&v2=marketing&c3=D%3Dv3&v3=desk&c4=D%3Dv4&v4=generic&c5=D%3Dv5&v5=generic&c6=D%3Dv6&c7=D%3Dv7&v7=home&c8=D%3Dv8&v8=homepage&c9=D%3Dv9&c10=D%3Dv10&v10=view&c18=D%3Dv18&v18=home&c35=D%3Dv35&v35=generic%7Chome%7Chomepage%7C%7Cview&c59=D%3Dv59&c60=D%3Dv90&c62=VisitorAPI%20Present&c63=dotcom%7Camversion%3A2.22.0%7Cmcidversion%3A5.0.1%7Ctarget%3A2.3.3&c73=D%3Dv73&v73=cb&v90=generic%7Chome%7Chomepage%7C%7Cview&v181=cbdotcom&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=4C3B0C3755C3822E7F000101%40AdobeOrg&AQE=1 HTTP/1.1
Host: smetrics.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/HomePage.aspx
Connection: keep-alive
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~0~YAAQlQVJF4HHRxmDAQAA8M9rKQglEQMDDXH25KCf2K/Z3iPsVTnpgBnTd/qRT7AfS7P7bvCvZjmmfKXXf/fUbVncE0K2Cz31QM20GMlgtYPgKMrefjQnO10eYqkQVNhkg8g6SinAoho24jiJMULq1Gwu2IL1r40XJIHaluvx9njxuxgOFvdkbBm4iv23tPR9jqbqPLuuiLjtjI/iHJmA9Rot3qJHEmVJbdmFVuAbL3/KAcWZ+2n7/Zt0gwfkn8gejL7dU2f8WBD48ZfPw+8X+kIBtZak4+g802vGHQ64qamGHi6tv6Izrko/FZv6Xq2MjxRBygLH1PauyFAt2wYMAsPRg8bwCtYv/K6E7ENjLt7j40CIMdMOIlYH247UVjx+8j8wmTaCo2im886+/373LUiQklgxaNHnTyHi2CWxe/iMjIOsg0yofzgof+hjwK04Mw==~-1~||-1||~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~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; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CMCMID%7C68840371114121799732657114906725734036%7CMCAID%7CNONE%7CMCOPTOUT-1662854465s%7CNONE%7CMCAAMLH-1663452065%7C6%7CMCAAMB-1663452065%7Cj8Odv6LonN4r3an7LhD3WZrU1bUpAkFkkiY1ncBR96t2PTI%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123|PC#99e8b20fa57a4032ac0c5c5c026aa5f8.37_0#1726092066; _gcl_au=1.1.1068001830.1662847263; _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; bm_sv=982C617A2901CEA2CC67B3E47186B77B~YAAQlQVJF2XHRxmDAQAAMs9rKRF32kaiWr6nbt4DPFxV4qbTE4aP2Qe71p0J4tect/k6/FxQetRl6o7QC/N/7aPwGHa+UM0LDeobZJBFYjeyron9/2lmIwTyWdQn2SJ7Tiw0RThI273QncyD6yd6hvYfReF8SVjArtzYjaLu0lWJHDNh1B+1JwFkbQQ388E6OV+J2CbQ5kJhyPJ2nul8TAcEHiqPmbJzUDSf3HKbz0popxl4zstJwA+MBqs66QC6GPDZBNWH~1; bm_mi=8089684B9D6573B8A695C4BD2E914B0E~YAAQlQVJF2THRxmDAQAAMs9rKRFFlVFlDR9VCB9VaJqXhwxp+wAIPUE0sgpIGkHv2A0J4/HQ9sC+3YeOYHm2j2SDkysij3GmpQJpuzOdHXkW3VbszOJttcJTcOJCpPEPKLRV2bKHJ9T2GSZqRUtVpBBi8eW/JvNIt713ktckRFYxqDZ6rNs8ptvEvoNFSI2vk090Fko1S6oruTFe50FlLspuDlvG12lqoqijcrAPD1tp9r/uc0LTlkoa28v8BXQ0QaQrMrNI8csj4nw4A2uEZJ+od1sUL2J9xgeP/DxrHnf/PfwPy8CiM9KesjFZuSwy9Hc7DQtKrIu1PCIAZxDMXdZEWR0OD0f1ooF+agmCSNBtLqMxABUV/DA=~1; mboxEdgeCluster=37; s_ecid=MCMID%7C68840371114121799732657114906725734036; _fbp=fb.1.1662847265530.837647336; AMCVS_4C3B0C3755C3822E7F000101%40AdobeOrg=1; gpv_v51=no%20value; s_nr=1662847265774-New; s_ips=939; s_tp=4721; s_ppv=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx%2C20%2C20%2C939%2C1%2C5; gpv_p5=marketing%7Cgeneric%7Chome%7Chomepage%7C%7Cview; s_nr30=1662847265787-New; s_vncm=1664582399788%26vn%3D1; s_ivc=true; s_lv=1662847265788; s_lv_s=First%20Visit; s_cc=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
date: Sat, 10 Sep 2022 22:01:16 GMT
expires: Fri, 09 Sep 2022 22:01:15 GMT
last-modified: Sun, 11 Sep 2022 22:01:15 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C68840371114121799732657114906725734036; Path=/; Domain=citizensbank.com; Max-Age=63072000; Expires=Mon, 09 Sep 2024 22:01:01 GMT;
s_ecid=MCMID%7C68840371114121799732657114906725734036; Path=/; Domain=citizensbank.com; Max-Age=63072000; Expires=Mon, 09 Sep 2024 22:01:01 GMT;
etag: 3570937333963849728-4619914237457748981
vary: *
dcs: dcs-prod-irl1-2-v039-08ff11a55.edge-irl1.demdex.com 6 ms
x-aam-tid: UDDLlD2QQ64=
content-type: application/x-javascript;charset=utf-8
content-length: 146
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 7.2 kB IP 172.64.155.188:0
File type gzip compressed data, from Unix\012- data
Hash a420b8ce46b03ed8748ca84dad651366
a7f561cf74cd1414b9a073d73ff9aafaaefa7b8b
a4f7a9cdf7bbe34fa236ce9e5ad1e3698b2acf2164e6394741f48031d3ecbe03
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 16:31:55 GMT
Expires: Fri, 16 Sep 2022 16:31:54 GMT
Etag: "f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a"
Cache-Control: max-age=498037,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b70f23f630b65-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash abaee6ad9821254ddb087b8e85629533
f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a
d1c5e704aba4c2fb6aa25ce5ba8b800a759e2538a36c10d64d5af922079c45af
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:16 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 16:31:55 GMT
Expires: Fri, 16 Sep 2022 16:31:54 GMT
Etag: "f39f6df8880d90e55e61f91d85bf2b2ec84c6e9a"
Cache-Control: max-age=498037,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b70f269dcfab4-OSL
citizensbank.demdex.net/dest5.html?d_nsid=0
54.154.150.117200 OK 2.8 kB URL HTTP/1.1 citizensbank.demdex.net/dest5.html?d_nsid=0
IP 54.154.150.117:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: citizensbank.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Sat, 10 Sep 2022 22:01:16 GMT
DCS: dcs-prod-irl1-1-v039-0e03ac223.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Tue, 6 Sep 2022 11:03:24 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: kHAJDFNlR9Y=
transfer-encoding: chunked
Connection: keep-alive
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.citizensbank.com&site=83789770&env=prod&isCrossDomain=true
178.249.97.98200 OK 16 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.citizensbank.com&site=83789770&env=prod&isCrossDomain=true
IP 178.249.97.98:0
Hash f8c8868d26e91109b94221e9e7ccdb7b
8802179381e62d099d4901ad4acffb5ef9d6d16a
c750de18d738fb2171ba5a17c4da3089c080c50a63707a0efdd22af29f70d38a
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.html?loc=https%3A%2F%2Fwww.citizensbank.com&site=83789770&env=prod&isCrossDomain=true HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:16 GMT
content-type: text/html
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Sun, 10 Sep 2023 22:01:16 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash adc84807b09cb49e0f291316ace41590
978188abe62014ad755dc2e9f763d07475aff204
f31ef97ee8258e7bda41c1794c2848a9894ab8d3612204f4ec9b21bb5f562d2c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 22:01:16 GMT
Last-Modified: Sat, 10 Sep 2022 21:28:01 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KlnVNEct_by8vU4Z7ErVJJdgK3jVybJ96JzGbvnKvWJX1g6CzHlaTQ==
Age: 1996
lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.citizensbank.com&site=83789770&force=1&env=prod&isCrossDomain=true
178.249.97.98200 OK 15 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.citizensbank.com&site=83789770&force=1&env=prod&isCrossDomain=true
IP 178.249.97.98:0
File type ASCII text, with very long lines (38345), with no line terminators
Hash 050b36a844ee4aaf0952234a22f35dc4
38fcc7b87571ee37af2d8204d1f38db2ea93c76e
d995f73840e1a36ca2726f5a572dc5723b9c149ea76bd15480d7f11ac8e524f5
GET /le_secure_storage/3.18.0.0-release_5078/storage.secure.min.js?loc=https%3A%2F%2Fwww.citizensbank.com&site=83789770&force=1&env=prod&isCrossDomain=true HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:16 GMT
content-type: application/javascript
last-modified: Mon, 08 Aug 2022 03:15:58 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Sun, 10 Sep 2023 22:01:16 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=411&dpuuid=Yx0JLAAAALzAuwNn
54.154.150.117302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=411&dpuuid=Yx0JLAAAALzAuwNn
IP 54.154.150.117:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=411&dpuuid=Yx0JLAAAALzAuwNn HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v039-096107272.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yx0JLAAAALzAuwNn
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=78726000965324832840132638352481843677; Max-Age=15552000; Expires=Thu, 09 Mar 2023 22:01:16 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 9QxzjU8kTw4=
Content-Length: 0
Connection: keep-alive
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yx0JLAAAALzAuwNn
54.154.150.117200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yx0JLAAAALzAuwNn
IP 54.154.150.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Yx0JLAAAALzAuwNn HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v039-04504ed26.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: fDyy/SEFTeE=
Content-Length: 59
Connection: keep-alive
t.a3cloud.net/AM-141554/tag.js?nm=am
143.204.55.15403 Forbidden 986 B URL HTTP/1.1 t.a3cloud.net/AM-141554/tag.js?nm=am
IP 143.204.55.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9d3db2a9efdf06ef1ce120c5eb7e13a9
36e9de1ab5c97bedb66dcc034de1ccea3f37dc61
2f0ffdf0f23c8b016186f68f9afb3352d9bab4a257e2182b0d7ff4d516f268e3
GET /AM-141554/tag.js?nm=am HTTP/1.1
Host: t.a3cloud.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: CloudFront
Date: Sat, 10 Sep 2022 22:01:16 GMT
Content-Type: text/html
Content-Length: 986
Connection: keep-alive
X-Cache: Error from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mQMTtYojvN3tQXmsej-BSqrbzgzzftEhRahJU2zS57PZDrYFBnN8dA==
nebula-cdn.kampyle.com/us/wu/356861/onsite/generic1661783984320.js
151.101.85.175200 OK 114 kB URL HTTP/2 nebula-cdn.kampyle.com/us/wu/356861/onsite/generic1661783984320.js
IP 151.101.85.175:0
File type Unicode text, UTF-8 text, with very long lines (53527)
Size 114 kB (114411 bytes)
Hash 67338383cf1b1190ffac8ae2154319fe
ed043374f8431a3907a6836faece92f136b23db7
bee6dafa03de89ddfcdf94ad52749b0d8ddd57feaab1ca9e1bd6787984b17740
GET /us/wu/356861/onsite/generic1661783984320.js HTTP/1.1
Host: nebula-cdn.kampyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: FxXbd6qYi0q6Kt4HuzP50DhY3nSt4pnzRIiVh9VZAnJhw5yEqBgAFf1I3Dw0HnWFXepgmYh7L3M=
x-amz-request-id: 79ZBZS9N264MRZGK
last-modified: Mon, 29 Aug 2022 14:39:45 GMT
etag: "3df8748863601a90e9cf1637769a7333"
x-amz-version-id: JAFhCrnwbhLG4IwpzmOzPUljt4GQUaj8
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: max-age=86400
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Sep 2022 22:01:16 GMT
via: 1.1 varnish
age: 570729
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1662847277.562485,VS0,VE1
vary: Accept-Encoding
strict-transport-security: max-age=31557600
content-length: 114411
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (38826), with no line terminators
Hash 293ae3e0fc8b0d5c143fdf9d8490228d
3976c659b908e70818a3a1ac71860b497fe2d1a9
04a840d967ae836e14179bde574cabf14a1fc871182ca0f8193e7a0b06c727ab
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11367
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 28 Jul 2022 17:32:37 GMT
accept-ranges: bytes
etag: "80a8697a8a2d81:0"
vary: Accept-Encoding
set-cookie: MUID=3BFB51AFCA1762E2049843B4CBE263C3; domain=.bing.com; expires=Thu, 05-Oct-2023 22:01:16 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0DDC153595EE4C0B8C0F6C9366B18869 Ref B: OSL30EDGE0507 Ref C: 2022-09-10T22:01:16Z
date: Sat, 10 Sep 2022 22:01:15 GMT
X-Firefox-Spdy: h2
02179916.akstat.io/
184.24.44.135204 No Content 0 B IP 184.24.44.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 02179916.akstat.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 5132
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.citizensbank.com
x-xss-protection: 0
access-control-allow-credentials: true
timing-allow-origin: *
content-type: image/gif
expires: Sat, 10 Sep 2022 22:01:16 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:16 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dbe3a0cdacad2b3866fd4934190bd431
969e13ad553587f1577d23125c6119e773a16c59
91dd0e187bc2576c0830567d1ceeadd3a106afe08622ccd6498fe0bdd32f4d4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
8253365.fls.doubleclick.net/activityi;src=8253365;type=allpgs;cat=allpageu;ord=1;num=1296618957085;gtm=2od970;auiddc=1068001830.1662847263;u2=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;u3=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;~oref=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx?
142.250.74.70200 OK 394 B URL HTTP/2 8253365.fls.doubleclick.net/activityi;src=8253365;type=allpgs;cat=allpageu;ord=1;num=1296618957085;gtm=2od970;auiddc=1068001830.1662847263;u2=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;u3=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;~oref=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx?
IP 142.250.74.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (596), with no line terminators
Hash 0bbc7711895c4d41063bde80b07feb3c
cfe9d716a0be62b413a96ff48ff2fb3f397a853f
41a3d03c24538373274931718776296b07890c9ba080f4709f3ccf505619ce62
GET /activityi;src=8253365;type=allpgs;cat=allpageu;ord=1;num=1296618957085;gtm=2od970;auiddc=1068001830.1662847263;u2=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;u3=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;~oref=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx? HTTP/1.1
Host: 8253365.fls.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Sep 2022 22:01:16 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 394
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 10-Sep-2022 22:16:16 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dbe3a0cdacad2b3866fd4934190bd431
969e13ad553587f1577d23125c6119e773a16c59
91dd0e187bc2576c0830567d1ceeadd3a106afe08622ccd6498fe0bdd32f4d4d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 3.1 kB URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
File type ASCII text, with very long lines (8461), with no line terminators
Hash 0fae07aa5532d2c54d3b354593b17c15
732e6f10afd7121d3c6bf83202851c4bcdec57e1
88914b73dfdef0d739f232f7a7444ef3c93f50e26d8a3e492c1112997a6646e4
GET /le_unified_window/10.20.1.9-release_5536/surveylogicinstance.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Sun, 10 Sep 2023 22:01:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
trial-eum-clientnsv4-s.akamaihd.net/eum/getdns.txt?c=pevyct4bp
23.33.119.9302 Moved Temporarily 0 B URL HTTP/1.1 trial-eum-clientnsv4-s.akamaihd.net/eum/getdns.txt?c=pevyct4bp
IP 23.33.119.9:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eum/getdns.txt?c=pevyct4bp HTTP/1.1
Host: trial-eum-clientnsv4-s.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://lnncvgqxef3qsyy5bewa-pevyct-5d2e08ffe-clientnsv4-s.akamaihd.net/eum/results.txt
Date: Sat, 10 Sep 2022 22:01:16 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
trial-eum-clienttons-s.akamaihd.net/eum/getdns.txt?c=pevyct4bp
95.101.142.24302 Moved Temporarily 0 B URL HTTP/1.1 trial-eum-clienttons-s.akamaihd.net/eum/getdns.txt?c=pevyct4bp
IP 95.101.142.24:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /eum/getdns.txt?c=pevyct4bp HTTP/1.1
Host: trial-eum-clienttons-s.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://91-90-42-154_s-95-101-142-24_ts-1662847276-clienttons-s.akamaihd.net/eum/results.txt
Date: Sat, 10 Sep 2022 22:01:16 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 4af3782fda43e3df3920a05fb980c234
3ee54ec009669bbb6b76eb3f12a6b1feb442d6e4
41d12867fe278b63b612bf77613a2af1ec6fefa317c326b59c1334073d93454b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 22:01:16 GMT
Last-Modified: Sat, 10 Sep 2022 21:46:05 GMT
Server: ECS (nyb/1D23)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xEB1_iXN--92CAdAa3P0GtrtFzFyo8V15LaQcGHkBalOVkoQVWL5PQ==
Age: 911
lnncvgqxef3qsyy5bewa-pevyct-5d2e08ffe-clientnsv4-s.akamaihd.net/eum/results.txt
23.33.119.9200 OK 8 B URL HTTP/1.1 lnncvgqxef3qsyy5bewa-pevyct-5d2e08ffe-clientnsv4-s.akamaihd.net/eum/results.txt
IP 23.33.119.9:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 402e7a087747cb56c718bde84651f96a
7ce01f6381463362cf6aef2f843a59261e8f5587
662efaf46c617ddbcb8ff4a2a8f64cffd3d93630f1003f8e66511f369b87730f
GET /eum/results.txt HTTP/1.1
Host: lnncvgqxef3qsyy5bewa-pevyct-5d2e08ffe-clientnsv4-s.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "402e7a087747cb56c718bde84651f96a:1367999472"
Last-Modified: Wed, 08 May 2013 07:51:12 GMT
Server: AkamaiNetStorage
Content-Length: 8
Date: Sat, 10 Sep 2022 22:01:16 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
adservice.google.no/ddm/fls/i/src=8253365;type=allpgs;cat=allpageu;ord=1;num=1296618957085;gtm=2od970;auiddc=1068001830.1662847263;u2=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;u3=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;~oref=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx
142.250.74.34200 OK 177 B URL HTTP/2 adservice.google.no/ddm/fls/i/src=8253365;type=allpgs;cat=allpageu;ord=1;num=1296618957085;gtm=2od970;auiddc=1068001830.1662847263;u2=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;u3=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;~oref=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 9393b28661a65a763699c108887882eb
c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
GET /ddm/fls/i/src=8253365;type=allpgs;cat=allpageu;ord=1;num=1296618957085;gtm=2od970;auiddc=1068001830.1662847263;u2=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;u3=https%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx;~oref=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Sep 2022 22:01:16 GMT
expires: Sat, 10 Sep 2022 22:01:16 GMT
cache-control: private, max-age=0
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsps.ssl.com/
34.237.184.165200 OK 1.9 kB IP 34.237.184.165:0
Hash 7fffb0f05b515aa84e97afccdfa9c562
9bd5a784c042c3d51fc397da9f0a60009e53e0d9
5cd98e7890adfd44bc293a56e6b768987312bfa9d2576ee01e31afc6cfbc01af
POST / HTTP/1.1
Host: ocsps.ssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 10 Sep 2022 22:01:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1883
Connection: keep-alive
Expires: Sat, 17 Sep 2022 14:15:10 GMT
Cache-Control: max-age=86400,public,no-transform,must-revalidate
ETag: "9bd5a784c042c3d51fc397da9f0a60009e53e0d9"
Last-Modified: Sat, 10 Sep 2022 14:15:11 GMT
X-Proxy-Cache: HIT
91-90-42-154_s-95-101-142-24_ts-1662847276-clienttons-s.akamaihd.net/eum/results.txt
2.21.8.112200 OK 8 B URL HTTP/1.1 91-90-42-154_s-95-101-142-24_ts-1662847276-clienttons-s.akamaihd.net/eum/results.txt
IP 2.21.8.112:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 402e7a087747cb56c718bde84651f96a
7ce01f6381463362cf6aef2f843a59261e8f5587
662efaf46c617ddbcb8ff4a2a8f64cffd3d93630f1003f8e66511f369b87730f
GET /eum/results.txt HTTP/1.1
Host: 91-90-42-154_s-95-101-142-24_ts-1662847276-clienttons-s.akamaihd.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: text/plain
ETag: "402e7a087747cb56c718bde84651f96a:1367999472"
Last-Modified: Wed, 08 May 2013 07:51:12 GMT
Server: AkamaiNetStorage
Content-Length: 8
Date: Sat, 10 Sep 2022 22:01:16 GMT
Connection: keep-alive
Access-Control-Allow-Origin: *
report.citizen.glassboxdigital.io/glassbox/reporting/37272EEE-17C5-70B4-EA6F-C6F8796CE694/cls_report?_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335%3A0&_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4&pv=2&f_cls_s=true
35.168.81.159200 OK 312 B URL HTTP/1.1 report.citizen.glassboxdigital.io/glassbox/reporting/37272EEE-17C5-70B4-EA6F-C6F8796CE694/cls_report?_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335%3A0&_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4&pv=2&f_cls_s=true
IP 35.168.81.159:0
File type JSON data\012- , ASCII text, with very long lines (449), with no line terminators
Hash ceeba3942991bfae8096075b3cfdc260
762ba0c4eb8c377b322b9921a590695ca95975ae
98d9da265accc44eae0ed11391c8c4aab09514a45dd3a292e35b01d261b62cf8
GET /glassbox/reporting/37272EEE-17C5-70B4-EA6F-C6F8796CE694/cls_report?_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335%3A0&_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4&pv=2&f_cls_s=true HTTP/1.1
Host: report.citizen.glassboxdigital.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:16 GMT
Content-Type: application/json
Content-Length: 312
Connection: keep-alive
Set-Cookie: AWSALB=79IOELieRofcOJ55R9xTrTZ8ou5OB5x2weo4E5hMpZnSesdyQ0/nST79nHh17oEurjiTAwvs8Xvn9bEdfsmRPKCyKcEIDnrbQa8YVyz6+jBZ/GahEOsiJ7eZVsks; Expires=Sat, 17 Sep 2022 22:01:16 GMT; Path=/
AWSALBCORS=79IOELieRofcOJ55R9xTrTZ8ou5OB5x2weo4E5hMpZnSesdyQ0/nST79nHh17oEurjiTAwvs8Xvn9bEdfsmRPKCyKcEIDnrbQa8YVyz6+jBZ/GahEOsiJ7eZVsks; Expires=Sat, 17 Sep 2022 22:01:16 GMT; Path=/; SameSite=None; Secure
_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; Secure; SameSite=None
_cls_cfgver=25b30437; Secure; SameSite=None
_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; Secure; SameSite=None
ROUTEID=.cligate1; path=/
Server: GlassBox Cligate
access-control-allow-origin: https://www.citizensbank.com
vary: origin
access-control-allow-credentials: true
content-encoding: gzip
X-Robots-Tag: noindex
GB-Server: g5025
udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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
35.241.45.82200 OK 0 B URL HTTP/2 udc-neb.kampyle.com/egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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
IP 35.241.45.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /egw/5/qceuv8449dzg58ptt1bhda9g8ue19c7s/track/__cool.gif?data=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 HTTP/1.1
Host: udc-neb.kampyle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:16 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-allow-methods: GET, POST, PUT, DELETE
access-control-allow-headers: X-Requested-With, Origin, Content-Type, Accept
access-control-max-age: 1800
x-me: prod-instance-gatewayservice-blue-7q10
x-application-context: application:9090
content-type: image/gif; charset=UTF-8
content-length: 0
server: Jetty(9.2.11.v20150529)
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
95.101.174.159200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP 95.101.174.159:0
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Sat, 10 Sep 2022 22:21:17 GMT
Date: Sat, 10 Sep 2022 22:01:17 GMT
Content-Length: 3249
Connection: keep-alive
snap.licdn.com/li.lms-analytics/insight.min.js
2.22.244.115200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 2.22.244.115:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=73601
date: Sat, 10 Sep 2022 22:01:17 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5317852&Ver=2&mid=4d31c2bb-ff56-42db-b4d9-60efecda4e35&sid=11d4ec20315411ed948ee5fb7cd4f836&vid=11d4ec10315411ed83e42b2bfcc0b88d&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Citizens%20%7C%20Personal%20%26%20Business%20Banking,%20Student%20Loans,%20Retirement&p=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F<=4612&evt=pageLoad&sv=1&rn=943615
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5317852&Ver=2&mid=4d31c2bb-ff56-42db-b4d9-60efecda4e35&sid=11d4ec20315411ed948ee5fb7cd4f836&vid=11d4ec10315411ed83e42b2bfcc0b88d&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Citizens%20%7C%20Personal%20%26%20Business%20Banking,%20Student%20Loans,%20Retirement&p=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F<=4612&evt=pageLoad&sv=1&rn=943615
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5317852&Ver=2&mid=4d31c2bb-ff56-42db-b4d9-60efecda4e35&sid=11d4ec20315411ed948ee5fb7cd4f836&vid=11d4ec10315411ed83e42b2bfcc0b88d&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Citizens%20%7C%20Personal%20%26%20Business%20Banking,%20Student%20Loans,%20Retirement&p=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F<=4612&evt=pageLoad&sv=1&rn=943615 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2C1913D0E1A26282322101CBE057638B; domain=.bing.com; expires=Thu, 05-Oct-2023 22:01:17 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 8DEB551DF98E4645B25B6E75DAB36017 Ref B: OSL30EDGE0507 Ref C: 2022-09-10T22:01:17Z
date: Sat, 10 Sep 2022 22:01:16 GMT
X-Firefox-Spdy: h2
secure.adnxs.com/seg?add=10100&redir=&t=1
185.89.211.84307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?add=10100&redir=&t=1
IP 185.89.211.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?add=10100&redir=&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 10 Sep 2022 22:01:17 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D10100%26redir%3D%26t%3D1
AN-X-Request-Uuid: 134fce33-67ab-4afd-8f77-f3088c1804d7
Set-Cookie: uuid2=1732814432149861256; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 09-Dec-2022 22:01:17 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
secure.adnxs.com/bounce?%2Fseg%3Fadd%3D10100%26redir%3D%26t%3D1
185.89.211.84200 OK 0 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D10100%26redir%3D%26t%3D1
IP 185.89.211.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fseg%3Fadd%3D10100%26redir%3D%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 10 Sep 2022 22:01:17 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 64033611-eaea-499c-a7ea-d3af34875f3d
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2E><fgz0D!]tbP6j2F-XstGt!@Di^$pj8z; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 09-Dec-2022 22:01:17 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 959.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
bat.bing.com/p/action/5317852.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5317852.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5317852.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=024A9C3C7F5A63071C4A8E277EAF62AE; domain=.bing.com; expires=Thu, 05-Oct-2023 22:01:17 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0569B576764D491CAE09FCE3BBA33ABC Ref B: OSL30EDGE0507 Ref C: 2022-09-10T22:01:17Z
date: Sat, 10 Sep 2022 22:01:16 GMT
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fd66d0988f5bb65e7951fb29b878af5
f5d8264509674747d963865521ea458b5990ddd3
ae581701d5b9bed9e14f2752a8de4e7c45d0e12e20fc5744dc9fb994244b3e4b
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3063
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:17 GMT
Last-Modified: Sat, 10 Sep 2022 21:10:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6fd66d0988f5bb65e7951fb29b878af5
f5d8264509674747d963865521ea458b5990ddd3
ae581701d5b9bed9e14f2752a8de4e7c45d0e12e20fc5744dc9fb994244b3e4b
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 668
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 22:01:17 GMT
Last-Modified: Sat, 10 Sep 2022 21:50:09 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
px.ads.linkedin.com/collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D583769%26time%3D1662847266917%26url%3Dhttps%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKBdcRUQ9-6CQAAAYMpa9ilrVWMS8ecBFWQu5KyI0MKn-H2gIzHljp89JxoB_nnvV3oPjTnQmL5-g; Max-Age=2592000; Expires=Mon, 10 Oct 2022 22:01:17 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQLW1LjPpYhF1AAAAYMpa9ilmeTyUwX53WrDUY2CRsbhz2sIUhP_SiJaFyMb39hebTX53tt3mOqT8i8Q5LOQBw; Max-Age=2592000; Expires=Mon, 10 Oct 2022 22:01:17 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&c3821cd0-6676-4478-8b53-6aab84cda312"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 10-Sep-2023 22:01:17 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2341:u=1:x=1:i=1662847277:t=1662933677:v=2:sig=AQFtTw87EPFu8yWYosvmXrxFwU3l3BxN"; Expires=Sun, 11 Sep 2022 22:01:17 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoWc1GAq1U8LJUjCJz7w==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 5EACFB9F8D744CDC9ED62973F16F1D9F Ref B: OSL30EDGE0113 Ref C: 2022-09-10T22:01:17Z
date: Sat, 10 Sep 2022 22:01:16 GMT
content-length: 0
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=001b0a938fd4b435e0d11ea9b677bf8d05&obApiVersion=1.0&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&optOut=false&bust=000506018665556951&referrer=https%3A%2F%2Fci5izens.web.app%2F
70.42.32.159200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=001b0a938fd4b435e0d11ea9b677bf8d05&obApiVersion=1.0&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&optOut=false&bust=000506018665556951&referrer=https%3A%2F%2Fci5izens.web.app%2F
IP 70.42.32.159:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=001b0a938fd4b435e0d11ea9b677bf8d05&obApiVersion=1.0&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&optOut=false&bust=000506018665556951&referrer=https%3A%2F%2Fci5izens.web.app%2F HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:17 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 4ca94e0466657ec4a67b26ae0356ed9c
content-encoding: gzip
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D583769%26time%3D1662847266917%26url%3Dhttps%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D583769%26time%3D1662847266917%26url%3Dhttps%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D583769%26time%3D1662847266917%26url%3Dhttps%253A%252F%252Fwww.citizensbank.com%252FHomePage.aspx%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&2b85e252-e30d-4b28-8f6e-989dc6e88123"; Domain=.linkedin.com; Expires=Sun, 10-Sep-2023 22:01:17 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022091022011747ca3633-eb6b-439b-8e5b-4e9413ac5080AQHXm5iniIAzpug_lnNCiHEBfU828ssh"; Domain=.www.linkedin.com; Expires=Sun, 10-Sep-2023 22:01:17 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjI4NDcyNzc7MjswMjE/O+idibrvc7+7jKsmPTEASWiorJvLpZanGjxZwHTN+g==; Domain=.linkedin.com; Expires=Thu, 09 Mar 2023 22:01:17 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2379:u=1:x=1:i=1662847277:t=1662933677:v=2:sig=AQEy6zKpfZM_ZHiGbuP6odszbj_9jWfS"; Expires=Sun, 11 Sep 2022 22:01:17 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXoWc1JF9PyP5xXxZ2CZw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A470AB2C09AD43D6958CC40065A11730 Ref B: OSL30EDGE0113 Ref C: 2022-09-10T22:01:17Z
date: Sat, 10 Sep 2022 22:01:16 GMT
content-length: 0
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=001b0a938fd4b435e0d11ea9b677bf8d05
70.42.32.159200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=001b0a938fd4b435e0d11ea9b677bf8d05
IP 70.42.32.159:0
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=001b0a938fd4b435e0d11ea9b677bf8d05 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:17 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 9eadc156fde653787454d972a942c439
content-encoding: gzip
px.ads.linkedin.com/collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=583769&time=1662847266917&url=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.citizensbank.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&b0e7a6c3-e4f4-4e93-8bee-57b4bb28b82a"; domain=.linkedin.com; Path=/; Secure; Expires=Sun, 10-Sep-2023 22:01:17 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2341:u=1:x=1:i=1662847277:t=1662933677:v=2:sig=AQFtTw87EPFu8yWYosvmXrxFwU3l3BxN"; Expires=Sun, 11 Sep 2022 22:01:17 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoWc1L8omK6KfIu6EGhQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 726CFCFA672C4DB1929D6645A4D0C326 Ref B: OSL30EDGE0113 Ref C: 2022-09-10T22:01:17Z
date: Sat, 10 Sep 2022 22:01:17 GMT
content-length: 0
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/83789770/configuration/setting/accountproperties/?cb=accountSettingsCB
178.249.101.99200 OK 1.9 kB URL HTTP/2 accdn.lpsnmedia.net/api/account/83789770/configuration/setting/accountproperties/?cb=accountSettingsCB
IP 178.249.101.99:0
Hash a826b8c3bef5f290dae932b930f94975
60c36d75b8456c8691340decb827743660599a44
7086cda1932efa827f89ab0818f81aa835297c3d7bd09186d6ee3374dbcb7304
GET /api/account/83789770/configuration/setting/accountproperties/?cb=accountSettingsCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/javascript
vary: Accept
expires: Sat, 10 Sep 2022 22:01:39 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
report.citizen.glassboxdigital.io/glassbox/reporting/37272EEE-17C5-70B4-EA6F-C6F8796CE694/cls_report?clsjsv=6.6.26B27&_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0&_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4&pid=d7ad82f5-6c9c-488a-a160-e60124ae2b52&sn=1&cfg&pv=2&aid=
35.168.81.159200 OK 312 B URL HTTP/1.1 report.citizen.glassboxdigital.io/glassbox/reporting/37272EEE-17C5-70B4-EA6F-C6F8796CE694/cls_report?clsjsv=6.6.26B27&_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0&_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4&pid=d7ad82f5-6c9c-488a-a160-e60124ae2b52&sn=1&cfg&pv=2&aid=
IP 35.168.81.159:0
File type JSON data\012- , ASCII text, with very long lines (449), with no line terminators
Hash ceeba3942991bfae8096075b3cfdc260
762ba0c4eb8c377b322b9921a590695ca95975ae
98d9da265accc44eae0ed11391c8c4aab09514a45dd3a292e35b01d261b62cf8
POST /glassbox/reporting/37272EEE-17C5-70B4-EA6F-C6F8796CE694/cls_report?clsjsv=6.6.26B27&_cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0&_cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4&pid=d7ad82f5-6c9c-488a-a160-e60124ae2b52&sn=1&cfg&pv=2&aid= HTTP/1.1
Host: report.citizen.glassboxdigital.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 10584
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Cookie: _cls_v=6eff2ab8-f15c-4bca-92b0-9c19646750d4; _cls_cfgver=25b30437; _cls_s=732a7fc6-950f-4fe0-a8cc-a79a70ec5335:0; AWSALBCORS=79IOELieRofcOJ55R9xTrTZ8ou5OB5x2weo4E5hMpZnSesdyQ0/nST79nHh17oEurjiTAwvs8Xvn9bEdfsmRPKCyKcEIDnrbQa8YVyz6+jBZ/GahEOsiJ7eZVsks
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:18 GMT
Content-Type: application/json
Content-Length: 312
Connection: keep-alive
Set-Cookie: AWSALB=Fruwak7Y7UtjbAdWVuvx956PuaFY94HKdBKvlZMrXqC6zRnN+bYlkXYXX1LsiGSqz0WjXs6wmssUbZMEyxKxssGZJD7TScIEbVJfVq0GtDHXLVfGy50mp4Uop/qX; Expires=Sat, 17 Sep 2022 22:01:18 GMT; Path=/
AWSALBCORS=Fruwak7Y7UtjbAdWVuvx956PuaFY94HKdBKvlZMrXqC6zRnN+bYlkXYXX1LsiGSqz0WjXs6wmssUbZMEyxKxssGZJD7TScIEbVJfVq0GtDHXLVfGy50mp4Uop/qX; Expires=Sat, 17 Sep 2022 22:01:18 GMT; Path=/; SameSite=None; Secure
_cls_cfgver=25b30437; Secure; SameSite=None
ROUTEID=.cligate1; path=/
Server: GlassBox Cligate
access-control-allow-origin: https://www.citizensbank.com
vary: origin
access-control-allow-credentials: true
content-encoding: gzip
X-Robots-Tag: noindex
GB-Server: g5025
va.idp.liveperson.net/postmessage/postmessage.min.html?bust=1662847267179&loc=https%3A%2F%2Fwww.citizensbank.com
208.89.15.170200 OK 5.3 kB URL HTTP/2 va.idp.liveperson.net/postmessage/postmessage.min.html?bust=1662847267179&loc=https%3A%2F%2Fwww.citizensbank.com
IP 208.89.15.170:0
Hash 5e6082f1b0e119078534557b04a74943
bfaaf19bc84ff0a45e135c51dd0d953f0b87106a
1ee55c6e419b3404a299b08133a63e4b09362117609ebf3b5763f61dbd7400b9
GET /postmessage/postmessage.min.html?bust=1662847267179&loc=https%3A%2F%2Fwww.citizensbank.com HTTP/1.1
Host: va.idp.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:17 GMT
content-type: text/html
last-modified: Sun, 09 Aug 2020 13:04:00 GMT
etag: W/"5f2ff440-2a51"
server: ws
strict-transport-security: max-age=31536000; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash cd196dbc0cbf50b9a9fda9f7670419b0
4e51366bbb089e80b7dbd360f6cd5d0dad7adc82
689427e77152cdcf83dc50398036769b9bc29ff6bc8121751dcd2ceddf9cfa48
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 22:01:18 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 09 Sep 2022 11:37:40 GMT
Expires: Fri, 16 Sep 2022 11:37:39 GMT
Etag: "4e51366bbb089e80b7dbd360f6cd5d0dad7adc82"
Cache-Control: max-age=480380,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 748b71035e660b65-OSL
va.v.liveperson.net/api/js/83789770?&cb=lpCb6415x67713&t=sp&ts=1662847267162&pid=8716392959&tid=3137531437&pt=Citizens%20%7C%20Personal%20%26%20Business%20Banking%2C%20Student%20Loans%2C%20Retirement&u=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F&sec=%5B%22%22%5D&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%2C%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%2C%22sub%22%3A%22b78106bb-d5b8-4af5-8106-bbd5b87af5be%22%2C%22account%22%3A%2283789770%22%7D%5D
208.89.12.87200 OK 11 kB URL HTTP/2 va.v.liveperson.net/api/js/83789770?&cb=lpCb6415x67713&t=sp&ts=1662847267162&pid=8716392959&tid=3137531437&pt=Citizens%20%7C%20Personal%20%26%20Business%20Banking%2C%20Student%20Loans%2C%20Retirement&u=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F&sec=%5B%22%22%5D&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%2C%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%2C%22sub%22%3A%22b78106bb-d5b8-4af5-8106-bbd5b87af5be%22%2C%22account%22%3A%2283789770%22%7D%5D
IP 208.89.12.87:0
Hash 5d4e8a665d78dbc0fbfcc12f05407368
645a573f3aaf94c2ebdcfb7938abfc0aea1e8ba1
b7291d02a6ed15c6d7155fc482f257cba9eda5c324d82a45a9b9c198fde7ac0d
GET /api/js/83789770?&cb=lpCb6415x67713&t=sp&ts=1662847267162&pid=8716392959&tid=3137531437&pt=Citizens%20%7C%20Personal%20%26%20Business%20Banking%2C%20Student%20Loans%2C%20Retirement&u=https%3A%2F%2Fwww.citizensbank.com%2FHomePage.aspx&r=https%3A%2F%2Fci5izens.web.app%2F&sec=%5B%22%22%5D&df=0&os=2&identities=%5B%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%7D%2C%7B%22iss%22%3A%22LivePerson%22%2C%22acr%22%3A%220%22%2C%22sub%22%3A%22b78106bb-d5b8-4af5-8106-bbd5b87af5be%22%2C%22account%22%3A%2283789770%22%7D%5D HTTP/1.1
Host: va.v.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:18 GMT
content-type: application/javascript
set-cookie: LPVisitorID=FkNDk0MzUyNmZlNzA5MDgy; Expires=Sun, 10-Sep-2023 22:01:18 GMT; Path=/; HttpOnly
LPSessionID=kH4QnNcGT_CAruFdioS4Sg; Path=/api/js/83789770; HttpOnly
cache-control: no-store
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
content-encoding: gzip
X-Firefox-Spdy: h2
02179916.akstat.io/
184.24.44.135204 No Content 0 B IP 184.24.44.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 02179916.akstat.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1924
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.citizensbank.com
x-xss-protection: 0
access-control-allow-credentials: true
timing-allow-origin: *
content-type: image/gif
expires: Sat, 10 Sep 2022 22:01:19 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 10 Sep 2022 22:01:19 GMT
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/390a08f7aa6ee0a944e1b8d975cea74f.js?conditionId0=4882071
54.230.111.14200 OK 0 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/390a08f7aa6ee0a944e1b8d975cea74f.js?conditionId0=4882071
IP 54.230.111.14:0
GET /citizensbank/prod/code/390a08f7aa6ee0a944e1b8d975cea74f.js?conditionId0=4882071 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 06 Sep 2022 13:53:17 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 06 Sep 2022 13:41:57 GMT
etag: W/"8215f90775e54fd9a7f008eb7e5a47a2"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: BFppQJv1aPBc8bZcIG2PRjnzMFigj6Eg
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a5vslxOLMI_Rh6xBiVwupM3LZnPdByMkRwhLI-3mLxohMc-WL_Wp1w==
age: 374878
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/83789770/configuration/domainprotection/refererrestrictions?cb=lpCb89828x52325
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/83789770/configuration/domainprotection/refererrestrictions?cb=lpCb89828x52325
IP 178.249.101.99:0
GET /api/account/83789770/configuration/domainprotection/refererrestrictions?cb=lpCb89828x52325 HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lpcdn.lpsnmedia.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:16 GMT
content-type: application/javascript
vary: Accept
expires: Sat, 10 Sep 2022 22:01:40 GMT
x-envoy-upstream-service-time: 0
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
lptag.liveperson.net/lptag/api/account/83789770/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
178.249.101.23200 OK 0 B URL HTTP/2 lptag.liveperson.net/lptag/api/account/83789770/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3
IP 178.249.101.23:0
GET /lptag/api/account/83789770/configuration/applications/taglets/.jsonp?v=2.0&df=0&b=3 HTTP/1.1
Host: lptag.liveperson.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/x-javascript
set-cookie: ADRUM_BTa=R:29|g:d9e61d07-6a65-4831-9644-b69b56c5017e; Max-Age=30; Expires=Sat, 10-Sep-2022 22:01:45 GMT; Path=/
ADRUM_BTa=R:29|g:d9e61d07-6a65-4831-9644-b69b56c5017e|n:livepersonltd_93a08561-b03e-475e-b29b-9ad4aa207daf; Max-Age=30; Expires=Sat, 10-Sep-2022 22:01:45 GMT; Path=/
SameSite=None; Max-Age=30; Expires=Sat, 10-Sep-2022 22:01:45 GMT; Path=/; Secure
ADRUM_BT1=R:29|i:1758155; Max-Age=30; Expires=Sat, 10-Sep-2022 22:01:45 GMT; Path=/
ADRUM_BT1=R:29|i:1758155|e:3; Max-Age=30; Expires=Sat, 10-Sep-2022 22:01:45 GMT; Path=/
ADRUM_BT1=R:29|i:1758155|e:3|d:3; Max-Age=30; Expires=Sat, 10-Sep-2022 22:01:45 GMT; Path=/
cache-control: public, max-age=630
server: ws
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: EXPIRED
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
accdn.lpsnmedia.net/api/account/83789770/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
178.249.101.99200 OK 0 B URL HTTP/2 accdn.lpsnmedia.net/api/account/83789770/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB
IP 178.249.101.99:0
GET /api/account/83789770/configuration/le-campaigns/zones?fields=id&fields=zoneValue&cb=lpZonesStaticCB HTTP/1.1
Host: accdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:16 GMT
content-type: application/javascript
vary: Accept
expires: Sat, 10 Sep 2022 22:01:39 GMT
x-envoy-upstream-service-time: 1
server: ws
strict-transport-security: max-age=99999999999; includeSubDomains
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options
access-control-allow-credentials: true
x-cache-status: HIT
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/Bootstrap.js
54.230.111.14200 OK 0 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/Bootstrap.js
IP 54.230.111.14:0
GET /citizensbank/prod/Bootstrap.js HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Thu, 08 Sep 2022 15:13:38 GMT
x-amz-replication-status: PENDING
last-modified: Thu, 08 Sep 2022 15:12:13 GMT
etag: W/"1b1a55a20453d7b9aaec99b20dfc3214"
x-amz-server-side-encryption: AES256
cache-control: max-age=300
x-amz-version-id: JZ8I_xFpf2Z9Ah1KpEfQQcwgtvw9ZE2S
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H7rr6rlhqigurevay3pdGOXAmP4fVhVFfuc-7y1QYPilvfWXOBwdVA==
age: 197254
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/ui-framework.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Sun, 10 Sep 2023 22:01:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/lpChatV3.min.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:35 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Sun, 10 Sep 2023 22:01:15 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
216.58.211.14200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 216.58.211.14:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 10 Sep 2022 22:01:15 GMT
date: Sat, 10 Sep 2022 22:01:15 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=-ZqPP-Lyi6w; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=NucA73uGFHA; Domain=.youtube.com; Expires=Thu, 09-Mar-2023 22:01:15 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+334; expires=Mon, 09-Sep-2024 22:01:14 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/0bca96efc1f70cbba563a8a04f33303c.js?conditionId0=393270
54.230.111.14200 OK 0 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/0bca96efc1f70cbba563a8a04f33303c.js?conditionId0=393270
IP 54.230.111.14:0
GET /citizensbank/prod/code/0bca96efc1f70cbba563a8a04f33303c.js?conditionId0=393270 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 24 Aug 2022 02:41:26 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Aug 2022 02:40:13 GMT
etag: W/"698da16d9efa58cea8ac15ae0a2c88e1"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: u7iSOOLMLJQ0DojtCIk7RkYOL87oYglE
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: meWY3p7SPktEyE98bgrHbSupJcCqVLo6j0M_XJwmoUVm969oRiWp_A==
age: 1538389
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/8be44e5d203ac0b3a166980ae0bcb717.js?conditionId0=4910245
54.230.111.14200 OK 0 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/8be44e5d203ac0b3a166980ae0bcb717.js?conditionId0=4910245
IP 54.230.111.14:0
GET /citizensbank/prod/code/8be44e5d203ac0b3a166980ae0bcb717.js?conditionId0=4910245 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Fri, 22 Jul 2022 04:27:58 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 25 Mar 2022 05:48:07 GMT
etag: W/"f98108ed326a3529b2fbd33f17f7f261"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: 16pqLabtNVflR4DeRiPT0wJYlyvHv9Sm
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YIo1rpFwxIaFw0c2RvygfGh3Hq8SO8cI8voVmU9aMq7cq9c7_gBneg==
age: 4383197
X-Firefox-Spdy: h2
nexus.ensighten.com/citizensbank/prod/code/a2f7f8d644169985ff4ba6be2cf9cd20.js?conditionId0=4897239
54.230.111.14200 OK 0 B URL HTTP/2 nexus.ensighten.com/citizensbank/prod/code/a2f7f8d644169985ff4ba6be2cf9cd20.js?conditionId0=4897239
IP 54.230.111.14:0
GET /citizensbank/prod/code/a2f7f8d644169985ff4ba6be2cf9cd20.js?conditionId0=4897239 HTTP/1.1
Host: nexus.ensighten.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 24 Aug 2022 02:41:26 GMT
x-amz-replication-status: COMPLETED
last-modified: Wed, 24 Aug 2022 02:40:13 GMT
etag: W/"b7235e66a38e34ef310c716de18d083b"
x-amz-server-side-encryption: AES256
cache-control: max-age=315360000
x-amz-version-id: VzCAgR0KTnmwenHlM8iIen08K0K3HmCQ
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Qg_3VCVSNJ2v8ezxEvRoIdvCJ_mMhrxQ3dzLom5dWch5E_oQCnqxBA==
age: 1538389
X-Firefox-Spdy: h2
lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536
178.249.97.98200 OK 0 B URL HTTP/2 lpcdn.lpsnmedia.net/le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536
IP 178.249.97.98:0
GET /le_unified_window/10.20.1.9-release_5536/desktopEmbedded.js?version=10.20.1.9-release_5536 HTTP/1.1
Host: lpcdn.lpsnmedia.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:16 GMT
content-type: application/javascript
last-modified: Wed, 31 Aug 2022 14:50:34 GMT
content-encoding: gzip
server: ws
vary: Origin
access-control-allow-methods: GET, POST, PATCH
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-state-rev
access-control-expose-headers: X-Requested-With, X-HTTP-Method-Override, LP-DOMAIN-REFERER, LP-URL, ETag, ac-revision, X-LP-Last-Modified, If-Match, Authentication-Method, Credit-Card-Ref, Automation-Secret, Email-Token, x-lp-host, Lp-Req-Time, date, x-application-context, strict-transport-security, x-content-type-options, x-download-options, x-xss-protection, x-cache-status, x-amz-id-2, x-amz-request-id, expires, last-modified, set-cookie, content-security-policy, x-frame-options, x-lp-state-rev
access-control-allow-credentials: true
expires: Sun, 10 Sep 2023 22:01:16 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
x-cache-status: HIT
X-Firefox-Spdy: h2
citizensbank.tt.omtrdc.net/rest/v1/delivery?client=citizensbank&sessionId=99e8b20fa57a4032ac0c5c5c026aa5f8&version=2.3.3
18.202.61.67200 OK 0 B URL HTTP/2 citizensbank.tt.omtrdc.net/rest/v1/delivery?client=citizensbank&sessionId=99e8b20fa57a4032ac0c5c5c026aa5f8&version=2.3.3
IP 18.202.61.67:0
POST /rest/v1/delivery?client=citizensbank&sessionId=99e8b20fa57a4032ac0c5c5c026aa5f8&version=2.3.3 HTTP/1.1
Host: citizensbank.tt.omtrdc.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 862
Origin: https://www.citizensbank.com
Connection: keep-alive
Referer: https://www.citizensbank.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 22:01:15 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://www.citizensbank.com
access-control-allow-credentials: true
x-request-id: b574029b80355cfeadd7229a149a540e
timing-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List
content-encoding: gzip
X-Firefox-Spdy: h2
www.citizensbank.com/assets/CB_resources/fonts/the-hand/TheHand-ExtraBlack.woff2
104.85.180.233200 OK 0 B URL HTTP/2 www.citizensbank.com/assets/CB_resources/fonts/the-hand/TheHand-ExtraBlack.woff2
IP 104.85.180.233:0
GET /assets/CB_resources/fonts/the-hand/TheHand-ExtraBlack.woff2 HTTP/1.1
Host: www.citizensbank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.citizensbank.com/assets/CB_resources/styles/globalComponents.css
Cookie: AKA_A2=A; _abck=5C215ABA8A095A6F7AAC806BCC9C6812~-1~YAAQlQVJF37GRxmDAQAAPcVrKQjJyloaXhQtl21GXlINo14igoB6xK0raYEWa+ldb2KSkj57wkE2rzCWXFn+XX/Cjsj21BdHNIYJe9eAdn4AhvaVz3inYDEWjDgfGktXPOrG+IDbqspAJLLPP/wIh5ucVdHxkcAIdVIRsRlcYAM0TVF1qTPODt9mdpysaReSBmFauIWsZMIzOit0Wngz0ReZ4cYvyCDEtuWoUnHVVde1ru5zPkUTOuu4RvhOQElNekA+/6b9JT/d4pfJldBBdJzxtfMdqJr72Pq0VFQ6JGxK0b6yQmc2MWnMmkkQZ5O1+pvpMrTYns9jKvKKHwMbuF+rTl4dbCFo0Q169EjDsbeN8g8iIBPZVkfpsomJWf/1jGzNRaz5J+MskzvCV6mPewPx/ew0~-1~-1~-1; ak_bmsc=83EB7C3852245FA47463507696856F6A~000000000000000000000000000000~YAAQlQVJF3/GRxmDAQAAPcVrKREopoNMofVg/I+Raw4/qV7Llj0yRnuKrwOIUq1PDJAbNO3Gh9NSblPO2bp/W36vB7GRs66EcAfEHjFMpZfKsrgKIxPNGpj8m8IfbX4GEzwueSAA9cyWNXEZ3tG7v/MlyKdkdEMM5sLYC+/QYDP0lHzshuMlyMFiSia8LIm0pNqbJ3tn+kWkBSsXAzN9IrmJKLKbyaj5LTKlS4rW5QxnmDNUgOpFtGqH779bSVmajtDzryuE3vRRSFiZ0Cx2/riwIZPs/Ac3CrRlNO5pb5cV0/vxcUAWzqgH+15TO2QDh1gK5bGngKxLqGCV78oZyBe1hPUFOc8ozYyLHDHgUg8B1Qz7X4gLHBw6tGsYoTo0OWvUYOg+/YFLIVCoT6g7; bm_sz=4F935B4E746DCF879BDED14436809E43~YAAQlQVJF4HGRxmDAQAAPcVrKRH6BjZZIr2ukGR/moDoXkEa59F4iIoiyLxR9cJFSnK7Jv1CQoPtCC9Qr1mh73lnUk1Nn55NlDNjbsUFN1/6vOrCc2Pm57ECMlEkYATOdFQddYCm/hgaj5s+AAIzhHZ0f9ojHY/bzPq+8kF2w6JkU1z/xH9k+vjcmLa2+YooNc6QnhuAq1ySKFLerc387YiGUDqgn7Q4u2AytETsdIDhrpRdrgqmIzzX2PfiN0C1p6w+FsZmTaTM0/VMm9Np928msmK4voIhg4YaF29OJ9u9wO4FuB2/FmLg/5h5pvNbD/m7fPrc8lnOSRAjYDDV8cf2EragvU26wunno34ZMftm5YBm2DH9f9PI1/MGzBsqxgZv1/+0pTfIMFnLqNW/XLHcWCHd7w==~3686709~4535095; AMCV_4C3B0C3755C3822E7F000101%40AdobeOrg=359503849%7CMCIDTS%7C19246%7CvVersion%7C5.0.1; at_check=true; mbox=session#99e8b20fa57a4032ac0c5c5c026aa5f8#1662849123
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/html
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET, ARR/3.0
x-akamai-transformed: 9 - 0 pmb=mRUM,2
cache-control: private, max-age=581657
expires: Sat, 17 Sep 2022 15:35:30 GMT
date: Sat, 10 Sep 2022 22:01:13 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
strict-transport-security: max-age=15768000
x-robots-tag: none
X-Firefox-Spdy: h2