Client Certificate Authentication

Could you please check if this helps to understand intermediaries while setting up SSL?