Brian Krebs writes on how browsers choose to display IDN. The issue here is of course spoofing valid URLs with visually similar letters. You probably would notice the lame attempt in the department line but some of the international characters are very similar or indeed identical. Depending on your personal preferences it might be a good idea to use punycode instead. Could save you a headache later.
https://krebsonsecurity.com/2018/03/look-alike-domains-and-visual-confusion/
Here are some of the applicable RFCs:
(Score: 0) by Anonymous Coward on Monday March 12 2018, @04:05AM
WTF
On a mobile browser that is www.ca.com
Highlight the url and it shows what looks like encoding.
Why doesn't it detect that the local language is not the url language and provide warning
The opportunities for spoofing are surreal