Created
February 3, 2016 20:08
-
-
Save AtnNn/c06af4e9becb49a19bb8 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
$ gnutls-cli --print-cert curl.haxx.se | |
Processed 174 CA certificate(s). | |
Resolving 'curl.haxx.se'... | |
Connecting to '80.67.6.50:443'... | |
- Certificate type: X.509 | |
- Got a certificate list of 2 certificates. | |
- Certificate[0] info: | |
- subject `CN=curl.haxx.se', issuer `C=US,O=Let's Encrypt,CN=Let's Encrypt Authority X1', RSA key 2048 bits, signed using RSA-SHA256, activated `2016-01-28 22:05:00 UTC', expires `2016-04-27 22:05:00 UTC', SHA-1 fingerprint `707b72e91e34caefe7e6fbd9aa7d6631a75f9b4b' | |
Public Key ID: | |
ffd959da3088552a29a7e5c1e36db6b459a51134 | |
Public key's random art: | |
+--[ RSA 2048]----+ | |
| E | | |
| . . | | |
| o | | |
| . . o . | | |
| S O o . .| | |
| O B . + | | |
| . = * = .| | |
| = B B | | |
| * + .| | |
+-----------------+ | |
-----BEGIN CERTIFICATE----- | |
MIIE/DCCA+SgAwIBAgISAVYNyN3yc1C07sRlg9FzlNLeMA0GCSqGSIb3DQEBCwUA | |
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD | |
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMTAeFw0xNjAxMjgyMjA1MDBaFw0x | |
NjA0MjcyMjA1MDBaMBcxFTATBgNVBAMTDGN1cmwuaGF4eC5zZTCCASIwDQYJKoZI | |
hvcNAQEBBQADggEPADCCAQoCggEBAKcgXHugqJnCkfBzWcZVJ8iMR6ujrmmYjXzw | |
rzMjSWDdWQcaULrqmD1jp3/a8MTnefB8WhgI9wjKfUS/97VnoKLi93+uOtq30ZHf | |
Zh7GJcxvhW+kTwsH1/eTkiisARoiL3n6js+KwjdT521k5CQc9zfZhnvpR2Oea2GA | |
fI68jL4Mjmi7t0D39LCiVxFDDqKAZPN2wdcl4XkxdJRroymlosli8EnUsd46IkqI | |
LYcC+ROSCM/JtcLuLSwS8/BSt2RZEW8LYgHJLxaoCv4HDNlynwi3yz2QjNbZvLxv | |
sBN/0Fs7yxPySwVmI75LWG8ukAHSlhQL3bzT/INpuwBDgLQ0vYECAwEAAaOCAg0w | |
ggIJMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH | |
AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU7R54pm99Hv+ft7HnKzd5Dr0nC4Aw | |
HwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwcAYIKwYBBQUHAQEEZDBi | |
MC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5pbnQteDEubGV0c2VuY3J5cHQub3Jn | |
LzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgxLmxldHNlbmNyeXB0Lm9y | |
Zy8wFwYDVR0RBBAwDoIMY3VybC5oYXh4LnNlMIH+BgNVHSAEgfYwgfMwCAYGZ4EM | |
AQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s | |
ZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0 | |
ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5k | |
IG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kg | |
Zm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJ | |
KoZIhvcNAQELBQADggEBAHYo1z7zB70xvWgcCzY83f3lbN0PbWZup8x73hI9/ih4 | |
JBljWzYoS+eaGJctFnnn8BPmXWgsbhryO4OfxckW89X24MKX/NfgtBdjj3yPcLXq | |
MgEAYzmM5fe8RVpgh9L647EXiAcpUl95566SahDQvEMHJcenx8cFzJyHNs/f5ve9 | |
4z2HQKlV9jUFSOkMh15z+Fx+ZxDN65UfoglsYKORnD2gihonyfdIm6oTlTbeC9OB | |
5Z4+11wa1U419f1bl8HEMkrgr57uuxdLEcKv6zFnIb+JVXEAUzHaNDEv/FEnRXlF | |
D3cILGBxoKRpoZ07Uu/PIlsoD8cbnPcg7D3K5jOIIg4= | |
-----END CERTIFICATE----- | |
- Certificate[1] info: | |
- subject `C=US,O=Let's Encrypt,CN=Let's Encrypt Authority X1', issuer `O=Digital Signature Trust Co.,CN=DST Root CA X3', RSA key 2048 bits, signed using RSA-SHA256, activated `2015-10-19 22:33:36 UTC', expires `2020-10-19 22:33:36 UTC', SHA-1 fingerprint `3eae91937ec85d74483ff4b77b07b43e2af36bf4' | |
-----BEGIN CERTIFICATE----- | |
MIIEqDCCA5CgAwIBAgIRAJgT9HUT5XULQ+dDHpceRL0wDQYJKoZIhvcNAQELBQAw | |
PzEkMCIGA1UEChMbRGlnaXRhbCBTaWduYXR1cmUgVHJ1c3QgQ28uMRcwFQYDVQQD | |
Ew5EU1QgUm9vdCBDQSBYMzAeFw0xNTEwMTkyMjMzMzZaFw0yMDEwMTkyMjMzMzZa | |
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD | |
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMTCCASIwDQYJKoZIhvcNAQEBBQAD | |
ggEPADCCAQoCggEBAJzTDPBa5S5Ht3JdN4OzaGMw6tc1Jhkl4b2+NfFwki+3uEtB | |
BaupnjUIWOyxKsRohwuj43Xk5vOnYnG6eYFgH9eRmp/z0HhncchpDpWRz/7mmelg | |
PEjMfspNdxIknUcbWuu57B43ABycrHunBerOSuu9QeU2mLnL/W08lmjfIypCkAyG | |
dGfIf6WauFJhFBM/ZemCh8vb+g5W9oaJ84U/l4avsNwa72sNlRZ9xCugZbKZBDZ1 | |
gGusSvMbkEl4L6KWTyogJSkExnTA0DHNjzE4lRa6qDO4Q/GxH8Mwf6J5MRM9LTb4 | |
4/zyM2q5OTHFr8SNDR1kFjOq+oQpttQLwNh9w5MCAwEAAaOCAZIwggGOMBIGA1Ud | |
EwEB/wQIMAYBAf8CAQAwDgYDVR0PAQH/BAQDAgGGMH8GCCsGAQUFBwEBBHMwcTAy | |
BggrBgEFBQcwAYYmaHR0cDovL2lzcmcudHJ1c3RpZC5vY3NwLmlkZW50cnVzdC5j | |
b20wOwYIKwYBBQUHMAKGL2h0dHA6Ly9hcHBzLmlkZW50cnVzdC5jb20vcm9vdHMv | |
ZHN0cm9vdGNheDMucDdjMB8GA1UdIwQYMBaAFMSnsaR7LHH62+FLkHX/xBVghYkQ | |
MFQGA1UdIARNMEswCAYGZ4EMAQIBMD8GCysGAQQBgt8TAQEBMDAwLgYIKwYBBQUH | |
AgEWImh0dHA6Ly9jcHMucm9vdC14MS5sZXRzZW5jcnlwdC5vcmcwPAYDVR0fBDUw | |
MzAxoC+gLYYraHR0cDovL2NybC5pZGVudHJ1c3QuY29tL0RTVFJPT1RDQVgzQ1JM | |
LmNybDATBgNVHR4EDDAKoQgwBoIELm1pbDAdBgNVHQ4EFgQUqEpqYwR93brm0Tm3 | |
pkVl7/Oo7KEwDQYJKoZIhvcNAQELBQADggEBANHIIkus7+MJiZZQsY14cCoBG1hd | |
v0J20/FyWo5ppnfjL78S2k4s2GLRJ7iD9ZDKErndvbNFGcsW+9kKK/TnY21hp4Dd | |
ITv8S9ZYQ7oaoqs7HwhEMY9sibED4aXw09xrJZTC9zK1uIfW6t5dHQjuOWv+HHoW | |
ZnupyxpsEUlEaFb+/SCI4KCSBdAsYxAcsHYI5xxEI4LutHp6s3OT2FuO90WfdsIk | |
6q78OMSdn875bNjdBYAqxUp2/LEIHfDBkLoQz0hFJmwAbYahqKaLn73PAAm1X2kj | |
f1w8DdnkabOLGeOVcj9LQ+s67vBykx4anTjURkbqZslUEUsn2k5xeua2zUk= | |
-----END CERTIFICATE----- | |
- Status: The certificate is trusted. | |
- Description: (TLS1.2)-(ECDHE-RSA-SECP256R1)-(AES-128-GCM) | |
- Session ID: 65:69:B0:0E:81:B7:9C:1B:68:50:2E:50:8B:64:38:D8:C7:3E:7B:3D:69:64:5D:BC:0A:78:70:CB:BC:65:CC:FF | |
- Ephemeral EC Diffie-Hellman parameters | |
- Using curve: SECP256R1 | |
- Curve size: 256 bits | |
- Version: TLS1.2 | |
- Key Exchange: ECDHE-RSA | |
- Server Signature: RSA-SHA512 | |
- Cipher: AES-128-GCM | |
- MAC: AEAD | |
- Compression: NULL | |
- Options: safe renegotiation, | |
- Handshake was completed | |
- Simple Client Mode: | |
- Peer has closed the GnuTLS connection |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
$ openssl s_client -connect curl.haxx.se:443 < /dev/null | |
CONNECTED(00000004) | |
--- | |
Certificate chain | |
0 s:/CN=anja.haxx.se | |
i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X1 | |
1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X1 | |
i:/O=Digital Signature Trust Co./CN=DST Root CA X3 | |
--- | |
Server certificate | |
-----BEGIN CERTIFICATE----- | |
MIIE/DCCA+SgAwIBAgISAXLxfTItzaSfgdczcqtZi8YVMA0GCSqGSIb3DQEBCwUA | |
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD | |
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMTAeFw0xNjAxMjcwODA0MDBaFw0x | |
NjA0MjYwODA0MDBaMBcxFTATBgNVBAMTDGFuamEuaGF4eC5zZTCCASIwDQYJKoZI | |
hvcNAQEBBQADggEPADCCAQoCggEBAJi7u/XqBCOWuBpMNOz81lcFs1tgUKmH36Nc | |
NtytHTeljllVjWOrwRPf0poIJwus8qmFaKD6EZ1wCIkdsyjpoOq2fJxATlQfePZg | |
KiNRBDPVNOuymQNOYPH1G8eRTgeKBe3uK9lSxo+IFqcv3BwiSG9n04TJFPSMXBRe | |
otBUZc6xaSxh1yk5mOY328/wUg9ufgdZ5lBmj8uyvYglwgJStuAAy4fFl37jxxhv | |
0E4Pw9PfNzxXWh1NDWhwk7LVWH3Ilyk7GoUSYZ7wWLSdmFM5hTOnRMp9qdBv7uKH | |
F2V6yRpunHpsUS1r7Zr90Ip+VUFd87pYsIffHC30OQYnPUCZ+RsCAwEAAaOCAg0w | |
ggIJMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH | |
AwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUijPgLWjkOWCuc8QseEoDTy7qhrQw | |
HwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwcAYIKwYBBQUHAQEEZDBi | |
MC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5pbnQteDEubGV0c2VuY3J5cHQub3Jn | |
LzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgxLmxldHNlbmNyeXB0Lm9y | |
Zy8wFwYDVR0RBBAwDoIMYW5qYS5oYXh4LnNlMIH+BgNVHSAEgfYwgfMwCAYGZ4EM | |
AQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s | |
ZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZpY2F0 | |
ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMgYW5k | |
IG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xpY3kg | |
Zm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8wDQYJ | |
KoZIhvcNAQELBQADggEBABQfDUpIi596gigzRvI6qRBPpzlALc9vJEnNtnaE++gz | |
b+6Fza7oYPvwqX9Poc1M8a70f5YxxYCmMm6O97cLdzoDiBGFXriCbvtRrtotl7Yi | |
gpJ/zQk0mTL0UZzYpbhLCUSdaywGdhcDTF3kHfzizGg6LPMB9veAyAhqOpd0RbPT | |
Q9oeHdeemZGiQAiRCZ88ng0brT0oOoJbsnV0JVTXkPIw5+o2IyKY+iBQ7b82qPmH | |
cLPXTLk81MfhV7cSGj4UzuNT1Os8FdJcCsrVoxNnhWKniUKRf5xla8TekNFdVYW7 | |
+A9wwcatl6WXNJekiB68NKBbIePpkIrci2wMXZMGz3Q= | |
-----END CERTIFICATE----- | |
subject=/CN=anja.haxx.se | |
issuer=/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X1 | |
--- | |
No client certificate CA names sent | |
Peer signing digest: SHA512 | |
Server Temp Key: ECDH, P-256, 256 bits | |
--- | |
SSL handshake has read 3170 bytes and written 444 bytes | |
--- | |
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256 | |
Server public key is 2048 bit | |
Secure Renegotiation IS supported | |
Compression: NONE | |
Expansion: NONE | |
No ALPN negotiated | |
SSL-Session: | |
Protocol : TLSv1.2 | |
Cipher : ECDHE-RSA-AES128-GCM-SHA256 | |
Session-ID: D6B3E97EA799473615F13E3221D07EC7DED3FBC9FD39D24097433F6F0DDD032F | |
Session-ID-ctx: | |
Master-Key: CDA32A4F4AA9B99137517D1AA56490344B18E91F6522687CEDE01B644DB88C79D3FDFDC2AA19B9FD8F1082C27DCB6743 | |
Key-Arg : None | |
PSK identity: None | |
PSK identity hint: None | |
SRP username: None | |
TLS session ticket lifetime hint: 300 (seconds) | |
TLS session ticket: | |
0000 - 17 f0 df ec 89 7c 7f 07-72 c3 62 7e 18 b7 de 69 .....|..r.b~...i | |
0010 - af 29 15 be e4 47 ee c8-bc 6f 3a 37 16 38 77 63 .)...G...o:7.8wc | |
0020 - cd a5 ba a3 34 bf 1a 4e-6a 68 d1 53 79 83 6a 98 ....4..Njh.Sy.j. | |
0030 - d4 02 44 3a 23 87 e9 15-db cc c5 c7 74 8c 55 c7 ..D:#.......t.U. | |
0040 - b3 ff a1 2d 3b 35 ca 9d-46 bb 59 5d 9c 89 8b 41 ...-;5..F.Y]...A | |
0050 - e6 b7 ef b9 9c 40 ae bd-fd 7a c9 5b 36 1b 35 43 .....@...z.[6.5C | |
0060 - de 89 fa d5 7c 2f d1 0a-38 c7 26 75 39 bf d4 6e ....|/..8.&u9..n | |
0070 - aa 7b 39 dd 21 25 49 26-a3 72 fa bd 13 e8 5b 70 .{9.!%I&.r....[p | |
0080 - 1a a6 98 d2 0f 3e 5d 67-f6 b5 32 05 7d b6 a8 e0 .....>]g..2.}... | |
0090 - f5 eb e5 c4 c5 71 88 b7-19 a4 0a 59 4a 3d db 27 .....q.....YJ=.' | |
00a0 - 93 47 51 2b fe af 97 9a-1d e7 ec 87 d1 ad 93 03 .GQ+............ | |
00b0 - 43 9f 67 9f 76 35 cc ed-a7 4d ad ff e7 70 c7 77 C.g.v5...M...p.w | |
Start Time: 1454530387 | |
Timeout : 300 (sec) | |
Verify return code: 0 (ok) | |
--- |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment