GuyPaddock/verify_ssl_cert.rb

## verify_ssl_cert.rb
# This will only run in `irb -ropenssl`

require "socket"
require "openssl"

host = "comodo.com"
port = 443

cert_store = OpenSSL::X509::Store.new
cert_store.set_default_paths

ssl_context = OpenSSL::SSL::SSLContext.new
ssl_context.cert_store = cert_store

tcp_client = TCPSocket.new(host, port)
ssl_client = OpenSSL::SSL::SSLSocket.new(tcp_client, ssl_context)
ssl_client.hostname = host
ssl_client.connect
cert = OpenSSL::X509::Certificate.new(ssl_client.peer_cert)


certprops = OpenSSL::X509::Name.new(cert.issuer).to_a
issuer = certprops.select { |name, data, type| name == "O" }.first[1]
results = {
  valid_on: cert.not_before,
  valid_until: cert.not_after,
  issuer: issuer,
  valid: (ssl_client.verify_result == 0),
  code: ssl_client.verify_result
}

ssl_client.sysclose
tcp_client.close

puts results
	# This will only run in `irb -ropenssl`

	require "socket"
	require "openssl"

	host = "comodo.com"
	port = 443

	cert_store = OpenSSL::X509::Store.new
	cert_store.set_default_paths

	ssl_context = OpenSSL::SSL::SSLContext.new
	ssl_context.cert_store = cert_store

	tcp_client = TCPSocket.new(host, port)
	ssl_client = OpenSSL::SSL::SSLSocket.new(tcp_client, ssl_context)
	ssl_client.hostname = host
	ssl_client.connect
	cert = OpenSSL::X509::Certificate.new(ssl_client.peer_cert)


	certprops = OpenSSL::X509::Name.new(cert.issuer).to_a
	issuer = certprops.select { \|name, data, type\| name == "O" }.first[1]
	results = {
	valid_on: cert.not_before,
	valid_until: cert.not_after,
	issuer: issuer,
	valid: (ssl_client.verify_result == 0),
	code: ssl_client.verify_result
	}

	ssl_client.sysclose
	tcp_client.close

	puts results