calebbaker/Get-RemoteSSLCertificate.ps1

## Get-RemoteSSLCertificate.ps1
[CmdletBinding()]
param (
    [Parameter(Mandatory=$true)]
    [string]
    $ComputerName,

    [int]
    $Port = 443
)

$Certificate = $null
$TcpClient = New-Object -TypeName System.Net.Sockets.TcpClient
try {

    $TcpClient.Connect($ComputerName, $Port)
    $TcpStream = $TcpClient.GetStream()

    $Callback = { param($sender, $cert, $chain, $errors) return $true }

    $SslStream = New-Object -TypeName System.Net.Security.SslStream -ArgumentList @($TcpStream, $true, $Callback)
    try {

        $SslStream.AuthenticateAsClient('')
        $Certificate = $SslStream.RemoteCertificate

    } finally {
        $SslStream.Dispose()
    }

} finally {
    $TcpClient.Dispose()
}

if ($Certificate) {
    if ($Certificate -isnot [System.Security.Cryptography.X509Certificates.X509Certificate2]) {
        $Certificate = New-Object -TypeName System.Security.Cryptography.X509Certificates.X509Certificate2 -ArgumentList $Certificate
    }

    Write-Output $Certificate
}
	[CmdletBinding()]
	param (
	[Parameter(Mandatory=$true)]
	[string]
	$ComputerName,

	[int]
	$Port = 443
	)

	$Certificate = $null
	$TcpClient = New-Object -TypeName System.Net.Sockets.TcpClient
	try {

	$TcpClient.Connect($ComputerName, $Port)
	$TcpStream = $TcpClient.GetStream()

	$Callback = { param($sender, $cert, $chain, $errors) return $true }

	$SslStream = New-Object -TypeName System.Net.Security.SslStream -ArgumentList @($TcpStream, $true, $Callback)
	try {

	$SslStream.AuthenticateAsClient('')
	$Certificate = $SslStream.RemoteCertificate

	} finally {
	$SslStream.Dispose()
	}

	} finally {
	$TcpClient.Dispose()
	}

	if ($Certificate) {
	if ($Certificate -isnot [System.Security.Cryptography.X509Certificates.X509Certificate2]) {
	$Certificate = New-Object -TypeName System.Security.Cryptography.X509Certificates.X509Certificate2 -ArgumentList $Certificate
	}

	Write-Output $Certificate
	}