Advertisement
fkeles

openssl-certificate-inspection.sh

Mar 18th, 2024
140
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 3.35 KB | Source Code | 0 0
  1. openssl s_client -showcerts -connect <your-service-ip>:443 < /dev/null
  2. CONNECTED(00000003)
  3. Can't use SSL_get_servername
  4. depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
  5. verify return:1
  6. depth=1 C = US, O = Let's Encrypt, CN = R3
  7. verify return:1
  8. depth=0 CN = codeharmony.net
  9. verify return:1
  10. ---
  11. Certificate chain
  12.  0 s:CN = codeharmony.net
  13.    i:C = US, O = Let's Encrypt, CN = R3
  14.   a:PKEY: id-ecPublicKey, 256 (bit); sigalg: RSA-SHA256
  15.   v:NotBefore: Dec 14 20:15:15 2023 GMT; NotAfter: Mar 13 20:15:14 2024 GMT
  16. -----BEGIN CERTIFICATE-----
  17. MIIENDCCAxygAw.....
  18. -----END CERTIFICATE-----
  19. 1 s:CN = codeharmony.net
  20.   i:C = US, O = Let's Encrypt, CN = R3
  21.    a:PKEY: id-ecPublicKey, 256 (bit); sigalg: RSA-SHA256
  22.    v:NotBefore: Dec 14 20:15:15 2023 GMT; NotAfter: Mar 13 20:15:14 2024 GMT
  23. -----BEGIN CERTIFICATE-----
  24. MIIENDCCAxygAw.....
  25. -----END CERTIFICATE-----
  26.  2 s:C = US, O = Let's Encrypt, CN = R3
  27.   i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
  28.   a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
  29.   v:NotBefore: Sep  4 00:00:00 2020 GMT; NotAfter: Sep 15 16:00:00 2025 GMT
  30. -----BEGIN CERTIFICATE-----
  31. MIIFFjCCAv6gAw.....
  32. -----END CERTIFICATE-----
  33. 3 s:C = US, O = Internet Security Research Group, CN = ISRG Root X1
  34.   i:O = Digital Signature Trust Co., CN = DST Root CA X3
  35.   a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256
  36.   v:NotBefore: Jan 20 19:14:03 2021 GMT; NotAfter: Sep 30 18:14:03 2024 GMT
  37. -----BEGIN CERTIFICATE-----
  38. MIIFYDCCBEigAw.....
  39. -----END CERTIFICATE-----
  40. ---
  41. Server certificate
  42. subject=CN = codeharmony.net
  43. issuer=C = US, O = Let's Encrypt, CN = R3
  44. ---
  45. No client certificate CA names sent
  46. Peer signing digest: SHA512
  47. Peer signature type: ECDSA
  48. Server Temp Key: ECDH, prime256v1, 256 bits
  49. ---
  50. SSL handshake has read 5363 bytes and written 443 bytes
  51. Verification: OK
  52. ---
  53. New, TLSv1.0, Cipher is ECDHE-ECDSA-AES128-SHA
  54. Server public key is 256 bit
  55. Secure Renegotiation IS supported
  56. Compression: NONE
  57. Expansion: NONE
  58. No ALPN negotiated
  59. SSL-Session:
  60.     Protocol  : TLSv1.2
  61.     Cipher    : ECDHE-ECDSA-AES128-SHA
  62.     Session-ID: F249032931614xxxx.....
  63.     Session-ID-ctx:
  64.     Master-Key: 8D2CB1E69562EABE6AEF1ABCC5388EBAA9016Cxxxx.....
  65.     PSK identity: None
  66.     PSK identity hint: None
  67.     SRP username: None
  68.     TLS session ticket lifetime hint: 600 (seconds)
  69.     TLS session ticket:
  70.     0000 - 0a f7 08 f9 e7 7b c7 5e-f4 0e 11 26 6f 74 e7 f8   .....{.^...&ot..
  71.     0010 - 24 96 90 2f 6d f7 bc 8b-5d e9 ea 70 af ee 9b 6e   $../m...]..p...n
  72.     0020 - b0 ae 8a 0d 52 77 3e 28-a7 9a 28 0a 7a fa e9 9e   ....Rw>(..(.z...
  73.     0030 - c3 7f 9a 3e 4d 58 67 10-d8 7a 73 a9 a9 2c d4 5c   ...>MXg..zs..,.\
  74.     0040 - d7 1a 1c 66 ee 5a 16 5d-e1 29 1e 7e 13 62 d6 98   ...f.Z.].).~.b..
  75.     0050 - 21 89 9d be e6 b6 64 ff-cc d4 6c ad 05 d5 c0 8a   !.....d...l.....
  76.     0060 - a1 07 97 0f 94 f3 9c 89-ed fd 64 cf 6f c3 d0 dc   ..........d.o...
  77.     0070 - b3 fa c6 d5 e5 b8 64 83-4e 5e 55 e8 f7 bc 00 f3   ......d.N^U.....
  78.     0080 - f0 98 06 e0 f7 4d 32 7c-de 5a 93 56 73 0f d2 dd   .....M2|.Z.Vs...
  79.     0090 - 30 91 77 6f b3 f5 0c 59-04 20 1b f4 4f 40 da 9c   0.wo...Y. ..O@..
  80.     00a0 - 25 e7 19 dc f7 3d 9b 1c-38 af 87 1a 92 ce c6 a9   %....=..8.......
  81.  
  82.     Start Time: 1709925756
  83.     Timeout   : 7200 (sec)
  84.     Verify return code: 0 (ok)
  85.     Extended master secret: no
  86. ---
  87. DONE
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement