API tools faq
paste
Guest User

google_ssl_V.txt

a guest
Dec 27th, 2012
262
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 40.60 KB | None | 0 0
raw download clone embed print report
  1. Frame 22: 672 bytes on wire (5376 bits), 672 bytes captured (5376 bits)
  2. WTAP_ENCAP: 1
  3. Arrival Time: Dec 27, 2012 11:22:02.494840000 Westeuropäische Normalzeit
  4. [Time shift for this packet: 0.000000000 seconds]
  5. Epoch Time: 1356603722.494840000 seconds
  6. [Time delta from previous captured frame: 0.000608000 seconds]
  7. [Time delta from previous displayed frame: 0.000000000 seconds]
  8. [Time since reference or first frame: 2.865622000 seconds]
  9. Frame Number: 22
  10. Frame Length: 672 bytes (5376 bits)
  11. Capture Length: 672 bytes (5376 bits)
  12. [Frame is marked: False]
  13. [Frame is ignored: False]
  14. [Protocols in frame [truncated]: eth:ip:tcp:ssl:pkcs-1:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:pkcs-1:x509ce:x509ce:x509ce:x509ce:pkix1implicit:x509ce:x509ce:pkcs-1:pkcs-1:x509sat:x509sat:x509sat:x509sat:x509sat:x509]
  15. Ethernet II, Src: 00:50:56:e1:38:db (00:50:56:e1:38:db), Dst: 00:0c:29:34:0b:de (00:0c:29:34:0b:de)
  16. Destination: 00:0c:29:34:0b:de (00:0c:29:34:0b:de)
  17. Address: 00:0c:29:34:0b:de (00:0c:29:34:0b:de)
  18. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  19. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  20. Source: 00:50:56:e1:38:db (00:50:56:e1:38:db)
  21. Address: 00:50:56:e1:38:db (00:50:56:e1:38:db)
  22. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  23. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  24. Type: IP (0x0800)
  25. Internet Protocol Version 4, Src: 173.194.44.31 (173.194.44.31), Dst: 192.168.158.139 (192.168.158.139)
  26. Version: 4
  27. Header length: 20 bytes
  28. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
  29. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  30. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
  31. Total Length: 658
  32. Identification: 0x4587 (17799)
  33. Flags: 0x00
  34. 0... .... = Reserved bit: Not set
  35. .0.. .... = Don't fragment: Not set
  36. ..0. .... = More fragments: Not set
  37. Fragment offset: 0
  38. Time to live: 128
  39. Protocol: TCP (6)
  40. Header checksum: 0xb9c9 [validation disabled]
  41. [Good: False]
  42. [Bad: False]
  43. Source: 173.194.44.31 (173.194.44.31)
  44. Destination: 192.168.158.139 (192.168.158.139)
  45. [Source GeoIP: Unknown]
  46. [Destination GeoIP: Unknown]
  47. Transmission Control Protocol, Src Port: 443 (443), Dst Port: 2277 (2277), Seq: 1305, Ack: 171, Len: 618
  48. Source port: 443 (443)
  49. Destination port: 2277 (2277)
  50. [Stream index: 3]
  51. Sequence number: 1305 (relative sequence number)
  52. [Next sequence number: 1923 (relative sequence number)]
  53. Acknowledgment number: 171 (relative ack number)
  54. Header length: 20 bytes
  55. Flags: 0x018 (PSH, ACK)
  56. 000. .... .... = Reserved: Not set
  57. ...0 .... .... = Nonce: Not set
  58. .... 0... .... = Congestion Window Reduced (CWR): Not set
  59. .... .0.. .... = ECN-Echo: Not set
  60. .... ..0. .... = Urgent: Not set
  61. .... ...1 .... = Acknowledgment: Set
  62. .... .... 1... = Push: Set
  63. .... .... .0.. = Reset: Not set
  64. .... .... ..0. = Syn: Not set
  65. .... .... ...0 = Fin: Not set
  66. Window size value: 64240
  67. [Calculated window size: 64240]
  68. [Window size scaling factor: -2 (no window scaling used)]
  69. Checksum: 0x8b9d [validation disabled]
  70. [Good Checksum: False]
  71. [Bad Checksum: False]
  72. [SEQ/ACK analysis]
  73. [Bytes in flight: 1922]
  74. [Timestamps]
  75. [Time since first frame in this TCP stream: 0.021784000 seconds]
  76. [Time since previous frame in this TCP stream: 0.000608000 seconds]
  77. TCP segment data (618 bytes)
  78. [2 Reassembled TCP Segments (1825 bytes): #21(1207), #22(618)]
  79. [Frame: 21, payload: 0-1206 (1207 bytes)]
  80. [Frame: 22, payload: 1207-1824 (618 bytes)]
  81. [Segment count: 2]
  82. [Reassembled TCP length: 1825]
  83. Secure Sockets Layer
  84. TLSv1 Record Layer: Handshake Protocol: Certificate
  85. Content Type: Handshake (22)
  86. Version: TLS 1.0 (0x0301)
  87. Length: 1603
  88. Handshake Protocol: Certificate
  89. Handshake Type: Certificate (11)
  90. Length: 1599
  91. Certificates Length: 1596
  92. Certificates (1596 bytes)
  93. Certificate Length: 898
  94. Certificate (id-at-commonName=www.google.de,id-at-organizationName=Google Inc,id-at-localityName=Mountain View,id-at-stateOrProvinceName=California,id-at-countryName=US)
  95. signedCertificate
  96. version: v3 (2)
  97. serialNumber : 0x5025529800000000757d
  98. signature (shaWithRSAEncryption)
  99. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  100. issuer: rdnSequence (0)
  101. rdnSequence: 3 items (id-at-commonName=Google Internet Authority,id-at-organizationName=Google Inc,id-at-countryName=US)
  102. RDNSequence item: 1 item (id-at-countryName=US)
  103. RelativeDistinguishedName item (id-at-countryName=US)
  104. Id: 2.5.4.6 (id-at-countryName)
  105. CountryName: US
  106. RDNSequence item: 1 item (id-at-organizationName=Google Inc)
  107. RelativeDistinguishedName item (id-at-organizationName=Google Inc)
  108. Id: 2.5.4.10 (id-at-organizationName)
  109. DirectoryString: printableString (1)
  110. printableString: Google Inc
  111. RDNSequence item: 1 item (id-at-commonName=Google Internet Authority)
  112. RelativeDistinguishedName item (id-at-commonName=Google Internet Authority)
  113. Id: 2.5.4.3 (id-at-commonName)
  114. DirectoryString: printableString (1)
  115. printableString: Google Internet Authority
  116. validity
  117. notBefore: utcTime (0)
  118. utcTime: 12-12-06 08:54:18 (UTC)
  119. notAfter: utcTime (0)
  120. utcTime: 13-06-07 19:43:27 (UTC)
  121. subject: rdnSequence (0)
  122. rdnSequence: 5 items (id-at-commonName=www.google.de,id-at-organizationName=Google Inc,id-at-localityName=Mountain View,id-at-stateOrProvinceName=California,id-at-countryName=US)
  123. RDNSequence item: 1 item (id-at-countryName=US)
  124. RelativeDistinguishedName item (id-at-countryName=US)
  125. Id: 2.5.4.6 (id-at-countryName)
  126. CountryName: US
  127. RDNSequence item: 1 item (id-at-stateOrProvinceName=California)
  128. RelativeDistinguishedName item (id-at-stateOrProvinceName=California)
  129. Id: 2.5.4.8 (id-at-stateOrProvinceName)
  130. DirectoryString: printableString (1)
  131. printableString: California
  132. RDNSequence item: 1 item (id-at-localityName=Mountain View)
  133. RelativeDistinguishedName item (id-at-localityName=Mountain View)
  134. Id: 2.5.4.7 (id-at-localityName)
  135. DirectoryString: printableString (1)
  136. printableString: Mountain View
  137. RDNSequence item: 1 item (id-at-organizationName=Google Inc)
  138. RelativeDistinguishedName item (id-at-organizationName=Google Inc)
  139. Id: 2.5.4.10 (id-at-organizationName)
  140. DirectoryString: printableString (1)
  141. printableString: Google Inc
  142. RDNSequence item: 1 item (id-at-commonName=www.google.de)
  143. RelativeDistinguishedName item (id-at-commonName=www.google.de)
  144. Id: 2.5.4.3 (id-at-commonName)
  145. DirectoryString: printableString (1)
  146. printableString: www.google.de
  147. subjectPublicKeyInfo
  148. algorithm (rsaEncryption)
  149. Algorithm Id: 1.2.840.113549.1.1.1 (rsaEncryption)
  150. Padding: 0
  151. subjectPublicKey: 30818902818100d55b55fcc40f9c2c270bc132d8497742da...
  152. extensions: 7 items
  153. Extension (id-ce-extKeyUsage)
  154. Extension Id: 2.5.29.37 (id-ce-extKeyUsage)
  155. KeyPurposeIDs: 2 items
  156. KeyPurposeId: 1.3.6.1.5.5.7.3.1 (id-kp-serverAuth)
  157. KeyPurposeId: 1.3.6.1.5.5.7.3.2 (id-kp-clientAuth)
  158. Extension (id-ce-subjectKeyIdentifier)
  159. Extension Id: 2.5.29.14 (id-ce-subjectKeyIdentifier)
  160. SubjectKeyIdentifier: 96abdd719960405671c4fd2206ceedfd4ac813c0
  161. Extension (id-ce-authorityKeyIdentifier)
  162. Extension Id: 2.5.29.35 (id-ce-authorityKeyIdentifier)
  163. AuthorityKeyIdentifier
  164. keyIdentifier: bfc030ebf543113e67ba9e91fbfc6adae36b1224
  165. Extension (id-ce-cRLDistributionPoints)
  166. Extension Id: 2.5.29.31 (id-ce-cRLDistributionPoints)
  167. CRLDistPointsSyntax: 1 item
  168. DistributionPoint
  169. distributionPoint: fullName (0)
  170. fullName: 1 item
  171. GeneralName: uniformResourceIdentifier (6)
  172. uniformResourceIdentifier: http://www.gstatic.com/GoogleInternetAuthority/GoogleInternetAuthority.crl
  173. Extension (id-pe-authorityInfoAccessSyntax)
  174. Extension Id: 1.3.6.1.5.5.7.1.1 (id-pe-authorityInfoAccessSyntax)
  175. AuthorityInfoAccessSyntax: 1 item
  176. AccessDescription
  177. accessMethod: 1.3.6.1.5.5.7.48.2 (id-pkix.48.2)
  178. accessLocation: 6
  179. uniformResourceIdentifier: http://www.gstatic.com/GoogleInternetAuthority/GoogleInternetAuthority.crt
  180. Extension (id-ce-basicConstraints)
  181. Extension Id: 2.5.29.19 (id-ce-basicConstraints)
  182. critical: True
  183. BasicConstraintsSyntax
  184. Extension (id-ce-subjectAltName)
  185. Extension Id: 2.5.29.17 (id-ce-subjectAltName)
  186. GeneralNames: 1 item
  187. GeneralName: dNSName (2)
  188. dNSName: www.google.de
  189. algorithmIdentifier (shaWithRSAEncryption)
  190. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  191. Padding: 0
  192. encrypted: b3951d10e88b9b46382964dafac8cb3f7073ea6cd5a52322...
  193. Certificate Length: 692
  194. Certificate (id-at-commonName=Google Internet Authority,id-at-organizationName=Google Inc,id-at-countryName=US)
  195. signedCertificate
  196. version: v3 (2)
  197. serialNumber: 747377
  198. signature (shaWithRSAEncryption)
  199. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  200. issuer: rdnSequence (0)
  201. rdnSequence: 3 items (id-at-organizationalUnitName=Equifax Secure Certificate Authori,id-at-organizationName=Equifax,id-at-countryName=US)
  202. RDNSequence item: 1 item (id-at-countryName=US)
  203. RelativeDistinguishedName item (id-at-countryName=US)
  204. Id: 2.5.4.6 (id-at-countryName)
  205. CountryName: US
  206. RDNSequence item: 1 item (id-at-organizationName=Equifax)
  207. RelativeDistinguishedName item (id-at-organizationName=Equifax)
  208. Id: 2.5.4.10 (id-at-organizationName)
  209. DirectoryString: printableString (1)
  210. printableString: Equifax
  211. RDNSequence item: 1 item (id-at-organizationalUnitName=Equifax Secure Certificate Authori)
  212. RelativeDistinguishedName item (id-at-organizationalUnitName=Equifax Secure Certificate Authority)
  213. Id: 2.5.4.11 (id-at-organizationalUnitName)
  214. DirectoryString: printableString (1)
  215. printableString: Equifax Secure Certificate Authority
  216. validity
  217. notBefore: utcTime (0)
  218. utcTime: 09-06-08 20:43:27 (UTC)
  219. notAfter: utcTime (0)
  220. utcTime: 13-06-07 19:43:27 (UTC)
  221. subject: rdnSequence (0)
  222. rdnSequence: 3 items (id-at-commonName=Google Internet Authority,id-at-organizationName=Google Inc,id-at-countryName=US)
  223. RDNSequence item: 1 item (id-at-countryName=US)
  224. RelativeDistinguishedName item (id-at-countryName=US)
  225. Id: 2.5.4.6 (id-at-countryName)
  226. CountryName: US
  227. RDNSequence item: 1 item (id-at-organizationName=Google Inc)
  228. RelativeDistinguishedName item (id-at-organizationName=Google Inc)
  229. Id: 2.5.4.10 (id-at-organizationName)
  230. DirectoryString: printableString (1)
  231. printableString: Google Inc
  232. RDNSequence item: 1 item (id-at-commonName=Google Internet Authority)
  233. RelativeDistinguishedName item (id-at-commonName=Google Internet Authority)
  234. Id: 2.5.4.3 (id-at-commonName)
  235. DirectoryString: printableString (1)
  236. printableString: Google Internet Authority
  237. subjectPublicKeyInfo
  238. algorithm (rsaEncryption)
  239. Algorithm Id: 1.2.840.113549.1.1.1 (rsaEncryption)
  240. Padding: 0
  241. subjectPublicKey: 30818902818100c9edb7a48b9c57e7843e407d84f48fd171...
  242. extensions: 5 items
  243. Extension (id-ce-keyUsage)
  244. Extension Id: 2.5.29.15 (id-ce-keyUsage)
  245. critical: True
  246. Padding: 1
  247. KeyUsage: 06 (keyCertSign, cRLSign)
  248. 0... .... = digitalSignature: False
  249. .0.. .... = contentCommitment: False
  250. ..0. .... = keyEncipherment: False
  251. ...0 .... = dataEncipherment: False
  252. .... 0... = keyAgreement: False
  253. .... .1.. = keyCertSign: True
  254. .... ..1. = cRLSign: True
  255. .... ...0 = encipherOnly: False
  256. 0... .... = decipherOnly: False
  257. Extension (id-ce-subjectKeyIdentifier)
  258. Extension Id: 2.5.29.14 (id-ce-subjectKeyIdentifier)
  259. SubjectKeyIdentifier: bfc030ebf543113e67ba9e91fbfc6adae36b1224
  260. Extension (id-ce-authorityKeyIdentifier)
  261. Extension Id: 2.5.29.35 (id-ce-authorityKeyIdentifier)
  262. AuthorityKeyIdentifier
  263. keyIdentifier: 48e668f92bd2b295d747d82320104f3398909fd4
  264. Extension (id-ce-basicConstraints)
  265. Extension Id: 2.5.29.19 (id-ce-basicConstraints)
  266. critical: True
  267. BasicConstraintsSyntax
  268. cA: True
  269. pathLenConstraint: 0
  270. Extension (id-ce-cRLDistributionPoints)
  271. Extension Id: 2.5.29.31 (id-ce-cRLDistributionPoints)
  272. CRLDistPointsSyntax: 1 item
  273. DistributionPoint
  274. distributionPoint: fullName (0)
  275. fullName: 1 item
  276. GeneralName: uniformResourceIdentifier (6)
  277. uniformResourceIdentifier: http://crl.geotrust.com/crls/secureca.crl
  278. algorithmIdentifier (shaWithRSAEncryption)
  279. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  280. Padding: 0
  281. encrypted: b88a23c64896b1117c60775e059aaba1c6fa821c1807c4eb...
  282. TLSv1 Record Layer: Handshake Protocol: Server Key Exchange
  283. Content Type: Handshake (22)
  284. Version: TLS 1.0 (0x0301)
  285. Length: 203
  286. Handshake Protocol: Server Key Exchange
  287. Handshake Type: Server Key Exchange (12)
  288. Length: 199
  289. EC Diffie-Hellman Server Params
  290. curve_type: named_curve (0x03)
  291. named_curve: secp256r1 (0x0017)
  292. Pubkey Length: 65
  293. pubkey: 04e0c90c668a5ca57e02b41a436cb9f255cf81830cf109a1...
  294. Signature Length: 128
  295. signature: 55fa25357943cc2b2bbb4462adbce74157c1d5b6d4c05155...
  296. TLSv1 Record Layer: Handshake Protocol: Server Hello Done
  297. Content Type: Handshake (22)
  298. Version: TLS 1.0 (0x0301)
  299. Length: 4
  300. Handshake Protocol: Server Hello Done
  301. Handshake Type: Server Hello Done (14)
  302. Length: 0
  303.  
  304. Frame 77: 694 bytes on wire (5552 bits), 694 bytes captured (5552 bits)
  305. WTAP_ENCAP: 1
  306. Arrival Time: Dec 27, 2012 11:22:03.016571000 Westeuropäische Normalzeit
  307. [Time shift for this packet: 0.000000000 seconds]
  308. Epoch Time: 1356603723.016571000 seconds
  309. [Time delta from previous captured frame: 0.000492000 seconds]
  310. [Time delta from previous displayed frame: 0.521731000 seconds]
  311. [Time since reference or first frame: 3.387353000 seconds]
  312. Frame Number: 77
  313. Frame Length: 694 bytes (5552 bits)
  314. Capture Length: 694 bytes (5552 bits)
  315. [Frame is marked: False]
  316. [Frame is ignored: False]
  317. [Protocols in frame [truncated]: eth:ip:tcp:ssl:pkcs-1:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:pkcs-1:x509ce:x509ce:x509ce:pkix1implicit:pkcs-1:pkcs-1:x509sat:x509sat:x509sat:x509sat:x509sat:x509sat:pkcs-1:x509ce:x50]
  318. Ethernet II, Src: 00:50:56:e1:38:db (00:50:56:e1:38:db), Dst: 00:0c:29:34:0b:de (00:0c:29:34:0b:de)
  319. Destination: 00:0c:29:34:0b:de (00:0c:29:34:0b:de)
  320. Address: 00:0c:29:34:0b:de (00:0c:29:34:0b:de)
  321. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  322. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  323. Source: 00:50:56:e1:38:db (00:50:56:e1:38:db)
  324. Address: 00:50:56:e1:38:db (00:50:56:e1:38:db)
  325. .... ..0. .... .... .... .... = LG bit: Globally unique address (factory default)
  326. .... ...0 .... .... .... .... = IG bit: Individual address (unicast)
  327. Type: IP (0x0800)
  328. Internet Protocol Version 4, Src: 173.194.44.18 (173.194.44.18), Dst: 192.168.158.139 (192.168.158.139)
  329. Version: 4
  330. Header length: 20 bytes
  331. Differentiated Services Field: 0x00 (DSCP 0x00: Default; ECN: 0x00: Not-ECT (Not ECN-Capable Transport))
  332. 0000 00.. = Differentiated Services Codepoint: Default (0x00)
  333. .... ..00 = Explicit Congestion Notification: Not-ECT (Not ECN-Capable Transport) (0x00)
  334. Total Length: 680
  335. Identification: 0x45a9 (17833)
  336. Flags: 0x00
  337. 0... .... = Reserved bit: Not set
  338. .0.. .... = Don't fragment: Not set
  339. ..0. .... = More fragments: Not set
  340. Fragment offset: 0
  341. Time to live: 128
  342. Protocol: TCP (6)
  343. Header checksum: 0xb99e [validation disabled]
  344. [Good: False]
  345. [Bad: False]
  346. Source: 173.194.44.18 (173.194.44.18)
  347. Destination: 192.168.158.139 (192.168.158.139)
  348. [Source GeoIP: Unknown]
  349. [Destination GeoIP: Unknown]
  350. Transmission Control Protocol, Src Port: 443 (443), Dst Port: 2278 (2278), Seq: 1305, Ack: 172, Len: 640
  351. Source port: 443 (443)
  352. Destination port: 2278 (2278)
  353. [Stream index: 4]
  354. Sequence number: 1305 (relative sequence number)
  355. [Next sequence number: 1945 (relative sequence number)]
  356. Acknowledgment number: 172 (relative ack number)
  357. Header length: 20 bytes
  358. Flags: 0x018 (PSH, ACK)
  359. 000. .... .... = Reserved: Not set
  360. ...0 .... .... = Nonce: Not set
  361. .... 0... .... = Congestion Window Reduced (CWR): Not set
  362. .... .0.. .... = ECN-Echo: Not set
  363. .... ..0. .... = Urgent: Not set
  364. .... ...1 .... = Acknowledgment: Set
  365. .... .... 1... = Push: Set
  366. .... .... .0.. = Reset: Not set
  367. .... .... ..0. = Syn: Not set
  368. .... .... ...0 = Fin: Not set
  369. Window size value: 64240
  370. [Calculated window size: 64240]
  371. [Window size scaling factor: -2 (no window scaling used)]
  372. Checksum: 0x58e1 [validation disabled]
  373. [Good Checksum: False]
  374. [Bad Checksum: False]
  375. [SEQ/ACK analysis]
  376. [Bytes in flight: 1944]
  377. [Timestamps]
  378. [Time since first frame in this TCP stream: 0.094878000 seconds]
  379. [Time since previous frame in this TCP stream: 0.000492000 seconds]
  380. TCP segment data (640 bytes)
  381. [2 Reassembled TCP Segments (1847 bytes): #76(1207), #77(640)]
  382. [Frame: 76, payload: 0-1206 (1207 bytes)]
  383. [Frame: 77, payload: 1207-1846 (640 bytes)]
  384. [Segment count: 2]
  385. [Reassembled TCP length: 1847]
  386. Secure Sockets Layer
  387. TLSv1 Record Layer: Handshake Protocol: Certificate
  388. Content Type: Handshake (22)
  389. Version: TLS 1.0 (0x0301)
  390. Length: 1625
  391. Handshake Protocol: Certificate
  392. Handshake Type: Certificate (11)
  393. Length: 1621
  394. Certificates Length: 1618
  395. Certificates (1618 bytes)
  396. Certificate Length: 805
  397. Certificate (id-at-commonName=www.google.com,id-at-organizationName=Google Inc,id-at-localityName=Mountain View,id-at-stateOrProvinceName=California,id-at-countryName=US)
  398. signedCertificate
  399. version: v3 (2)
  400. serialNumber : 0x4f9d96d966b0992b54c2957cb4157d4d
  401. signature (shaWithRSAEncryption)
  402. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  403. issuer: rdnSequence (0)
  404. rdnSequence: 3 items (id-at-commonName=Thawte SGC CA,id-at-organizationName=Thawte Consulting (Pty) Ltd.,id-at-countryName=ZA)
  405. RDNSequence item: 1 item (id-at-countryName=ZA)
  406. RelativeDistinguishedName item (id-at-countryName=ZA)
  407. Id: 2.5.4.6 (id-at-countryName)
  408. CountryName: ZA
  409. RDNSequence item: 1 item (id-at-organizationName=Thawte Consulting (Pty) Ltd.)
  410. RelativeDistinguishedName item (id-at-organizationName=Thawte Consulting (Pty) Ltd.)
  411. Id: 2.5.4.10 (id-at-organizationName)
  412. DirectoryString: printableString (1)
  413. printableString: Thawte Consulting (Pty) Ltd.
  414. RDNSequence item: 1 item (id-at-commonName=Thawte SGC CA)
  415. RelativeDistinguishedName item (id-at-commonName=Thawte SGC CA)
  416. Id: 2.5.4.3 (id-at-commonName)
  417. DirectoryString: printableString (1)
  418. printableString: Thawte SGC CA
  419. validity
  420. notBefore: utcTime (0)
  421. utcTime: 11-10-26 00:00:00 (UTC)
  422. notAfter: utcTime (0)
  423. utcTime: 13-09-30 23:59:59 (UTC)
  424. subject: rdnSequence (0)
  425. rdnSequence: 5 items (id-at-commonName=www.google.com,id-at-organizationName=Google Inc,id-at-localityName=Mountain View,id-at-stateOrProvinceName=California,id-at-countryName=US)
  426. RDNSequence item: 1 item (id-at-countryName=US)
  427. RelativeDistinguishedName item (id-at-countryName=US)
  428. Id: 2.5.4.6 (id-at-countryName)
  429. CountryName: US
  430. RDNSequence item: 1 item (id-at-stateOrProvinceName=California)
  431. RelativeDistinguishedName item (id-at-stateOrProvinceName=California)
  432. Id: 2.5.4.8 (id-at-stateOrProvinceName)
  433. DirectoryString: printableString (1)
  434. printableString: California
  435. RDNSequence item: 1 item (id-at-localityName=Mountain View)
  436. RelativeDistinguishedName item (id-at-localityName=Mountain View)
  437. Id: 2.5.4.7 (id-at-localityName)
  438. DirectoryString: teletexString (0)
  439. teletexString: Mountain View
  440. RDNSequence item: 1 item (id-at-organizationName=Google Inc)
  441. RelativeDistinguishedName item (id-at-organizationName=Google Inc)
  442. Id: 2.5.4.10 (id-at-organizationName)
  443. DirectoryString: teletexString (0)
  444. teletexString: Google Inc
  445. RDNSequence item: 1 item (id-at-commonName=www.google.com)
  446. RelativeDistinguishedName item (id-at-commonName=www.google.com)
  447. Id: 2.5.4.3 (id-at-commonName)
  448. DirectoryString: teletexString (0)
  449. teletexString: www.google.com
  450. subjectPublicKeyInfo
  451. algorithm (rsaEncryption)
  452. Algorithm Id: 1.2.840.113549.1.1.1 (rsaEncryption)
  453. Padding: 0
  454. subjectPublicKey: 30818902818100deb72643a69985cd38a71509b9cf0fc9c3...
  455. extensions: 4 items
  456. Extension (id-ce-basicConstraints)
  457. Extension Id: 2.5.29.19 (id-ce-basicConstraints)
  458. critical: True
  459. BasicConstraintsSyntax
  460. Extension (id-ce-cRLDistributionPoints)
  461. Extension Id: 2.5.29.31 (id-ce-cRLDistributionPoints)
  462. CRLDistPointsSyntax: 1 item
  463. DistributionPoint
  464. distributionPoint: fullName (0)
  465. fullName: 1 item
  466. GeneralName: uniformResourceIdentifier (6)
  467. uniformResourceIdentifier: http://crl.thawte.com/ThawteSGCCA.crl
  468. Extension (id-ce-extKeyUsage)
  469. Extension Id: 2.5.29.37 (id-ce-extKeyUsage)
  470. KeyPurposeIDs: 3 items
  471. KeyPurposeId: 1.3.6.1.5.5.7.3.1 (id-kp-serverAuth)
  472. KeyPurposeId: 1.3.6.1.5.5.7.3.2 (id-kp-clientAuth)
  473. KeyPurposeId: 2.16.840.1.113730.4.1 (joint-iso-itu-t.16.840.1.113730.4.1)
  474. Extension (id-pe-authorityInfoAccessSyntax)
  475. Extension Id: 1.3.6.1.5.5.7.1.1 (id-pe-authorityInfoAccessSyntax)
  476. AuthorityInfoAccessSyntax: 2 items
  477. AccessDescription
  478. accessMethod: 1.3.6.1.5.5.7.48.1 (id-pkix.48.1)
  479. accessLocation: 6
  480. uniformResourceIdentifier: http://ocsp.thawte.com
  481. AccessDescription
  482. accessMethod: 1.3.6.1.5.5.7.48.2 (id-pkix.48.2)
  483. accessLocation: 6
  484. uniformResourceIdentifier: http://www.thawte.com/repository/Thawte_SGC_CA.crt
  485. algorithmIdentifier (shaWithRSAEncryption)
  486. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  487. Padding: 0
  488. encrypted: 21acd5aeca34895ac2ab52d2b234669d7aabeee67cd57ec2...
  489. Certificate Length: 807
  490. Certificate (id-at-commonName=Thawte SGC CA,id-at-organizationName=Thawte Consulting (Pty) Ltd.,id-at-countryName=ZA)
  491. signedCertificate
  492. version: v3 (2)
  493. serialNumber: 805306370
  494. signature (shaWithRSAEncryption)
  495. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  496. issuer: rdnSequence (0)
  497. rdnSequence: 3 items (id-at-organizationalUnitName=Class 3 Public Primary Certificati,id-at-organizationName=VeriSign, Inc.,id-at-countryName=US)
  498. RDNSequence item: 1 item (id-at-countryName=US)
  499. RelativeDistinguishedName item (id-at-countryName=US)
  500. Id: 2.5.4.6 (id-at-countryName)
  501. CountryName: US
  502. RDNSequence item: 1 item (id-at-organizationName=VeriSign, Inc.)
  503. RelativeDistinguishedName item (id-at-organizationName=VeriSign, Inc.)
  504. Id: 2.5.4.10 (id-at-organizationName)
  505. DirectoryString: printableString (1)
  506. printableString: VeriSign, Inc.
  507. RDNSequence item: 1 item (id-at-organizationalUnitName=Class 3 Public Primary Certificati)
  508. RelativeDistinguishedName item (id-at-organizationalUnitName=Class 3 Public Primary Certification Authority)
  509. Id: 2.5.4.11 (id-at-organizationalUnitName)
  510. DirectoryString: printableString (1)
  511. printableString: Class 3 Public Primary Certification Authority
  512. validity
  513. notBefore: utcTime (0)
  514. utcTime: 04-05-13 00:00:00 (UTC)
  515. notAfter: utcTime (0)
  516. utcTime: 14-05-12 23:59:59 (UTC)
  517. subject: rdnSequence (0)
  518. rdnSequence: 3 items (id-at-commonName=Thawte SGC CA,id-at-organizationName=Thawte Consulting (Pty) Ltd.,id-at-countryName=ZA)
  519. RDNSequence item: 1 item (id-at-countryName=ZA)
  520. RelativeDistinguishedName item (id-at-countryName=ZA)
  521. Id: 2.5.4.6 (id-at-countryName)
  522. CountryName: ZA
  523. RDNSequence item: 1 item (id-at-organizationName=Thawte Consulting (Pty) Ltd.)
  524. RelativeDistinguishedName item (id-at-organizationName=Thawte Consulting (Pty) Ltd.)
  525. Id: 2.5.4.10 (id-at-organizationName)
  526. DirectoryString: printableString (1)
  527. printableString: Thawte Consulting (Pty) Ltd.
  528. RDNSequence item: 1 item (id-at-commonName=Thawte SGC CA)
  529. RelativeDistinguishedName item (id-at-commonName=Thawte SGC CA)
  530. Id: 2.5.4.3 (id-at-commonName)
  531. DirectoryString: printableString (1)
  532. printableString: Thawte SGC CA
  533. subjectPublicKeyInfo
  534. algorithm (rsaEncryption)
  535. Algorithm Id: 1.2.840.113549.1.1.1 (rsaEncryption)
  536. Padding: 0
  537. subjectPublicKey: 30818902818100d4d367d08d157faecd31fe7d1d91a13f0b...
  538. extensions: 7 items
  539. Extension (id-ce-basicConstraints)
  540. Extension Id: 2.5.29.19 (id-ce-basicConstraints)
  541. critical: True
  542. BasicConstraintsSyntax
  543. cA: True
  544. pathLenConstraint: 0
  545. Extension (id-ce-keyUsage)
  546. Extension Id: 2.5.29.15 (id-ce-keyUsage)
  547. Padding: 1
  548. KeyUsage: 06 (keyCertSign, cRLSign)
  549. 0... .... = digitalSignature: False
  550. .0.. .... = contentCommitment: False
  551. ..0. .... = keyEncipherment: False
  552. ...0 .... = dataEncipherment: False
  553. .... 0... = keyAgreement: False
  554. .... .1.. = keyCertSign: True
  555. .... ..1. = cRLSign: True
  556. .... ...0 = encipherOnly: False
  557. 0... .... = decipherOnly: False
  558. Extension (ns_cert_exts.cert_type)
  559. Extension Id: 2.16.840.1.113730.1.1 (ns_cert_exts.cert_type)
  560. Padding: 1
  561. CertType: 06 (ssl-ca, smime-ca)
  562. 0... .... = ssl-client: False
  563. .0.. .... = ssl-server: False
  564. ..0. .... = smime: False
  565. ...0 .... = object-signing: False
  566. .... 0... = reserved-for-future-use: False
  567. .... .1.. = ssl-ca: True
  568. .... ..1. = smime-ca: True
  569. .... ...0 = object-signing-ca: False
  570. Extension (id-ce-subjectAltName)
  571. Extension Id: 2.5.29.17 (id-ce-subjectAltName)
  572. GeneralNames: 1 item
  573. GeneralName: directoryName (4)
  574. directoryName: rdnSequence (0)
  575. rdnSequence: 1 item (id-at-commonName=PrivateLabel3-15)
  576. RDNSequence item: 1 item (id-at-commonName=PrivateLabel3-15)
  577. RelativeDistinguishedName item (id-at-commonName=PrivateLabel3-15)
  578. Id: 2.5.4.3 (id-at-commonName)
  579. DirectoryString: printableString (1)
  580. printableString: PrivateLabel3-15
  581. Extension (id-ce-cRLDistributionPoints)
  582. Extension Id: 2.5.29.31 (id-ce-cRLDistributionPoints)
  583. CRLDistPointsSyntax: 1 item
  584. DistributionPoint
  585. distributionPoint: fullName (0)
  586. fullName: 1 item
  587. GeneralName: uniformResourceIdentifier (6)
  588. uniformResourceIdentifier: http://crl.verisign.com/pca3.crl
  589. Extension (id-pe-authorityInfoAccessSyntax)
  590. Extension Id: 1.3.6.1.5.5.7.1.1 (id-pe-authorityInfoAccessSyntax)
  591. AuthorityInfoAccessSyntax: 1 item
  592. AccessDescription
  593. accessMethod: 1.3.6.1.5.5.7.48.1 (id-pkix.48.1)
  594. accessLocation: 6
  595. uniformResourceIdentifier: http://ocsp.thawte.com
  596. Extension (id-ce-extKeyUsage)
  597. Extension Id: 2.5.29.37 (id-ce-extKeyUsage)
  598. KeyPurposeIDs: 4 items
  599. KeyPurposeId: 1.3.6.1.5.5.7.3.1 (id-kp-serverAuth)
  600. KeyPurposeId: 1.3.6.1.5.5.7.3.2 (id-kp-clientAuth)
  601. KeyPurposeId: 2.16.840.1.113730.4.1 (joint-iso-itu-t.16.840.1.113730.4.1)
  602. KeyPurposeId: 2.16.840.1.113733.1.8.1 (joint-iso-itu-t.16.840.1.113733.1.8.1)
  603. algorithmIdentifier (shaWithRSAEncryption)
  604. Algorithm Id: 1.2.840.113549.1.1.5 (shaWithRSAEncryption)
  605. Padding: 0
  606. encrypted: 55ac63eadea1ddd2905f9f0bce76be13518f93d9052bc81b...
  607. TLSv1 Record Layer: Handshake Protocol: Server Key Exchange
  608. Content Type: Handshake (22)
  609. Version: TLS 1.0 (0x0301)
  610. Length: 203
  611. Handshake Protocol: Server Key Exchange
  612. Handshake Type: Server Key Exchange (12)
  613. Length: 199
  614. EC Diffie-Hellman Server Params
  615. curve_type: named_curve (0x03)
  616. named_curve: secp256r1 (0x0017)
  617. Pubkey Length: 65
  618. pubkey: 04960a2d6a2b1246fae3a7346abf7d48547fc2e0c071d807...
  619. Signature Length: 128
  620. signature: bf04000ed00157c6b6dcce963478429b13b703c08e8914af...
  621. TLSv1 Record Layer: Handshake Protocol: Server Hello Done
  622. Content Type: Handshake (22)
  623. Version: TLS 1.0 (0x0301)
  624. Length: 4
  625. Handshake Protocol: Server Hello Done
  626. Handshake Type: Server Hello Done (14)
  627. Length: 0
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!