Advertisement
ScottHelme

RSA OCSP Response

May 27th, 2016
313
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. scott@Middle-Earth:~$ echo QUIT | openssl s_client -cipher 'ECDHE-RSA-AES128-GCM-SHA256' -connect ecdsa.scotthelme.co.uk:443 -status
  2. CONNECTED(00000003)
  3. depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
  4. verify error:num=20:unable to get local issuer certificate
  5. verify return:0
  6. OCSP response:
  7. ======================================
  8. OCSP Response Data:
  9. OCSP Response Status: successful (0x0)
  10. Response Type: Basic OCSP Response
  11. Version: 1 (0x0)
  12. Responder Id: C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
  13. Produced At: May 25 00:05:00 2016 GMT
  14. Responses:
  15. Certificate ID:
  16. Hash Algorithm: sha1
  17. Issuer Name Hash: 7EE66AE7729AB3FCF8A220646C16A12D6071085D
  18. Issuer Key Hash: A84A6A63047DDDBAE6D139B7A64565EFF3A8ECA1
  19. Serial Number: 03DF883A976B71EC74AAEB9A8CAAAC2387B7
  20. Cert Status: good
  21. This Update: May 25 00:00:00 2016 GMT
  22. Next Update: Jun 1 00:00:00 2016 GMT
  23.  
  24. Signature Algorithm: sha256WithRSAEncryption
  25. 59:76:af:0b:d6:22:ea:4f:7f:57:e0:3b:5c:d2:6c:aa:25:ab:
  26. 33:e9:4f:58:d3:d4:fc:70:c2:39:5c:5a:eb:48:64:b1:e1:14:
  27. cc:22:9c:7f:58:2a:b4:26:86:63:7f:c5:74:90:ae:38:51:9b:
  28. d9:a2:ba:77:5d:c7:b8:4e:5b:4f:8b:4f:36:10:58:a9:a4:5e:
  29. 7f:7f:22:23:12:e9:f6:aa:f4:a9:9f:60:7d:d0:2c:6c:22:c8:
  30. 76:28:c1:85:ee:87:44:a9:1a:b0:0a:12:2e:2f:d9:ce:14:3c:
  31. b4:c6:04:ba:95:1d:09:5b:9d:81:4d:bc:9c:4d:db:0b:3f:f2:
  32. 27:f8:6c:3c:f0:aa:66:5d:bd:be:cb:38:8c:8f:3a:fa:08:50:
  33. 21:c2:84:fb:bc:eb:04:41:f0:a8:b9:d8:4c:0a:f9:44:78:4f:
  34. 39:89:a8:19:c8:f9:0e:e3:ed:5b:f5:8f:a5:f9:03:43:4c:84:
  35. 18:49:cd:97:bd:cb:42:41:03:79:e5:cd:c6:5b:41:7f:1f:c6:
  36. 8e:1d:79:ff:e1:41:92:cc:cb:eb:6e:a3:19:a6:a7:4d:a4:d5:
  37. c6:27:a9:14:67:56:17:f8:0c:a6:c0:5d:3d:45:b4:8f:de:75:
  38. 33:ff:25:f9:46:20:c0:31:27:40:c1:d8:fa:60:28:7c:c5:db:
  39. e3:33:36:cf
  40. ======================================
  41. ---
  42. Certificate chain
  43. 0 s:/CN=scotthelme.co.uk
  44. i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  45. 1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  46. i:/O=Digital Signature Trust Co./CN=DST Root CA X3
  47. 2 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  48. i:/O=Digital Signature Trust Co./CN=DST Root CA X3
  49. ---
  50. Server certificate
  51. -----BEGIN CERTIFICATE-----
  52. MIIGdzCCBV+gAwIBAgISA9+IOpdrcex0quuajKqsI4e3MA0GCSqGSIb3DQEBCwUA
  53. MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
  54. ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA0MzAyMzAwMDBaFw0x
  55. NjA3MjkyMzAwMDBaMBsxGTAXBgNVBAMTEHNjb3R0aGVsbWUuY28udWswggIiMA0G
  56. CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC/pIu/3B1clN5GjZoicAEqz/wKEoGN
  57. Hpt3PcPC5FhCISQTSXCU/66bRys6yxjvnJMBNobIYlgzmGNRzpioQqNl4X+QJJA2
  58. qjfQUYO+2QhUoxYVEXPUIjKAHgB52Od5NYTpW+0q089caZankodhcQhC23viSeLM
  59. YgdKG3sEdaL7+zJuNdgZhxg6jvb2GXMGQNRRSL10RHR6f6R2S5zWUHBjXLHOJX9u
  60. PrwfDLHnZGelXpWiYy5bM2Y6tXSxllKxkBi6HwHhrGwh8P6jOO4uFFoFiv43UBFe
  61. k1tgWreDLPZggEnWHzOLOhABWDriIE192Awa39yNxcBj5Yyys+Z0IF8QYbQsGzG8
  62. qqMYqn0h5Vd9eT8wa2KorB1FNrRGORpkG1P1WSjEWvaLH0LFkHhvJmNEufYE7uTl
  63. zJnZsZyy1pMyXCylXfPdmDfb2tx0WeiSqPL/G+EDVGc5lEgq/K0bgTrQUqoafe1m
  64. s7wlIa2BPqtbSdtkJ8nrJgvnzBuXHs0qf1TLTmMjn8/lQJdjDFx0I8tAtEko2DQb
  65. C6O++xxRvBJ5Py8UDf8ycoFVD0hsf9RXpeZxZfU2Qn9WEkVnNiBC6ZlbEX/YDaBx
  66. K2yb7s1RV4HO77TOxhSxQRrneFfmRZSkjmh7GMTsw4ZCrcWPR4cTU2s1YiPGmrBL
  67. PMgvfo0DpsZeQQIDAQABo4IChDCCAoAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW
  68. MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTV
  69. HTl98kIQzpO9fthz10g1jUr/FjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv
  70. 86jsoTBwBggrBgEFBQcBAQRkMGIwLwYIKwYBBQUHMAGGI2h0dHA6Ly9vY3NwLmlu
  71. dC14My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p
  72. bnQteDMubGV0c2VuY3J5cHQub3JnLzCBjQYDVR0RBIGFMIGCghBzY290dGhlbG1l
  73. LmNvLnVrgg5zY290dGhlbG1lLmNvbYIac3Ryb25nc3NsLnNjb3R0aGVsbWUuY28u
  74. dWuCGHdlYWtzc2wuc2NvdHRoZWxtZS5jby51a4IUd3d3LnNjb3R0aGVsbWUuY28u
  75. dWuCEnd3dy5zY290dGhlbG1lLmNvbTCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB
  76. 5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2Vu
  77. Y3J5cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5
  78. IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5
  79. IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5k
  80. IGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3
  81. DQEBCwUAA4IBAQBQv9MlNU9MgjiwwNP12zyKoQIKdNf/uroR7bAzCcf64pGhrV8n
  82. EmkQLbpE3yOctT8NVV3TcyaV5re2MZ6zE1cYgSQB0IWdcsp3slLPXa1TMebST8cg
  83. JNsqiSLkR8q+h0Ff8Pma1Wl20Rb3OrjjR2SGtM6xbEDj9Z/wxyvQpVOacpQAhzHJ
  84. O1aN24EGJ7QXdweA+3ObYHpFkEJ+j98bBroBAWG28npxsClrj6ZlSoogyFzTJc2t
  85. EPxGsZTDiTkisDPHlj8VAm3/hm6DpwK3s3vzXaTlahVzYPcVvNZ9eKauufjf8GcT
  86. LXMa2N0neG/7N38l/MY154an/+N/6myxbdfy
  87. -----END CERTIFICATE-----
  88. subject=/CN=scotthelme.co.uk
  89. issuer=/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  90. ---
  91. No client certificate CA names sent
  92. ---
  93. SSL handshake has read 5493 bytes and written 298 bytes
  94. ---
  95. New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256
  96. Server public key is 4096 bit
  97. Secure Renegotiation IS supported
  98. Compression: NONE
  99. Expansion: NONE
  100. SSL-Session:
  101. Protocol : TLSv1.2
  102. Cipher : ECDHE-RSA-AES128-GCM-SHA256
  103. Session-ID: 1092BE2A73315E7AB99AE0428F0602293F1D89EBB80487930C2E848FCEDB0CD2
  104. Session-ID-ctx:
  105. Master-Key: 03D2A94D02C3A7755E025D471068865383C271B9AC97B38A08F69E8F0674D3A34285C5F5F1A9AC0377EDA111E9D44BD1
  106. Key-Arg : None
  107. PSK identity: None
  108. PSK identity hint: None
  109. SRP username: None
  110. TLS session ticket lifetime hint: 600 (seconds)
  111. TLS session ticket:
  112. 0000 - 00 8b 7e 1c de 88 b3 7a-06 56 8e 2c af f7 68 ca ..~....z.V.,..h.
  113. 0010 - 8d 29 0e 20 7e fc e3 b1-64 31 3d f1 f1 87 c0 53 .). ~...d1=....S
  114. 0020 - 5f 58 6d 1d 87 0f 6f 1d-4b ea 03 76 7a aa e9 ee _Xm...o.K..vz...
  115. 0030 - 05 3f 97 98 64 8b 6e 9d-8b a1 b8 a0 16 74 98 0b .?..d.n......t..
  116. 0040 - 13 d7 90 c2 3a 12 d7 a2-93 2d eb e0 e1 b8 df 27 ....:....-.....'
  117. 0050 - 2f 44 08 68 e5 f4 0f 83-bb 00 7f 61 51 ea 9e 7a /D.h.......aQ..z
  118. 0060 - eb b3 39 c7 f0 a3 01 71-e2 6f ab 78 af 69 1a 44 ..9....q.o.x.i.D
  119. 0070 - 0b 99 f0 d4 ce ff 9e 92-47 37 5b ec a6 4c ef 2c ........G7[..L.,
  120. 0080 - 3c a8 6f 62 bb de 2e ec-b7 2d 05 81 52 f0 f4 a7 <.ob.....-..R...
  121. 0090 - 89 e3 7f 31 30 24 60 7f-9b 49 09 db e3 4b a4 4f ...10$`..I...K.O
  122. 00a0 - 43 6e 41 5a 34 19 e6 26-02 91 b7 93 63 af c3 7b CnAZ4..&....c..{
  123.  
  124. Start Time: 1464256328
  125. Timeout : 300 (sec)
  126. Verify return code: 20 (unable to get local issuer certificate)
  127. ---
  128. DONE
Advertisement
RAW Paste Data Copied
Advertisement