API tools faq
paste
Tiran

Untitled

Tiran
Jan 20th, 2016
231
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 2.98 KB | None | 0 0
raw download clone embed print report
  1. $ openssl x509 -in DigiCertHighAssuranceEVRootCA.pem -out DigiCertHighAssuranceEVRootCA_rejectServerAuth.pem -addreject serverAuth
  2. $ openssl s_client -connect pypi.python.org:443 -CAfile DigiCertHighAssuranceEVRootCA_rejectServerAuth.pem -verify_return_error
  3. CONNECTED(00000003)
  4. depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert High Assurance EV Root CA
  5. verify error:num=28:certificate rejected
  6. ---
  7. Certificate chain
  8. 0 s:/businessCategory=Private Organization/jurisdictionC=US/jurisdictionST=Delaware/serialNumber=3359300/street=16 Allen Rd/postalCode=03894-4801/C=US/ST=NH/L=Wolfeboro,/O=Python Software Foundation/CN=www.python.org
  9. i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 Extended Validation Server CA
  10. 1 s:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 Extended Validation Server CA
  11. i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA
  12. ---
  13. ...
  14. subject=/businessCategory=Private Organization/jurisdictionC=US/jurisdictionST=Delaware/serialNumber=3359300/street=16 Allen Rd/postalCode=03894-4801/C=US/ST=NH/L=Wolfeboro,/O=Python Software Foundation/CN=www.python.org
  15. issuer=/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 Extended Validation Server CA
  16. ---
  17. No client certificate CA names sent
  18. Peer signing digest: SHA512
  19. Server Temp Key: ECDH, P-256, 256 bits
  20. ---
  21. SSL handshake has read 4016 bytes and written 327 bytes
  22. ---
  23. New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-GCM-SHA256
  24. Server public key is 2048 bit
  25. Secure Renegotiation IS supported
  26. Compression: NONE
  27. Expansion: NONE
  28. No ALPN negotiated
  29. SSL-Session:
  30. Protocol : TLSv1.2
  31. Cipher : ECDHE-RSA-AES128-GCM-SHA256
  32. Session-ID: 159CFA42F2590AF5CC29FDEFB7903E7C1A39C805A660A455EF1C0043A06C13C9
  33. Session-ID-ctx:
  34. Master-Key: ADBC704BFC0D01A33CAA75CD66BD3787DFFCAE9F02ACCDE2577DB761460A836972B91D6D8202081A18CA41E05FE7EF01
  35. Key-Arg : None
  36. Krb5 Principal: None
  37. PSK identity: None
  38. PSK identity hint: None
  39. TLS session ticket lifetime hint: 1200 (seconds)
  40. TLS session ticket:
  41. 0000 - 63 cc 77 4a 00 db 2c 42-2e 8f 76 23 dd a9 ae 53 c.wJ..,B..v#...S
  42. 0010 - c2 3a 77 60 e4 cd c6 d5-ca d0 85 e3 ed 7b 1d 60 .:w`.........{.`
  43. 0020 - 54 e2 32 a8 e8 02 e2 71-19 58 bd 7f 13 52 49 56 T.2....q.X...RIV
  44. 0030 - 80 35 52 47 33 0b e1 64-1d f8 17 cc d7 4b b8 fd .5RG3..d.....K..
  45. 0040 - b3 41 ec ef 30 fc b2 e7-e5 c3 1d 28 62 dd 42 69 .A..0......(b.Bi
  46. 0050 - a2 ce 47 3e c2 b4 64 c1-a4 23 5f a0 85 0f 1a cb ..G>..d..#_.....
  47. 0060 - de 76 cd ec c0 7f ec 09-df f9 07 b0 6d bc 82 0b .v..........m...
  48. 0070 - 9c 48 63 52 81 b2 f7 28-ed c7 56 d6 51 09 22 78 .HcR...(..V.Q."x
  49. 0080 - ed e4 71 ca e0 6b a7 e6-85 51 55 11 8a d9 c2 df ..q..k...QU.....
  50. 0090 - cd 7d cd b8 b0 1c b4 aa-e6 30 50 6f 6c 3d cd 32 .}.......0Pol=.2
  51.  
  52. Start Time: 1453288811
  53. Timeout : 300 (sec)
  54. Verify return code: 28 (certificate rejected)
  55. ---
  56. ^C
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!