Advertisement
ScottHelme

ECDSA OCSP Response

May 27th, 2016
324
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. scott@Middle-Earth:~$ echo QUIT | openssl s_client -cipher 'ECDHE-ECDSA-AES128-GCM-SHA256' -connect ecdsa.scotthelme.co.uk:443 -status
  2. CONNECTED(00000003)
  3. depth=1 C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
  4. verify error:num=20:unable to get local issuer certificate
  5. verify return:0
  6. OCSP response:
  7. ======================================
  8. OCSP Response Data:
  9. OCSP Response Status: successful (0x0)
  10. Response Type: Basic OCSP Response
  11. Version: 1 (0x0)
  12. Responder Id: C = US, O = Let's Encrypt, CN = Let's Encrypt Authority X3
  13. Produced At: May 25 00:05:00 2016 GMT
  14. Responses:
  15. Certificate ID:
  16. Hash Algorithm: sha1
  17. Issuer Name Hash: 7EE66AE7729AB3FCF8A220646C16A12D6071085D
  18. Issuer Key Hash: A84A6A63047DDDBAE6D139B7A64565EFF3A8ECA1
  19. Serial Number: 03DF883A976B71EC74AAEB9A8CAAAC2387B7
  20. Cert Status: good
  21. This Update: May 25 00:00:00 2016 GMT
  22. Next Update: Jun 1 00:00:00 2016 GMT
  23.  
  24. Signature Algorithm: sha256WithRSAEncryption
  25. 59:76:af:0b:d6:22:ea:4f:7f:57:e0:3b:5c:d2:6c:aa:25:ab:
  26. 33:e9:4f:58:d3:d4:fc:70:c2:39:5c:5a:eb:48:64:b1:e1:14:
  27. cc:22:9c:7f:58:2a:b4:26:86:63:7f:c5:74:90:ae:38:51:9b:
  28. d9:a2:ba:77:5d:c7:b8:4e:5b:4f:8b:4f:36:10:58:a9:a4:5e:
  29. 7f:7f:22:23:12:e9:f6:aa:f4:a9:9f:60:7d:d0:2c:6c:22:c8:
  30. 76:28:c1:85:ee:87:44:a9:1a:b0:0a:12:2e:2f:d9:ce:14:3c:
  31. b4:c6:04:ba:95:1d:09:5b:9d:81:4d:bc:9c:4d:db:0b:3f:f2:
  32. 27:f8:6c:3c:f0:aa:66:5d:bd:be:cb:38:8c:8f:3a:fa:08:50:
  33. 21:c2:84:fb:bc:eb:04:41:f0:a8:b9:d8:4c:0a:f9:44:78:4f:
  34. 39:89:a8:19:c8:f9:0e:e3:ed:5b:f5:8f:a5:f9:03:43:4c:84:
  35. 18:49:cd:97:bd:cb:42:41:03:79:e5:cd:c6:5b:41:7f:1f:c6:
  36. 8e:1d:79:ff:e1:41:92:cc:cb:eb:6e:a3:19:a6:a7:4d:a4:d5:
  37. c6:27:a9:14:67:56:17:f8:0c:a6:c0:5d:3d:45:b4:8f:de:75:
  38. 33:ff:25:f9:46:20:c0:31:27:40:c1:d8:fa:60:28:7c:c5:db:
  39. e3:33:36:cf
  40. ======================================
  41. ---
  42. Certificate chain
  43. 0 s:/CN=scotthelme.co.uk
  44. i:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  45. 1 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  46. i:/O=Digital Signature Trust Co./CN=DST Root CA X3
  47. 2 s:/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  48. i:/O=Digital Signature Trust Co./CN=DST Root CA X3
  49. ---
  50. Server certificate
  51. -----BEGIN CERTIFICATE-----
  52. MIIEZzCCA0+gAwIBAgISA4WkcAqj64nKdX6QFFcpIfE2MA0GCSqGSIb3DQEBCwUA
  53. MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
  54. ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA1MjQxNjE3MDBaFw0x
  55. NjA4MjIxNjE3MDBaMBsxGTAXBgNVBAMTEHNjb3R0aGVsbWUuY28udWswWTATBgcq
  56. hkjOPQIBBggqhkjOPQMBBwNCAASCKm6uKC+amuRGFOTtXo0Bh+nNIlbs5XsEVWaP
  57. 1Ly7igGeofm+tgvE7LcyHndWAWvNaXT2MmWE2DaIoQ81MZp8o4ICPzCCAjswDgYD
  58. VR0PAQH/BAQDAgeAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV
  59. HRMBAf8EAjAAMB0GA1UdDgQWBBSB4hotSU3n5hqucTUKcHtpoNypRTAfBgNVHSME
  60. GDAWgBSoSmpjBH3duubRObemRWXv86jsoTBwBggrBgEFBQcBAQRkMGIwLwYIKwYB
  61. BQUHMAGGI2h0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcvMC8GCCsG
  62. AQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzBJBgNV
  63. HREEQjBAghZlY2RzYS5zY290dGhlbG1lLmNvLnVrghBzY290dGhlbG1lLmNvLnVr
  64. ghR3d3cuc2NvdHRoZWxtZS5jby51azCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB
  65. 5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2Vu
  66. Y3J5cHQub3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5
  67. IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5
  68. IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5k
  69. IGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMA0GCSqGSIb3
  70. DQEBCwUAA4IBAQB5qz2EhCJwIGkKS0UGiEl8c+8Yuu2BLhrEl/AqtfHlv6Ow4ZKt
  71. RE5eufRZWy8VF6pXXutKPDmVbeLPx/Q3ln2PbSK2RHefPvd8bUEASOuMKoL70T5+
  72. MPPE7htQn70AoIbdzGFpL4ZfmcIokZs8RpQ8AeH/je8CgQnE3oQ+eKfgoQIPaMf/
  73. IgqhKg2cPDb0uqD814SNl0JenQZcT5iMmC1sSY5WgfveZg7RFu4td9BFGzRwhLrC
  74. qKEDVFIuT75xiJk5ASTGRYbBXxT2o9cjhGqjDqOJpxIaHP7eLl99w67ZC6r7o7q0
  75. dzhGfa8wgE4vbCx7BbHJiQI3gil32WbUkKvU
  76. -----END CERTIFICATE-----
  77. subject=/CN=scotthelme.co.uk
  78. issuer=/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3
  79. ---
  80. No client certificate CA names sent
  81. ---
  82. SSL handshake has read 4524 bytes and written 298 bytes
  83. ---
  84. New, TLSv1/SSLv3, Cipher is ECDHE-ECDSA-AES128-GCM-SHA256
  85. Server public key is 256 bit
  86. Secure Renegotiation IS supported
  87. Compression: NONE
  88. Expansion: NONE
  89. SSL-Session:
  90. Protocol : TLSv1.2
  91. Cipher : ECDHE-ECDSA-AES128-GCM-SHA256
  92. Session-ID: 92C7D7AF21368A058E7C8B874D1C533828B17F34652556E5665135E20CF43A9B
  93. Session-ID-ctx:
  94. Master-Key: 31671D575B521FEB1923FF0386ADFDA81EB597545B4C0C531B5261A9E3BAD88415C8FA6ADE2C100769636D178EB35DD8
  95. Key-Arg : None
  96. PSK identity: None
  97. PSK identity hint: None
  98. SRP username: None
  99. TLS session ticket lifetime hint: 600 (seconds)
  100. TLS session ticket:
  101. 0000 - 00 8b 7e 1c de 88 b3 7a-06 56 8e 2c af f7 68 ca ..~....z.V.,..h.
  102. 0010 - b1 19 e9 87 a9 98 fa 59-a6 e5 26 ef b3 94 f7 79 .......Y..&....y
  103. 0020 - 21 9e 7f 30 6b 8b db 9a-31 25 cf 15 0e 21 6e 24 !..0k...1%...!n$
  104. 0030 - 8a 58 30 fd 40 d2 bd 28-a6 49 c3 a8 d3 46 4f 7f .X0.@..(.I...FO.
  105. 0040 - 89 b4 58 90 76 e9 53 e9-e7 e7 f9 af 07 9a bf 73 ..X.v.S........s
  106. 0050 - de 55 0e 5e dd 82 76 08-b8 14 59 b8 82 21 a5 ff .U.^..v...Y..!..
  107. 0060 - 14 f9 d4 09 0b 97 09 04-95 4e e6 93 a7 64 71 52 .........N...dqR
  108. 0070 - e0 91 fa c2 1b 78 3b 22-bf 11 02 19 88 d8 b3 b4 .....x;"........
  109. 0080 - b1 91 3c c9 5b 3f 6e 67-6c a2 81 b5 e3 2d 13 83 ..<.[?ngl....-..
  110. 0090 - 26 bb fb 74 00 e5 19 af-15 0f d6 4b c8 3d fb f8 &..t.......K.=..
  111. 00a0 - 9a 8e 75 2d 3d f9 59 42-0d 2c 7e 91 02 39 50 ad ..u-=.YB.,~..9P.
  112.  
  113. Start Time: 1464256300
  114. Timeout : 300 (sec)
  115. Verify return code: 20 (unable to get local issuer certificate)
  116. ---
  117. DONE
Advertisement
RAW Paste Data Copied
Advertisement