#openssl
openssl s_client -connect domain:port -tls1
옵션 | 설명 |
-tls1_2 | just use TLSv1.2 |
-tls1_1 | just use TLSv1.1 |
-tls1 | just use TLSv1 |
-dtls1 | just use DTLSv1 |
#웹
https://www.cdn77.com/tls-test
예시 > openssl s_client -connect google.com:443 -tls1
CONNECTED(00000005)
depth=2 OU = GlobalSign Root CA - R2, O = GlobalSign, CN = GlobalSign
verify return:1
depth=1 C = US, O = Google Trust Services, CN = GTS CA 1O1
verify return:1
depth=0 C = US, ST = California, L = Mountain View, O = Google LLC, CN = *.google.com
verify return:1
---
Certificate chain
0 s:/C=US/ST=California/L=Mountain View/O=Google LLC/CN=*.google.com
i:/C=US/O=Google Trust Services/CN=GTS CA 1O1
1 s:/C=US/O=Google Trust Services/CN=GTS CA 1O1
i:/OU=GlobalSign Root CA - R2/O=GlobalSign/CN=GlobalSign
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=California/L=Mountain View/O=Google LLC/CN=*.google.com
issuer=/C=US/O=Google Trust Services/CN=GTS CA 1O1
---
No client certificate CA names sent
Server Temp Key: ECDH, X25519, 253 bits
---
SSL handshake has read 4435 bytes and written 219 bytes
---
New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES128-SHA
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1
Cipher : ECDHE-RSA-AES128-SHA
Session-ID: 027A1F0F269734675A5679A42812313BCFF78681902EB4F8587B16CDE682EBAF
Session-ID-ctx:
Master-Key: 6079AEC5AFAA41D08E380C64F28A6F13BCB70A2B1774F814EB13841A02EC7A3E120FE24C547C814E6714ED17C9BF6FC2
TLS session ticket lifetime hint: 100800 (seconds)
TLS session ticket:
0000 - 01 55 47 f5 e3 80 dc bc-06 e3 27 72 b0 ee f2 3d .UG.......'r...=
0010 - 21 7f b2 de 1f fb 33 ce-11 e6 96 cb e5 56 9d c5 !.....3......V..
0020 - c7 68 45 1b db c1 50 ee-2d fa 69 b7 ab 7b e1 31 .hE...P.-.i..{.1
0030 - b4 6d e1 6f 34 55 72 87-38 d6 10 74 0b 76 76 ad .m.o4Ur.8..t.vv.
0040 - 42 40 a0 9c 83 41 be ce-a2 36 b2 2b 51 c3 36 89 B@...A...6.+Q.6.
0050 - 37 8a d6 48 0f db 5e f3-e8 21 be 99 20 50 ad ad 7..H..^..!.. P..
0060 - c1 01 a3 e9 c5 66 c7 61-3e a4 dd 36 e7 9d b1 98 .....f.a>..6....
0070 - fc 21 49 c6 83 ac 9c b7-fb 49 a5 cb a0 ff 78 0c .!I......I....x.
0080 - f4 c6 02 bc f7 c4 ea f6-33 b2 54 43 de fb c6 ab ........3.TC....
0090 - ae 8e 29 34 af 93 a2 d9-c9 d6 93 4b 2b 2a c9 c9 ..)4.......K+*..
00a0 - d6 f2 27 4a f0 43 3c 86-46 38 c1 0c b8 5c 01 37 ..'J.C<.F8...\.7
00b0 - ab 64 e2 6d 1e f5 3b 94-f3 0a d1 13 29 e4 0d d0 .d.m..;.....)...
00c0 - fc fd bd d4 55 10 df 31-5b b5 42 7e 75 b3 23 3b ....U..1[.B~u.#;
00d0 - 78 06 0f 7c ec ca 15 af-6a ce f0 8b 74 x..|....j...t
Start Time: 1614922454
Timeout : 7200 (sec)
Verify return code: 0 (ok)
---
'Development' 카테고리의 다른 글
openssl로 인증서 확인하기 (0) | 2021.03.05 |
---|
댓글