• openssl s_client -connect twitter.com:443
• openssl s_client -connect twitter.com:443 -CAfile certdata.crt
Copy the part beginning with ––-BEGIN CERTIFICATE––- up to ––-END CERTIFICATE––- into a file twitter.com.cert. Then issue the following command: openssl x509 -in twitter.com.cert
-text. The result is a text representation of the certificate content.
sample ssl certificate
twitter.com
Identity: twitter.com
Verified by: VeriSign Class 3 Extended Validation SSL CA
Expires: 10/05/14
Subject Name
1.3.6.1.4.1.311.60.2.1.3: #13025553
1.3.6.1.4.1.311.60.2.1.2: #130844656C6177617265
2.5.4.15: #131450726976617465204F7267616E697A6174696F6E
serialNumber (Serial Number): 4337446
C (Country): US
2.5.4.17: #14053934313037
ST (State): California
L (Locality): San Francisco
STREET (Street): 795 Folsom St, Suite 600
O (Organization): Twitter, Inc.
OU (Organizational Unit): Twitter Security
CN (Common Name): twitter.com
Issuer Name
C (Country): US
O (Organization): VeriSign, Inc.
OU (Organizational Unit): VeriSign Trust Network
OU (Organizational Unit): Terms of use at https://www.verisign.com/rpa (c)06
CN (Common Name): VeriSign Class 3 Extended Validation SSL CA
Issued Certificate
Version: 3
Serial Number: 1E 22 C7 37 A3 91 5E 3F AB 65 C4 B5 A4 1C AE 46
Not Valid Before: 2012-04-10
Not Valid After: 2014-05-10
Certificate Fingerprints
SHA1: C3 1F 6D 53 92 F2 CB 48 0A 42 79 8C 1F BE 70 82 1D D8 82 51
MD5: 27 74 1B 9F 5E D4 67 0B FD FD ED 49 5A AE AF 8F
Public Key Info
Key Algorithm: RSA
Key Parameters: 05 00
Key Size: 2048
Key SHA1 Fingerprint: DA 05 9C 75 A6 AE 93 54 48 CB F9 FA 24 15 83 30 63 74 F8 B0
Public Key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
Subject Alternative Names
DNS: www.twitter.com
DNS: twitter.com
Critical: No
Basic Constraints
Certificate Authority: No
Max Path Length: Unlimited
Critical: No
Subject Key Identifier
Key Identifier: B5 78 90 46 79 AF 6E E7 5D 40 48 C4 47 C6 F0 E0 28 C1 31 84
Critical: No
Key Usage
Usages: Digital signature
Key encipherment
Critical: No
Extension
Identifier: 2.5.29.31
Value: 30 39 30 37 A0 35 A0 33 86 31 68 74 74 70 3A 2F 2F 45 56 53 65 63 75 72 65 2D 63 72 6C 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D 2F 45 56 53 65 63 75 72 65 32 30 30 36 2E 63 72 6C
Critical: No
Extension
Identifier: 2.5.29.32
Value: 30 3B 30 39 06 0B 60 86 48 01 86 F8 45 01 07 17 06 30 2A 30 28 06 08 2B 06 01 05 05 07 02 01 16 1C 68 74 74 70 73 3A 2F 2F 77 77 77 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D 2F 72 70 61
Critical: No
Extended Key Usage
Allowed Purposes: Server Authentication
Client Authentication
Critical: No
Extension
Identifier: 2.5.29.35
Value: 30 16 80 14 FC 8A 50 BA 9E B9 25 5A 7B 55 85 4F 95 00 63 8F E9 58 6B 43
Critical: No
Extension
Identifier: 1.3.6.1.5.5.7.1.1
Value: 30 6E 30 2D 06 08 2B 06 01 05 05 07 30 01 86 21 68 74 74 70 3A 2F 2F 45 56 53 65 63 75 72 65 2D 6F 63 73 70 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D 30 3D 06 08 2B 06 01 05 05 07 30 02 86 31 68 74 74 70 3A 2F 2F 45 56 53 65 63 75 72 65 2D 61 69 61 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D 2F 45 56 53 65 63 75 72 65 32 30 30 36 2E 63 65 72
Critical: No
Extension
Identifier: 1.3.6.1.5.5.7.1.12
Value: 30 60 A1 5E A0 5C 30 5A 30 58 30 56 16 09 69 6D 61 67 65 2F 67 69 66 30 21 30 1F 30 07 06 05 2B 0E 03 02 1A 04 14 4B 6B B9 28 96 06 0C BB D0 52 38 9B 29 AC 4B 07 8B 21 05 18 30 26 16 24 68 74 74 70 3A 2F 2F 6C 6F 67 6F 2E 76 65 72 69 73 69 67 6E 2E 63 6F 6D 2F 76 73 6C 6F 67 6F 31 2E 67 69 66
Critical: No
Signature
Signature Algorithm: SHA1 with RSA
Signature Parameters: 05 00
Signature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
No comments:
Post a Comment