midrange.com code scratchpad
Name:
openssl test
Scriptlanguage:
Plain Text
Tabwidth:
4
Date:
09/16/2019 11:01:28 pm
IP:
Logged
Description:
2019-09-16
RE: 7.4 ssl issue
Code:
  1. $
  2. openssl s_client -connect suppliers.redacted.com:443
  3. CONNECTED(00000003)
  4. depth=1 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert SHA2 High Assurance Server CA
  5. verify error:num=20:unable to get local issuer certificate
  6. ---
  7. Certificate chain
  8.  0 s:/C=US/ST=Michigan/L=Grand Rapids/O=redacted Inc./CN=*.redacted.com
  9.    i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 High Assurance Server CA
  10.  1 s:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 High Assurance Server CA
  11.    i:/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA
  12. ---
  13. Server certificate
  14. -----BEGIN CERTIFICATE-----
  15. redacted
  16. -----END CERTIFICATE-----
  17. subject=/C=US/ST=Michigan/L=Grand Rapids/O=redacted Inc./CN=*.redacted.com
  18. issuer=/C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert SHA2 High Assurance Server CA
  19. ---
  20. Acceptable client certificate CA names
  21. /C=US/O=redacted Inc./CN=redacted Global Root CA v3
  22. /C=US/O=redacted Inc./CN=redacted Global Root CA v4
  23. /C=US/ST=CA/L=Santa Clara/O=www.zscaler.com/OU=Zscaler Inc./CN=Zscaler
  24. /CN=redacted Global Root CA v5
  25. /C=US/ST=California/L=Sunnyvale/O=Zscaler Inc./OU=zscaler.net/CN=Zscaler Inc. Root CA/emailAddress=support@zscaler.com
  26. /C=US/ST=Mi/L=Grand Rapids/O=redacted Inc./OU=scs/CN=grrapxfa01_root
  27. /C=SE/O=AddTrust AB/OU=AddTrust External TTP Network/CN=AddTrust External CA Root
  28. /C=US/O=GeoTrust Inc./OU=(c) 2008 GeoTrust Inc. - For authorized use only/CN=GeoTrust Primary Certification Authority - G3
  29. /C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Assured ID Root CA
  30. /C=US/O=The Go Daddy Group, Inc./OU=Go Daddy Class 2 Certification Authority
  31. /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2008 VeriSign, Inc. - For authorized use only/CN=VeriSign Universal Root Cer
  32. tification Authority
  33. /C=IL/O=StartCom Ltd./OU=Secure Digital Certificate Signing/CN=StartCom Certification Authority
  34. /C=US/O=VeriSign, Inc./OU=VeriSign Trust Network/OU=(c) 2006 VeriSign, Inc. - For authorized use only/CN=VeriSign Class 3 Public Pri
  35. mary Certification Authority - G5
  36. /C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert High Assurance EV Root CA
  37. /C=US/O=VeriSign, Inc./OU=Class 3 Public Primary Certification Authority
  38. /OU=GlobalSign Root CA - R2/O=GlobalSign/CN=GlobalSign
  39. /C=US/O=GTE Corporation/OU=GTE CyberTrust Solutions, Inc./CN=GTE CyberTrust Global Root
  40. /C=US/O=DigiCert Inc/OU=www.digicert.com/CN=DigiCert Global Root CA
  41. /C=US/O=Starfield Technologies, Inc./OU=Starfield Class 2 Certification Authority
  42. /C=BE/O=GlobalSign nv-sa/OU=Root CA/CN=GlobalSign Root CA
  43. /C=US/O=Entrust, Inc./OU=www.entrust.net/CPS is incorporated by reference/OU=(c) 2006 Entrust, Inc./CN=Entrust Root Certification Au
  44. thority
  45. /C=IE/O=Baltimore/OU=CyberTrust/CN=Baltimore CyberTrust Root
  46. /O=Digital Signature Trust Co./CN=DST Root CA X3
  47. /C=US/O=GeoTrust Inc./CN=GeoTrust Global CA
  48. /C=US/O=thawte, Inc./OU=Certification Services Division/OU=(c) 2008 thawte, Inc. - For authorized use only/CN=thawte Primary Root CA
  49.  - G3
  50. /C=US/O=redacted Inc./OU=D16/CN=sapd16db.redacted.net
  51. /C=DE/O=SAP Trust Community/OU=SAP Web AS/OU=I0020264903/CN=sapd0221.redacted.net
  52. /CN=grrapiap538.na.redacted.net
  53. /C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/CN=Microsoft Root Certificate Authority 2010
  54. /O=Symantec Corporation/CN=Symantec Root CA
  55. /C=US/ST=Washington/L=Redmond/O=Microsoft Corporation/CN=Microsoft Root Certificate Authority 2011
  56. /OU=Copyright (c) 1997 Microsoft Corp./OU=Microsoft Corporation/CN=Microsoft Root Authority
  57. /C=US/O=Symantec Corporation/CN=Symantec Root 2005 CA
  58. /DC=com/DC=microsoft/CN=Microsoft Root Certificate Authority
  59. /C=US/ST=NY/L=New York/O=DesignTex/OU=IS/CN=secapiap03
  60. /C=DE/O=SAP Trust Community/OU=SAP Web AS/OU=I0020264903/CN=sapd02.redacted.com
  61. /C=DE/O=SAP Trust Community/OU=SAP Web AS/OU=I0020882513/CN=sapd1721.redacted.net
  62. /O=app-server/OU=ssl-enabled-server/CN=localhost
  63. /CN=NT AUTHORITY
  64. Client Certificate Types: RSA sign, DSA sign, ECDSA sign
  65. Requested Signature Algorithms: RSA+SHA512:ECDSA+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA1:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA1:DSA+SHA1
  66. Shared Requested Signature Algorithms: RSA+SHA512:ECDSA+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA1:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA1:D
  67. SA+SHA1
  68. Peer signing digest: SHA1
  69. Server Temp Key: ECDH, P-521, 521 bits
  70. ---
  71. SSL handshake has read 7488 bytes and written 568 bytes
  72. ---
  73. New, TLSv1/SSLv3, Cipher is ECDHE-RSA-AES256-SHA384
  74. Server public key is 2048 bit
  75. Secure Renegotiation IS supported
  76. Compression: NONE
  77. Expansion: NONE
  78. No ALPN negotiated
  79. SSL-Session:
  80.     Protocol  : TLSv1.2
  81.     Cipher    : ECDHE-RSA-AES256-SHA384
  82.     Session-ID: 6F030000677FBA526FE31449C56B48956CC07C3F96818E5AF7805C98A58D6C10
  83.     Session-ID-ctx:
  84.     Master-Key: 6184B0A67907BF4BDA621827AEE2D1EBC1A8F1609B95B1D5ACB0D8CF0A28E9C607F7C32E0198CFE51EBB3CCAD14958DD
  85.     Key-Arg   : None
  86.     PSK identity: None
  87.     PSK identity hint: None
  88.     SRP username: None
  89.     Start Time: 1568674481
  90.     Timeout   : 300 (sec)
  91.     Verify return code: 20 (unable to get local issuer certificate)
  92. ---
  93.  
© 2004-2019 by midrange.com generated in 0.007s valid xhtml & css