TLS 1.3 Connection Test Server at tls13.1d.pw

Successfully connected

TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;

Detailed description:

v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)

HelloRetryRequest used to (re)negotiate DH group
	First ClientHello, key shares:	0x001D
	Second ClientHello, key shares:	0x0017

CRYPTO_CONTEXT

	Protocol version: 0x0304
	Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
	Key exchange: 0x0017 (Secp256r1)

	(Handshake level)
	Handshake secrets:
		Client: 0x4EFFA90B6D961F47A1F6A35FFDC646D775143CBCD310E3302A846B90DF3375A7
		Server: 0xABE4B1B7280CD8D559B4967C6E7E6F7D38C0C1604C5E1CB94965898D4D7B23A2
	Handshake keys:
		Client write: 0x2A8CE09C80AFF08C4596C753AC09E7A2
		Server write: 0xDFC4A7DF2281ACDE5E5CDBC3F7368ABB
	Handshake IVs:
		Client write (IV): 0x0B7DCED066ADA33AF520B2BD
		Server write (IV): 0xAE88B2136619897A70890C6D

	(Traffic level)
	Traffic secrets:
		Client: 0x0F2EC55A2E7831CED2007A1EE19178109616A8BFAE22B7777E086517B715E020
		Server: 0x0487AA7F5BC20CA169F71095C5D7E3A8291AE5F861347ACA9B9BE6547FF40A6F
		KeyUpdates log, server:
			0: 0xBB3F727993BCD35A040EC5F3DF8ABBAC3E7422A5920790CF3F688FE287669737
	Traffic keys:
		Client write: 0x90A9815F50D3B1243D5D9310FD58F007
		Server write: 0xF6BF30991B3C6FE87F9DBE5B39CFAA70
		KeyUpdates log, server:
			0: 0xA640947A31FE40151260D931DCFE7952
	Traffic base IVs:
		Client write (base IV): 0x3005931F5EB5BA3C6CD04B6F
		Server write (base IV): 0xA140BF00EDF27573672DEDF7
		KeyUpdates log, server:
			0: 0x7EAB28DC83304646FFE2353F

--- Messages ---

CLIENT_HELLO (recieved)

	Version: 0x0303
	Cipher suites:
		0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
		0xCCA8,0x00FF
	Client Random: 3A:9E:46:EC:59:BE:37:5B:08:98:EB:9A:26:34:BD:D3:D3:7D:1E:88:92:35:8F:80:5F:9D:32:52:32:FA:A1:3D
	Client SessionID: 36:9A:7B:97:22:AA:27:2E:63:62:BB:B1:2C:A5:FA:C2:E6:06:36:C9:F5:17:93:38:A4:54:A1:5C:B8:22:42:D6
	Extensions:
		Type: 51 (0x0033); "key_share"
			X25519 (0x001D)
				x = 0x5D038BF09618F02F763A40F18BDDFF4DACC121589C95A7D9B7372CC3384CA236
		Type: 11 (0x000B); /non-TLS-1.3/
			01:00
		Type: 35 (0x0023); /non-TLS-1.3/
		Type: 45 (0x002D); "psk_key_exchange_modes"
			01:01
		Type: 16 (0x0010); "application_layer_protocol_negotiation"
			68:32 (HTTP/2/TLS)
			68:74:74:70:2F:31:2E:31 (HTTP/1.1)
		Type: 23 (0x0017); /non-TLS-1.3/
		Type: 10 (0x000A); "supported_groups"
			0x001D (X25519)
			0x0017 (Secp256r1)
			0x0018 (Secp384r1)
		Type: 43 (0x002B); "supported_versions"
			0x0304 (TLS 1.3)
			0x0303 (TLS 1.2)
		Type: 13 (0x000D); "signature_algorithms"
			0x0503 (ECDSA_SECP384R1_SHA384)
			0x0403 (ECDSA_SECP256R1_SHA256)
			0x0807 (ED25519)
			0x0806 (RSA_PSS_RSAE_SHA512)
			0x0805 (RSA_PSS_RSAE_SHA384)
			0x0804 (RSA_PSS_RSAE_SHA256)
			0x0601 (RSA_PKCS1_SHA512)
			0x0501 (RSA_PKCS1_SHA384)
			0x0401 (RSA_PKCS1_SHA256)
		Type: 05 (0x0005); "status_request"
			01:00:00:00:00
		Type: 00 (0x0000); "server_name"
			00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
			hostname: tls13.1d.pw

HELLO_RETRY_REQUEST (sent, server)

	Legacy Version: 0x0303
	Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
	HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
	SessionID: 36:9A:7B:97:22:AA:27:2E:63:62:BB:B1:2C:A5:FA:C2:E6:06:36:C9:F5:17:93:38:A4:54:A1:5C:B8:22:42:D6
	Extensions:
		Type: 51 (0x0033); "key_share"
			Secp256r1 (0x0017)
		Type: 44 (0x002C); "cookie"
			00:08:0C:00:FE:E1:C0:DE:FA:57
		Type: 43 (0x002B); "supported_versions"
			0x0304

[Legacy ChangeCipherSpec message sent (server)]

[Legacy ChangeCipherSpec message present (client)]

CLIENT_HELLO (recieved)

	Version: 0x0303
	Cipher suites:
		0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
		0xCCA8,0x00FF
	Client Random: 3A:9E:46:EC:59:BE:37:5B:08:98:EB:9A:26:34:BD:D3:D3:7D:1E:88:92:35:8F:80:5F:9D:32:52:32:FA:A1:3D
	Client SessionID: 36:9A:7B:97:22:AA:27:2E:63:62:BB:B1:2C:A5:FA:C2:E6:06:36:C9:F5:17:93:38:A4:54:A1:5C:B8:22:42:D6
	Extensions:
		Type: 51 (0x0033); "key_share"
			Secp256r1 (0x0017)
				x = 0x17909D4EF2E212815AB69107E30F6E1611C42FDFB3DB682C7F1C5DA7CAF62688
				y = 0x7019693B6FAA20452A8D09F2202118AA4AF5030FDF1EFBF2DA1A89A0DCC20C40
		Type: 11 (0x000B); /non-TLS-1.3/
			01:00
		Type: 35 (0x0023); /non-TLS-1.3/
		Type: 45 (0x002D); "psk_key_exchange_modes"
			01:01
		Type: 16 (0x0010); "application_layer_protocol_negotiation"
			68:32 (HTTP/2/TLS)
			68:74:74:70:2F:31:2E:31 (HTTP/1.1)
		Type: 23 (0x0017); /non-TLS-1.3/
		Type: 44 (0x002C); "cookie"
			00:08:0C:00:FE:E1:C0:DE:FA:57
		Type: 10 (0x000A); "supported_groups"
			0x001D (X25519)
			0x0017 (Secp256r1)
			0x0018 (Secp384r1)
		Type: 43 (0x002B); "supported_versions"
			0x0304 (TLS 1.3)
			0x0303 (TLS 1.2)
		Type: 13 (0x000D); "signature_algorithms"
			0x0503 (ECDSA_SECP384R1_SHA384)
			0x0403 (ECDSA_SECP256R1_SHA256)
			0x0807 (ED25519)
			0x0806 (RSA_PSS_RSAE_SHA512)
			0x0805 (RSA_PSS_RSAE_SHA384)
			0x0804 (RSA_PSS_RSAE_SHA256)
			0x0601 (RSA_PKCS1_SHA512)
			0x0501 (RSA_PKCS1_SHA384)
			0x0401 (RSA_PKCS1_SHA256)
		Type: 05 (0x0005); "status_request"
			01:00:00:00:00
		Type: 00 (0x0000); "server_name"
			00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
			hostname: tls13.1d.pw

SERVER_HELLO (sent)

	Legacy Version: 0x0303
	Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
	Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
	SessionID: 36:9A:7B:97:22:AA:27:2E:63:62:BB:B1:2C:A5:FA:C2:E6:06:36:C9:F5:17:93:38:A4:54:A1:5C:B8:22:42:D6
	Extensions:
		Type: 51 (0x0033); "key_share"
			Secp256r1 (0x0017)
				x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA
				y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C
		Type: 43 (0x002B); "supported_versions"
			0x0304

[Legacy ChangeCipherSpec message sent (server)]

SERVER_HANDSHAKE_MESSAGES (sent)

	Type: 8 (0x08) - "encrypted_extensions"
		Length (octets, dec.): 2
		00:00
	Type: 11 (0x0B) - "certificate"
		Length (octets, dec.): 3402
		[...] /skipped 3402 data octets/
	Type: 15 (0x0F) - "certificate_verify"
		Length (octets, dec.): 107
		05:03:00:67:30:65:02:31:00:B8:6F:DE:B2:20:55:BA:48:91:6E:0A:39:2E:4D:DF:2D:2D:CB:E5:A9:38:C0:78
		32:73:12:5A:3F:A7:A2:88:0D:7D:22:0E:8B:32:3F:43:BA:42:41:D3:CD:6A:49:DA:0D:02:30:05:F3:22:63:F1
		81:E2:48:9B:50:62:C1:90:8A:AF:AF:D2:2F:5E:6D:3C:9D:92:76:3B:98:E3:91:55:10:3F:A4:EF:6B:E4:BD:5D
		37:0D:25:B8:25:6E:8D:11:33:93:44
	Type: 20 (0x14) - "finished"
		Length (octets, dec.): 32
		F5:64:A6:74:8C:F7:64:D6:CD:E5:66:E0:A5:86:BF:B8:55:BC:9D:9F:08:5E:5F:15:3F:4B:F8:A5:A5:26:1E:9B


CLIENT_FINISHED (received)

	Finished value: 0xD2525D59BA375C43B4FFB8558EC2F9D983A94F36B1FB8914BCDB7914B2AE7E40
	Client Finished status: OK

CLIENT_APPLICATION_DATA (recieved)

	ASCII dump (filtered):
		GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
		/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
		t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
		: tls13.1d.pw....

[Server KeyUpdate sent /message skipped/]



TCP: server: 194.87.103.72:443; client: 216.73.216.163:34783; timestamp: 1782416318


Contacts: dxdt.ru, alex/()\/abaabb.xyz.

 /\_/\
( 0.0 )
 = ^ =
 /|_|\
(") (")=~


Provide ESNI to get second ASCII cat

Elapsed server side: 290ms; ServerHello sent: 148ms (including HelloRetryRequest time); TLS connection established: 289ms.