Successfully connected
TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0101
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Key exchange: 0x0101 (ffdhe3072)
(Handshake level)
Handshake secrets:
Client: 0xEE2D487878C0CCE9C911AE95ACC376749DA60D70F8D441F584957BF5E50CF60D
Server: 0x946FA56E436CFCF1DDEAF3FF2AC43236854D7CD758F7D34A722828E879BC1A68
Handshake keys:
Client write: 0x5B7CC97FE27EBE31DB1CA63959CE5574
Server write: 0x9417817EAAC60465F9B87AAFCD2394AD
Handshake IVs:
Client write (IV): 0x36CE872112ACC22CC611617C
Server write (IV): 0x7DA8A76E6018A2B648A47B08
(Traffic level)
Traffic secrets:
Client: 0x9173D0F72774481F56AC20FEF0532029C22A3B466FFE9CA7278E69126D468C91
Server: 0x8A42C8E6056982BC13AC125EFD1C08698E682F43FE55474E788ED0877E19B82C
KeyUpdates log, server:
0: 0xB9A4BBF23FF6CA6B9C60F6594953D264D8E5FD388752397B22081E705DE71C22
Traffic keys:
Client write: 0x8FBAB73187D5B46BE0BF373548F3CADF
Server write: 0x764FB9252723BA594E862A773C21A2EE
KeyUpdates log, server:
0: 0x59E7999E9C7AE0F5B14A03FA04AD9315
Traffic base IVs:
Client write (base IV): 0x597FFA15B2E19EFE4A7B780D
Server write (base IV): 0x9DCA72F31C993BEBC75957E8
KeyUpdates log, server:
0: 0xF5333F5960B33DF4CB84521E
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: 84:49:23:25:6B:60:62:F6:52:64:FA:67:33:37:8F:F7:26:12:2D:0D:22:D1:42:B1:03:12:F1:A1:F0:0E:47:CD
Client SessionID: 5F:D5:51:7A:EE:A0:DA:EA:5D:25:43:3C:3E:A4:54:14:FF:2B:3D:BA:1D:C4:CE:A3:58:25:36:04:7E:DC:DA:39
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x134E7478EE3F2B42AB95C6CB2B35C9348C702DF41F6638EEF1482255CC08B459
Type: 65281 (0xFF01); /non-TLS-1.3/
00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 5F:D5:51:7A:EE:A0:DA:EA:5D:25:43:3C:3E:A4:54:14:FF:2B:3D:BA:1D:C4:CE:A3:58:25:36:04:7E:DC:DA:39
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: 84:49:23:25:6B:60:62:F6:52:64:FA:67:33:37:8F:F7:26:12:2D:0D:22:D1:42:B1:03:12:F1:A1:F0:0E:47:CD
Client SessionID: 5F:D5:51:7A:EE:A0:DA:EA:5D:25:43:3C:3E:A4:54:14:FF:2B:3D:BA:1D:C4:CE:A3:58:25:36:04:7E:DC:DA:39
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
1C:63:EC:7F:16:71:3B:65:FE:19:FE:A0:3B:08:C7:3B:0C:35:CB:B9:10:7A:4E:9A:9C:F0:D1:02:35:94:98:8B:FC
3E:98:B0:CA:DA:FD:B8:07:D0:48:BB:87:90:35:55:9A:12:D8:33:07:28:45:AA:DD:CB:30:75:34:6B:6F:55:B3:95
5B:B9:ED:B9:50:91:AD:D6:46:E8:C3:5D:18:1B:BD:1D:B1:14:CC:34:E5:3F:04:22:8B:47:C8:7D:3A:7C:AB:56:8C
D9:DE:35:AA:2E:13:26:6B:D8:FE:8E:3D:A9:F4:AC:74:37:F1:2F:DF:86:8A:25:EC:1D:81:32:32:12:C9:4D:C5:14
7F:E3:07:8F:07:74:6F:CC:BC:4A:62:48:81:2E:90:72:2D:17:B3:20:43:DC:45:9F:A0:E4:DB:81:43:D2:46:6F:70
5E:85:29:58:23:A0:BD:0F:C1:C4:5F:EB:51:61:47:97:96:9C:8E:A6:CA:27:77:D2:2A:44:D0:D9:4F:0C:89:33:AC
B5:3B:78:F1:36:F4:0A:4D:C3:7E:23:A3:5F:72:FD:C6:C8:D1:9F:3F:20:2D:64:DB:FE:9A:AD:FE:4A:E7:8C:D6:55
5D:86:5F:AD:28:37:2A:12:3E:66:CE:0B:A0:E2:81:CB:4C:EB:D8:C8:5B:6D:1C:97:00:31:A1:D9:52:B8:46:77:69
43:EB:18:BA:99:8E:7C:90:5C:88:3F:9C:AA:8E:55:E6:E7:54:F7:C4:06:FD:DC:F5:83:06:69:A5:D2:69:42:26:51
5A:99:40:E7:3D:D9:81:C9:D4:09:44:94:A4:B5:7B:74:B9:E2:F5:B1:8A:34:C7:54:AA:73:9D:2B:B2:C4:B8:23:B0
E3:EB:A8:95:5D:26:AF:A0:1B:E1:22:2A:21:47:39:A0:18:87:5D:91:E6:65:D1:10:F5:34:11:61:A5:45:3A:85:52
BC:D8:E6:28:91:BD:99:BC:5F:EC:6F:FE:5A:12:C6:8C:82:00:06:A8:EE
Type: 65281 (0xFF01); /non-TLS-1.3/
00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 5F:D5:51:7A:EE:A0:DA:EA:5D:25:43:3C:3E:A4:54:14:FF:2B:3D:BA:1D:C4:CE:A3:58:25:36:04:7E:DC:DA:39
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
4F:24:C0:64:3B:37:B7:7A:0F:14:C1:75:0F:2D:31:D1:3E:83:1B:36:AC:D4:A5:0D:3C:99:A8:57:23:D6:4F:1D:60
D0:1F:7E:C7:57:E3:E0:AC:FA:C6:7B:0E:47:D7:9B:37:63:CC:D8:9A:96:72:5A:6B:C0:50:5E:F7:60:52:42:69:06
E7:93:D0:1B:07:8E:0C:23:E5:78:B9:6B:AA:F7:19:B1:AB:9D:F3:C2:56:0C:F6:9C:11:BC:A1:48:7E:1D:3A:CF:3B
0C:15:32:25:23:69:BF:DA:74:31:3F:7E:4C:78:F8:31:90:E7:30:6F:6E:FC:D4:CA:B8:52:A6:A0:59:16:9D:67:7E
17:F5:09:83:E4:70:05:0B:E5:9E:9E:01:C7:B6:A1:A1:A7:33:50:8D:1E:06:63:2C:51:84:37:94:97:7F:BD:D8:1F
DD:81:B5:53:A5:BB:F8:0F:7F:56:FC:8D:1E:7C:EC:E1:2A:6F:EB:8E:A8:CF:50:0D:47:9F:FE:69:89:D5:79:8B:5F
5B:8D:BE:A5:01:20:8F:BD:22:96:E6:23:FC:6D:2D:55:CD:83:B7:1C:D8:92:09:40:83:9F:18:70:30:15:9E:96:76
BE:92:C2:36:A9:2F:07:9E:9A:36:5C:15:04:0B:58:64:C9:27:F3:E2:EA:C6:FF:2C:D8:07:81:8C:5C:97:38:AD:E6
83:4B:47:C8:5B:0A:31:45:7D:A1:48:13:2C:23:81:F3:A9:B1:16:65:84:66:93:72:81:09:9E:2E:D9:5F:55:F5:DC
E1:CD:09:24:86:C2:BE:69:C6:78:3F:B4:5A:B7:46:6A:44:E4:0D:0F:F4:FD:29:11:A6:7A:D5:4A:44:B0:80:BC:8B
7C:9F:50:75:C7:51:5E:88:C8:65:D0:C5:A1:02:AF:C4:D5:1B:2C:AE:2A:E3:A8:E8:51:EC:CD:8F:63:1E:3B:38:D1
D3:8B:ED:28:8C:FB:15:5A:D3:0E:9A:85:80:3C:FC:C2:24:46:89:03:87
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3843
[...] /skipped 3843 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 108
05:03:00:68:30:66:02:31:00:E3:60:52:B0:B3:E5:1C:9C:F0:25:41:19:50:8E:B3:0C:C7:48:F3:BD:E9:66:76
F0:0F:F6:7E:EE:B9:F7:68:7C:4F:A0:18:E3:F2:FE:C5:73:0A:85:76:D8:58:3F:D9:56:02:31:00:97:64:AE:7D
60:41:A5:6B:ED:F0:83:73:A5:03:B1:BE:47:97:AD:99:17:0D:2D:97:0D:BA:65:7D:28:45:60:60:BE:1A:51:E0
20:83:3D:8B:6B:93:D6:1C:35:93:9F:0D
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
32:34:B6:7D:F7:B3:37:8A:C9:66:B6:4C:6F:5E:61:95:19:F7:D0:A6:96:47:9E:3D:A5:38:2B:11:AF:AB:F9:91
[Legacy ChangeCipherSpec message present (client)]
CLIENT_FINISHED (received)
Finished value: 0xD45EA0452B68A4EC9C7751B78D7674F3AED645994F0B26FC29818B1BCEE9B2CD
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
e: Sat, 15 Feb 2025 13:09:16 GMT..Accept-Encoding: br,gzip..Host
: tls13.1d.pw..Connection: Keep-Alive....
[Server KeyUpdate sent /message skipped/]
TCP: server: 194.87.103.72:443; client: 18.97.9.170:34164; timestamp: 1742457285
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 432ms; ServerHello sent: 138ms (including HelloRetryRequest time); TLS connection established: 431ms.