Successfully connected
TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0101
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Key exchange: 0x0101 (ffdhe3072)
(Handshake level)
Handshake secrets:
Client: 0xC62075E6DA86E7675D8BC1571FCEB324E2B64BC541829CF2A0752B5A8CFD2451
Server: 0x51810DE0D3CE4817C8732F6C66514CE85F2A5093A1386E9DFEA99524E798F71A
Handshake keys:
Client write: 0x21553A4C27F723B01B89B7D81E160375
Server write: 0xB4902E063D7A3981DE61FF8DA59EA1D8
Handshake IVs:
Client write (IV): 0x5E073954B35A60496BDC9D3E
Server write (IV): 0x6CD1395762522A7CE5C6F518
(Traffic level)
Traffic secrets:
Client: 0x6440C0F70BAF281CC67A310B1AB765C85600F6D2F0D384CA29D8D649708ED206
Server: 0xDEAD2F4F4FF4F00144D17B4D7203B79413A2C836B49D59EDABFC119E29A988F7
KeyUpdates log, server:
0: 0x49093C957095EC3A4A0A86CCD97AF4214B4497FED59902CE6B3A47D7AAE118E4
Traffic keys:
Client write: 0x2C1A915B0CE13519A67FAA13323E6A0B
Server write: 0x73AD6E2D1C7CD93C154183FB36735D21
KeyUpdates log, server:
0: 0x2E78BA9C47A4CF603589D8D4429AEC8C
Traffic base IVs:
Client write (base IV): 0xD99B5D9408CB4DE3E202A11A
Server write (base IV): 0x827E0E8918590C68ADDB396A
KeyUpdates log, server:
0: 0x09C99AC30986F9842BDA6FC5
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: A0:D8:AD:D4:74:41:35:E7:78:63:EB:32:72:2B:21:8F:A9:1B:DC:86:FA:93:26:9C:88:C8:37:4E:F8:6F:0C:21
Client SessionID: D7:B3:A6:BF:9F:B3:55:C7:59:F5:F7:B2:FB:81:A0:B6:90:2B:C3:ED:30:52:22:7A:05:C5:E8:A2:7D:5E:DC:B2
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0xAA20CB8C54F6C01DCE0EFB8B8C018B0506149BB5FA84E3842D624C7325563877
Type: 65281 (0xFF01); /non-TLS-1.3/
00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: D7:B3:A6:BF:9F:B3:55:C7:59:F5:F7:B2:FB:81:A0:B6:90:2B:C3:ED:30:52:22:7A:05:C5:E8:A2:7D:5E:DC:B2
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: A0:D8:AD:D4:74:41:35:E7:78:63:EB:32:72:2B:21:8F:A9:1B:DC:86:FA:93:26:9C:88:C8:37:4E:F8:6F:0C:21
Client SessionID: D7:B3:A6:BF:9F:B3:55:C7:59:F5:F7:B2:FB:81:A0:B6:90:2B:C3:ED:30:52:22:7A:05:C5:E8:A2:7D:5E:DC:B2
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
42:DD:EB:04:C8:B2:5E:40:7D:19:8B:9B:EB:61:E0:64:B2:C9:39:5F:4A:CD:7E:98:54:B9:BB:3D:16:D7:35:5D:52
A1:FD:5D:44:55:49:6D:BC:10:5F:1C:46:30:6D:00:44:A1:F0:50:64:7B:AE:67:20:D0:D7:66:10:16:5C:0B:93:23
D1:99:BC:47:89:56:03:B8:0A:CE:F9:01:CC:69:E1:3C:11:73:18:ED:B7:B1:4A:F6:D8:60:73:0B:78:E9:4E:26:0C
EE:E8:1E:75:FD:E5:A5:03:78:AA:EF:15:9F:38:3B:58:22:11:4A:D0:C4:C2:77:CF:00:ED:E0:1C:48:F0:E7:78:BE
39:89:BA:5C:78:A6:97:38:03:EC:EA:23:E3:F2:C5:4C:19:34:D9:F6:24:34:BB:81:78:D2:E0:59:E4:6F:DC:8B:16
13:E0:75:8C:1E:82:9F:48:3C:7A:4F:C4:C8:4D:68:C0:5B:B1:22:5D:CD:4D:93:00:AF:C9:22:E4:D8:B9:ED:91:70
16:39:03:7B:3B:A4:AC:E2:30:28:D6:CD:05:D2:E1:9D:98:7D:0B:49:83:A8:C2:BC:8E:5C:7D:92:51:7C:27:70:F0
85:4F:91:1C:21:13:6B:81:B8:1E:55:1C:B1:E3:0F:8C:BE:83:12:6D:E2:7C:67:B4:03:D1:7D:86:C0:8B:FB:86:9E
DC:B5:FD:04:3C:C4:21:25:E3:60:3B:55:C9:09:78:A3:9D:2B:E7:5D:B3:1E:AA:E1:B2:E9:F3:86:A4:1B:EF:17:30
08:42:93:D4:79:2B:7B:18:95:BB:F2:A0:5B:4C:5F:88:C0:D1:5A:81:64:C9:8C:DE:AF:95:FF:AA:AF:32:61:16:4D
34:FB:3B:04:63:DA:41:42:AC:BD:A9:D5:51:CD:19:0A:AE:19:67:57:1E:2D:D8:99:1D:B3:D3:D2:38:09:7F:89:E8
7C:D8:D5:4B:13:CC:F9:28:1B:E8:F2:F5:BD:0A:56:30:F4:49:15:1F:61
Type: 65281 (0xFF01); /non-TLS-1.3/
00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: D7:B3:A6:BF:9F:B3:55:C7:59:F5:F7:B2:FB:81:A0:B6:90:2B:C3:ED:30:52:22:7A:05:C5:E8:A2:7D:5E:DC:B2
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
4F:24:C0:64:3B:37:B7:7A:0F:14:C1:75:0F:2D:31:D1:3E:83:1B:36:AC:D4:A5:0D:3C:99:A8:57:23:D6:4F:1D:60
D0:1F:7E:C7:57:E3:E0:AC:FA:C6:7B:0E:47:D7:9B:37:63:CC:D8:9A:96:72:5A:6B:C0:50:5E:F7:60:52:42:69:06
E7:93:D0:1B:07:8E:0C:23:E5:78:B9:6B:AA:F7:19:B1:AB:9D:F3:C2:56:0C:F6:9C:11:BC:A1:48:7E:1D:3A:CF:3B
0C:15:32:25:23:69:BF:DA:74:31:3F:7E:4C:78:F8:31:90:E7:30:6F:6E:FC:D4:CA:B8:52:A6:A0:59:16:9D:67:7E
17:F5:09:83:E4:70:05:0B:E5:9E:9E:01:C7:B6:A1:A1:A7:33:50:8D:1E:06:63:2C:51:84:37:94:97:7F:BD:D8:1F
DD:81:B5:53:A5:BB:F8:0F:7F:56:FC:8D:1E:7C:EC:E1:2A:6F:EB:8E:A8:CF:50:0D:47:9F:FE:69:89:D5:79:8B:5F
5B:8D:BE:A5:01:20:8F:BD:22:96:E6:23:FC:6D:2D:55:CD:83:B7:1C:D8:92:09:40:83:9F:18:70:30:15:9E:96:76
BE:92:C2:36:A9:2F:07:9E:9A:36:5C:15:04:0B:58:64:C9:27:F3:E2:EA:C6:FF:2C:D8:07:81:8C:5C:97:38:AD:E6
83:4B:47:C8:5B:0A:31:45:7D:A1:48:13:2C:23:81:F3:A9:B1:16:65:84:66:93:72:81:09:9E:2E:D9:5F:55:F5:DC
E1:CD:09:24:86:C2:BE:69:C6:78:3F:B4:5A:B7:46:6A:44:E4:0D:0F:F4:FD:29:11:A6:7A:D5:4A:44:B0:80:BC:8B
7C:9F:50:75:C7:51:5E:88:C8:65:D0:C5:A1:02:AF:C4:D5:1B:2C:AE:2A:E3:A8:E8:51:EC:CD:8F:63:1E:3B:38:D1
D3:8B:ED:28:8C:FB:15:5A:D3:0E:9A:85:80:3C:FC:C2:24:46:89:03:87
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3856
[...] /skipped 3856 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 108
05:03:00:68:30:66:02:31:00:DE:F3:A8:15:D8:56:B2:BD:67:60:01:96:10:17:3B:92:08:CA:44:97:FE:68:AF
3D:13:08:27:F1:1A:DD:42:36:CF:8B:DB:9B:66:5F:48:C7:94:02:FD:A2:1D:43:C1:80:02:31:00:D1:1B:F3:AE
B1:AF:41:2D:B3:2A:BE:65:C1:EF:1F:2B:79:35:11:17:6D:63:F3:20:0E:7C:71:7B:C0:AA:35:04:7C:AF:55:74
96:EA:67:CA:64:E6:D6:CC:0D:46:B6:80
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
85:4B:78:83:A1:99:9C:CF:FE:EF:69:A0:C1:F2:CA:2C:23:D7:BB:00:04:65:8D:F8:E5:FB:82:A7:3B:BA:B9:1E
[Legacy ChangeCipherSpec message present (client)]
CLIENT_FINISHED (received)
Finished value: 0x3A7B9E084020F499EFB156C293BC7E7C43B51B89E8B65E4A4D3BA28736C60EE2
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
e: Sun, 05 Oct 2025 22:04:01 GMT..Accept-Encoding: br,gzip..Host
: tls13.1d.pw..Connection: Keep-Alive....
[Server KeyUpdate sent /message skipped/]
TCP: server: 194.87.103.72:443; client: 18.97.14.85:54582; timestamp: 1768565526
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 424ms; ServerHello sent: 136ms (including HelloRetryRequest time); TLS connection established: 423ms.