Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0018
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Key exchange: 0x0018 (Secp384r1)
(Handshake level)
Handshake secrets:
Client: 0x5A16E5AF573EA0E0197423839BBAE03569FD0D8ABF3DA0360782176F019D240B
Server: 0x63A3CDD87266BD30636053881845C8728D6EBD27F1AC7851607B4BD40D0D5062
Handshake keys:
Client write: 0xA36454CDAB31CC8309AD57C111519CE3185896565E5240FE7C9FBA8C2F406AB7
Server write: 0xF4FE1D5C8914D6B88739CB207A666E66B5122538BF70530E40CD6EDA811784C2
Handshake IVs:
Client write (IV): 0x7D148D9A66CCF04E509C8EFE
Server write (IV): 0xB8FC9136A8F7AA7580F65F49
(Traffic level)
Traffic secrets:
Client: 0xC5CA53FA539BE0EC22E729130B228364DFBE649985B05DF2506B0F3F1B29B768
Server: 0x553A6D307EB51923F4804D4D32C5B45DDCA79A3B1B9715FCAAF65AE3F98D2F6D
Traffic keys:
Client write: 0xA114ABDB71A69D05A6F76E6E20B4D43951F0384AD8600E5DF4100382D4A28954
Server write: 0xB3533A648DB02DBD80A2902BD105E30291477D8C20AA454D0C427EC6DBD5AEC4
Traffic base IVs:
Client write (base IV): 0x83A31766A81867DC6C214787
Server write (base IV): 0x79F5FD33DCDE6691C9BB81CA
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 4D:86:52:18:7F:B0:2E:8D:8B:41:02:18:81:CF:B4:2E:3E:C8:90:F4:1F:69:34:0A:3C:95:3A:2C:A9:E2:DC:54
Client SessionID: 32:B2:7A:00:49:66:BE:B9:F4:DD:A5:95:1D:6F:F6:B6:60:02:7B:D9:83:0F:DA:C1:82:C6:A0:9B:03:66:D5:BE
Extensions:
Type: 35 (0x0023); /non-TLS-1.3/
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x4110A3562F179CA044777946F99E8099C670B7DA2F87640E364175BB5FB6DE59
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 32:B2:7A:00:49:66:BE:B9:F4:DD:A5:95:1D:6F:F6:B6:60:02:7B:D9:83:0F:DA:C1:82:C6:A0:9B:03:66:D5:BE
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 4D:86:52:18:7F:B0:2E:8D:8B:41:02:18:81:CF:B4:2E:3E:C8:90:F4:1F:69:34:0A:3C:95:3A:2C:A9:E2:DC:54
Client SessionID: 32:B2:7A:00:49:66:BE:B9:F4:DD:A5:95:1D:6F:F6:B6:60:02:7B:D9:83:0F:DA:C1:82:C6:A0:9B:03:66:D5:BE
Extensions:
Type: 35 (0x0023); /non-TLS-1.3/
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0xEAEAD9F85A55AF36B11FEBDAE5BFA37F5069EE82427BE3666CBDC7A882B8060023008CCE59B247E532F53E8418C95D97
y = 0x0275E9C80529D6764D1A0EE68B451661CF2AA485BFF059DDEFD598C9494C9AA3081F1EB3E3AE45EC9FB52365A347CB66
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 23 (0x0017); /non-TLS-1.3/
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 32:B2:7A:00:49:66:BE:B9:F4:DD:A5:95:1D:6F:F6:B6:60:02:7B:D9:83:0F:DA:C1:82:C6:A0:9B:03:66:D5:BE
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0x884DFC0FE9602539133D59E3779E9DE8644D3532211C1061EFD16D15BE349D6723496325775E87CF3D396F1C02FCC5CF
y = 0x063315C18E34D26B9085A96A495F17B8557DB379DB6ABED0788C60417FCE917ADD8976BB955D9E7E1B1CC6C06F577280
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3400
[...] /skipped 3400 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:30:4D:47:DE:EF:D8:4D:EE:AF:CF:70:6A:A8:A7:0B:E7:89:BC:F4:9B:B6:DF:6C:75:4B
11:C3:DE:49:16:75:91:2B:D6:26:9D:A8:F8:D4:22:D8:00:73:0E:8C:9F:2C:44:C1:02:31:00:B6:94:FC:7B:F5
1D:26:DC:27:A5:67:A3:CA:33:41:85:DA:3D:9D:B0:4D:E6:BA:4A:D6:48:D7:C9:E0:FA:E0:12:C0:8D:1D:42:83
D1:2D:06:ED:6B:92:ED:59:50:5A:3F
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
E6:BA:58:E5:F7:96:D9:4F:01:46:68:38:AD:B7:DC:EE:9B:57:D4:9B:24:C2:38:C3:87:F3:7E:97:99:84:C4:93
CLIENT_FINISHED (received)
Finished value: 0x12D63FFFA04E7B3AEC2C8813F72972889EBB3C27E697FC9AB8F3F73BF99CD441
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
: tls13.1d.pw....
TCP: server: 194.87.103.72:443; client: 216.73.216.43:30680; timestamp: 1780861449
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 310ms; ServerHello sent: 158ms (including HelloRetryRequest time); TLS connection established: 309ms.