Successfully connected
TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0101
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Key exchange: 0x0101 (ffdhe3072)
(Handshake level)
Handshake secrets:
Client: 0x02F28144F26D881BF7D99EDDA5314BA1BD88ABB2CA3E999FCCC966357DF642B0
Server: 0x7EE42A6A77B5995293704EB6DF48C4178AA0B75E448E5C6C6EFB53B177C23722
Handshake keys:
Client write: 0xC6213FEE037DC971AD04B56EA6687BF5
Server write: 0x0667C4F5F327E65C87886CE47DD7BABC
Handshake IVs:
Client write (IV): 0x3015D4B5444E1BF0CD8297E9
Server write (IV): 0x8DDD0362EAFEAA75309EEF1F
(Traffic level)
Traffic secrets:
Client: 0x6A9297C64C6F0D23CF0E18B766C46D56301197CB426840557C831974744B59EA
Server: 0xC34C9FA4EC515E12EAA440ABC7BE3DC418BFD1A3B7FB20117B664E724672A65A
KeyUpdates log, server:
0: 0x2983F4B2C00BFAAD6AEC0224C022674A5732A60B8BD2835150D6A8F3C850493B
Traffic keys:
Client write: 0xE196C9CDCB68A46A324F5DFE5F93E201
Server write: 0x6E731456A63C75C1882E3DA17B3DDF47
KeyUpdates log, server:
0: 0xB2A4BD37BF1765DBD42175CAE909DDBC
Traffic base IVs:
Client write (base IV): 0x0BFEAB0AB075634F1F3C280F
Server write (base IV): 0x852CDA614F306CEB965B6AE6
KeyUpdates log, server:
0: 0x4E3DAC3C3A0D82433C74DE04
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: 2D:D1:21:EA:08:FC:71:7D:D9:C5:46:EF:33:8A:1E:15:76:5E:F6:B0:1B:F0:6B:4B:14:4D:8B:AB:0B:5F:14:6F
Client SessionID: 74:86:69:D6:8A:43:87:2A:33:D2:0C:F9:34:D3:28:59:73:45:08:EF:BC:31:92:79:57:6F:20:C7:98:48:0C:FA
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0xC7A9A912567B6044BA6352C412E757E62A11249A74ED77B03A051B4A0832254D
Type: 65281 (0xFF01); /non-TLS-1.3/
00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 74:86:69:D6:8A:43:87:2A:33:D2:0C:F9:34:D3:28:59:73:45:08:EF:BC:31:92:79:57:6F:20:C7:98:48:0C:FA
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: 2D:D1:21:EA:08:FC:71:7D:D9:C5:46:EF:33:8A:1E:15:76:5E:F6:B0:1B:F0:6B:4B:14:4D:8B:AB:0B:5F:14:6F
Client SessionID: 74:86:69:D6:8A:43:87:2A:33:D2:0C:F9:34:D3:28:59:73:45:08:EF:BC:31:92:79:57:6F:20:C7:98:48:0C:FA
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
A6:1E:66:BE:D0:2E:30:16:75:AD:C3:B1:A2:4E:7F:60:D3:CF:64:C0:F7:64:6E:E1:62:6B:6B:EA:A9:16:89:47:19
21:8D:41:6B:5D:FE:46:0E:93:3C:2A:25:2A:29:27:FB:D7:66:CF:D6:E7:61:8C:55:CA:B5:A6:5B:F1:B4:6A:FA:0C
01:48:B0:26:8D:D8:51:67:C2:E4:11:99:EE:C5:D7:82:86:72:EC:2B:61:33:7E:49:79:07:FB:F9:F0:7E:D3:F9:0C
98:6C:39:5C:D3:9E:5F:62:27:B7:46:46:CB:AA:F8:31:1A:43:04:85:B8:CC:DD:AF:A6:65:6F:36:2F:40:B4:F7:49
54:DA:52:EE:F2:B3:2C:DD:B8:01:8D:B7:2E:B0:0E:80:56:62:00:77:E2:6C:B9:5D:0A:D3:3B:75:F7:26:E7:1C:11
53:FB:65:94:E3:2F:5A:03:E6:7A:65:CA:38:02:72:1B:55:78:15:04:1C:03:29:7D:50:F2:DB:27:95:9C:E0:EC:5F
BF:4B:BA:66:4D:5B:4C:E2:0B:2D:AC:6E:1B:B3:A8:37:72:34:50:38:9D:DA:0F:F1:C6:8D:D0:89:77:89:22:09:03
18:C1:B7:F5:E6:7E:94:AA:70:48:8C:24:01:81:A2:CE:44:68:BE:45:4B:3F:90:65:83:C6:68:DB:97:C8:B9:4E:F9
92:FD:47:B2:2E:72:D1:8F:5E:31:07:CD:FC:C8:A8:63:04:4B:4F:44:E1:F7:25:5F:5F:8C:05:58:F7:C4:B6:C9:75
C0:4B:12:75:6C:89:3A:82:2C:35:BC:5D:2D:D7:75:CB:AF:D8:D7:B4:86:46:E9:C3:B7:09:91:46:7F:5E:F8:3B:32
C3:8A:30:60:45:E5:5A:32:E5:A4:66:41:C0:78:12:75:6D:8B:8B:95:B3:AF:13:1A:38:F1:14:64:8F:62:06:70:2D
FB:87:40:E8:39:9C:DC:A1:33:08:F1:9C:26:78:56:FE:C4:37:70:AA:A5
Type: 65281 (0xFF01); /non-TLS-1.3/
00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 74:86:69:D6:8A:43:87:2A:33:D2:0C:F9:34:D3:28:59:73:45:08:EF:BC:31:92:79:57:6F:20:C7:98:48:0C:FA
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
4F:24:C0:64:3B:37:B7:7A:0F:14:C1:75:0F:2D:31:D1:3E:83:1B:36:AC:D4:A5:0D:3C:99:A8:57:23:D6:4F:1D:60
D0:1F:7E:C7:57:E3:E0:AC:FA:C6:7B:0E:47:D7:9B:37:63:CC:D8:9A:96:72:5A:6B:C0:50:5E:F7:60:52:42:69:06
E7:93:D0:1B:07:8E:0C:23:E5:78:B9:6B:AA:F7:19:B1:AB:9D:F3:C2:56:0C:F6:9C:11:BC:A1:48:7E:1D:3A:CF:3B
0C:15:32:25:23:69:BF:DA:74:31:3F:7E:4C:78:F8:31:90:E7:30:6F:6E:FC:D4:CA:B8:52:A6:A0:59:16:9D:67:7E
17:F5:09:83:E4:70:05:0B:E5:9E:9E:01:C7:B6:A1:A1:A7:33:50:8D:1E:06:63:2C:51:84:37:94:97:7F:BD:D8:1F
DD:81:B5:53:A5:BB:F8:0F:7F:56:FC:8D:1E:7C:EC:E1:2A:6F:EB:8E:A8:CF:50:0D:47:9F:FE:69:89:D5:79:8B:5F
5B:8D:BE:A5:01:20:8F:BD:22:96:E6:23:FC:6D:2D:55:CD:83:B7:1C:D8:92:09:40:83:9F:18:70:30:15:9E:96:76
BE:92:C2:36:A9:2F:07:9E:9A:36:5C:15:04:0B:58:64:C9:27:F3:E2:EA:C6:FF:2C:D8:07:81:8C:5C:97:38:AD:E6
83:4B:47:C8:5B:0A:31:45:7D:A1:48:13:2C:23:81:F3:A9:B1:16:65:84:66:93:72:81:09:9E:2E:D9:5F:55:F5:DC
E1:CD:09:24:86:C2:BE:69:C6:78:3F:B4:5A:B7:46:6A:44:E4:0D:0F:F4:FD:29:11:A6:7A:D5:4A:44:B0:80:BC:8B
7C:9F:50:75:C7:51:5E:88:C8:65:D0:C5:A1:02:AF:C4:D5:1B:2C:AE:2A:E3:A8:E8:51:EC:CD:8F:63:1E:3B:38:D1
D3:8B:ED:28:8C:FB:15:5A:D3:0E:9A:85:80:3C:FC:C2:24:46:89:03:87
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3887
[...] /skipped 3887 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:30:7D:C1:27:5A:58:E3:C4:D8:9F:0D:67:D4:2C:84:E2:25:61:35:37:C1:DD:19:65:29
E4:01:B3:04:67:2D:16:D9:D1:70:64:5F:76:6A:CF:1C:21:1C:D9:09:9C:F5:74:19:02:31:00:F0:BC:AC:E3:96
83:F0:79:CB:0F:60:2F:73:B8:47:05:05:77:CC:40:7E:79:E1:9D:82:20:8C:97:A8:33:04:FA:C6:28:EC:EA:BC
89:3F:DE:CE:9E:B5:63:09:2B:0B:09
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
C8:4D:77:FC:57:48:FB:19:74:4C:F9:E5:86:5E:7D:DB:7F:F0:53:C8:77:78:57:A8:7B:B2:26:59:B9:28:26:63
[Legacy ChangeCipherSpec message present (client)]
CLIENT_FINISHED (received)
Finished value: 0x29CE37E984257E8DB4AC917D80ADC3027D7B90EF3481479FFDC49231D8CF77CE
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
e: Tue, 13 May 2025 06:34:10 GMT..Accept-Encoding: br,gzip..Host
: tls13.1d.pw..Connection: Keep-Alive....
[Server KeyUpdate sent /message skipped/]
TCP: server: 194.87.103.72:443; client: 18.97.14.89:46882; timestamp: 1750703159
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 455ms; ServerHello sent: 145ms (including HelloRetryRequest time); TLS connection established: 454ms.