Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0017
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Key exchange: 0x0017 (Secp256r1)
(Handshake level)
Handshake secrets:
Client: 0x1C2683FC97EAB62F144CFE549F977A00F90985DFF76B11CC393DCC3D11AD498D2C55FDCAF927584DA1247E9257061D58
Server: 0xC1D33BBE5AE423F22B424F296DE966829EF2A8A43A37AE6EF55DAA6715E0FD28C7F6A9114261E9770DD8A47E09DB7B52
Handshake keys:
Client write: 0x367EF31E6135A5565CAF6CFA6C7B1072428B7DE88DF1F6AA85557444151C1EB0
Server write: 0x8288D7820B37D028BFD725C1581C06DE2C6CA2EE120182248AE3A247D4C11066
Handshake IVs:
Client write (IV): 0x2D57B6BFD37F850F09046E82
Server write (IV): 0xDB291335392AC0DC3BDC04B3
(Traffic level)
Traffic secrets:
Client: 0x2A886C46E27CDACDFB0365181914C54913DB69AE99AF77D215D29CB2968B379F1677BF58A87679F1A161B4441DF2FAF8
Server: 0xB65521F2E01B583622283D71A0208724132F700B805C0E2179ED1725B3238FFCA80A17F13F5073F7F332DBCDEC7F3CF8
Traffic keys:
Client write: 0xA5EC3225884F04F04013E6EC5D05333A9F35A91B858B9F5BA4127857C9452E3C
Server write: 0x4175B08B17236607D3A09DDCCF17F3906BE4144B78A0226C5F75E44349BE70CF
Traffic base IVs:
Client write (base IV): 0xE7453F6E66C2E411C98CA31A
Server write (base IV): 0xC2A2DC3BF2414F6E5B0ADC0F
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 61:AF:84:B9:A7:57:18:4B:EB:7B:40:1A:57:50:05:56:2A:5E:1A:72:3C:48:CC:11:C6:1D:96:74:78:15:99:3D
Client SessionID: F9:51:00:B3:20:F6:9C:B2:95:C8:43:84:77:3F:D2:34:00:72:7D:D9:41:21:5C:60:75:C7:71:1D:24:87:B4:0E
Extensions:
Type: 35 (0x0023); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 23 (0x0017); /non-TLS-1.3/
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x3C258BD1A334C90B1CB1749934032C9C5207F0A2B9C869BE3384E311FCF86735
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: F9:51:00:B3:20:F6:9C:B2:95:C8:43:84:77:3F:D2:34:00:72:7D:D9:41:21:5C:60:75:C7:71:1D:24:87:B4:0E
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 61:AF:84:B9:A7:57:18:4B:EB:7B:40:1A:57:50:05:56:2A:5E:1A:72:3C:48:CC:11:C6:1D:96:74:78:15:99:3D
Client SessionID: F9:51:00:B3:20:F6:9C:B2:95:C8:43:84:77:3F:D2:34:00:72:7D:D9:41:21:5C:60:75:C7:71:1D:24:87:B4:0E
Extensions:
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 35 (0x0023); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 23 (0x0017); /non-TLS-1.3/
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x86F3202E04D5B9E49E7E1804762F71EC060AD18B01243F5C61FF17FFF06377A3
y = 0x0AED3B6EC28277941AA8C929441341F4A064A1BE85E1148A06A59B26B4C2B4D5
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: F9:51:00:B3:20:F6:9C:B2:95:C8:43:84:77:3F:D2:34:00:72:7D:D9:41:21:5C:60:75:C7:71:1D:24:87:B4:0E
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA
y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3403
[...] /skipped 3403 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:30:6A:77:28:4B:0C:BD:61:D5:A6:A1:E9:CF:22:07:38:DB:CC:FC:A3:BC:1D:7F:D3:49
B8:93:44:C2:F6:17:06:AC:EA:00:43:49:B9:4A:25:92:3C:6E:C3:16:50:73:06:56:02:31:00:EF:E3:52:73:D6
F7:95:37:A8:A7:60:FC:12:51:EB:B7:FE:48:EE:F4:FA:3E:6F:A1:44:DF:94:84:C4:04:BE:8D:9F:14:7A:13:46
09:84:F0:A9:39:9C:6A:92:0B:04:41
Type: 20 (0x14) - "finished"
Length (octets, dec.): 48
CD:4B:AC:BE:3F:B0:3A:C0:FD:5A:33:F2:C8:DC:84:98:BE:E0:20:21:83:2C:39:9E:61:75:E3:C8:C2:5F:4B:42
6D:0C:F9:37:42:62:61:5D:97:86:9A:95:2F:E2:49:A5
CLIENT_FINISHED (received)
Finished value: 0x396B79F303E1EBC83F1638D326E9D4650B7A40F629747F7A970AB61036002F8741B0A0047EEF71F635B5BD47F1639648
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
: tls13.1d.pw....
TCP: server: 194.87.103.72:443; client: 216.73.216.146:36927; timestamp: 1782502048
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 311ms; ServerHello sent: 158ms (including HelloRetryRequest time); TLS connection established: 310ms.