Successfully connected
TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0017
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Key exchange: 0x0017 (Secp256r1)
(Handshake level)
Handshake secrets:
Client: 0x16531EC6E85FC99222CD5602B139D20EA05874B7FF32CF2ED3201AC46CB005AD
Server: 0xD95B02AF4A4B0CBBD80475857A42BB884C8601B96D60C773E6BC6F940BF72141
Handshake keys:
Client write: 0x7A106087D0C898B67FD160FCFC1A9F34
Server write: 0x4612AD617D8690B1CB4CB16E7A9A539D
Handshake IVs:
Client write (IV): 0xFF4D693CD674EB1C0F02B09C
Server write (IV): 0xD7EAC785ECED60A1D871B443
(Traffic level)
Traffic secrets:
Client: 0xF9D1367336D4F81BD7E0C7EAB04C3AE223E1887AF9E99400EAA8024274F9176C
Server: 0x87FB7E31CB5BA7BD6C6BAE1CA614835A3AFA611B15B65BD35FC7B77269629EA7
KeyUpdates log, server:
0: 0x708CB8874C1F4C9C4B8E052687D7BF5405E2779B093422312038AC0AF0A74445
Traffic keys:
Client write: 0x72BD027A5E1F7172771980797CC43FB6
Server write: 0xF3501A66D31DD734C674489BDB768B74
KeyUpdates log, server:
0: 0xDA47F1228BA05EBE8C0FF0A2DDE8E398
Traffic base IVs:
Client write (base IV): 0x755BB51EC5FE3183269AD9F3
Server write (base IV): 0x8F5FF34D8E97AE594EED23B4
KeyUpdates log, server:
0: 0x3D0A22CC08B4A7076FFE62DB
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: AD:C3:48:88:35:F0:09:D4:FE:F2:51:84:A2:0A:1B:1A:BB:E2:74:D1:8E:C1:59:AC:04:F2:A3:AA:2F:BC:D4:E5
Client SessionID: C7:F5:5D:86:BD:78:84:2D:2F:56:76:B3:D3:D6:EF:5C:D7:3B:EF:7E:9F:93:31:60:F1:A9:A0:2D:4E:C9:13:A0
Extensions:
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 35 (0x0023); /non-TLS-1.3/
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 23 (0x0017); /non-TLS-1.3/
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x55852FF66D1FA457B3FFBB09F8C30D7E3A8CEEE5CAF1CDD712B6A91FF9389D56
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: C7:F5:5D:86:BD:78:84:2D:2F:56:76:B3:D3:D6:EF:5C:D7:3B:EF:7E:9F:93:31:60:F1:A9:A0:2D:4E:C9:13:A0
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: AD:C3:48:88:35:F0:09:D4:FE:F2:51:84:A2:0A:1B:1A:BB:E2:74:D1:8E:C1:59:AC:04:F2:A3:AA:2F:BC:D4:E5
Client SessionID: C7:F5:5D:86:BD:78:84:2D:2F:56:76:B3:D3:D6:EF:5C:D7:3B:EF:7E:9F:93:31:60:F1:A9:A0:2D:4E:C9:13:A0
Extensions:
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 35 (0x0023); /non-TLS-1.3/
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 23 (0x0017); /non-TLS-1.3/
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x3B1FD43367D4A55275040D7CAF4B1C04A0FF67102B29DF8119989F66D2BFC31F
y = 0xC50D8F726A102B590F87B68CACBB01ADE56B771ED38BF72D72942B9D4941C81E
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: C7:F5:5D:86:BD:78:84:2D:2F:56:76:B3:D3:D6:EF:5C:D7:3B:EF:7E:9F:93:31:60:F1:A9:A0:2D:4E:C9:13:A0
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA
y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3402
[...] /skipped 3402 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:31:00:E9:B7:20:C5:5F:F1:35:F1:90:3F:AA:86:F8:A0:B5:02:05:06:F0:E1:B8:D9:0E
7A:43:82:F8:5C:13:F8:90:FC:DB:4C:99:86:F3:31:A7:67:45:53:01:88:DE:E6:8B:43:02:30:02:21:53:88:C0
C8:B8:6F:AB:CF:E4:9D:31:45:47:43:FD:47:DC:F8:8E:30:D4:1C:FA:12:FF:13:EF:C4:87:88:66:6E:59:3A:2E
1B:1F:69:3B:6A:17:14:48:34:08:FE
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
3D:AA:BE:2D:20:A1:6C:EB:33:91:56:10:90:27:8C:B6:65:AE:B9:DB:F4:26:A1:54:32:FF:D3:07:DB:23:C3:8D
CLIENT_FINISHED (received)
Finished value: 0x1C48FC10A6D2A41764CCDDDA522D30E8372526BF297BE8FCBF6712FC1173E6CD
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
: tls13.1d.pw....
[Server KeyUpdate sent /message skipped/]
TCP: server: 194.87.103.72:443; client: 216.73.216.87:15756; timestamp: 1780169840
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 282ms; ServerHello sent: 143ms (including HelloRetryRequest time); TLS connection established: 281ms.