Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0101
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Key exchange: 0x0101 (ffdhe3072)
(Handshake level)
Handshake secrets:
Client: 0x70176FE596021972B95E88E0B4C1B32CE76ADC608EE3F7A83B437382C4879A40
Server: 0xA5FB1DF5B9D5FA81C527D9858F77EE5D4BEA7F2941B3662A16BAC10E9DB51FA2
Handshake keys:
Client write: 0xAD1B0E45C61167FC751DB508D92BC4F657026E411DEBF1C522E080FE2397EB1C
Server write: 0x0B38B248F9BCCF32189FD613F8EF627CD80F1DF307B9D88B3FFD309C08B1FC88
Handshake IVs:
Client write (IV): 0xBFA9CD3C264F06C9E3505E40
Server write (IV): 0x813488925B3A42FC0F8B153B
(Traffic level)
Traffic secrets:
Client: 0xC81CA2EF2B11972271F87492A9498E48DBC1302D5E2D81233312C0D73AA65421
Server: 0x1FA753E0630438DBBABF067C80F7F08161B29608191E29BAAE080974CC0B3724
Traffic keys:
Client write: 0x31B398B47652977648E25EC5E3EB44F93D421DA03BE9A43A474198BF70A75911
Server write: 0x34530A1A499F2046FE8183A8145C1A804ED1C4D3123EC86FD3243A2BD65F5CF5
Traffic base IVs:
Client write (base IV): 0xB01B48A05D1F40AC09A12A1A
Server write (base IV): 0x15B23662D92E276968B56A5B
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: D6:20:E2:94:5C:E6:90:7F:C8:AC:1F:BE:67:2A:75:83:4B:E6:0A:3C:93:55:B5:DB:6A:36:64:03:CB:08:AE:3F
Client SessionID: 89:AB:2B:CB:E0:6B:40:5D:93:21:82:4A:5D:96:80:C7:7F:1D:9F:5F:42:32:19:2A:29:0D:44:A6:66:B0:19:55
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x195A62A6AED333AAF9D07D3A8C4C80BB10AE95CD6D1E03A15F05A6DFB5ED2330
Type: 65281 (0xFF01); /non-TLS-1.3/
00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 89:AB:2B:CB:E0:6B:40:5D:93:21:82:4A:5D:96:80:C7:7F:1D:9F:5F:42:32:19:2A:29:0D:44:A6:66:B0:19:55
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: D6:20:E2:94:5C:E6:90:7F:C8:AC:1F:BE:67:2A:75:83:4B:E6:0A:3C:93:55:B5:DB:6A:36:64:03:CB:08:AE:3F
Client SessionID: 89:AB:2B:CB:E0:6B:40:5D:93:21:82:4A:5D:96:80:C7:7F:1D:9F:5F:42:32:19:2A:29:0D:44:A6:66:B0:19:55
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
17:72:D4:84:47:05:45:A1:B6:69:C0:6A:39:81:F0:13:53:AA:49:BE:FC:07:9C:BA:1D:93:FF:DD:70:18:DE:E3:9E
DB:AC:13:7C:08:F3:BA:3C:0B:41:13:3E:30:57:FF:EC:2D:1E:15:8E:59:F6:46:F1:5A:4F:31:FE:CB:52:1E:8B:2D
CD:1B:BC:5C:9F:B0:DF:A6:E4:75:A3:C0:8A:7E:DA:C8:DF:4E:51:06:07:DC:56:F4:5E:6A:9D:4B:FA:C7:C4:60:2B
0E:FC:C4:79:5E:B6:48:56:CE:12:F3:BC:3D:F8:D1:2E:14:7D:3F:90:E1:50:B1:F1:70:93:25:7C:89:77:FE:4E:E0
5E:03:82:93:9C:E8:21:4A:FC:D5:71:D4:8E:47:8F:F1:4E:C2:C4:5F:5D:BD:85:5D:15:F8:AB:A9:28:8C:E0:CF:71
24:43:70:2E:EE:F1:82:FE:73:94:CB:F3:7E:D0:20:51:62:C9:9F:FE:FD:D4:6A:A8:8F:DD:A2:B6:0B:EB:AE:0F:D0
C2:EA:11:6E:62:C4:38:22:5B:72:D0:9E:F1:7B:6A:D8:70:D9:43:E7:A6:19:29:B4:BC:BA:C2:C3:FF:F0:75:FF:9F
B9:29:2D:4C:AC:13:BC:3D:16:0F:61:92:71:24:E9:FF:CC:2F:97:D3:E4:78:66:E2:05:61:19:B8:D2:63:99:67:EC
A5:58:60:B2:84:97:E4:47:87:82:91:BA:47:13:AF:79:1F:F6:CC:BE:E4:95:87:A6:73:5C:67:A2:49:75:95:8A:A0
71:71:0B:79:AC:6B:16:FD:07:33:EF:FF:97:4E:B7:14:09:1E:7B:29:C6:AF:96:C1:96:4E:7D:20:A9:D0:BF:2B:C3
F7:B2:FC:C4:23:D6:FD:08:96:CA:43:F4:E1:6A:EA:8C:45:A5:0F:E8:95:9B:EB:5D:A6:D3:F9:24:F8:92:99:C0:0A
EB:6F:6D:FE:9C:9F:4E:EB:46:60:7B:E5:D4:CB:9D:A7:41:7D:F9:A8:12
Type: 65281 (0xFF01); /non-TLS-1.3/
00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 89:AB:2B:CB:E0:6B:40:5D:93:21:82:4A:5D:96:80:C7:7F:1D:9F:5F:42:32:19:2A:29:0D:44:A6:66:B0:19:55
Extensions:
Type: 51 (0x0033); "key_share"
ffdhe3072 (0x0101)
Len (octets, dec.): 384
Key:
4F:24:C0:64:3B:37:B7:7A:0F:14:C1:75:0F:2D:31:D1:3E:83:1B:36:AC:D4:A5:0D:3C:99:A8:57:23:D6:4F:1D:60
D0:1F:7E:C7:57:E3:E0:AC:FA:C6:7B:0E:47:D7:9B:37:63:CC:D8:9A:96:72:5A:6B:C0:50:5E:F7:60:52:42:69:06
E7:93:D0:1B:07:8E:0C:23:E5:78:B9:6B:AA:F7:19:B1:AB:9D:F3:C2:56:0C:F6:9C:11:BC:A1:48:7E:1D:3A:CF:3B
0C:15:32:25:23:69:BF:DA:74:31:3F:7E:4C:78:F8:31:90:E7:30:6F:6E:FC:D4:CA:B8:52:A6:A0:59:16:9D:67:7E
17:F5:09:83:E4:70:05:0B:E5:9E:9E:01:C7:B6:A1:A1:A7:33:50:8D:1E:06:63:2C:51:84:37:94:97:7F:BD:D8:1F
DD:81:B5:53:A5:BB:F8:0F:7F:56:FC:8D:1E:7C:EC:E1:2A:6F:EB:8E:A8:CF:50:0D:47:9F:FE:69:89:D5:79:8B:5F
5B:8D:BE:A5:01:20:8F:BD:22:96:E6:23:FC:6D:2D:55:CD:83:B7:1C:D8:92:09:40:83:9F:18:70:30:15:9E:96:76
BE:92:C2:36:A9:2F:07:9E:9A:36:5C:15:04:0B:58:64:C9:27:F3:E2:EA:C6:FF:2C:D8:07:81:8C:5C:97:38:AD:E6
83:4B:47:C8:5B:0A:31:45:7D:A1:48:13:2C:23:81:F3:A9:B1:16:65:84:66:93:72:81:09:9E:2E:D9:5F:55:F5:DC
E1:CD:09:24:86:C2:BE:69:C6:78:3F:B4:5A:B7:46:6A:44:E4:0D:0F:F4:FD:29:11:A6:7A:D5:4A:44:B0:80:BC:8B
7C:9F:50:75:C7:51:5E:88:C8:65:D0:C5:A1:02:AF:C4:D5:1B:2C:AE:2A:E3:A8:E8:51:EC:CD:8F:63:1E:3B:38:D1
D3:8B:ED:28:8C:FB:15:5A:D3:0E:9A:85:80:3C:FC:C2:24:46:89:03:87
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3888
[...] /skipped 3888 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:31:00:B4:DF:69:8C:6F:0D:13:1A:F6:E3:5E:E8:5A:B6:00:A6:6F:BD:E7:01:ED:69:E2
45:FD:CC:7B:09:29:22:09:A6:9A:2A:DA:D4:DC:D6:FF:9D:14:FB:12:AB:82:B5:51:81:02:30:07:D4:E1:1C:FA
F6:F9:7E:16:CA:12:71:FC:E9:EF:5F:31:EC:E3:B3:1E:B4:07:59:9A:A9:F7:B2:B0:CD:0A:50:83:C0:74:B8:E6
69:0B:6D:4F:DE:4F:70:E8:68:FD:7A
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
1F:A1:73:F2:E9:88:4E:70:4C:36:43:4D:57:C9:22:71:94:99:10:23:33:B5:0E:CB:AA:4C:85:EE:F1:EA:D5:98
[Legacy ChangeCipherSpec message present (client)]
CLIENT_FINISHED (received)
Finished value: 0x269C37C5C158A0BDD85511ED0722C71EDFD7066AEB1C1D6AC489869AEFC15340
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
e: Fri, 18 Apr 2025 00:25:34 GMT..Accept-Encoding: br,gzip..Host
: tls13.1d.pw..Connection: Keep-Alive....
TCP: server: 194.87.103.72:443; client: 18.97.14.88:51590; timestamp: 1747128669
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 439ms; ServerHello sent: 141ms (including HelloRetryRequest time); TLS connection established: 438ms.