Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0018
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Key exchange: 0x0018 (Secp384r1)
(Handshake level)
Handshake secrets:
Client: 0x8D4635E943832E9387FB2523C659D3489DBAED51F8F9AE2F1B629BF3087C1391
Server: 0xD19018D87D26882940949BEF379A4AA14F7099A8E759597997A126E6011A8AEA
Handshake keys:
Client write: 0x7CF1321BE9D7BCF036C27D42E8676E8AC985ACBEB2E0853340D9999A2DB0A446
Server write: 0xDFAC2EDAB4591127158C9CE61D8B463CEB77D7C380A8A6575585BC27BF8A5EDB
Handshake IVs:
Client write (IV): 0x7DE0B7C7DA2BE6681B2857CE
Server write (IV): 0x4284C77EA0B7A9153D34E07C
(Traffic level)
Traffic secrets:
Client: 0x5D811984FBA5C5BBA680FC9287DB1322A405383AD87DD1C043C5E81265650948
Server: 0x7805CD3F8FAF4946496AF48C628F55F79CF0B1A39D4982760EEBE9DFDD8131C0
Traffic keys:
Client write: 0xA228E556B330D3AAEBE5869226D073513DC27994DDC69A1FE2554C7F81AC9504
Server write: 0x1A451D4D7D50EE77471490B71F6AF61260C16CEBB6D12662373B929A9F9FDFE6
Traffic base IVs:
Client write (base IV): 0x0BB60AB97E0086BBAE2057B5
Server write (base IV): 0x86D989F673D61C1CE7CE3754
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: 41:EE:7B:61:76:86:93:27:56:35:30:67:AE:AA:D9:79:0A:08:B5:CB:81:F5:F9:80:5A:FF:57:AC:35:00:80:42
Client SessionID: 73:C5:AB:A5:F7:32:3A:8E:DD:09:1C:31:45:F5:39:AE:5F:87:5C:C6:36:9B:8B:F2:C9:61:2B:87:C2:40:B2:CB
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x94CE502581401C2623B6835420CD71E7C2697598C50936BCBE917ABB615F741C
Type: 65281 (0xFF01); /non-TLS-1.3/
00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 73:C5:AB:A5:F7:32:3A:8E:DD:09:1C:31:45:F5:39:AE:5F:87:5C:C6:36:9B:8B:F2:C9:61:2B:87:C2:40:B2:CB
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: 41:EE:7B:61:76:86:93:27:56:35:30:67:AE:AA:D9:79:0A:08:B5:CB:81:F5:F9:80:5A:FF:57:AC:35:00:80:42
Client SessionID: 73:C5:AB:A5:F7:32:3A:8E:DD:09:1C:31:45:F5:39:AE:5F:87:5C:C6:36:9B:8B:F2:C9:61:2B:87:C2:40:B2:CB
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
0x0403 (ECDSA_SECP256R1_SHA256)
0x0503 (ECDSA_SECP384R1_SHA384)
0x0603 (ECDSA_SECP521R1_SHA512)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0809 (RSA_PSS_PSS_SHA256)
0x080A (RSA_PSS_PSS_SHA384)
0x080B (RSA_PSS_PSS_SHA512)
0x0401 (RSA_PKCS1_SHA256)
0x0501 (RSA_PKCS1_SHA384)
0x0601 (RSA_PKCS1_SHA512)
0x0402 _unknown_
0x0303 _unknown_
0x0301 _unknown_
0x0302 _unknown_
0x0203 (ECDSA_SHA1)
0x0201 (RSA_PKCS1_SHA1)
0x0202 _unknown_
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0x4168DDE2FCF1B4D0569576E9E290BADB92FB79089F2AB34225CA20C0537A5AFF032813BCB6599BA2F76495FC8E4046CD
y = 0xF3E3125CAE977AD6D9DA266ECE813F3B7A70BEDF7C1BA315C71777EAFEB8C3B274B0BE13D27C3C5EA579702E29F29119
Type: 65281 (0xFF01); /non-TLS-1.3/
00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1303 (TLS_CHACHA20_POLY1305_SHA256)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 73:C5:AB:A5:F7:32:3A:8E:DD:09:1C:31:45:F5:39:AE:5F:87:5C:C6:36:9B:8B:F2:C9:61:2B:87:C2:40:B2:CB
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0x884DFC0FE9602539133D59E3779E9DE8644D3532211C1061EFD16D15BE349D6723496325775E87CF3D396F1C02FCC5CF
y = 0x063315C18E34D26B9085A96A495F17B8557DB379DB6ABED0788C60417FCE917ADD8976BB955D9E7E1B1CC6C06F577280
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3853
[...] /skipped 3853 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 108
05:03:00:68:30:66:02:31:00:BA:B4:8D:63:78:F3:A0:39:88:BE:40:81:04:D6:A6:93:CB:C5:A5:B3:96:2F:2C
41:B4:CE:91:2B:CA:C2:3B:3C:80:A8:62:C7:97:E2:0C:60:09:23:B8:62:AA:EA:F0:AC:02:31:00:8E:FC:D2:DC
7B:97:5E:CD:02:69:E4:A0:95:FE:6F:B0:50:22:C2:5E:66:5A:C7:79:36:2C:CE:75:DC:FB:34:A5:FA:33:31:2F
38:27:05:7B:E9:DF:CF:E8:51:A2:31:30
Type: 20 (0x14) - "finished"
Length (octets, dec.): 32
4A:AB:8B:F8:4C:8C:31:2B:68:7A:6D:9F:FB:A8:FD:57:2A:E6:F2:C9:B5:72:CC:B5:CB:FA:DA:55:FF:2B:3C:23
[Legacy ChangeCipherSpec message present (client)]
CLIENT_FINISHED (received)
Finished value: 0x617701DCDD55E6D98EFE1C561376FA4CD798855741ACDC3C1355B711B32B2E2A
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
e: Mon, 23 Jun 2025 15:30:58 GMT..Accept-Encoding: br,gzip..Host
: tls13.1d.pw..Connection: Keep-Alive....
TCP: server: 194.87.103.72:443; client: 18.97.9.172:35646; timestamp: 1752968963
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 453ms; ServerHello sent: 141ms (including HelloRetryRequest time); TLS connection established: 453ms.