TLS 1.3 Connection Test Server at tls13.1d.pw

Successfully connected

TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;

Detailed description:

v.0.24.3-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, X25519MLKEM768, X25519Kyber768, P256Kyber768, P384Kyber768, ECDHE, FFDHE, ESNI, etc.)

HelloRetryRequest used to (re)negotiate DH group
	First ClientHello, key shares:	0x001D
	Second ClientHello, key shares:	0x0018

CRYPTO_CONTEXT

	Protocol version: 0x0304
	Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
	Key exchange: 0x0018 (Secp384r1)

	(Handshake level)
	Handshake secrets:
		Client: 0xBFACE4FB0A0FAE7BCF2A51615BA2797E39CC9082A0CE8C4C669E9A84077A55309E01FBFA51CEC1ABA20CE895A349B896
		Server: 0xD98807FEDE52A70EEB100C346A7417097C8174A13F4DB910DBF22D5B757FFB4295FB3A2D347DD9BF9CA749B860EAA4C6
	Handshake keys:
		Client write: 0xDE7E2751BA6E46B82407943CC38839927DB69FD6F738C4BBE53260F25E83DEB2
		Server write: 0x539834C2DE8A569982A0C12C6B1B5966B3AF128E9D2F33212A2054F2A562DA1D
	Handshake IVs:
		Client write (IV): 0x427106003F20BE903FCB01FF
		Server write (IV): 0x93A1AD995D79C6783A7065E7

	(Traffic level)
	Traffic secrets:
		Client: 0x0903029FA98486F3592FA8DC3218E2AFAC8A4215DC6FAA098AAEB7E8BFB329F31EBA673F0FA74873EE5D5590773FBF64
		Server: 0x0F30A89F5CC4EF49E8D949221CA534B6C5FB7AFD3EE88BFAC89B2D4E351985D198E095E980C51107F000B84A60F9ECB2
		KeyUpdates log, server:
			0: 0x7AC8B4305020C89AD2319F22E251468D2B240E1DD949587BDE2091523E0863BA178218B19A755A1656A2975D4E3FEB9E
	Traffic keys:
		Client write: 0x1DAD09EC8DE18E030FCBF0F35FBC6857237FD56D553F8018964E2A56DBFDF856
		Server write: 0xBEA8F4C35C27F065561DEC6C96F540FC9AEE53D8B39583C87FBB9AD858B4F80F
		KeyUpdates log, server:
			0: 0x51BB76D7BD058404171A8A37D713951B544836550E75A47A2C9424687A48EA5A
	Traffic base IVs:
		Client write (base IV): 0xCDD8845F4E042044D792CEBF
		Server write (base IV): 0x55C0534DC9BAAAD40249A3F4
		KeyUpdates log, server:
			0: 0xB5D5547B309B5406A5AA1B1A

--- Messages ---

CLIENT_HELLO (recieved)

	Version: 0x0303
	Cipher suites:
		0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
		0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
	Client Random: 98:B7:68:FE:0A:C7:A7:BB:D3:86:3A:8F:8D:5C:29:CE:24:2D:3A:3C:48:4E:28:D6:DE:D7:EC:76:45:0A:05:22
	Client SessionID: 79:A1:56:8F:0B:CF:68:BD:64:B4:D5:07:68:8C:58:E4:52:E0:EA:2A:51:FE:C2:AC:51:16:EA:FB:28:EB:1E:E3
	Extensions:
		Type: 00 (0x0000); "server_name"
			00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
			hostname: tls13.1d.pw
		Type: 05 (0x0005); "status_request"
			01:00:00:00:00
		Type: 10 (0x000A); "supported_groups"
			0x001D (X25519)
			0x0017 (Secp256r1)
			0x0018 (Secp384r1)
			0x0019 (Secp521r1)
			0x001E (X448)
			0x0100 (ffdhe2048)
			0x0101 (ffdhe3072)
			0x0102 (ffdhe4096)
			0x0103 (ffdhe6144)
			0x0104 (ffdhe8192)
		Type: 11 (0x000B); /non-TLS-1.3/
			01:00
		Type: 13 (0x000D); "signature_algorithms"
			0x0403 (ECDSA_SECP256R1_SHA256)
			0x0503 (ECDSA_SECP384R1_SHA384)
			0x0603 (ECDSA_SECP521R1_SHA512)
			0x0804 (RSA_PSS_RSAE_SHA256)
			0x0805 (RSA_PSS_RSAE_SHA384)
			0x0806 (RSA_PSS_RSAE_SHA512)
			0x0809 (RSA_PSS_PSS_SHA256)
			0x080A (RSA_PSS_PSS_SHA384)
			0x080B (RSA_PSS_PSS_SHA512)
			0x0401 (RSA_PKCS1_SHA256)
			0x0501 (RSA_PKCS1_SHA384)
			0x0601 (RSA_PKCS1_SHA512)
			0x0402 _unknown_
			0x0303 _unknown_
			0x0301 _unknown_
			0x0302 _unknown_
			0x0203 (ECDSA_SHA1)
			0x0201 (RSA_PKCS1_SHA1)
			0x0202 _unknown_
		Type: 50 (0x0032); "signature_algorithms_cert"
			00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
			08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
			03:02:02:03:02:01:02:02
		Type: 16 (0x0010); "application_layer_protocol_negotiation"
			68:32 (HTTP/2/TLS)
			68:74:74:70:2F:31:2E:31 (HTTP/1.1)
		Type: 17 (0x0011); /non-TLS-1.3/
			00:07:02:00:04:00:00:00:00
		Type: 23 (0x0017); /non-TLS-1.3/
		Type: 43 (0x002B); "supported_versions"
			0x0304 (TLS 1.3)
			0x0303 (TLS 1.2)
		Type: 45 (0x002D); "psk_key_exchange_modes"
			01:01
		Type: 51 (0x0033); "key_share"
			X25519 (0x001D)
				x = 0x6D32EE7FE13CBD957085280AA6EC74F12CB7D642626631CF44BE18C352E3F667
		Type: 65281 (0xFF01); /non-TLS-1.3/
			00

HELLO_RETRY_REQUEST (sent, server)

	Legacy Version: 0x0303
	Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
	HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
	SessionID: 79:A1:56:8F:0B:CF:68:BD:64:B4:D5:07:68:8C:58:E4:52:E0:EA:2A:51:FE:C2:AC:51:16:EA:FB:28:EB:1E:E3
	Extensions:
		Type: 51 (0x0033); "key_share"
			Secp384r1 (0x0018)
		Type: 44 (0x002C); "cookie"
			00:08:0C:00:FE:E1:C0:DE:FA:57
		Type: 43 (0x002B); "supported_versions"
			0x0304

[Legacy ChangeCipherSpec message sent (server)]

CLIENT_HELLO (recieved)

	Version: 0x0303
	Cipher suites:
		0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
		0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
	Client Random: 98:B7:68:FE:0A:C7:A7:BB:D3:86:3A:8F:8D:5C:29:CE:24:2D:3A:3C:48:4E:28:D6:DE:D7:EC:76:45:0A:05:22
	Client SessionID: 79:A1:56:8F:0B:CF:68:BD:64:B4:D5:07:68:8C:58:E4:52:E0:EA:2A:51:FE:C2:AC:51:16:EA:FB:28:EB:1E:E3
	Extensions:
		Type: 00 (0x0000); "server_name"
			00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
			hostname: tls13.1d.pw
		Type: 05 (0x0005); "status_request"
			01:00:00:00:00
		Type: 10 (0x000A); "supported_groups"
			0x001D (X25519)
			0x0017 (Secp256r1)
			0x0018 (Secp384r1)
			0x0019 (Secp521r1)
			0x001E (X448)
			0x0100 (ffdhe2048)
			0x0101 (ffdhe3072)
			0x0102 (ffdhe4096)
			0x0103 (ffdhe6144)
			0x0104 (ffdhe8192)
		Type: 11 (0x000B); /non-TLS-1.3/
			01:00
		Type: 13 (0x000D); "signature_algorithms"
			0x0403 (ECDSA_SECP256R1_SHA256)
			0x0503 (ECDSA_SECP384R1_SHA384)
			0x0603 (ECDSA_SECP521R1_SHA512)
			0x0804 (RSA_PSS_RSAE_SHA256)
			0x0805 (RSA_PSS_RSAE_SHA384)
			0x0806 (RSA_PSS_RSAE_SHA512)
			0x0809 (RSA_PSS_PSS_SHA256)
			0x080A (RSA_PSS_PSS_SHA384)
			0x080B (RSA_PSS_PSS_SHA512)
			0x0401 (RSA_PKCS1_SHA256)
			0x0501 (RSA_PKCS1_SHA384)
			0x0601 (RSA_PKCS1_SHA512)
			0x0402 _unknown_
			0x0303 _unknown_
			0x0301 _unknown_
			0x0302 _unknown_
			0x0203 (ECDSA_SHA1)
			0x0201 (RSA_PKCS1_SHA1)
			0x0202 _unknown_
		Type: 50 (0x0032); "signature_algorithms_cert"
			00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
			08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
			03:02:02:03:02:01:02:02
		Type: 16 (0x0010); "application_layer_protocol_negotiation"
			68:32 (HTTP/2/TLS)
			68:74:74:70:2F:31:2E:31 (HTTP/1.1)
		Type: 17 (0x0011); /non-TLS-1.3/
			00:07:02:00:04:00:00:00:00
		Type: 23 (0x0017); /non-TLS-1.3/
		Type: 43 (0x002B); "supported_versions"
			0x0304 (TLS 1.3)
			0x0303 (TLS 1.2)
		Type: 44 (0x002C); "cookie"
			00:08:0C:00:FE:E1:C0:DE:FA:57
		Type: 45 (0x002D); "psk_key_exchange_modes"
			01:01
		Type: 51 (0x0033); "key_share"
			Secp384r1 (0x0018)
				x = 0x92DDFBBB9C54B58598B22DE14B7CC04EB9D0DB2A263AB072F9E7DDCF05A44B9E68CB2B0F76B0AAAE3CFC55AB03708736
				y = 0x3453BD99F0E0859AD622C0D8F932FB881E6B8712E701AB507230738550230BD4C1B42C12597559348DD8036C7BC1FEF6
		Type: 65281 (0xFF01); /non-TLS-1.3/
			00

SERVER_HELLO (sent)

	Legacy Version: 0x0303
	Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
	Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
	SessionID: 79:A1:56:8F:0B:CF:68:BD:64:B4:D5:07:68:8C:58:E4:52:E0:EA:2A:51:FE:C2:AC:51:16:EA:FB:28:EB:1E:E3
	Extensions:
		Type: 51 (0x0033); "key_share"
			Secp384r1 (0x0018)
				x = 0x884DFC0FE9602539133D59E3779E9DE8644D3532211C1061EFD16D15BE349D6723496325775E87CF3D396F1C02FCC5CF
				y = 0x063315C18E34D26B9085A96A495F17B8557DB379DB6ABED0788C60417FCE917ADD8976BB955D9E7E1B1CC6C06F577280
		Type: 43 (0x002B); "supported_versions"
			0x0304

[Legacy ChangeCipherSpec message sent (server)]

SERVER_HANDSHAKE_MESSAGES (sent)

	Type: 8 (0x08) - "encrypted_extensions"
		Length (octets, dec.): 2
		00:00
	Type: 11 (0x0B) - "certificate"
		Length (octets, dec.): 3839
		[...] /skipped 3839 data octets/
	Type: 15 (0x0F) - "certificate_verify"
		Length (octets, dec.): 107
		05:03:00:67:30:65:02:31:00:9D:81:89:15:86:7E:31:7A:CA:09:DB:EF:61:ED:87:A3:77:5F:B3:DA:38:8A:47
		66:17:49:51:F0:16:B7:93:0C:3A:5B:87:2F:65:48:A9:07:35:B0:A9:A0:27:42:CA:6B:02:30:5C:D0:88:4B:00
		C1:C3:3B:9D:45:46:65:C4:7C:71:48:27:88:4A:B5:4B:B5:84:3E:82:E2:07:5F:15:0C:17:43:30:48:5C:30:89
		DC:9F:64:D3:32:50:E3:71:53:35:80
	Type: 20 (0x14) - "finished"
		Length (octets, dec.): 48
		29:2D:FB:FE:C7:5B:9A:3E:21:46:9C:85:25:A0:16:88:3D:81:02:24:E5:89:11:09:83:80:95:B2:FA:D6:C5:95
		FD:52:55:2E:47:C1:D2:1C:CC:46:F2:0F:B4:91:CC:1E
[Legacy ChangeCipherSpec message present (client)]

CLIENT_FINISHED (received)

	Finished value: 0x9F54BE4FDFC84C4BB2412BFAFFDCE835C5CDC1EDC167A983E1F9DCEBC3F9AE0B7DDA41B5B91074C1E0B33B6F4519FD0C
	Client Finished status: OK

CLIENT_APPLICATION_DATA (recieved)

	ASCII dump (filtered):
		GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
		aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
		0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
		e: Sat, 09 Nov 2024 03:25:50 GMT..Accept-Encoding: br,gzip..Host
		: tls13.1d.pw..Connection: Keep-Alive....

[Server KeyUpdate sent /message skipped/]



TCP: server: 194.87.109.56:443; client: 18.97.14.83:54294; timestamp: 1733965062


Contacts: dxdt.ru, alex/()\/abaabb.xyz.

 /\_/\
( 0.0 )
 = ^ =
 /|_|\
(") (")=~


Provide ESNI to get second ASCII cat

Elapsed server side: 311ms; ServerHello sent: 92ms (including HelloRetryRequest time); TLS connection established: 311ms.