Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0017
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Key exchange: 0x0017 (Secp256r1)
(Handshake level)
Handshake secrets:
Client: 0xFC756362AFFA695709A6C7A183A795D28E9B7D637023A3B087D9F0771BBAB18C10A7DAB31827E71DF45BAE9ED815401D
Server: 0x3B7D4BB5494A81E42A5CAC4DC43D0EDFE4DF5664C3F60F6770F50ABBD84697880AC41C87B74B174F1705CF125D72D7F6
Handshake keys:
Client write: 0xD15F437AFC58FBFEEE9B9C6C1B48F2FE18F2383864ADA0566BDECD83E0ED9E92
Server write: 0xEED929AC9BBDD5CF0E4642CB2B431E763EB8836D0F32E221B25FDE5712AD9833
Handshake IVs:
Client write (IV): 0x3AA8BC4B5E66462F3DD1C93F
Server write (IV): 0xF6EC024FF259467A731BBDDF
(Traffic level)
Traffic secrets:
Client: 0x8AAB880E5F26DE950A8345B696AD0D9BBF06597B9F044B2BF5FC97A0D42517ED06FEE624A32AA32C7C2F25431ACD57EC
Server: 0x76403791F3A788222652D9DA4FB5481E91B0C22FF431780E4E090AA17EC11FA7BE33D34307238EFA003098F6EF41FBAD
Traffic keys:
Client write: 0xED43347EF3BC3E67F0122D835ADD3065A17B183DF0CCD3CDB642B91090F1DCE9
Server write: 0x6870E42E8C8A358C17494F589A41FBB0C9260E22C12C3775DE9E3B6A1280BA39
Traffic base IVs:
Client write (base IV): 0xC26714F0AA855985763BC74A
Server write (base IV): 0x374D60B0DEE62C29713DA96F
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 73:96:84:0F:69:08:72:69:4F:E2:0A:0F:D4:01:48:08:3C:45:98:08:BF:B4:50:CB:C2:5E:F9:E0:D8:CE:22:CD
Client SessionID: B9:58:E6:31:46:79:E4:B3:C6:78:C3:A8:38:58:C7:5F:87:CB:54:CA:79:11:8A:89:54:7A:37:02:E8:45:BC:F3
Extensions:
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0xD93DA9440684A5E33B929924B24FEC482D8FEE45973E232070DB23FD0B31DB30
Type: 35 (0x0023); /non-TLS-1.3/
Type: 23 (0x0017); /non-TLS-1.3/
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 05 (0x0005); "status_request"
01:00:00:00:00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: B9:58:E6:31:46:79:E4:B3:C6:78:C3:A8:38:58:C7:5F:87:CB:54:CA:79:11:8A:89:54:7A:37:02:E8:45:BC:F3
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: 73:96:84:0F:69:08:72:69:4F:E2:0A:0F:D4:01:48:08:3C:45:98:08:BF:B4:50:CB:C2:5E:F9:E0:D8:CE:22:CD
Client SessionID: B9:58:E6:31:46:79:E4:B3:C6:78:C3:A8:38:58:C7:5F:87:CB:54:CA:79:11:8A:89:54:7A:37:02:E8:45:BC:F3
Extensions:
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x1C6DEAB5FBC85294D7F7517D9C92D220B459621BB74BCFC51AF68315DFDA2F13
y = 0xBC7172E1C16397624F61135271D0EDE3B176F89E8D341CD128F579205CE4B3D5
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 35 (0x0023); /non-TLS-1.3/
Type: 23 (0x0017); /non-TLS-1.3/
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 05 (0x0005); "status_request"
01:00:00:00:00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: B9:58:E6:31:46:79:E4:B3:C6:78:C3:A8:38:58:C7:5F:87:CB:54:CA:79:11:8A:89:54:7A:37:02:E8:45:BC:F3
Extensions:
Type: 51 (0x0033); "key_share"
Secp256r1 (0x0017)
x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA
y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3402
[...] /skipped 3402 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 107
05:03:00:67:30:65:02:30:46:2E:5B:94:5C:79:DF:D4:46:81:86:33:2B:B2:B4:81:C9:D9:FA:45:16:7C:7D:5B
70:4C:B9:DA:53:BB:17:BE:64:D8:B2:A0:02:3A:08:DC:8C:78:0A:41:FC:56:CA:06:02:31:00:B0:89:F2:C2:61
F3:19:E4:3A:85:5D:2C:17:BD:61:18:26:F9:AE:B3:0A:C4:AD:F4:27:FF:47:13:F4:E2:1C:07:0D:03:3E:71:C3
05:A4:5A:C8:F2:F6:84:9E:E5:6E:79
Type: 20 (0x14) - "finished"
Length (octets, dec.): 48
10:AC:B9:91:FF:79:66:C5:C4:CE:D3:95:0E:E2:86:1A:9B:4E:DB:B8:7B:89:DE:31:2E:FD:7C:8F:B0:C6:E2:3D
F1:15:02:10:44:E0:9D:5D:E4:57:40:28:BD:E6:F2:A6
CLIENT_FINISHED (received)
Finished value: 0x2AC1CE159272A8DECB827E8083F06EE5F62CD816AE7B3FCE5158FFDF9A98518C402CBD6DA8B96794B5CEBFC12A4180D7
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
: tls13.1d.pw....
TCP: server: 194.87.103.72:443; client: 216.73.216.246:9417; timestamp: 1783797937
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 313ms; ServerHello sent: 159ms (including HelloRetryRequest time); TLS connection established: 313ms.