Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.24.2-p (This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, X25519Kyber768, P256Kyber768, P384Kyber768, ECDHE, FFDHE, ESNI, etc.) HelloRetryRequest used to (re)negotiate DH group First ClientHello, key shares: 0x001D Second ClientHello, key shares: 0x0017 CRYPTO_CONTEXT Protocol version: 0x0304 Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384) Key exchange: 0x0017 (Secp256r1) (Handshake level) Handshake secrets: Client: 0x666BB940A681CFCE76478CFAB22741D4A8B0D42C131FD98E618CC192720DE61F9C459D8BEB26C54589E36EA1F87A72D8 Server: 0xA8C6B7B18FFA619E8EFCDAE8D48638A7DD55C76145085BAD580875F561A1AA2153B8F059517F3E432994F357C5C2C4C5 Handshake keys: Client write: 0x746236BD325778FE5405275CF0EC57AEFD3483463811A9A714BCAEFB656668E0 Server write: 0x7C41719F3037998C34EA6567B73C4C310583240B7C736B5716CED048A9C56394 Handshake IVs: Client write (IV): 0xD0444C39FEBD5DC3ACE8F041 Server write (IV): 0x0A0932A70EEC40CCDAB829B4 (Traffic level) Traffic secrets: Client: 0x84CFA1BC2C224B1BC5E2480984650ED282D8BB619DF5DCD0DE52DFBD2EB87994801098A69F452A42241C79FFD09B092F Server: 0xBF1BF552DE04823846E6E2D2884A7F956A0A9F6F2C325D2F219017FA26055F71EC501373DA5C7CC1FB3A4D7E7C8333BB Traffic keys: Client write: 0x09C111F48F252828B90FA574A1B665E25A4EBC003068511D3C40F51000DAD2E3 Server write: 0x4BB2967EC4D5822CEDD5D10AF351FF7DCB72CF7186DA83761F098EAE21CF58D0 Traffic base IVs: Client write (base IV): 0xC0A4C6DECFBC43AC096906CD Server write (base IV): 0x18B2C6AE4A6635B07E49D245 --- Messages --- CLIENT_HELLO (recieved) Version: 0x0303 Cipher suites: 0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8 0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F Client Random: 17:51:22:15:3D:34:E3:3D:F3:9B:D9:AD:E8:A4:B8:17:B4:57:14:2C:E7:18:06:0E:14:D8:BE:9C:8B:9D:B5:D6 Client SessionID: 4B:89:A8:48:A6:BC:C4:AD:C0:30:3B:F1:D8:7C:F6:D2:35:F3:48:2C:1F:07:B5:D5:38:5B:46:45:B7:5B:77:72 Extensions: Type: 00 (0x0000); "server_name" 00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77 hostname: tls13.1d.pw Type: 05 (0x0005); "status_request" 01:00:00:00:00 Type: 10 (0x000A); "supported_groups" 0x001D (X25519) 0x0017 (Secp256r1) 0x0018 (Secp384r1) 0x0019 (Secp521r1) 0x001E (X448) 0x0100 (ffdhe2048) 0x0101 (ffdhe3072) 0x0102 (ffdhe4096) 0x0103 (ffdhe6144) 0x0104 (ffdhe8192) Type: 11 (0x000B); /non-TLS-1.3/ 01:00 Type: 13 (0x000D); "signature_algorithms" 0x0403 (ECDSA_SECP256R1_SHA256) 0x0503 (ECDSA_SECP384R1_SHA384) 0x0603 (ECDSA_SECP521R1_SHA512) 0x0804 (RSA_PSS_RSAE_SHA256) 0x0805 (RSA_PSS_RSAE_SHA384) 0x0806 (RSA_PSS_RSAE_SHA512) 0x0809 (RSA_PSS_PSS_SHA256) 0x080A (RSA_PSS_PSS_SHA384) 0x080B (RSA_PSS_PSS_SHA512) 0x0401 (RSA_PKCS1_SHA256) 0x0501 (RSA_PKCS1_SHA384) 0x0601 (RSA_PKCS1_SHA512) 0x0402 _unknown_ 0x0303 _unknown_ 0x0301 _unknown_ 0x0302 _unknown_ 0x0203 (ECDSA_SHA1) 0x0201 (RSA_PKCS1_SHA1) 0x0202 _unknown_ Type: 50 (0x0032); "signature_algorithms_cert" 00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09 08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01 03:02:02:03:02:01:02:02 Type: 16 (0x0010); "application_layer_protocol_negotiation" 68:32 (HTTP/2/TLS) 68:74:74:70:2F:31:2E:31 (HTTP/1.1) Type: 17 (0x0011); /non-TLS-1.3/ 00:07:02:00:04:00:00:00:00 Type: 23 (0x0017); /non-TLS-1.3/ Type: 43 (0x002B); "supported_versions" 0x0304 (TLS 1.3) 0x0303 (TLS 1.2) Type: 45 (0x002D); "psk_key_exchange_modes" 01:01 Type: 51 (0x0033); "key_share" X25519 (0x001D) x = 0x46C1B2856E75AD4948B382D646AFCE36E00DD54430D8B3054F5B1216A0027224 Type: 65281 (0xFF01); /non-TLS-1.3/ 00 HELLO_RETRY_REQUEST (sent, server) Legacy Version: 0x0303 Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384) HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C SessionID: 4B:89:A8:48:A6:BC:C4:AD:C0:30:3B:F1:D8:7C:F6:D2:35:F3:48:2C:1F:07:B5:D5:38:5B:46:45:B7:5B:77:72 Extensions: Type: 51 (0x0033); "key_share" Secp256r1 (0x0017) Type: 44 (0x002C); "cookie" 00:08:0C:00:FE:E1:C0:DE:FA:57 Type: 43 (0x002B); "supported_versions" 0x0304 [Legacy ChangeCipherSpec message sent (server)] CLIENT_HELLO (recieved) Version: 0x0303 Cipher suites: 0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8 0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F Client Random: 17:51:22:15:3D:34:E3:3D:F3:9B:D9:AD:E8:A4:B8:17:B4:57:14:2C:E7:18:06:0E:14:D8:BE:9C:8B:9D:B5:D6 Client SessionID: 4B:89:A8:48:A6:BC:C4:AD:C0:30:3B:F1:D8:7C:F6:D2:35:F3:48:2C:1F:07:B5:D5:38:5B:46:45:B7:5B:77:72 Extensions: Type: 00 (0x0000); "server_name" 00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77 hostname: tls13.1d.pw Type: 05 (0x0005); "status_request" 01:00:00:00:00 Type: 10 (0x000A); "supported_groups" 0x001D (X25519) 0x0017 (Secp256r1) 0x0018 (Secp384r1) 0x0019 (Secp521r1) 0x001E (X448) 0x0100 (ffdhe2048) 0x0101 (ffdhe3072) 0x0102 (ffdhe4096) 0x0103 (ffdhe6144) 0x0104 (ffdhe8192) Type: 11 (0x000B); /non-TLS-1.3/ 01:00 Type: 13 (0x000D); "signature_algorithms" 0x0403 (ECDSA_SECP256R1_SHA256) 0x0503 (ECDSA_SECP384R1_SHA384) 0x0603 (ECDSA_SECP521R1_SHA512) 0x0804 (RSA_PSS_RSAE_SHA256) 0x0805 (RSA_PSS_RSAE_SHA384) 0x0806 (RSA_PSS_RSAE_SHA512) 0x0809 (RSA_PSS_PSS_SHA256) 0x080A (RSA_PSS_PSS_SHA384) 0x080B (RSA_PSS_PSS_SHA512) 0x0401 (RSA_PKCS1_SHA256) 0x0501 (RSA_PKCS1_SHA384) 0x0601 (RSA_PKCS1_SHA512) 0x0402 _unknown_ 0x0303 _unknown_ 0x0301 _unknown_ 0x0302 _unknown_ 0x0203 (ECDSA_SHA1) 0x0201 (RSA_PKCS1_SHA1) 0x0202 _unknown_ Type: 50 (0x0032); "signature_algorithms_cert" 00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09 08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01 03:02:02:03:02:01:02:02 Type: 16 (0x0010); "application_layer_protocol_negotiation" 68:32 (HTTP/2/TLS) 68:74:74:70:2F:31:2E:31 (HTTP/1.1) Type: 17 (0x0011); /non-TLS-1.3/ 00:07:02:00:04:00:00:00:00 Type: 23 (0x0017); /non-TLS-1.3/ Type: 43 (0x002B); "supported_versions" 0x0304 (TLS 1.3) 0x0303 (TLS 1.2) Type: 44 (0x002C); "cookie" 00:08:0C:00:FE:E1:C0:DE:FA:57 Type: 45 (0x002D); "psk_key_exchange_modes" 01:01 Type: 51 (0x0033); "key_share" Secp256r1 (0x0017) x = 0x03BA94062581E0C74B98CF714677268112EF01C8B00FAD40FD2660E409CFDB7C y = 0x397610346B4C1E2790C263CC7655A682C927221E91E5BAE57F3AB7A26EB49C3E Type: 65281 (0xFF01); /non-TLS-1.3/ 00 SERVER_HELLO (sent) Legacy Version: 0x0303 Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384) Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 SessionID: 4B:89:A8:48:A6:BC:C4:AD:C0:30:3B:F1:D8:7C:F6:D2:35:F3:48:2C:1F:07:B5:D5:38:5B:46:45:B7:5B:77:72 Extensions: Type: 51 (0x0033); "key_share" Secp256r1 (0x0017) x = 0x1FADAC79156E08C8532CE88DF887273141ACE16E44E9C268CE496596F41B65FA y = 0xF82394637B6ACF004AB253F956BD2CD6CA6C9AD8454BF1FBF281A6C54A93D99C Type: 43 (0x002B); "supported_versions" 0x0304 [Legacy ChangeCipherSpec message sent (server)] SERVER_HANDSHAKE_MESSAGES (sent) Type: 8 (0x08) - "encrypted_extensions" Length (octets, dec.): 2 00:00 Type: 11 (0x0B) - "certificate" Length (octets, dec.): 3843 [...] /skipped 3843 data octets/ Type: 15 (0x0F) - "certificate_verify" Length (octets, dec.): 108 05:03:00:68:30:66:02:31:00:BF:CD:C1:1E:16:84:74:4C:5C:8A:6B:EE:56:D8:F7:60:E8:58:39:C3:CD:F3:FD 1A:4C:76:13:CF:2D:FD:22:99:A1:E1:BE:2B:35:97:A0:C3:8C:5D:1A:AF:E3:81:61:BB:02:31:00:CF:65:FD:84 27:4D:97:9D:8A:E4:2B:FC:54:55:67:15:3B:9E:84:89:7B:F5:22:FB:37:B7:56:24:41:F4:29:4A:17:87:B2:0E B4:67:91:08:F4:9B:C2:3E:B1:57:28:48 Type: 20 (0x14) - "finished" Length (octets, dec.): 48 EC:0B:C8:54:A3:E5:2B:7E:F5:61:DB:3B:B5:B9:6C:88:E5:D6:8C:E9:73:55:2F:E2:A1:B7:49:17:1A:1C:9B:DA C7:09:4E:DC:5E:60:2C:A7:82:8C:EE:78:80:CF:6F:50 [Legacy ChangeCipherSpec message present (client)] CLIENT_FINISHED (received) Finished value: 0xCAB18EEC80398BB0E1F2A9219123563CD7109D8134E4324FDCA12E8CA45D987B64BC2FE38FD8212C55A9C5FF782F571E Client Finished status: OK CLIENT_APPLICATION_DATA (recieved) ASCII dump (filtered): GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f aq/)..Accept: text/html,application/xhtml+xml,application/xml;q= 0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc e: Wed, 18 Sep 2024 11:13:15 GMT..Accept-Encoding: br,gzip..Host : tls13.1d.pw..Connection: Keep-Alive.... TCP: server: 194.87.109.56:443; client: 44.192.95.161:58104; timestamp: 1728725284 Contacts: dxdt.ru, alex/()\/abaabb.xyz. /\_/\ ( 0.0 ) = ^ = /|_|\ (") (")=~ Provide ESNI to get second ASCII cat Elapsed server side: 318ms; ServerHello sent: 94ms (including HelloRetryRequest time); TLS connection established: 318ms.