Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.22.1-l
(This TLS-1.3-only server supports ESNI, HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0018
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Key exchange: 0x0018 (Secp384r1)
(Handshake level)
Handshake secrets:
Client: 0x618A62E2C1473CF1DA0BB118E26709BEA458DF36E5E28EF6B1AE4F35208B0A20CF5832874F04256D23A318876482E877
Server: 0x17C6979DFE4F5D5E703B4EE8D77CD891E4439A93350511620068EF3B290187307BA34FF5120FCCD86843B0C072584D05
Handshake keys:
Client write: 0x8A1F937F96E9EB63AA9AA8133A19D51E6564A70B92C005752CED15AE5C61D420
Server write: 0x89E76B9E2E2AAD607CB2ACA0AA44151E19D6C9BABE3785CDD41F8FE53046469F
Handshake IVs:
Client write (IV): 0xA7B9771DC44868D730E7134C
Server write (IV): 0xA1470CBC11269C9BF6DAE897
(Traffic level)
Traffic secrets:
Client: 0x4FCCC99A391718492863A4A37D39A11583FB7074D7319BBB0902C828D2B76AB92DD33256FBAB9E19DA5DC9A7B3F43647
Server: 0x92E1E23C51070F314FFD55AB488C357A0FC9B427916D2425EC4D84D1DDB560575CE484C37C2153A836E562F1380A44FE
Traffic keys:
Client write: 0x004F120213CFAC459A374AE011A0FEB5A1D0628B0A156668107674EF08F9703F
Server write: 0xC7789B8930B490C4632FB3E57D03E19751FE8ABB7BAAA4D1F4ED6E53DC5463C6
Traffic base IVs:
Client write (base IV): 0x76EFBEB0183ABD8980A5260B
Server write (base IV): 0x7F16A9BE317A40DB0EB5F461
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: AA:57:0F:AD:8F:90:37:00:1F:A1:A3:2E:7D:93:EA:95:0B:1B:D5:84:EE:03:A7:10:CC:69:5D:13:EF:5E:7B:6A
Client SessionID: n/a
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
00:09:08:68:74:74:70:2F:31:2E:31
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304
0x0303
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0xA536BE2AF9A0AF59A0AA48CD3EACC3D5B65733C2E82511578F71665217B41A23
Type: 65281 (0xFF01); /non-TLS-1.3/
00
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: n/a
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8
0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F
Client Random: AA:57:0F:AD:8F:90:37:00:1F:A1:A3:2E:7D:93:EA:95:0B:1B:D5:84:EE:03:A7:10:CC:69:5D:13:EF:5E:7B:6A
Client SessionID: n/a
Extensions:
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
0x0019 (Secp521r1)
0x001E (X448)
0x0100 (ffdhe2048)
0x0101 (ffdhe3072)
0x0102 (ffdhe4096)
0x0103 (ffdhe6144)
0x0104 (ffdhe8192)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 13 (0x000D); "signature_algorithms"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 50 (0x0032); "signature_algorithms_cert"
00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09
08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01
03:02:02:03:02:01:02:02
Type: 16 (0x0010); "application_layer_protocol_negotiation"
00:09:08:68:74:74:70:2F:31:2E:31
Type: 17 (0x0011); /non-TLS-1.3/
00:07:02:00:04:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304
0x0303
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0x09F8359FDD10F54970E73F56747DC1BACBF5C30ECD3EAB28FE3B5B983E5596B24E17260C776DED19B82CDE9794CE2A92
y = 0x5C9B6BA14454FF76C5DB5B10349505669038B2097976DAD75F1A1AAA0C9D9EEA610B102917B130EBC816F7AC884A5E0F
Type: 65281 (0xFF01); /non-TLS-1.3/
00
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: n/a
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0x884DFC0FE9602539133D59E3779E9DE8644D3532211C1061EFD16D15BE349D6723496325775E87CF3D396F1C02FCC5CF
y = 0x063315C18E34D26B9085A96A495F17B8557DB379DB6ABED0788C60417FCE917ADD8976BB955D9E7E1B1CC6C06F577280
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 4251
[...] /skipped 4251 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 106
05:03:00:66:30:64:02:30:20:1E:BA:E5:A0:9F:36:3B:CE:20:E9:E6:06:0C:E9:58:1F:16:E5:E7:88:F1:4C:A3
BD:D1:5E:3A:C7:59:25:76:17:45:AE:4E:D3:A3:70:17:8A:73:EB:28:0C:FE:0E:72:02:30:27:98:9B:B1:F4:3A
74:A7:97:86:0A:C2:6C:14:53:2D:8C:FE:B9:A4:89:65:0D:0D:34:98:6E:E5:1B:FF:2B:1B:BB:34:72:6A:5D:59
15:A2:DC:E5:61:BE:EF:48:A9:9B
Type: 20 (0x14) - "finished"
Length (octets, dec.): 48
38:3B:D1:F7:A6:09:28:6B:5C:57:A3:CA:25:EF:5D:1C:03:9A:92:BB:D3:9D:68:DF:F9:66:FC:6D:EF:E4:A8:C9
FC:E5:CF:97:04:38:CA:23:EF:43:22:56:FE:C0:75:F1
CLIENT_FINISHED (received)
Finished value: 0x207B3F41778A94CBE8C9979F58FD1AC25C4E57A19F0862ED1B03CD6F32776406A9CDBA719F0A5A5097A8621EEC38AD9B
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f
aq/)..Accept: text/html,application/xhtml+xml,application/xml;q=
0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc
e: Sat, 26 Nov 2022 22:25:10 GMT..Accept-Encoding: br,gzip..Host
: tls13.1d.pw..Connection: Keep-Alive....
TCP: server: 194.87.109.56:443; client: 18.232.31.206:55592; timestamp: 1675886713
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 358ms; ServerHello sent: 109ms (including HelloRetryRequest time); TLS connection established: 226ms.