Successfully connected
TLS 1.3 OK; HelloRetryRequest used; server-initiated key update accomplished;
Detailed description:
v.0.24.4-p
(This TLS-1.3-only server supports: HelloRetryRequest, KeyUpdate, ECDHE, FFDHE, X25519MLKEM768, SecP256r1MLKEM768, X25519Kyber768, ESNI, etc.)
HelloRetryRequest used to (re)negotiate DH group
First ClientHello, key shares: 0x001D
Second ClientHello, key shares: 0x0018
CRYPTO_CONTEXT
Protocol version: 0x0304
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Key exchange: 0x0018 (Secp384r1)
(Handshake level)
Handshake secrets:
Client: 0xE49E73D2B8CFF08C80174C701ACC183FB9E0C519E0C438D2014A014F31779B27CC581BC9D68F6CBE4632E9A780A68D73
Server: 0x9FA3E718D6A2FAB5E583B31BB94CB22F291AD6DEEBEA57FAE5F78F25843EBCA450E94E49404FF9A272FCD490C0C919CA
Handshake keys:
Client write: 0x047CA9276FA0E24CD3022CE5807A0DB36CFE67DF1CC7D1F9B4C9415FDF1C59B2
Server write: 0xD77393BA995B90169214D2E05D7D20E4C375C42105B584E845F4E873204ED9C3
Handshake IVs:
Client write (IV): 0x7B0BCDE12F3ECD1866FECF13
Server write (IV): 0xEF5B15AA929F769F5BBA435E
(Traffic level)
Traffic secrets:
Client: 0x773578165856A9EF9F08B60DA2EB4B9313ED6E6A2A3A0682A61B470B41BFA05B4E92B9BF4B62DE5F13923F966759A3C6
Server: 0x4A0683A44F0AD5299726729F575768E402FB8C0E24BF4882FE8306E48D6E9C7EC48DAB341404765BC32ED0C52D9A93F0
KeyUpdates log, server:
0: 0x2B3E0DD68BA1C2B8B3A78D0898DFA0D86FFFFED38A9F1D4D72785A67656B246A120BE1D5AC1FD94EEC710627620429FC
Traffic keys:
Client write: 0x05D038DD46D5FEB09F15F2DA748D56906431609A16CEA50FC8DBB7FB31E10747
Server write: 0xCD917FD612F5B9BE467B125242C6D6933C0960DD27980D7764BF0A0FE9691884
KeyUpdates log, server:
0: 0xAB3731D9DD9EC763EC6507F5A45CAF83DA52D67B0C3474B8FC1FC6666D7F90C9
Traffic base IVs:
Client write (base IV): 0x9346CB2C10A375AEBD980F05
Server write (base IV): 0x0D60BBA2FF304AD036BDADC5
KeyUpdates log, server:
0: 0xB994539B3525714B13AC4993
--- Messages ---
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: FD:5F:98:0A:B1:C2:D4:7D:DE:43:E8:22:4B:C4:2E:A9:43:18:E4:77:11:E1:FE:4A:A4:BF:B7:70:99:15:5D:A8
Client SessionID: 80:9E:F1:10:7B:6A:31:C0:41:70:0E:E7:23:25:2D:81:CC:49:31:80:11:1E:E0:E5:8B:FB:17:53:1E:CF:5B:B4
Extensions:
Type: 35 (0x0023); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 51 (0x0033); "key_share"
X25519 (0x001D)
x = 0x0E90887E2A10C8E6FD1ABF38FA4C7A1E36EBE57F27D77AA2F70D27C696BBCC38
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
HELLO_RETRY_REQUEST (sent, server)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C
SessionID: 80:9E:F1:10:7B:6A:31:C0:41:70:0E:E7:23:25:2D:81:CC:49:31:80:11:1E:E0:E5:8B:FB:17:53:1E:CF:5B:B4
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
[Legacy ChangeCipherSpec message present (client)]
CLIENT_HELLO (recieved)
Version: 0x0303
Cipher suites:
0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xC02F
0xCCA8,0x00FF
Client Random: FD:5F:98:0A:B1:C2:D4:7D:DE:43:E8:22:4B:C4:2E:A9:43:18:E4:77:11:E1:FE:4A:A4:BF:B7:70:99:15:5D:A8
Client SessionID: 80:9E:F1:10:7B:6A:31:C0:41:70:0E:E7:23:25:2D:81:CC:49:31:80:11:1E:E0:E5:8B:FB:17:53:1E:CF:5B:B4
Extensions:
Type: 44 (0x002C); "cookie"
00:08:0C:00:FE:E1:C0:DE:FA:57
Type: 35 (0x0023); /non-TLS-1.3/
Type: 43 (0x002B); "supported_versions"
0x0304 (TLS 1.3)
0x0303 (TLS 1.2)
Type: 16 (0x0010); "application_layer_protocol_negotiation"
68:32 (HTTP/2/TLS)
68:74:74:70:2F:31:2E:31 (HTTP/1.1)
Type: 05 (0x0005); "status_request"
01:00:00:00:00
Type: 23 (0x0017); /non-TLS-1.3/
Type: 45 (0x002D); "psk_key_exchange_modes"
01:01
Type: 13 (0x000D); "signature_algorithms"
0x0503 (ECDSA_SECP384R1_SHA384)
0x0403 (ECDSA_SECP256R1_SHA256)
0x0807 (ED25519)
0x0806 (RSA_PSS_RSAE_SHA512)
0x0805 (RSA_PSS_RSAE_SHA384)
0x0804 (RSA_PSS_RSAE_SHA256)
0x0601 (RSA_PKCS1_SHA512)
0x0501 (RSA_PKCS1_SHA384)
0x0401 (RSA_PKCS1_SHA256)
Type: 11 (0x000B); /non-TLS-1.3/
01:00
Type: 00 (0x0000); "server_name"
00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77
hostname: tls13.1d.pw
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0xCACA8A0AEEB4E7029F50A841BFD0903F38E8184C15A51847C68B23C18494805D527831D6D4F8D37A0624941C40452223
y = 0x40B8E62B72F52B30C8D32AE920D3B5D482A6D05790C1E732267410A526A439760731BFA2CA833CD3E0510ADCAEB1A887
Type: 10 (0x000A); "supported_groups"
0x001D (X25519)
0x0017 (Secp256r1)
0x0018 (Secp384r1)
SERVER_HELLO (sent)
Legacy Version: 0x0303
Cipher suite: 0x1302 (TLS_AES_256_GCM_SHA384)
Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00
SessionID: 80:9E:F1:10:7B:6A:31:C0:41:70:0E:E7:23:25:2D:81:CC:49:31:80:11:1E:E0:E5:8B:FB:17:53:1E:CF:5B:B4
Extensions:
Type: 51 (0x0033); "key_share"
Secp384r1 (0x0018)
x = 0x884DFC0FE9602539133D59E3779E9DE8644D3532211C1061EFD16D15BE349D6723496325775E87CF3D396F1C02FCC5CF
y = 0x063315C18E34D26B9085A96A495F17B8557DB379DB6ABED0788C60417FCE917ADD8976BB955D9E7E1B1CC6C06F577280
Type: 43 (0x002B); "supported_versions"
0x0304
[Legacy ChangeCipherSpec message sent (server)]
SERVER_HANDSHAKE_MESSAGES (sent)
Type: 8 (0x08) - "encrypted_extensions"
Length (octets, dec.): 2
00:00
Type: 11 (0x0B) - "certificate"
Length (octets, dec.): 3402
[...] /skipped 3402 data octets/
Type: 15 (0x0F) - "certificate_verify"
Length (octets, dec.): 108
05:03:00:68:30:66:02:31:00:FF:6E:4A:6E:14:1F:6E:CF:26:BE:81:28:F0:FF:67:6B:DB:5F:7F:9D:92:59:20
54:51:B5:26:65:1B:4F:A3:CD:18:F3:0B:10:09:1D:EF:5D:02:62:80:1A:A6:D6:15:45:02:31:00:A5:FC:35:AF
3A:D7:0C:9E:5B:9B:F1:7A:61:A2:D8:D2:73:05:74:D3:74:39:7C:5E:DD:57:B0:CC:21:5A:3A:F8:F7:AB:1F:78
8B:C2:D3:84:97:B1:80:85:A2:1D:9A:2A
Type: 20 (0x14) - "finished"
Length (octets, dec.): 48
CD:84:00:0A:94:7E:CC:74:3C:41:B8:3D:A9:F2:D8:6E:86:50:7D:B8:C8:6A:E8:0C:65:03:F1:11:F2:32:11:CF
F0:D8:50:C5:B3:4E:BC:99:4C:DC:D8:72:CF:50:CF:17
CLIENT_FINISHED (received)
Finished value: 0x3C735EEC04E27C9E11798B9567C0536173CC7B061EB49877B24EBA3F471639242D4B0A4A73EB7236CA0200B38929DE45
Client Finished status: OK
CLIENT_APPLICATION_DATA (recieved)
ASCII dump (filtered):
GET / HTTP/1.1..accept: */*..user-agent: Mozilla/5.0 AppleWebKit
/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebo
t@anthropic.com)..accept-encoding: gzip, br, zstd, deflate..host
: tls13.1d.pw....
[Server KeyUpdate sent /message skipped/]
TCP: server: 194.87.103.72:443; client: 216.73.216.131:31760; timestamp: 1781061142
Contacts: dxdt.ru, alex/()\/abaabb.xyz.
/\_/\
( 0.0 )
= ^ =
/|_|\
(") (")=~
Provide ESNI to get second ASCII cat
Elapsed server side: 321ms; ServerHello sent: 151ms (including HelloRetryRequest time); TLS connection established: 320ms.