Successfully connected
TLS 1.3 OK; HelloRetryRequest used;
Detailed description:
v.0.23.1-n (This TLS-1.3-only server supports ESNI, HelloRetryRequest, KeyUpdate, X25519Kyber768/draft0, ECDHE, FFDHE, etc.) HelloRetryRequest used to (re)negotiate DH group First ClientHello, key shares: 0x001D Second ClientHello, key shares: 0x0018 CRYPTO_CONTEXT Protocol version: 0x0304 Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256) Key exchange: 0x0018 (Secp384r1) (Handshake level) Handshake secrets: Client: 0x31524B49129C5894A078CF8231E7019E62A9AF2843625714C273BF7031B1CF00 Server: 0x074A1612FDF5FC481E2AAD6E849AD704F211FFE3D5132FCFA6A359960E1213D3 Handshake keys: Client write: 0x5F9BF4181A3F7F25829C6CE36CB7E493 Server write: 0x6D08F0D3FD7C3421D57C821F0A8FFE53 Handshake IVs: Client write (IV): 0x2E2375260235E9D7B955014D Server write (IV): 0x4C9179B600767C3E394473CC (Traffic level) Traffic secrets: Client: 0x94566A41443FB6973FDB25AF2B1B2220B38FBF273ACB60BABA0A5A2E8E2BEC54 Server: 0xB1E634FBD86A59630D31D77710D411F5E3A21DE3ED646D98F0B5767C209DD10D Traffic keys: Client write: 0xFFD2118CCA6832DF44235910C7A78334 Server write: 0xFA52B84BF0981E58E1C8358C347463D8 Traffic base IVs: Client write (base IV): 0x661C9B3DB23E5353A430D6A4 Server write (base IV): 0xCE0B1C28C91C7252A1C9CCF5 --- Messages --- CLIENT_HELLO (recieved) Version: 0x0303 Cipher suites: 0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8 0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F Client Random: 65:79:8A:50:28:8E:4E:FE:A5:07:D3:E4:5B:7D:B1:26:48:57:5E:E5:44:CD:D3:AC:7D:BF:0D:CF:F0:D6:45:73 Client SessionID: 54:05:F1:06:2B:8B:1F:09:44:28:23:10:84:D6:46:35:CF:B2:10:D5:F6:CC:34:9D:2A:AD:20:6C:2B:14:AA:0A Extensions: Type: 00 (0x0000); "server_name" 00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77 hostname: tls13.1d.pw Type: 05 (0x0005); "status_request" 01:00:00:00:00 Type: 10 (0x000A); "supported_groups" 0x001D (X25519) 0x0017 (Secp256r1) 0x0018 (Secp384r1) 0x0019 (Secp521r1) 0x001E (X448) 0x0100 (ffdhe2048) 0x0101 (ffdhe3072) 0x0102 (ffdhe4096) 0x0103 (ffdhe6144) 0x0104 (ffdhe8192) Type: 11 (0x000B); /non-TLS-1.3/ 01:00 Type: 13 (0x000D); "signature_algorithms" 00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09 08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01 03:02:02:03:02:01:02:02 Type: 50 (0x0032); "signature_algorithms_cert" 00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09 08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01 03:02:02:03:02:01:02:02 Type: 16 (0x0010); "application_layer_protocol_negotiation" 00:09:08:68:74:74:70:2F:31:2E:31 Type: 17 (0x0011); /non-TLS-1.3/ 00:07:02:00:04:00:00:00:00 Type: 23 (0x0017); /non-TLS-1.3/ Type: 43 (0x002B); "supported_versions" 0x0304 0x0303 Type: 45 (0x002D); "psk_key_exchange_modes" 01:01 Type: 51 (0x0033); "key_share" X25519 (0x001D) x = 0x2BBE6CAB608BF1D7054CE0448B2DBAE69C0AFA5584E23E8FA5D0CEB791987A2A Type: 65281 (0xFF01); /non-TLS-1.3/ 00 HELLO_RETRY_REQUEST (sent, server) Legacy Version: 0x0303 Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256) HelloRetryRequest (Server Random): CF:21:AD:74:E5:9A:61:11:BE:1D:8C:02:1E:65:B8:91:C2:A2:11:16:7A:BB:8C:5E:07:9E:09:E2:C8:A8:33:9C SessionID: 54:05:F1:06:2B:8B:1F:09:44:28:23:10:84:D6:46:35:CF:B2:10:D5:F6:CC:34:9D:2A:AD:20:6C:2B:14:AA:0A Extensions: Type: 51 (0x0033); "key_share" Secp384r1 (0x0018) Type: 44 (0x002C); "cookie" 00:08:0C:00:FE:E1:C0:DE:FA:57 Type: 43 (0x002B); "supported_versions" 0x0304 [Legacy ChangeCipherSpec message sent (server)] CLIENT_HELLO (recieved) Version: 0x0303 Cipher suites: 0x1302,0x1301,0x1303,0xC02C,0xC02B,0xCCA9,0xC030,0xCCA8 0xC02F,0xC014,0xC013,0x009D,0x009C,0x0035,0x002F Client Random: 65:79:8A:50:28:8E:4E:FE:A5:07:D3:E4:5B:7D:B1:26:48:57:5E:E5:44:CD:D3:AC:7D:BF:0D:CF:F0:D6:45:73 Client SessionID: 54:05:F1:06:2B:8B:1F:09:44:28:23:10:84:D6:46:35:CF:B2:10:D5:F6:CC:34:9D:2A:AD:20:6C:2B:14:AA:0A Extensions: Type: 00 (0x0000); "server_name" 00:00:0E:00:00:0B:74:6C:73:31:33:2E:31:64:2E:70:77 hostname: tls13.1d.pw Type: 05 (0x0005); "status_request" 01:00:00:00:00 Type: 10 (0x000A); "supported_groups" 0x001D (X25519) 0x0017 (Secp256r1) 0x0018 (Secp384r1) 0x0019 (Secp521r1) 0x001E (X448) 0x0100 (ffdhe2048) 0x0101 (ffdhe3072) 0x0102 (ffdhe4096) 0x0103 (ffdhe6144) 0x0104 (ffdhe8192) Type: 11 (0x000B); /non-TLS-1.3/ 01:00 Type: 13 (0x000D); "signature_algorithms" 00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09 08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01 03:02:02:03:02:01:02:02 Type: 50 (0x0032); "signature_algorithms_cert" 00:26:04:03:05:03:06:03:08:04:08:05:08:06:08:09 08:0A:08:0B:04:01:05:01:06:01:04:02:03:03:03:01 03:02:02:03:02:01:02:02 Type: 16 (0x0010); "application_layer_protocol_negotiation" 00:09:08:68:74:74:70:2F:31:2E:31 Type: 17 (0x0011); /non-TLS-1.3/ 00:07:02:00:04:00:00:00:00 Type: 23 (0x0017); /non-TLS-1.3/ Type: 43 (0x002B); "supported_versions" 0x0304 0x0303 Type: 44 (0x002C); "cookie" 00:08:0C:00:FE:E1:C0:DE:FA:57 Type: 45 (0x002D); "psk_key_exchange_modes" 01:01 Type: 51 (0x0033); "key_share" Secp384r1 (0x0018) x = 0x8E806591345B5F5A9521887AAA3AB7EA271C545990AABB6D92F1D7590F56D9D404D22F55CA64988A02C85CA3BB7D9447 y = 0x1672A359CAE163D646E21E2DD8BBFAE99D4E6D82BD1BEF1847A725AD06ABF912D36B248DA4E63973569277091C9342B3 Type: 65281 (0xFF01); /non-TLS-1.3/ 00 SERVER_HELLO (sent) Legacy Version: 0x0303 Cipher suite: 0x1301 (TLS_AES_128_GCM_SHA256) Server Random: DE:AD:DE:AD:DE:AD:C0:DE:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00:00 SessionID: 54:05:F1:06:2B:8B:1F:09:44:28:23:10:84:D6:46:35:CF:B2:10:D5:F6:CC:34:9D:2A:AD:20:6C:2B:14:AA:0A Extensions: Type: 51 (0x0033); "key_share" Secp384r1 (0x0018) x = 0x884DFC0FE9602539133D59E3779E9DE8644D3532211C1061EFD16D15BE349D6723496325775E87CF3D396F1C02FCC5CF y = 0x063315C18E34D26B9085A96A495F17B8557DB379DB6ABED0788C60417FCE917ADD8976BB955D9E7E1B1CC6C06F577280 Type: 43 (0x002B); "supported_versions" 0x0304 [Legacy ChangeCipherSpec message sent (server)] SERVER_HANDSHAKE_MESSAGES (sent) Type: 8 (0x08) - "encrypted_extensions" Length (octets, dec.): 2 00:00 Type: 11 (0x0B) - "certificate" Length (octets, dec.): 4195 [...] /skipped 4195 data octets/ Type: 15 (0x0F) - "certificate_verify" Length (octets, dec.): 106 05:03:00:66:30:64:02:30:33:E5:CC:CB:28:B2:60:10:7C:72:10:FD:D4:E5:E4:0D:D7:5D:F4:D1:B7:5D:1F:DD 23:83:91:45:2E:F8:47:71:97:EE:EB:21:EA:4F:03:B6:5A:E9:5E:5B:14:92:CA:32:02:30:41:89:1C:69:E7:A1 60:42:FA:04:4D:14:B6:C3:D3:60:9B:15:40:FB:14:54:CE:42:0A:98:44:8A:1F:B3:2D:A8:AC:6A:0A:0E:26:A5 DB:35:B6:38:64:25:C8:5A:51:ED Type: 20 (0x14) - "finished" Length (octets, dec.): 32 B6:9F:AA:44:37:EC:00:95:BC:90:AB:EB:62:58:C3:FE:CD:E4:2E:82:FF:21:5A:8B:6C:BA:56:54:36:66:E1:54 [Legacy ChangeCipherSpec message present (client)] CLIENT_FINISHED (received) Finished value: 0xE0C3C19D36662050E0720162CF17930CC9D26B752A2CE97CA4BFD08E9A91D6BA Client Finished status: OK CLIENT_APPLICATION_DATA (recieved) ASCII dump (filtered): GET / HTTP/1.1..User-Agent: CCBot/2.0 (https://commoncrawl.org/f aq/)..Accept: text/html,application/xhtml+xml,application/xml;q= 0.9,*/*;q=0.8..Accept-Language: en-US,en;q=0.5..If-Modified-Sinc e: Sat, 10 Jun 2023 17:44:18 GMT..Accept-Encoding: br,gzip..Host : tls13.1d.pw..Connection: Keep-Alive.... TCP: server: 194.87.109.56:443; client: 3.237.31.191:59430; timestamp: 1695466380 Contacts: dxdt.ru, alex/()\/abaabb.xyz. /\_/\ ( 0.0 ) = ^ = /|_|\ (") (")=~ Provide ESNI to get second ASCII cat Elapsed server side: 328ms; ServerHello sent: 99ms (including HelloRetryRequest time); TLS connection established: 328ms.