How to get server certificate chain then verify it’s valid and trusted in Java

by

The method you want is getServerCertificates, not getServerCertificateChain. There is some nice sample code here.

EDIT

Added some sample code of my own. Good starting point for you. Don’t forget to look at the Javadocs for HttpsURLConnection and X509Certificate.

import java.net.URL;
import java.security.cert.Certificate;
import java.security.cert.CertificateExpiredException;
import java.security.cert.X509Certificate;

import javax.net.ssl.HttpsURLConnection;

public class TestSecuredConnection {

    /**
     * @param args
     */
    public static void main(String[] args) {
        TestSecuredConnection tester = new TestSecuredConnection();
        try {
            tester.testConnectionTo("https://www.google.com");
        } catch (Exception e) {
            e.printStackTrace();
        }
    }

    public TestSecuredConnection() {
        super();
    }

    public void testConnectionTo(String aURL) throws Exception {
        URL destinationURL = new URL(aURL);
        HttpsURLConnection conn = (HttpsURLConnection) destinationURL
                .openConnection();
        conn.connect();
        Certificate[] certs = conn.getServerCertificates();
        for (Certificate cert : certs) {
            System.out.println("Certificate is: " + cert);
            if(cert instanceof X509Certificate) {
                try {
                    ( (X509Certificate) cert).checkValidity();
                    System.out.println("Certificate is active for current date");
                } catch(CertificateExpiredException cee) {
                    System.out.println("Certificate is expired");
                }
            }
        }
    }
}

More Related Contents:

  1. How to extract CN from X509Certificate in Java?
  2. Importing the private-key/public-certificate pair in the Java KeyStore [duplicate]
  3. Generating X509 Certificate using Bouncy Castle Java
  4. Creating an X509 Certificate in Java without BouncyCastle?
  5. How to create a X509 certificate using Java?
  6. PKCS12 Java Keystore from CA and User certificate in java
  7. Generate Subject Hash of X509Certificate in Java
  8. download image from unformatted url [duplicate]
  9. How can i return arrays?
  10. PermGen elimination in JDK 8
  11. Eclipse “Error: Could not find or load main class”
  12. How to create immutable objects in Java?
  13. How to register some URL namespace (myapp://app.start/) for accessing your program by calling a URL in browser in Android OS?
  14. How to send PUT, DELETE HTTP request in HttpURLConnection?
  15. How do I view my Realm file in the Realm Browser?
  16. Making a log4j console appender use different colors for different threads
  17. java drag and drop
  18. How to use font awesome in a fxml project (javafx)
  19. What is the best macro-benchmarking tool / framework to measure a single-threaded complex algorithm in Java? [closed]
  20. Convert UTC to current locale time
  21. How is String in switch statement more efficient than corresponding if-else statement?
  22. How do I persist cookies when using HTTPUrlConnection?
  23. Java and manually executing finalize
  24. How to listen for Firebase setValue completion
  25. How to wait for either of the two elements in the page using selenium xpath
  26. JavaFx tableview sort is really slow how to improve sort speed as in java swing
  27. ArrayList not updating inside onChildAdded function
  28. Netbean Java Swing, JPanel/Jlabel Cant cover whole Frame
  29. How to force Hibernate to return dates as java.util.Date instead of Timestamp?
  30. How to read from files with Files.lines(…).forEach(…)?

Leave a Comment