Using openssl to get the certificate from a server

by

With SNI

If the remote server is using SNI (that is, sharing multiple SSL hosts on a single IP address) you will need to send the correct hostname in order to get the right certificate.

openssl s_client -showcerts -servername www.example.com -connect www.example.com:443 </dev/null

Without SNI

If the remote server is not using SNI, then you can skip -servername parameter:

openssl s_client -showcerts -connect www.example.com:443 </dev/null

To view the full details of a site’s cert you can use this chain of commands as well:

$ echo | \
    openssl s_client -servername www.example.com -connect www.example.com:443 2>/dev/null | \
    openssl x509 -text

More Related Contents:

  1. How to determine SSL cert expiration date from a PEM encoded certificate?
  2. How to generate a self-signed SSL certificate using OpenSSL?
  3. Best practices when running Node.js with port 80 (Ubuntu / Linode) [closed]
  4. Encryption/decryption doesn’t work well between two different openssl versions
  5. How to create .pfx file from certificate and private key?
  6. Linking OpenSSL libraries to a program
  7. Build OpenSSL with RPATH?
  8. How to handle OpenSSL SSL_ERROR_WANT_READ / WANT_WRITE on non-blocking sockets
  9. How to reset Jenkins security settings from the command line?
  10. SSL Error: unable to get local issuer certificate
  11. Where is the PEM file format specified?
  12. Signing Windows application on Linux-based distros
  13. Signed executables under Linux
  14. Counter increment in Bash loop not working
  15. Setting the Vim background colors
  16. Linux vi arrow keys broken in insert mode
  17. Creating a .p12 file
  18. Start script after another one (already running) finishes
  19. How to get the percentage of memory free with a Linux command? [closed]
  20. Pytorch says that CUDA is not available (on Ubuntu)
  21. Check for IP validity
  22. How to find out the path for OpenSSL trusted certificates?
  23. Setting creation or change timestamps
  24. com.sun.tools.attach.AttachNotSupportedException: Unable to open socket file: target process not responding or HotSpot VM not loaded
  25. Emulate ZPL printer
  26. A general linux file permissions question: Apache and WordPress
  27. Why doesn’t “sort file1 > file1” work?
  28. Why exit code 141 with grep -q?
  29. How pthread_mutex_lock is implemented
  30. How to set RPATH and RUNPATH with GCC/LD?

Leave a Comment