knot
knot copied to clipboard
Published
20 hours ago •
CZ-NIC
CZ-NIC
tls: DEBUG: print Subject Alternative Name
Before:
$ kdig +short +tls dns.google @223.5.5.5 -d
;; DEBUG: Querying for owner(dns.google.), class(1), type(1), server(223.5.5.5), port(853), protocol(TCP)
;; DEBUG: TLS, received certificate hierarchy:
;; DEBUG: #1, C=CN,ST=浙江省,L=杭州市,O=阿里巴巴(中国)网络技术有限公司,CN=*.alidns.com
;; DEBUG: SHA-256 PIN: pa14rFR/bBJ25OSjCswaXu6YKWgQ2BDY5jhRRicqeik=
;; DEBUG: #2, C=BE,O=GlobalSign nv-sa,CN=GlobalSign ECC OV SSL CA 2018
;; DEBUG: SHA-256 PIN: KJpedoXG+Rd6IJnYeOJjxUjlaDEDI8K1vCBBgzeJkC4=
;; DEBUG: TLS, skipping certificate PIN check
;; DEBUG: TLS, skipping certificate verification
8.8.4.4
8.8.8.8
After:
$ kdig +short +tls dns.google @223.5.5.5 -d
;; DEBUG: Querying for owner(dns.google.), class(1), type(1), server(223.5.5.5), port(853), protocol(TCP)
;; DEBUG: TLS, received certificate hierarchy:
;; DEBUG: #1, C=CN,ST=浙江省,L=杭州市,O=阿里巴巴(中国)网络技术有限公司,CN=*.alidns.com
;; DEBUG: Subject Alternative Name (not critical):
DNSname: *.alidns.com
IPAddress: 223.5.5.5
IPAddress: 223.6.6.6
IPAddress: 120.55.203.44
IPAddress: 47.103.166.57
IPAddress: 47.108.0.63
IPAddress: 39.103.26.204
IPAddress: 139.129.137.137
IPAddress: 47.122.8.11
IPAddress: 123.184.198.22
IPAddress: 113.142.83.132
IPAddress: 113.240.88.172
IPAddress: 123.151.107.5
IPAddress: 182.40.70.12
IPAddress: 8.129.152.230
IPAddress: 1.71.20.37
DNSname: alidns.com
;; DEBUG: SHA-256 PIN: pa14rFR/bBJ25OSjCswaXu6YKWgQ2BDY5jhRRicqeik=
;; DEBUG: #2, C=BE,O=GlobalSign nv-sa,CN=GlobalSign ECC OV SSL CA 2018
;; DEBUG: SHA-256 PIN: KJpedoXG+Rd6IJnYeOJjxUjlaDEDI8K1vCBBgzeJkC4=
;; DEBUG: TLS, skipping certificate PIN check
;; DEBUG: TLS, skipping certificate verification
8.8.4.4
8.8.8.8
