On Mon, Oct 31, 2011 at 05:20:30PM -0400, Steven Shourds wrote:
> [Steve Shourds] yes, we have been looking for an expired certificate, but
> cannot find any expired certificates.
>
> So what command would I use with the -v option? And on what certificate?
> Thanks...

It's a curl option:

$ curl -I -v https://www.google.com
* About to connect() to www.google.com port 443 (#0)
* Trying 173.194.33.18... connected
* Connected to www.google.com (173.194.33.18) port 443 (#0)
* successfully set certificate verify locations:
* CAfile: none
  CApath: /etc/ssl/certs
  * SSLv3, TLS handshake, Client hello (1):
  * SSLv3, TLS handshake, Server hello (2):
  * SSLv3, TLS handshake, CERT (11):
  * SSLv3, TLS handshake, Server finished (14):
  * SSLv3, TLS handshake, Client key exchange (16):
  * SSLv3, TLS change cipher, Client hello (1):
  * SSLv3, TLS handshake, Finished (20):
  * SSLv3, TLS change cipher, Client hello (1):
  * SSLv3, TLS handshake, Finished (20):
  * SSL connection using RC4-SHA
  * Server certificate:
  * subject: C=US; ST=California; L=Mountain View; O=Google Inc; CN=www.google.com
  * start date: 2009-12-18 00:00:00 GMT
  * expire date: 2011-12-18 23:59:59 GMT
  * common name: www.google.com (matched)
  * issuer: C=ZA; O=Thawte Consulting (Pty) Ltd.; CN=Thawte SGC CA
  * SSL certificate verify ok.

Expect to see a new Google certificate within the next 48 days.

>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2011-10-31