Reviewing Certificates with curl

GET / HTTP/1.1
User-Agent: curl/7.29.0
Host: *********
Accept: /

< HTTP/1.1 403 Forbidden
< Date: Wed, 08 May 2024 10:42:05 GMT
< Content-Type: text/html; charset=UTF-8
< Content-Length: 15545
< Connection: close
< Accept-CH: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
< Cross-Origin-Embedder-Policy: require-corp
< Cross-Origin-Opener-Policy: same-origin
< Cross-Origin-Resource-Policy: same-origin
< Origin-Agent-Cluster: ?1
< Permissions-Policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
< cf-mitigated: challenge
< cf-chl-out: e3ohckASyF/0qqrY6XCHSeC0BgawpphPjodt/m9MKeeSeY7v6xVFk9svt/y5qPnyMxi6G1m916nGk50lquD0YLuhC1gYvcPOYzNzEX7q3sOeGXazksnm+ZiPGoET4IYbbQmrHLAkhJRgiQemV79+AQ==$vjwnW+fe2z1tTG82r7FgMw==
< Cache-Control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
< Expires: Thu, 01 Jan 1970 00:00:01 GMT
< Report-To: {“endpoints”:[{“url”:“https://a.nel.cloudflare.com/report/v4?s=09JfzUns9ahlagBOhyt35o3iOIN%2Bj2cb%2FDwt7tDtNQBj4290kvdM1BrFyE1vf1gwVIGX%2BRC2c%2FUG9quLeZx7i3HhlWfaPsOJhGqmIpjSljvuvtBOvNaHE4fVZJV%2B”}],“group”:“cf-nel”,“max_age”:604800}
< NEL: {“success_fraction”:0,“report_to”:“cf-nel”,“max_age”:604800}
< expect-ct: max-age=86400, enforce
< referrer-policy: same-origin
< x-content-type-options: nosniff
< x-frame-options: SAMEORIGIN
< x-xss-protection: 1; mode=block
< Server: cloudflare
< CF-RAY: 8808d74ffc749691-KIX
< alt-svc: h3=“:443”; ma=86400
<

  • Closing connection 0

what can i do?

Modify your query to request certificate details

curl -vvI https://example.com

or use a tool like openssl if you need additional details

echo | openssl s_client -showcerts -servername example.com -connect example.com:443 2>/dev/null | openssl x509 -inform pem -noout -text

I used OpenSSL to view information
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:21:42: f2:3f: 68:92:16:1b: 78: c0:68: e0:09: e8:1e: bb: f2
Signature Algorithm: sha256WithRSAEncryption
Issue: C=US, O=Let’s Encrypt, CN=R3
Validity
Not Before: Aug 10 23:39:33 2023 GMT
Not After: Nov 8 23:39:32 2023 GMT
Subject: CN=*. mytraffic management. com
The certificate is expired and the certificate date on CLOUDFLARE does not match. The value of CN is not my domain name either

How should I fix it?

Do you have a domain on Cloudflare? Is it active? What is the status of the SSL certificate in your dashboard? What is the host/domain name in question? Has it ever worked?

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.