Closed sakurai-youhei closed 11 months ago
The CN = wificard.io certificate has already expired, as the openssl command output shows notAfter=Oct 2 12:22:35 2023 GMT.
CN = wificard.io
notAfter=Oct 2 12:22:35 2023 GMT
$ openssl s_client -connect wificard.io:443 -showcerts < /dev/null
CONNECTED(00000003) depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1 verify return:1 depth=1 C = US, O = Let's Encrypt, CN = R3 verify return:1 depth=0 CN = wificard.io verify error:num=10:certificate has expired notAfter=Oct 2 12:22:35 2023 GMT verify return:1 depth=0 CN = wificard.io notAfter=Oct 2 12:22:35 2023 GMT verify return:1 --- Certificate chain 0 s:CN = wificard.io i:C = US, O = Let's Encrypt, CN = R3 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 4 12:22:36 2023 GMT; NotAfter: Oct 2 12:22:35 2023 GMT -----BEGIN CERTIFICATE----- MIIE9TCCA92gAwIBAgISBLKGuLag8S3orytjYz5QuRwpMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA3MDQxMjIyMzZaFw0yMzEwMDIxMjIyMzVaMBYxFDASBgNVBAMT C3dpZmljYXJkLmlvMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUMq xiwsBVbt4jzUTQYoWGCVWpZDhwg/GI739/f2ixwEQ0KEVTYYDI2CFj7YbNGlwB5E tnDELLBra8zxLyGkEqDwIn3UcQjQoKVD08XxXTXGLNJG6Uz1iAaWfI5aaUkS9pGr cAz1JcIahQvtWVbiCsXpKOmQaVGr7Ythc3BQ0VVKZaegMLW/xdChSBHTTpxw32LS 9pSwYQHRi/ZupbR/x6oq4c4uviBfeMrZaJ7LMB4gHo10bwKHEuYR2r4NcaZkxcLx smpUtsXrGlysI28L9xM+36aSldDv8aRANUXRUcVwoQaJ5ZmJ7hM4orOSFLhySLGE 5mRBbR8Pwj5BqmW7JwIDAQABo4ICHzCCAhswDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBSn1/5BE+FUi2EhMmcG+oyhpC3x2DAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzAn BgNVHREEIDAegg93aWZpY2FyZC5iZHcudG+CC3dpZmljYXJkLmlvMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAejKMVNi3LbYg 6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGJIRG6VgAABAMASDBGAiEApwKC2u+z +kWlSmXYTc8SN04IeALOzY4/jYiDiQnz6lICIQC5I7nAhHrxyMsAer9Eml6r5eEA lconrVKBjrqc59cHaQB2AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKK AAABiSERuowAAAQDAEcwRQIgTog8p68FN2mUp58qMNlGwKnq4cc/BHNvHIlAKqbN vF8CIQDEKo7b++oLruTSYd6oXpfwNMVWqR4s3UDmay+YX3ZUADANBgkqhkiG9w0B AQsFAAOCAQEAbxcUhDoCd7ZNSC4KZEYWaspa1dC6dDyw8EXogj89R55JB/8hKdUX +DWvMvKwKbiurNiaaWfsRkb69VLPAM+RbCaN+iMlPULotiMZzO9PGe2BWe3rbXFN VRcb1n91+QgJ4JEFVA1p1vhTvzMk+sCQYMUjZMIDvDfXe5B9XHZ/6t4l8mYta+of cGmHgQWE8j4IWLF7kSxv/OPk3T8D3DvstnkqdLGy3UjncqnhR3MHJBo60vdQg87W YAIWZjDd5UefclIsJyqzbHfZ3ZmmU2RHPrOpN4zZzNxkVHo5psTxmjOXXSXrnz6A whE9CpL+dfqqAX8Y9R/PaRPwNUb/hRrz1Q== -----END CERTIFICATE----- 1 s:C = US, O = Let's Encrypt, CN = R3 i:C = US, O = Internet Security Research Group, CN = ISRG Root X1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 4 00:00:00 2020 GMT; NotAfter: Sep 15 16:00:00 2025 GMT -----BEGIN CERTIFICATE----- MIIFFjCCAv6gAwIBAgIRAJErCErPDBinU/bWLiWnX1owDQYJKoZIhvcNAQELBQAw TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMjAwOTA0MDAwMDAw WhcNMjUwOTE1MTYwMDAwWjAyMQswCQYDVQQGEwJVUzEWMBQGA1UEChMNTGV0J3Mg RW5jcnlwdDELMAkGA1UEAxMCUjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQC7AhUozPaglNMPEuyNVZLD+ILxmaZ6QoinXSaqtSu5xUyxr45r+XXIo9cP R5QUVTVXjJ6oojkZ9YI8QqlObvU7wy7bjcCwXPNZOOftz2nwWgsbvsCUJCWH+jdx sxPnHKzhm+/b5DtFUkWWqcFTzjTIUu61ru2P3mBw4qVUq7ZtDpelQDRrK9O8Zutm NHz6a4uPVymZ+DAXXbpyb/uBxa3Shlg9F8fnCbvxK/eG3MHacV3URuPMrSXBiLxg Z3Vms/EY96Jc5lP/Ooi2R6X/ExjqmAl3P51T+c8B5fWmcBcUr2Ok/5mzk53cU6cG /kiFHaFpriV1uxPMUgP17VGhi9sVAgMBAAGjggEIMIIBBDAOBgNVHQ8BAf8EBAMC AYYwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMBIGA1UdEwEB/wQIMAYB Af8CAQAwHQYDVR0OBBYEFBQusxe3WFbLrlAJQOYfr52LFMLGMB8GA1UdIwQYMBaA FHm0WeZ7tuXkAXOACIjIGlj26ZtuMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcw AoYWaHR0cDovL3gxLmkubGVuY3Iub3JnLzAnBgNVHR8EIDAeMBygGqAYhhZodHRw Oi8veDEuYy5sZW5jci5vcmcvMCIGA1UdIAQbMBkwCAYGZ4EMAQIBMA0GCysGAQQB gt8TAQEBMA0GCSqGSIb3DQEBCwUAA4ICAQCFyk5HPqP3hUSFvNVneLKYY611TR6W PTNlclQtgaDqw+34IL9fzLdwALduO/ZelN7kIJ+m74uyA+eitRY8kc607TkC53wl ikfmZW4/RvTZ8M6UK+5UzhK8jCdLuMGYL6KvzXGRSgi3yLgjewQtCPkIVz6D2QQz CkcheAmCJ8MqyJu5zlzyZMjAvnnAT45tRAxekrsu94sQ4egdRCnbWSDtY7kh+BIm lJNXoB1lBMEKIq4QDUOXoRgffuDghje1WrG9ML+Hbisq/yFOGwXD9RiX8F6sw6W4 avAuvDszue5L3sz85K+EC4Y/wFVDNvZo4TYXao6Z0f+lQKc0t8DQYzk1OXVu8rp2 yJMC6alLbBfODALZvYH7n7do1AZls4I9d1P4jnkDrQoxB3UqQ9hVl3LEKQ73xF1O yK5GhDDX8oVfGKF5u+decIsH4YaTw7mP3GFxJSqv3+0lUFJoi5Lc5da149p90Ids hCExroL1+7mryIkXPeFM5TgO9r0rvZaBFOvV2z0gp35Z0+L4WPlbuEjN/lxPFin+ HlUjr8gRsI3qfJOQFy/9rKIJR0Y/8Omwt/8oTWgy1mdeHmmjk7j1nYsvC9JSQ6Zv MldlTTKB3zhThV1+XWYp6rjd5JW1zbVWEkLNxE7GJThEUG3szgBVGP7pSWTUTsqX nLRbwHOoq7hHwg== -----END CERTIFICATE----- 2 s:C = US, O = Internet Security Research Group, CN = ISRG Root X1 i:O = Digital Signature Trust Co., CN = DST Root CA X3 a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jan 20 19:14:03 2021 GMT; NotAfter: Sep 30 18:14:03 2024 GMT -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgIQQAF3ITfU6UK47naqPGQKtzANBgkqhkiG9w0BAQsFADA/ MSQwIgYDVQQKExtEaWdpdGFsIFNpZ25hdHVyZSBUcnVzdCBDby4xFzAVBgNVBAMT DkRTVCBSb290IENBIFgzMB4XDTIxMDEyMDE5MTQwM1oXDTI0MDkzMDE4MTQwM1ow TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQCt6CRz9BQ385ueK1coHIe+3LffOJCMbjzmV6B493XC ov71am72AE8o295ohmxEk7axY/0UEmu/H9LqMZshftEzPLpI9d1537O4/xLxIZpL wYqGcWlKZmZsj348cL+tKSIG8+TA5oCu4kuPt5l+lAOf00eXfJlII1PoOK5PCm+D LtFJV4yAdLbaL9A4jXsDcCEbdfIwPPqPrt3aY6vrFk/CjhFLfs8L6P+1dy70sntK 4EwSJQxwjQMpoOFTJOwT2e4ZvxCzSow/iaNhUd6shweU9GNx7C7ib1uYgeGJXDR5 bHbvO5BieebbpJovJsXQEOEO3tkQjhb7t/eo98flAgeYjzYIlefiN5YNNnWe+w5y sR2bvAP5SQXYgd0FtCrWQemsAXaVCg/Y39W9Eh81LygXbNKYwagJZHduRze6zqxZ Xmidf3LWicUGQSk+WT7dJvUkyRGnWqNMQB9GoZm1pzpRboY7nn1ypxIFeFntPlF4 FQsDj43QLwWyPntKHEtzBRL8xurgUBN8Q5N0s8p0544fAQjQMNRbcTa0B7rBMDBc SLeCO5imfWCKoqMpgsy6vYMEG6KDA0Gh1gXxG8K28Kh8hjtGqEgqiNx2mna/H2ql PRmP6zjzZN7IKw0KKP/32+IVQtQi0Cdd4Xn+GOdwiK1O5tmLOsbdJ1Fu/7xk9TND TwIDAQABo4IBRjCCAUIwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYw SwYIKwYBBQUHAQEEPzA9MDsGCCsGAQUFBzAChi9odHRwOi8vYXBwcy5pZGVudHJ1 c3QuY29tL3Jvb3RzL2RzdHJvb3RjYXgzLnA3YzAfBgNVHSMEGDAWgBTEp7Gkeyxx +tvhS5B1/8QVYIWJEDBUBgNVHSAETTBLMAgGBmeBDAECATA/BgsrBgEEAYLfEwEB ATAwMC4GCCsGAQUFBwIBFiJodHRwOi8vY3BzLnJvb3QteDEubGV0c2VuY3J5cHQu b3JnMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmwuaWRlbnRydXN0LmNvbS9E U1RST09UQ0FYM0NSTC5jcmwwHQYDVR0OBBYEFHm0WeZ7tuXkAXOACIjIGlj26Ztu MA0GCSqGSIb3DQEBCwUAA4IBAQAKcwBslm7/DlLQrt2M51oGrS+o44+/yQoDFVDC 5WxCu2+b9LRPwkSICHXM6webFGJueN7sJ7o5XPWioW5WlHAQU7G75K/QosMrAdSW 9MUgNTP52GE24HGNtLi1qoJFlcDyqSMo59ahy2cI2qBDLKobkx/J3vWraV0T9VuG WCLKTVXkcGdtwlfFRjlBz4pYg1htmf5X6DYO8A4jqv2Il9DjXA6USbW1FzXSLr9O he8Y4IWS6wY7bCkjCWDcRQJMEhg76fsO3txE+FiYruq9RUWhiF1myv4Q6W+CyBFC Dfvp7OOGAN6dEOM4+qR9sdjoSYKEBpsr6GtPAQw4dy753ec5 -----END CERTIFICATE----- --- Server certificate subject=CN = wificard.io issuer=C = US, O = Let's Encrypt, CN = R3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 4538 bytes and written 410 bytes Verification error: certificate has expired --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 8259790DE7CEDFB6D22D10E746DDC3D0F6B8B5A995343719C7A28E0344886FC6 Session-ID-ctx: Master-Key: 1F0C79FA9EDE8C1F78F410F441C38042A619CE1D3F1918A5344D3355BBE836D387D6C0F4D7D979D7FEFFEC6898B9359A PSK identity: None PSK identity hint: None SRP username: None TLS session ticket: 0000 - 1a f5 db d4 34 91 a2 2e-85 44 1d 68 7a c3 39 16 ....4....D.hz.9. 0010 - cf 6c 26 29 11 5d 0c 98-93 d7 c6 26 ec 36 aa 50 .l&).].....&.6.P 0020 - b9 ed fd b2 b7 69 18 ec-f3 3c c2 1c fa ee 39 0d .....i...<....9. 0030 - 55 cf 58 49 66 cc 5e 71-93 5a a4 97 8f fd 70 48 U.XIf.^q.Z....pH 0040 - ec 84 f2 2f 75 5d 0f 3b-a6 89 74 01 a9 81 79 59 .../u].;..t...yY 0050 - 0e 7f 68 33 6d 38 44 33-ce a1 68 bb 6e e9 e6 7c ..h3m8D3..h.n..| 0060 - 3d 12 de dc 36 87 fa fb-2a e4 31 18 f9 27 d7 0a =...6...*.1..'.. 0070 - 93 89 cc 4e a6 09 0e 3f- ...N...? Start Time: 1698968449 Timeout : 7200 (sec) Verify return code: 10 (certificate has expired) Extended master secret: no --- DONE
By the way, thank you for the great web tool!
Thanks for the report. I am aware, I just haven't found the time to resolve it. Sorry for any inconvenience.
@sakurai-youhei Certificate has been updated! Thanks for the reminder :)
The
CN = wificard.io
certificate has already expired, as the openssl command output showsnotAfter=Oct 2 12:22:35 2023 GMT
.By the way, thank you for the great web tool!