Resolving hostname...
IP address for server is 176.32.98.166
Connecting to www.amazon.com:443...
TCP connection established.
Starting SSLv3/TLS handshake...
SSL/TLS connect successful.ssl_debug(420): Starting handshake (iSaSiLk 4.4 Evaluation Version)... ssl_debug(420): Sending v3 client_hello message to www.amazon.com:443, requesting version 3.2... ssl_debug(420): Sending extensions: elliptic_curves (10), renegotiation_info (65281), ec_point_formats (11) ssl_debug(420): Received v3 server_hello handshake message. ssl_debug(420): Server selected SSL version 3.1. ssl_debug(420): Server created new session 59:36:C9:2B:12:A4:D0:D7... ssl_debug(420): CipherSuite selected by server: SSL_RSA_WITH_RC4_128_SHA ssl_debug(420): CompressionMethod selected by server: NULL ssl_debug(420): TLS extensions sent by the server: renegotiation_info (65281) ssl_debug(420): Server supports secure renegotiation. ssl_debug(420): Received certificate handshake message with server certificate. ssl_debug(420): Server sent a 2048 bit RSA certificate, chain has 3 elements. ssl_debug(420): Received server_hello_done handshake message. ssl_debug(420): Sending client_key_exchange handshake... ssl_debug(420): Sending change_cipher_spec message... ssl_debug(420): Sending finished message... ssl_debug(420): Received change_cipher_spec message. ssl_debug(420): Received finished message. ssl_debug(420): Handshake completed, statistics: ssl_debug(420): Read 4287 bytes in 5 records, wrote 581 bytes in 4 records.
Checking for TLS 1.1 support...
TLS 1.1 is NOT supported by this server.
Checking for TLS 1.0 support...
TLS 1.0 is supported by this server.
Checking for SSLv3 support...
SSLv3 is supported by this server.
Checking for SSLv2 support...
SSLv2 is NOT supported by this server.
Server name returned in HTTP request:
nginx
Checking server supported SSLv3/TLS ciphersuites (this may take a while)...
SSL_RSA_WITH_RC4_128_SHA SSL_RSA_WITH_RC4_128_MD5 TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA TLS_RSA_WITH_AES_128_CBC_SHA TLS_RSA_WITH_AES_256_CBC_SHA TLS_DHE_RSA_WITH_AES_256_CBC_SHA TLS_DHE_RSA_WITH_AES_128_CBC_SHA SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA SSL_RSA_WITH_3DES_EDE_CBC_SHA
SSLv3/TLS ciphersuites NOT supported or not enabled by this server:
TLS_DHE_DSS_WITH_AES_256_CBC_SHA TLS_RSA_WITH_CAMELLIA_256_CBC_SHA TLS_DHE_DSS_WITH_CAMELLIA_256_CBC_SHA TLS_DHE_RSA_WITH_CAMELLIA_256_CBC_SHA TLS_ECDH_ECDSA_WITH_AES_256_CBC_SHA TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA TLS_ECDH_RSA_WITH_AES_256_CBC_SHA TLS_DH_DSS_WITH_AES_256_CBC_SHA TLS_DH_RSA_WITH_AES_256_CBC_SHA TLS_DH_DSS_WITH_CAMELLIA_256_CBC_SHA TLS_DH_RSA_WITH_CAMELLIA_256_CBC_SHA TLS_RSA_PSK_WITH_AES_256_CBC_SHA TLS_DHE_PSK_WITH_AES_256_CBC_SHA TLS_PSK_WITH_AES_256_CBC_SHA SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA TLS_ECDH_ECDSA_WITH_3DES_EDE_CBC_SHA TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA TLS_ECDH_RSA_WITH_3DES_EDE_CBC_SHA TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA SSL_DH_DSS_WITH_3DES_EDE_CBC_SHA SSL_DH_RSA_WITH_3DES_EDE_CBC_SHA TLS_RSA_PSK_WITH_3DES_EDE_CBC_SHA TLS_DHE_PSK_WITH_3DES_EDE_CBC_SHA TLS_PSK_WITH_3DES_EDE_CBC_SHA SSL_RSA_WITH_IDEA_CBC_SHA SSL_DHE_DSS_WITH_RC4_128_SHA TLS_DHE_DSS_WITH_AES_128_CBC_SHA TLS_RSA_WITH_CAMELLIA_128_CBC_SHA TLS_DHE_DSS_WITH_CAMELLIA_128_CBC_SHA TLS_DHE_RSA_WITH_CAMELLIA_128_CBC_SHA TLS_ECDH_ECDSA_WITH_RC4_128_SHA TLS_ECDH_ECDSA_WITH_AES_128_CBC_SHA TLS_ECDHE_ECDSA_WITH_RC4_128_SHA TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA TLS_ECDH_RSA_WITH_RC4_128_SHA TLS_ECDH_RSA_WITH_AES_128_CBC_SHA TLS_ECDHE_RSA_WITH_RC4_128_SHA TLS_DH_DSS_WITH_AES_128_CBC_SHA TLS_DH_RSA_WITH_AES_128_CBC_SHA TLS_DH_DSS_WITH_CAMELLIA_128_CBC_SHA TLS_DH_RSA_WITH_CAMELLIA_128_CBC_SHA TLS_RSA_PSK_WITH_AES_128_CBC_SHA TLS_RSA_PSK_WITH_RC4_128_SHA TLS_DHE_PSK_WITH_AES_128_CBC_SHA TLS_DHE_PSK_WITH_RC4_128_SHA TLS_PSK_WITH_RC4_128_SHA TLS_PSK_WITH_AES_128_CBC_SHA SSL_RSA_WITH_DES_CBC_SHA SSL_DHE_DSS_WITH_DES_CBC_SHA SSL_DHE_RSA_WITH_DES_CBC_SHA SSL_DH_DSS_WITH_DES_CBC_SHA SSL_DH_RSA_WITH_DES_CBC_SHA SSL_RSA_EXPORT1024_WITH_DES_CBC_SHA SSL_DHE_DSS_EXPORT1024_WITH_DES_CBC_SHA SSL_RSA_EXPORT1024_WITH_RC4_56_SHA SSL_DHE_DSS_EXPORT1024_WITH_RC4_56_SHA SSL_RSA_EXPORT_WITH_DES40_CBC_SHA SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA SSL_DH_DSS_EXPORT_WITH_DES40_CBC_SHA SSL_DH_RSA_EXPORT_WITH_DES40_CBC_SHA SSL_RSA_EXPORT_WITH_RC4_40_MD5 SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5 TLS_ECDH_anon_WITH_AES_256_CBC_SHA TLS_DH_anon_WITH_AES_256_CBC_SHA TLS_DH_anon_WITH_CAMELLIA_256_CBC_SHA TLS_ECDH_anon_WITH_3DES_EDE_CBC_SHA SSL_DH_anon_WITH_3DES_EDE_CBC_SHA TLS_ECDH_anon_WITH_RC4_128_SHA TLS_ECDH_anon_WITH_AES_128_CBC_SHA TLS_DH_anon_WITH_AES_128_CBC_SHA TLS_DH_anon_WITH_CAMELLIA_128_CBC_SHA SSL_DH_anon_WITH_RC4_128_MD5 SSL_DH_anon_WITH_DES_CBC_SHA SSL_DH_anon_EXPORT_WITH_DES40_CBC_SHA SSL_DH_anon_EXPORT_WITH_RC4_40_MD5 SSL_RSA_WITH_NULL_SHA TLS_ECDH_ECDSA_WITH_NULL_SHA TLS_ECDHE_ECDSA_WITH_NULL_SHA TLS_ECDH_RSA_WITH_NULL_SHA TLS_ECDHE_RSA_WITH_NULL_SHA TLS_ECDH_anon_WITH_NULL_SHA TLS_RSA_PSK_WITH_NULL_SHA TLS_DHE_PSK_WITH_NULL_SHA TLS_PSK_WITH_NULL_SHA SSL_RSA_WITH_NULL_MD5
| Algorithm Name | Supported |
|---|---|
| AES | yes |
| Camellia | no |
| DES | no |
| DESede | yes |
| IDEA | no |
| NULL | no |
| RC2 | no |
| RC4 | yes |
| Algorithm Name | Supported |
|---|---|
| DHE_DSS | no |
| DHE_DSS_EXPORT | no |
| DHE_DSS_EXPORT1024 | no |
| DHE_PSK | no |
| DHE_RSA | yes |
| DHE_RSA_EXPORT | no |
| DH_DSS | no |
| DH_DSS_EXPORT | no |
| DH_RSA | no |
| DH_RSA_EXPORT | no |
| DH_anon | no |
| DH_anon_EXPORT | no |
| ECDHE_ECDSA | no |
| ECDHE_RSA | yes |
| ECDH_ECDSA | no |
| ECDH_RSA | no |
| ECDH_anon | no |
| PSK | no |
| RSA | yes |
| RSA_EXPORT | no |
| RSA_EXPORT1024 | no |
| RSA_PSK | no |
| Version | 3 | |
|---|---|---|
| Serial Number | 0x6b66ae565fd03f7d1e2bc0bd4af33c66 | |
| Signature Algorithm | SHA/RSA | |
| Subject |
CN = www.amazon.com O = Amazon.com Inc. ST = Washington C = US L = Seattle |
|
| Valid | Not Before | Fri May 17 02:00:00 CEST 2013 |
| Not After | Mon May 19 01:59:59 CEST 2014 | Issuer |
CN = VeriSign Class 3 Secure Server CA - G3 O = VeriSign, Inc. OU = VeriSign Trust Network OU = Terms of use at https://www.verisign.com/rpa (c)10 C = US |
| Public Key | Algorithm | RSA |
| Key length | 2048 bit | |
| Modulus | 2314726479186275675960460595479743537744 | |
| Public Exponent | 65537 | |
| Extension 1 | KeyUsage:digitalSignature | keyEncipherment |
|
| Extension 2 | CertificatePolicies:certificatePolicy[0]: policyIdentifier: 2.16.840.1.113733.1. 7.54 policyQualifiers[0]: policyQualifierId: id-pkix-cps CPS URI: https://www.verisign.com/cps |
|
| Extension 3 | CRLDistributionPoints:DistributionPoint: uniformResourceIdentifier: http://SVRSecu re-G3-crl.verisign.com/SVRSecureG3.crl |
|
| Extension 4 | AuthorityInfoAccess:accessMethod: OBJECT ID = ocsp accessLocation: uniformResourceIdentifier: http://ocsp.veris ign.com accessMethod: OBJECT ID = caIssuers accessLocation: uniformResourceIdentifier: http://SVRSecure- G3-aia.verisign.com/SVRSecureG3.cer |
|
| Extension 5 | ExtendedKeyUsage:KeyPurposeId 0: TLS Web server authentication KeyPurposeId 1: TLS Web client authentication |
|
| Extension 6 | BasicConstraints:CA: no |
|
| Extension 7 | AuthorityKeyIdentifier:KeyIdentifier: 0D:44:5C:16:53:44:C1:82:7E:1D:20:AB:25:F4:01: 63:D8:BE:79:A5 |
|
| Extension 8 | SubjectAltName:dNSName: uedata.amazon.com dNSName: amazon.com dNSName: amzn.com dNSName: www.amzn.com dNSName: www.amazon.com |
|
| Version | 3 | |
|---|---|---|
| Serial Number | 0x6ecc7aa5a7032009b8cebcf4e952d491 | |
| Signature Algorithm | SHA/RSA | |
| Subject |
CN = VeriSign Class 3 Secure Server CA - G3 O = VeriSign, Inc. OU = VeriSign Trust Network OU = Terms of use at https://www.verisign.com/rpa (c)10 C = US |
|
| Valid | Not Before | Mon Feb 08 01:00:00 CET 2010 |
| Not After | Sat Feb 08 00:59:59 CET 2020 | Issuer |
CN = VeriSign Class 3 Public Primary Certification Authority - G5 O = VeriSign, Inc. OU = VeriSign Trust Network OU = (c) 2006 VeriSign, Inc. - For authorized use only C = US |
| Public Key | Algorithm | RSA |
| Key length | 2048 bit | |
| Modulus | 2241100546325043076897554477153750408609 | |
| Public Exponent | 65537 | |
| Extension 1 | KeyUsage:keyCertSign | cRLSign |
|
| Extension 2 | BasicConstraints:CA: yes PathLenConstraint: 0 |
|
| Extension 3 | SubjectKeyIdentifier:0D:44:5C:16:53:44:C1:82:7E:1D:20:AB:25:F4:01:63:D8:BE:79:A5 |
|
| Extension 4 | CertificatePolicies:certificatePolicy[0]: policyIdentifier: 2.16.840.1.113733.1. 7.23.3 policyQualifiers[0]: policyQualifierId: id-pkix-cps CPS URI: https://www.verisign.com/cps policyQualifiers[1]: policyQualifierId: id-pkix-unotice displayText: https://www.verisign.com/rpa |
|
| Extension 5 | CRLDistributionPoints:DistributionPoint: uniformResourceIdentifier: http://crl.ver isign.com/pca3-g5.crl |
|
| Extension 6 | 1.3.6.1.5.5.7.1.12:UnknownExtension: OBJECT ID = 1.3.6.1.5.5.7.1.12 SEQUENCE[C] = 1 elements |
|
| Extension 7 | AuthorityInfoAccess:accessMethod: OBJECT ID = ocsp accessLocation: uniformResourceIdentifier: http://ocsp.veris ign.com |
|
| Extension 8 | AuthorityKeyIdentifier:KeyIdentifier: 7F:D3:65:A7:C2:DD:EC:BB:F0:30:09:F3:43:39:FA: 02:AF:33:31:33 |
|
| Extension 9 | SubjectAltName:directoryName: CN=VeriSignMPKI-2-6 |
|
| Version | 3 | |
|---|---|---|
| Serial Number | 0x35973187f3873a07327ece580c9b7eda | |
| Signature Algorithm | SHA/RSA | |
| Subject |
CN = VeriSign Class 3 Public Primary Certification Authority - G5 O = VeriSign, Inc. OU = VeriSign Trust Network OU = (c) 2006 VeriSign, Inc. - For authorized use only C = US |
|
| Valid | Not Before | Wed Nov 08 01:00:00 CET 2006 |
| Not After | Mon Nov 08 00:59:59 CET 2021 | Issuer |
O = VeriSign, Inc. OU = Class 3 Public Primary Certification Authority C = US |
| Public Key | Algorithm | RSA |
| Key length | 2048 bit | |
| Modulus | 2210947110205967138379664271494239363114 | |
| Public Exponent | 65537 | |
| Extension 1 | KeyUsage:keyCertSign | cRLSign |
|
| Extension 2 | BasicConstraints:CA: yes |
|
| Extension 3 | SubjectKeyIdentifier:7F:D3:65:A7:C2:DD:EC:BB:F0:30:09:F3:43:39:FA:02:AF:33:31:33 |
|
| Extension 4 | CertificatePolicies:certificatePolicy[0]: policyIdentifier: anyPolicy policyQualifiers[0]: policyQualifierId: id-pkix-cps CPS URI: https://www.verisign.com/cps |
|
| Extension 5 | CRLDistributionPoints:DistributionPoint: uniformResourceIdentifier: http://crl.ver isign.com/pca3.crl |
|
| Extension 6 | 1.3.6.1.5.5.7.1.12:UnknownExtension: OBJECT ID = 1.3.6.1.5.5.7.1.12 SEQUENCE[C] = 1 elements |
|
| Extension 7 | AuthorityInfoAccess:accessMethod: OBJECT ID = ocsp accessLocation: uniformResourceIdentifier: http://ocsp.veris ign.com |
|
| Extension 8 | ExtendedKeyUsage:KeyPurposeId 0: Netscape Server Gated Cryptography KeyPurposeId 1: 2.16.840.1.113733.1.8.1 KeyPurposeId 2: TLS Web server authentication KeyPurposeId 3: TLS Web client authentication |
|
Back to the server selection page.