HonwhydeMini:~ honwhywang$ curl -vvv https://baidu.com
* Trying 39.156.69.79...
* TCP_NODELAY set
* Connected to baidu.com (39.156.69.79) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
* CAfile: /etc/ssl/cert.pem
CApath: none
* TLSv1.2 (OUT), TLS handshake, Client hello (1):
* TLSv1.2 (IN), TLS handshake, Server hello (2):
* TLSv1.2 (IN), TLS handshake, Certificate (11):
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
* TLSv1.2 (IN), TLS handshake, Server finished (14):
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (OUT), TLS handshake, Finished (20):
* TLSv1.2 (IN), TLS change cipher, Change cipher spec (1):
* TLSv1.2 (IN), TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
* ALPN, server accepted to use http/1.1
* Server certificate:
* subject: C=CN; L=Beijing; O=BeiJing Baidu Netcom Science Technology Co., Ltd; OU=service operation department; CN=www.baidu.cn
* start date: Mar 18 00:00:00 2019 GMT
* expire date: Mar 17 12:00:00 2020 GMT
* subjectAltName: host "baidu.com" matched cert's"baidu.com"
* issuer: C=US; O=DigiCert Inc; CN=DigiCert SHA2 Secure Server CA
* SSL certificate verify ok.(1) client hello
(2) server hello, certificate, key exchange
(3) client exchange, cipher, ciper sepec
(4) cipher, cipher sepec
(5) conclusion
TLSv1.2 / ECDHE-RSA-AES128-GCM-SHA256
(*) veryfy server certificate