Writing

Software, technology, sysadmin war stories, and more. Feed
Saturday, May 30, 2020

Not After : May 30 10:48:38 2020 GMT

Those of you using curl to grab things from my site should have a better time of it as of a few minutes ago. What happened? Well, a 20 year old cert from AddTrust that was in the chain finally expired. Firefox and friends don't care, but curl sure does!

Clearly, not everyone checks cert chains the same way.

Of course, if for some reason your path to trusting my cert was THROUGH that now-expired cert, the site now seems rogue. So there's that.

Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:ea:28:70:5b:f4:ec:ed:0c:36:63:09:80:61:43:36
Signature Algorithm: sha384WithRSAEncryption
Issuer: C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust External CA Root
Validity
Not Before: May 30 10:48:38 2000 GMT
Not After : May 30 10:48:38 2020 GMT

... and now you know.