Writing

Feed Software, technology, sysadmin war stories, and more.

Saturday, May 30, 2020

Not After : May 30 10:48:38 2020 GMT

Those of you using curl to grab things from my site should have a better time of it as of a few minutes ago. What happened? Well, a 20 year old cert from AddTrust that was in the chain finally expired. Firefox and friends don't care, but curl sure does!

Clearly, not everyone checks cert chains the same way.

Of course, if for some reason your path to trusting my cert was THROUGH that now-expired cert, the site now seems rogue. So there's that.

Certificate:

Data:

Version: 3 (0x2)

Serial Number:

13:ea:28:70:5b:f4:ec:ed:0c:36:63:09:80:61:43:36

Signature Algorithm: sha384WithRSAEncryption

Issuer: C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust External CA Root

Validity

Not Before: May 30 10:48:38 2000 GMT

Not After : May 30 10:48:38 2020 GMT

... and now you know.