Check a DANE TLS Service

This application checks a DANE TLS Service. It connects to the specified TLS service and then attempts to authenticate its TLS server certificate according to its corresponding DANE TLSA records in the DNS.

Port: 443
Domain name: johnscott.me

DANE Authentication Failed.


Checking Transcript:

Host: johnscott.me Port: 443
SNI: johnscott.me
DNS TLSA RRset:
  qname: _443._tcp.johnscott.me.
  3 1 1 749668855d3b65315767373bf854461abb7848e3157a5dbca714eb50defe6d5b
  3 1 1 3c2ac10bea704d0cb6ef440690535e563ba144dfc263d77ef0ebd62f2b5f82da
IP Addresses found:
  2600:3c03::f03c:93ff:fef6:24
  172.104.214.157

## Checking johnscott.me 2600:3c03::f03c:93ff:fef6:24 port 443
DANE TLSA 3 1 1 [74966885..]: not checked
DANE TLSA 3 1 1 [3c2ac10b..]: not checked
Result: FAILED: dial tcp [2600:3c03::f03c:93ff:fef6:24]:443: connect: no route to host

## Checking johnscott.me 172.104.214.157 port 443
DANE TLSA 3 1 1 [74966885..]: not checked
DANE TLSA 3 1 1 [3c2ac10b..]: not checked
Result: FAILED: dial tcp 172.104.214.157:443: i/o timeout

[2] Authentication failed for all (2) peers.




Check another DANE service?


Other DANE Tools


References