Home.... | log in.... | Pub my question! | Sign-up....
Java-index >> Security >> Java Secure Socket Extension (JSSE)

Problem with client certificate

Hello,

I am very new to SSL and the certificates world.

My problem is the following.

I need to access a web server through Java (HttpClient). This is a bank site that uses SSL with server and client certificates.

The bank provided me with a certificate password and the first time I entered the secured zone with Internet Explorer, it prompted me to create a new certificate. I entered the password and, indeed, after reopening IE, I could continue to the pages I wanted.

Also, I can see in IE Tools-->Internet Options-->Content-->Certificates the certificate that was generated.

I tried to export this certificate in order to add it to my keystore. However, it does not let me export the private key, it says it is marked as not exportable. Therefore, when it asks me to select a file format, the PKCS#12 option is grayed, and my options are .cer and .p7b formats. I exported using either one and added them into the cacerts file.

I also tried exporting the certificates in the certificate path (but the root certificate was 4096 and I then I was able to import it to cacerts using JDK1.5, the beta version that has come out).

However, after lots of struggling, when I connect through Java, when I request a URL that requires the certificate, I get redirected to the error page that prompts for generating a certificate (like the first time I entered the site).

What am I missing? Will it actually be possible to this through java?

If not, is there something that I can ask the bank to provide so as to go by it?

Please help!

Thank you in advance,

Evi Gazi

[1662 byte] By [egazi] at [2007-9-30 19:23:43]
«« Abstract class extending an Interface. Please SEE
»» Problem with OutputStream
# 1
Hi,Which version of JDK you are using? Do you see any java exception ? Please provide these details.
chvmurali at 2007-7-6 23:37:01 > top of Java-index,Security,Java Secure Socket Extension (JSSE)...
# 2

I use JDK 1.4.2_05 (the latest) and I have given it a try with the 1.5.0 beta.

I see no exceptions, even when I try with the

-Djavax.net.debug=ssl,handshake,verbose

option, but I am not sure I know how to read it.

If that helps, here is the logging:

About to parse URL #6: https://www.eurobank.gr/europortal/accounts/TransfersPersonalConfirm.asp

export control - checking the cipher suites

export control - found legal entry in cache...

%% No cached client session

*** ClientHello, TLSv1

RandomCookie: GMT: 1097217630 bytes = { 86, 64, 65, 83, 146, 104, 123, 54, 246, 77, 21, 252, 21, 130, 194, 103, 102, 224, 6, 147, 53, 178, 197, 128, 18, 59, 6, 89 }

Session ID: {}

Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]

Compression Methods: { 0 }

***

main, WRITE: TLSv1 Handshake, length = 73

main, WRITE: SSLv2 client hello message, length = 98

main, READ: TLSv1 Handshake, length = 2442

*** ServerHello, TLSv1

RandomCookie: GMT: 1097217511 bytes = { 62, 23, 255, 8, 30, 0, 138, 253, 143, 89, 209, 229, 139, 20, 52, 43, 155, 21, 184, 1, 11, 42, 238, 223, 233, 129, 21, 0 }

Session ID: {40, 35, 0, 0, 214, 234, 43, 234, 73, 32, 238, 162, 200, 215, 115, 93, 52, 68, 209, 84, 217, 133, 199, 124, 11, 180, 208, 104, 172, 139, 72, 127}

Cipher Suite: SSL_RSA_WITH_RC4_128_MD5

Compression Method: 0

***

%% Created: [Session-4, SSL_RSA_WITH_RC4_128_MD5]

** SSL_RSA_WITH_RC4_128_MD5

*** Certificate chain

chain [0] = [

[

Version: V3

Subject: CN=www.eurobank.gr, OU=web4, O=Eurobank Ergasias, OU="Member, VeriSign Trust Network", OU=Authenticated by ADACOM S.A., OU=Terms of use at www.adacom.com/RPA (c)00, L=Athens, ST=Attica, C=GR

Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4

Key: Sun RSA public key, 1024 bits

modulus: 123955472607331726479621756046273477514211514168982641155112085691417459299196379333577719929671693952930305166876986601834738091415780321967406159700570640509048939389698246011659995632788221452012025188834832473933909057913549443647319577384906130719424342418108311813641574760957440556518520772078539797177

public exponent: 65537

Validity: [From: Mon Aug 09 03:00:00 EEST 2004,

To: Wed Aug 24 02:59:59 EEST 2005]

Issuer: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

SerialNumber: [525ca522 22543b04 82731b9c 86648b58]

Certificate Extensions: 4

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL server

]

[2]: ObjectId: 2.5.29.3 Criticality=false

Extension unknown: DER encoded OCTET string =

0000: 04 82 02 16 30 82 02 1230 82 02 0E 30 82 02 0A ....0...0...0...

0010: 06 0B 60 86 48 01 86 F845 01 07 01 01 30 82 01 ..`.H...E....0..

0020: F9 16 82 01 A7 54 68 6973 20 63 65 72 74 69 66 .....This certif

0030: 69 63 61 74 65 20 69 6E63 6F 72 70 6F 72 61 74 icate incorporat

0040: 65 73 20 62 79 20 72 6566 65 72 65 6E 63 65 2C es by reference,

0050: 20 61 6E 64 20 69 74 7320 75 73 65 20 69 73 20and its use is

0060: 73 74 72 69 63 74 6C 7920 73 75 62 6A 65 63 74 strictly subject

0070: 20 74 6F 2C 20 74 68 6520 56 65 72 69 53 69 67to, the VeriSig

0080: 6E 20 43 65 72 74 69 6669 63 61 74 69 6F 6E 20 n Certification

0090: 50 72 61 63 74 69 63 6520 53 74 61 74 65 6D 65 Practice Stateme

00A0: 6E 74 20 28 43 50 53 292C 20 61 76 61 69 6C 61 nt (CPS), availa

00B0: 62 6C 65 20 61 74 3A 2068 74 74 70 73 3A 2F 2F ble at: https://

00C0: 77 77 77 2E 76 65 72 6973 69 67 6E 2E 63 6F 6D www.verisign.com

00D0: 2F 43 50 53 3B 20 62 7920 45 2D 6D 61 69 6C 20 /CPS; by E-mail

00E0: 61 74 20 43 50 53 2D 7265 71 75 65 73 74 73 40 at CPS-requests@

00F0: 76 65 72 69 73 69 67 6E2E 63 6F 6D 3B 20 6F 72 verisign.com; or

0100: 20 62 79 20 6D 61 69 6C20 61 74 20 56 65 72 69by mail at Veri

0110: 53 69 67 6E 2C 20 49 6E63 2E 2C 20 32 35 39 33 Sign, Inc., 2593

0120: 20 43 6F 61 73 74 20 4176 65 2E 2C 20 4D 6F 75Coast Ave., Mou

0130: 6E 74 61 69 6E 20 56 6965 77 2C 20 43 41 20 39 ntain View, CA 9

0140: 34 30 34 33 20 55 53 4120 54 65 6C 2E 20 2B 31 4043 USA Tel. +1

0150: 20 28 34 31 35 29 20 3936 31 2D 38 38 33 30 20(415) 961-8830

0160: 43 6F 70 79 72 69 67 6874 20 28 63 29 20 31 39 Copyright (c) 19

0170: 39 36 20 56 65 72 69 5369 67 6E 2C 20 49 6E 63 96 VeriSign, Inc

0180: 2E 20 20 41 6C 6C 20 5269 67 68 74 73 20 52 65 . All Rights Re

0190: 73 65 72 76 65 64 2E 2043 45 52 54 41 49 4E 20 served. CERTAIN

01A0: 57 41 52 52 41 4E 54 4945 53 20 44 49 53 43 4C WARRANTIES DISCL

01B0: 41 49 4D 45 44 20 61 6E64 20 4C 49 41 42 49 4C AIMED and LIABIL

01C0: 49 54 59 20 4C 49 4D 4954 45 44 2E A0 0E 06 0C ITY LIMITED.....

01D0: 60 86 48 01 86 F8 45 0107 01 01 01 A1 0E 06 0C `.H...E.........

01E0: 60 86 48 01 86 F8 45 0107 01 01 02 30 2C 30 2A `.H...E.....0,0*

01F0: 16 28 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 .(https://www.ve

0200: 72 69 73 69 67 6E 2E 636F 6D 2F 72 65 70 6F 73 risign.com/repos

0210: 69 74 6F 72 79 2F 43 5053 20itory/CPS

[3]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[2.16.840.1.113730.4.1, 1.3.6.1.4.1.311.10.3.3]]

[4]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:false

PathLen: undefined

]

]

Algorithm: [MD5withRSA]

Signature:

0000: D5 F8 E0 C2 E5 E6 73 7B52 3C 26 18 6F B3 E2 25 ......s.R<&.o..%

0010: 12 04 DE A3 39 5A 60 76CC 55 6F 0C D2 74 C3 49 ....9Z`v.Uo..t.I

0020: 7B 13 4B 07 25 40 34 D03D EF 17 8E 78 F6 74 DB ..K.%@4.=...x.t.

0030: 95 2A 3A 36 C8 24 2A 0916 E4 38 90 E8 08 68 C3 .*:6.$*...8...h.

0040: 14 0E F1 EE 36 BC 10 0043 E3 A8 64 E6 5F 29 E7 ....6...C..d._).

0050: 62 2D DE 03 21 45 30 5E5E 73 1F 3E 09 DB FA 0F b-..!E0^^s.>....

0060: 17 16 D3 5C 25 D4 67 39B8 94 FA 40 6D 4B 6C 92 ...\%.g9...@mKl.

0070: 74 53 CF 72 02 63 BE C370 F1 FA 61 9B 61 0C 5E tS.r.c..p..a.a.^

]

chain [1] = [

[

Version: V3

Subject: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5

Key: Sun RSA public key, 1024 bits

modulus: 152038337595048255423847391294280316829513160608880590645748454678611296410614722508245144022405726502805452059694145417254341557335953427821740975082044924575579268245924346494324451976855998250066581618028401376050836623416546828558818294849045727347102003201845243865318616842453964918804144784127904873327

public exponent: 65537

Validity: [From: Thu Apr 17 03:00:00 EEST 1997,

To: Tue Oct 25 02:59:59 EEST 2011]

Issuer: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US

SerialNumber: [78ee48de 185b2071 c9c9c3b5 1d7bddc1]

Certificate Extensions: 6

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL CA

S/MIME CA

]

[2]: ObjectId: 2.5.29.31 Criticality=false

CRLDistributionPoints [

[DistributionPoint:

[URIName: http://crl.verisign.com/pca3-g2.crl]

]]

[3]: ObjectId: 2.5.29.15 Criticality=false

KeyUsage [

Key_CertSign

Crl_Sign

]

[4]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[1.3.6.1.5.5.7.3.1, 1.3.6.1.5.5.7.3.2, 2.16.840.1.113730.4.1, 2.16.840.1.113733.1.8.1]]

[5]: ObjectId: 2.5.29.32 Criticality=false

CertificatePolicies [

[CertificatePolicyId: [2.16.840.1.113733.1.7.1.1]

[PolicyQualifierInfo: [

qualifierID: 1.3.6.1.5.5.7.2.1

qualifier: 0000: 16 1C 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 ..https://www.ve

0010: 72 69 73 69 67 6E 2E 636F 6D 2F 43 50 53risign.com/CPS

]] ]

]

[6]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:true

PathLen:0

]

]

Algorithm: [SHA1withRSA]

Signature:

0000: 23 5D EE A6 24 05 FD 76D3 6A 1A D6 BA 46 06 AA #]..$..v.j...F..

0010: 6A 0F 03 90 66 B2 B0 A6C2 9E C9 1E A3 55 53 AF j...f........US.

0020: 3E 45 FD DC 8C 27 DD 5338 09 BB 7C 4B 2B BA 95 >E...'.S8...K+..

0030: 4A FE 70 4E 1B 69 D6 3CF7 4F 07 C5 F2 17 5A 4C J.pN.i.<.O....ZL

0040: A2 8F AC 0B 8A 06 DB B9D4 6B C5 1D 58 DA 17 52 .........k..X..R

0050: E3 21 F1 D2 D7 5A D5 E5AB 59 7B 21 7A 86 6A D4 .!...Z...Y.!z.j.

0060: FE 17 11 3A 53 0D 9C 60A0 4A D9 5E E4 1D 0C 29 ...:S..`.J.^...)

0070: AA 13 07 65 86 1F BF B4C9 82 53 9C 2C 02 8F 23 ...e......S.,..#

]

***

Found trusted certificate:

[

[

Version: V3

Subject: CN=www.eurobank.gr, OU=web4, O=Eurobank Ergasias, OU="Member, VeriSign Trust Network", OU=Authenticated by ADACOM S.A., OU=Terms of use at www.adacom.com/RPA (c)00, L=Athens, ST=Attica, C=GR

Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4

Key: Sun RSA public key, 1024 bits

modulus: 123955472607331726479621756046273477514211514168982641155112085691417459299196379333577719929671693952930305166876986601834738091415780321967406159700570640509048939389698246011659995632788221452012025188834832473933909057913549443647319577384906130719424342418108311813641574760957440556518520772078539797177

public exponent: 65537

Validity: [From: Mon Aug 09 03:00:00 EEST 2004,

To: Wed Aug 24 02:59:59 EEST 2005]

Issuer: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

SerialNumber: [525ca522 22543b04 82731b9c 86648b58]

Certificate Extensions: 4

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL server

]

[2]: ObjectId: 2.5.29.3 Criticality=false

Extension unknown: DER encoded OCTET string =

0000: 04 82 02 16 30 82 02 1230 82 02 0E 30 82 02 0A ....0...0...0...

0010: 06 0B 60 86 48 01 86 F845 01 07 01 01 30 82 01 ..`.H...E....0..

0020: F9 16 82 01 A7 54 68 6973 20 63 65 72 74 69 66 .....This certif

0030: 69 63 61 74 65 20 69 6E63 6F 72 70 6F 72 61 74 icate incorporat

0040: 65 73 20 62 79 20 72 6566 65 72 65 6E 63 65 2C es by reference,

0050: 20 61 6E 64 20 69 74 7320 75 73 65 20 69 73 20and its use is

0060: 73 74 72 69 63 74 6C 7920 73 75 62 6A 65 63 74 strictly subject

0070: 20 74 6F 2C 20 74 68 6520 56 65 72 69 53 69 67to, the VeriSig

0080: 6E 20 43 65 72 74 69 6669 63 61 74 69 6F 6E 20 n Certification

0090: 50 72 61 63 74 69 63 6520 53 74 61 74 65 6D 65 Practice Stateme

00A0: 6E 74 20 28 43 50 53 292C 20 61 76 61 69 6C 61 nt (CPS), availa

00B0: 62 6C 65 20 61 74 3A 2068 74 74 70 73 3A 2F 2F ble at: https://

00C0: 77 77 77 2E 76 65 72 6973 69 67 6E 2E 63 6F 6D www.verisign.com

00D0: 2F 43 50 53 3B 20 62 7920 45 2D 6D 61 69 6C 20 /CPS; by E-mail

00E0: 61 74 20 43 50 53 2D 7265 71 75 65 73 74 73 40 at CPS-requests@

00F0: 76 65 72 69 73 69 67 6E2E 63 6F 6D 3B 20 6F 72 verisign.com; or

0100: 20 62 79 20 6D 61 69 6C20 61 74 20 56 65 72 69by mail at Veri

0110: 53 69 67 6E 2C 20 49 6E63 2E 2C 20 32 35 39 33 Sign, Inc., 2593

0120: 20 43 6F 61 73 74 20 4176 65 2E 2C 20 4D 6F 75Coast Ave., Mou

0130: 6E 74 61 69 6E 20 56 6965 77 2C 20 43 41 20 39 ntain View, CA 9

0140: 34 30 34 33 20 55 53 4120 54 65 6C 2E 20 2B 31 4043 USA Tel. +1

0150: 20 28 34 31 35 29 20 3936 31 2D 38 38 33 30 20(415) 961-8830

0160: 43 6F 70 79 72 69 67 6874 20 28 63 29 20 31 39 Copyright (c) 19

0170: 39 36 20 56 65 72 69 5369 67 6E 2C 20 49 6E 63 96 VeriSign, Inc

0180: 2E 20 20 41 6C 6C 20 5269 67 68 74 73 20 52 65 . All Rights Re

0190: 73 65 72 76 65 64 2E 2043 45 52 54 41 49 4E 20 served. CERTAIN

01A0: 57 41 52 52 41 4E 54 4945 53 20 44 49 53 43 4C WARRANTIES DISCL

01B0: 41 49 4D 45 44 20 61 6E64 20 4C 49 41 42 49 4C AIMED and LIABIL

01C0: 49 54 59 20 4C 49 4D 4954 45 44 2E A0 0E 06 0C ITY LIMITED.....

01D0: 60 86 48 01 86 F8 45 0107 01 01 01 A1 0E 06 0C `.H...E.........

01E0: 60 86 48 01 86 F8 45 0107 01 01 02 30 2C 30 2A `.H...E.....0,0*

01F0: 16 28 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 .(https://www.ve

0200: 72 69 73 69 67 6E 2E 636F 6D 2F 72 65 70 6F 73 risign.com/repos

0210: 69 74 6F 72 79 2F 43 5053 20itory/CPS

[3]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[2.16.840.1.113730.4.1, 1.3.6.1.4.1.311.10.3.3]]

[4]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:false

PathLen: undefined

]

]

Algorithm: [MD5withRSA]

Signature:

0000: D5 F8 E0 C2 E5 E6 73 7B52 3C 26 18 6F B3 E2 25 ......s.R<&.o..%

0010: 12 04 DE A3 39 5A 60 76CC 55 6F 0C D2 74 C3 49 ....9Z`v.Uo..t.I

0020: 7B 13 4B 07 25 40 34 D03D EF 17 8E 78 F6 74 DB ..K.%@4.=...x.t.

0030: 95 2A 3A 36 C8 24 2A 0916 E4 38 90 E8 08 68 C3 .*:6.$*...8...h.

0040: 14 0E F1 EE 36 BC 10 0043 E3 A8 64 E6 5F 29 E7 ....6...C..d._).

0050: 62 2D DE 03 21 45 30 5E5E 73 1F 3E 09 DB FA 0F b-..!E0^^s.>....

0060: 17 16 D3 5C 25 D4 67 39B8 94 FA 40 6D 4B 6C 92 ...\%.g9...@mKl.

0070: 74 53 CF 72 02 63 BE C370 F1 FA 61 9B 61 0C 5E tS.r.c..p..a.a.^

]

*** ServerHelloDone

*** ClientKeyExchange, RSA PreMasterSecret, TLSv1

Random Secret: { 3, 1, 202, 233, 113, 181, 209, 235, 160, 5, 18, 121, 221, 104, 146, 243, 208, 249, 31, 213, 166, 121, 243, 7, 96, 31, 158, 142, 16, 246, 209, 99, 74, 199, 46, 129, 121, 77, 121, 149, 145, 164, 27, 135, 81, 252, 55, 238 }

main, WRITE: TLSv1 Handshake, length = 134

SESSION KEYGEN:

PreMaster Secret:

0000: 03 01 CA E9 71 B5 D1 EBA0 05 12 79 DD 68 92 F3 ....q......y.h..

0010: D0 F9 1F D5 A6 79 F3 0760 1F 9E 8E 10 F6 D1 63 .....y..`......c

0020: 4A C7 2E 81 79 4D 79 9591 A4 1B 87 51 FC 37 EE J...yMy.....Q.7.

CONNECTION KEYGEN:

Client Nonce:

0000: 41 66 36 5E 56 40 41 5392 68 7B 36 F6 4D 15 FC Af6^V@AS.h.6.M..

0010: 15 82 C2 67 66 E0 06 9335 B2 C5 80 12 3B 06 59 ...gf...5....;.Y

Server Nonce:

0000: 41 66 36 E7 3E 17 FF 081E 00 8A FD 8F 59 D1 E5 Af6.>........Y..

0010: 8B 14 34 2B 9B 15 B8 010B 2A EE DF E9 81 15 00 ..4+.....*......

Master Secret:

0000: CF 2C 35 95 27 3B DF 7C2D 28 45 28 A1 A6 3A F5 .,5.';..-(E(..:.

0010: 2A D7 03 16 31 63 77 EF60 BE 27 08 E5 61 46 23 *...1cw.`.'..aF#

0020: 54 61 72 31 29 91 D8 0858 C7 38 9A 80 E3 49 83 Tar1)...X.8...I.

Client MAC write Secret:

0000: AA D3 F1 46 D7 43 ED 69D4 83 CC B3 EC 0E 4C 29 ...F.C.i......L)

Server MAC write Secret:

0000: 06 2E D3 75 FD 95 37 4B40 8F 94 EC 90 B4 6D B0 ...u..7K@.....m.

Client write key:

0000: F8 94 26 2F C6 B3 FA D66B F6 26 C6 51 21 A6 9E ..&/....k.&.Q!..

Server write key:

0000: 92 C1 7C 54 44 F5 01 BAD3 FD 18 8C EF 3B 6E F9 ...TD........;n.

... no IV for cipher

main, WRITE: TLSv1 Change Cipher Spec, length = 1

*** Finished

verify_data: { 39, 127, 102, 120, 199, 7, 53, 75, 206, 212, 241, 90 }

***

main, WRITE: TLSv1 Handshake, length = 32

main, READ: TLSv1 Change Cipher Spec, length = 1

main, READ: TLSv1 Handshake, length = 32

*** Finished

verify_data: { 91, 107, 43, 24, 207, 63, 138, 193, 252, 81, 217, 0 }

***

%% Cached client session: [Session-4, SSL_RSA_WITH_RC4_128_MD5]

main, WRITE: TLSv1 Application Data, length = 264

main, READ: TLSv1 Handshake, length = 20

*** HelloRequest (empty)

%% Client cached [Session-4, SSL_RSA_WITH_RC4_128_MD5]

%% Try resuming [Session-4, SSL_RSA_WITH_RC4_128_MD5] from port 1216

*** ClientHello, TLSv1

RandomCookie: GMT: 1097217638 bytes = { 228, 196, 15, 15, 223, 59, 36, 27, 34, 74, 228, 215, 194, 170, 118, 213, 173, 61, 27, 222, 82, 63, 30, 41, 118, 10, 156, 111 }

Session ID: {40, 35, 0, 0, 214, 234, 43, 234, 73, 32, 238, 162, 200, 215, 115, 93, 52, 68, 209, 84, 217, 133, 199, 124, 11, 180, 208, 104, 172, 139, 72, 127}

Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]

Compression Methods: { 0 }

***

main, WRITE: TLSv1 Handshake, length = 121

main, READ: TLSv1 Handshake, length = 5112

*** ServerHello, TLSv1

RandomCookie: GMT: 1097217520 bytes = { 75, 47, 210, 174, 231, 238, 65, 255, 219, 34, 34, 6, 44, 133, 112, 137, 52, 181, 211, 6, 190, 140, 197, 208, 195, 113, 252, 34 }

Session ID: {57, 17, 0, 0, 195, 20, 4, 86, 253, 27, 55, 95, 164, 137, 204, 45, 161, 144, 81, 102, 26, 92, 240, 203, 141, 127, 158, 235, 51, 104, 195, 58}

Cipher Suite: SSL_RSA_WITH_RC4_128_MD5

Compression Method: 0

***

%% Created: [Session-5, SSL_RSA_WITH_RC4_128_MD5]

** SSL_RSA_WITH_RC4_128_MD5

*** Certificate chain

chain [0] = [

[

Version: V3

Subject: CN=www.eurobank.gr, OU=web4, O=Eurobank Ergasias, OU="Member, VeriSign Trust Network", OU=Authenticated by ADACOM S.A., OU=Terms of use at www.adacom.com/RPA (c)00, L=Athens, ST=Attica, C=GR

Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4

Key: Sun RSA public key, 1024 bits

modulus: 123955472607331726479621756046273477514211514168982641155112085691417459299196379333577719929671693952930305166876986601834738091415780321967406159700570640509048939389698246011659995632788221452012025188834832473933909057913549443647319577384906130719424342418108311813641574760957440556518520772078539797177

public exponent: 65537

Validity: [From: Mon Aug 09 03:00:00 EEST 2004,

To: Wed Aug 24 02:59:59 EEST 2005]

Issuer: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

SerialNumber: [525ca522 22543b04 82731b9c 86648b58]

Certificate Extensions: 4

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL server

]

[2]: ObjectId: 2.5.29.3 Criticality=false

Extension unknown: DER encoded OCTET string =

0000: 04 82 02 16 30 82 02 1230 82 02 0E 30 82 02 0A ....0...0...0...

0010: 06 0B 60 86 48 01 86 F845 01 07 01 01 30 82 01 ..`.H...E....0..

0020: F9 16 82 01 A7 54 68 6973 20 63 65 72 74 69 66 .....This certif

0030: 69 63 61 74 65 20 69 6E63 6F 72 70 6F 72 61 74 icate incorporat

0040: 65 73 20 62 79 20 72 6566 65 72 65 6E 63 65 2C es by reference,

0050: 20 61 6E 64 20 69 74 7320 75 73 65 20 69 73 20and its use is

0060: 73 74 72 69 63 74 6C 7920 73 75 62 6A 65 63 74 strictly subject

0070: 20 74 6F 2C 20 74 68 6520 56 65 72 69 53 69 67to, the VeriSig

0080: 6E 20 43 65 72 74 69 6669 63 61 74 69 6F 6E 20 n Certification

0090: 50 72 61 63 74 69 63 6520 53 74 61 74 65 6D 65 Practice Stateme

00A0: 6E 74 20 28 43 50 53 292C 20 61 76 61 69 6C 61 nt (CPS), availa

00B0: 62 6C 65 20 61 74 3A 2068 74 74 70 73 3A 2F 2F ble at: https://

00C0: 77 77 77 2E 76 65 72 6973 69 67 6E 2E 63 6F 6D www.verisign.com

00D0: 2F 43 50 53 3B 20 62 7920 45 2D 6D 61 69 6C 20 /CPS; by E-mail

00E0: 61 74 20 43 50 53 2D 7265 71 75 65 73 74 73 40 at CPS-requests@

00F0: 76 65 72 69 73 69 67 6E2E 63 6F 6D 3B 20 6F 72 verisign.com; or

0100: 20 62 79 20 6D 61 69 6C20 61 74 20 56 65 72 69by mail at Veri

0110: 53 69 67 6E 2C 20 49 6E63 2E 2C 20 32 35 39 33 Sign, Inc., 2593

0120: 20 43 6F 61 73 74 20 4176 65 2E 2C 20 4D 6F 75Coast Ave., Mou

0130: 6E 74 61 69 6E 20 56 6965 77 2C 20 43 41 20 39 ntain View, CA 9

0140: 34 30 34 33 20 55 53 4120 54 65 6C 2E 20 2B 31 4043 USA Tel. +1

0150: 20 28 34 31 35 29 20 3936 31 2D 38 38 33 30 20(415) 961-8830

0160: 43 6F 70 79 72 69 67 6874 20 28 63 29 20 31 39 Copyright (c) 19

0170: 39 36 20 56 65 72 69 5369 67 6E 2C 20 49 6E 63 96 VeriSign, Inc

0180: 2E 20 20 41 6C 6C 20 5269 67 68 74 73 20 52 65 . All Rights Re

0190: 73 65 72 76 65 64 2E 2043 45 52 54 41 49 4E 20 served. CERTAIN

01A0: 57 41 52 52 41 4E 54 4945 53 20 44 49 53 43 4C WARRANTIES DISCL

01B0: 41 49 4D 45 44 20 61 6E64 20 4C 49 41 42 49 4C AIMED and LIABIL

01C0: 49 54 59 20 4C 49 4D 4954 45 44 2E A0 0E 06 0C ITY LIMITED.....

01D0: 60 86 48 01 86 F8 45 0107 01 01 01 A1 0E 06 0C `.H...E.........

01E0: 60 86 48 01 86 F8 45 0107 01 01 02 30 2C 30 2A `.H...E.....0,0*

01F0: 16 28 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 .(https://www.ve

0200: 72 69 73 69 67 6E 2E 636F 6D 2F 72 65 70 6F 73 risign.com/repos

0210: 69 74 6F 72 79 2F 43 5053 20itory/CPS

[3]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[2.16.840.1.113730.4.1, 1.3.6.1.4.1.311.10.3.3]]

[4]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:false

PathLen: undefined

]

]

Algorithm: [MD5withRSA]

Signature:

0000: D5 F8 E0 C2 E5 E6 73 7B52 3C 26 18 6F B3 E2 25 ......s.R<&.o..%

0010: 12 04 DE A3 39 5A 60 76CC 55 6F 0C D2 74 C3 49 ....9Z`v.Uo..t.I

0020: 7B 13 4B 07 25 40 34 D03D EF 17 8E 78 F6 74 DB ..K.%@4.=...x.t.

0030: 95 2A 3A 36 C8 24 2A 0916 E4 38 90 E8 08 68 C3 .*:6.$*...8...h.

0040: 14 0E F1 EE 36 BC 10 0043 E3 A8 64 E6 5F 29 E7 ....6...C..d._).

0050: 62 2D DE 03 21 45 30 5E5E 73 1F 3E 09 DB FA 0F b-..!E0^^s.>....

0060: 17 16 D3 5C 25 D4 67 39B8 94 FA 40 6D 4B 6C 92 ...\%.g9...@mKl.

0070: 74 53 CF 72 02 63 BE C370 F1 FA 61 9B 61 0C 5E tS.r.c..p..a.a.^

]

chain [1] = [

[

Version: V3

Subject: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5

Key: Sun RSA public key, 1024 bits

modulus: 152038337595048255423847391294280316829513160608880590645748454678611296410614722508245144022405726502805452059694145417254341557335953427821740975082044924575579268245924346494324451976855998250066581618028401376050836623416546828558818294849045727347102003201845243865318616842453964918804144784127904873327

public exponent: 65537

Validity: [From: Thu Apr 17 03:00:00 EEST 1997,

To: Tue Oct 25 02:59:59 EEST 2011]

Issuer: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US

SerialNumber: [78ee48de 185b2071 c9c9c3b5 1d7bddc1]

Certificate Extensions: 6

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL CA

S/MIME CA

]

[2]: ObjectId: 2.5.29.31 Criticality=false

CRLDistributionPoints [

[DistributionPoint:

[URIName: http://crl.verisign.com/pca3-g2.crl]

]]

[3]: ObjectId: 2.5.29.15 Criticality=false

KeyUsage [

Key_CertSign

Crl_Sign

]

[4]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[1.3.6.1.5.5.7.3.1, 1.3.6.1.5.5.7.3.2, 2.16.840.1.113730.4.1, 2.16.840.1.113733.1.8.1]]

[5]: ObjectId: 2.5.29.32 Criticality=false

CertificatePolicies [

[CertificatePolicyId: [2.16.840.1.113733.1.7.1.1]

[PolicyQualifierInfo: [

qualifierID: 1.3.6.1.5.5.7.2.1

qualifier: 0000: 16 1C 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 ..https://www.ve

0010: 72 69 73 69 67 6E 2E 636F 6D 2F 43 50 53risign.com/CPS

]] ]

]

[6]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:true

PathLen:0

]

]

Algorithm: [SHA1withRSA]

Signature:

0000: 23 5D EE A6 24 05 FD 76D3 6A 1A D6 BA 46 06 AA #]..$..v.j...F..

0010: 6A 0F 03 90 66 B2 B0 A6C2 9E C9 1E A3 55 53 AF j...f........US.

0020: 3E 45 FD DC 8C 27 DD 5338 09 BB 7C 4B 2B BA 95 >E...'.S8...K+..

0030: 4A FE 70 4E 1B 69 D6 3CF7 4F 07 C5 F2 17 5A 4C J.pN.i.<.O....ZL

0040: A2 8F AC 0B 8A 06 DB B9D4 6B C5 1D 58 DA 17 52 .........k..X..R

0050: E3 21 F1 D2 D7 5A D5 E5AB 59 7B 21 7A 86 6A D4 .!...Z...Y.!z.j.

0060: FE 17 11 3A 53 0D 9C 60A0 4A D9 5E E4 1D 0C 29 ...:S..`.J.^...)

0070: AA 13 07 65 86 1F BF B4C9 82 53 9C 2C 02 8F 23 ...e......S.,..#

]

***

Found trusted certificate:

[

[

Version: V3

Subject: CN=www.eurobank.gr, OU=web4, O=Eurobank Ergasias, OU="Member, VeriSign Trust Network", OU=Authenticated by ADACOM S.A., OU=Terms of use at www.adacom.com/RPA (c)00, L=Athens, ST=Attica, C=GR

Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4

Key: Sun RSA public key, 1024 bits

modulus: 123955472607331726479621756046273477514211514168982641155112085691417459299196379333577719929671693952930305166876986601834738091415780321967406159700570640509048939389698246011659995632788221452012025188834832473933909057913549443647319577384906130719424342418108311813641574760957440556518520772078539797177

public exponent: 65537

Validity: [From: Mon Aug 09 03:00:00 EEST 2004,

To: Wed Aug 24 02:59:59 EEST 2005]

Issuer: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

SerialNumber: [525ca522 22543b04 82731b9c 86648b58]

Certificate Extensions: 4

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL server

]

[2]: ObjectId: 2.5.29.3 Criticality=false

Extension unknown: DER encoded OCTET string =

0000: 04 82 02 16 30 82 02 1230 82 02 0E 30 82 02 0A ....0...0...0...

0010: 06 0B 60 86 48 01 86 F845 01 07 01 01 30 82 01 ..`.H...E....0..

0020: F9 16 82 01 A7 54 68 6973 20 63 65 72 74 69 66 .....This certif

0030: 69 63 61 74 65 20 69 6E63 6F 72 70 6F 72 61 74 icate incorporat

0040: 65 73 20 62 79 20 72 6566 65 72 65 6E 63 65 2C es by reference,

0050: 20 61 6E 64 20 69 74 7320 75 73 65 20 69 73 20and its use is

0060: 73 74 72 69 63 74 6C 7920 73 75 62 6A 65 63 74 strictly subject

0070: 20 74 6F 2C 20 74 68 6520 56 65 72 69 53 69 67to, the VeriSig

0080: 6E 20 43 65 72 74 69 6669 63 61 74 69 6F 6E 20 n Certification

0090: 50 72 61 63 74 69 63 6520 53 74 61 74 65 6D 65 Practice Stateme

00A0: 6E 74 20 28 43 50 53 292C 20 61 76 61 69 6C 61 nt (CPS), availa

00B0: 62 6C 65 20 61 74 3A 2068 74 74 70 73 3A 2F 2F ble at: https://

00C0: 77 77 77 2E 76 65 72 6973 69 67 6E 2E 63 6F 6D www.verisign.com

00D0: 2F 43 50 53 3B 20 62 7920 45 2D 6D 61 69 6C 20 /CPS; by E-mail

00E0: 61 74 20 43 50 53 2D 7265 71 75 65 73 74 73 40 at CPS-requests@

00F0: 76 65 72 69 73 69 67 6E2E 63 6F 6D 3B 20 6F 72 verisign.com; or

0100: 20 62 79 20 6D 61 69 6C20 61 74 20 56 65 72 69by mail at Veri

0110: 53 69 67 6E 2C 20 49 6E63 2E 2C 20 32 35 39 33 Sign, Inc., 2593

0120: 20 43 6F 61 73 74 20 4176 65 2E 2C 20 4D 6F 75Coast Ave., Mou

0130: 6E 74 61 69 6E 20 56 6965 77 2C 20 43 41 20 39 ntain View, CA 9

0140: 34 30 34 33 20 55 53 4120 54 65 6C 2E 20 2B 31 4043 USA Tel. +1

0150: 20 28 34 31 35 29 20 3936 31 2D 38 38 33 30 20(415) 961-8830

0160: 43 6F 70 79 72 69 67 6874 20 28 63 29 20 31 39 Copyright (c) 19

0170: 39 36 20 56 65 72 69 5369 67 6E 2C 20 49 6E 63 96 VeriSign, Inc

0180: 2E 20 20 41 6C 6C 20 5269 67 68 74 73 20 52 65 . All Rights Re

0190: 73 65 72 76 65 64 2E 2043 45 52 54 41 49 4E 20 served. CERTAIN

01A0: 57 41 52 52 41 4E 54 4945 53 20 44 49 53 43 4C WARRANTIES DISCL

01B0: 41 49 4D 45 44 20 61 6E64 20 4C 49 41 42 49 4C AIMED and LIABIL

01C0: 49 54 59 20 4C 49 4D 4954 45 44 2E A0 0E 06 0C ITY LIMITED.....

01D0: 60 86 48 01 86 F8 45 0107 01 01 01 A1 0E 06 0C `.H...E.........

01E0: 60 86 48 01 86 F8 45 0107 01 01 02 30 2C 30 2A `.H...E.....0,0*

01F0: 16 28 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 .(https://www.ve

0200: 72 69 73 69 67 6E 2E 636F 6D 2F 72 65 70 6F 73 risign.com/repos

0210: 69 74 6F 72 79 2F 43 5053 20itory/CPS

[3]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[2.16.840.1.113730.4.1, 1.3.6.1.4.1.311.10.3.3]]

[4]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:false

PathLen: undefined

]

]

Algorithm: [MD5withRSA]

Signature:

0000: D5 F8 E0 C2 E5 E6 73 7B52 3C 26 18 6F B3 E2 25 ......s.R<&.o..%

0010: 12 04 DE A3 39 5A 60 76CC 55 6F 0C D2 74 C3 49 ....9Z`v.Uo..t.I

0020: 7B 13 4B 07 25 40 34 D03D EF 17 8E 78 F6 74 DB ..K.%@4.=...x.t.

0030: 95 2A 3A 36 C8 24 2A 0916 E4 38 90 E8 08 68 C3 .*:6.$*...8...h.

0040: 14 0E F1 EE 36 BC 10 0043 E3 A8 64 E6 5F 29 E7 ....6...C..d._).

0050: 62 2D DE 03 21 45 30 5E5E 73 1F 3E 09 DB FA 0F b-..!E0^^s.>....

0060: 17 16 D3 5C 25 D4 67 39B8 94 FA 40 6D 4B 6C 92 ...\%.g9...@mKl.

0070: 74 53 CF 72 02 63 BE C370 F1 FA 61 9B 61 0C 5E tS.r.c..p..a.a.^

]

*** CertificateRequest

Cert Types: RSA,

Cert Authorities:

<CN=EUROBANK RETAIL ISSUING CA, OU=E-SOLUTIONS, O=EUROBANK ERGASIAS, L=ATHENS, ST=ATTIKI, C=GR, EMAILADDRESS=cliakeas@e-solutions.gr>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<EMAILADDRESS=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>

<EMAILADDRESS=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>

<CN=First Data Digital Certificates Inc. Certification Authority, O=First Data Digital Certificates Inc., C=US>

<EMAILADDRESS=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>

<OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>

<OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>

<OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<CN=EFG Eurobank Ergasias Root CA, OU=e-Banking, O=EFG Eurobank Ergasias S.A., L=Athens, ST=Attica, C=GR, EMAILADDRESS=rootca@eurobank.gr>

<CN=GTE CyberTrust Root, O=GTE Corporation, C=US>

<CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>

<CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>

*** ServerHelloDone

*** Certificate chain

***

*** ClientKeyExchange, RSA PreMasterSecret, TLSv1

Random Secret: { 3, 1, 121, 4, 126, 99, 149, 213, 163, 91, 51, 18, 227, 236, 66, 92, 66, 127, 29, 118, 218, 26, 244, 233, 29, 114, 255, 181, 87, 1, 74, 146, 192, 172, 35, 85, 196, 170, 116, 177, 111, 63, 27, 67, 81, 27, 36, 222 }

main, WRITE: TLSv1 Handshake, length = 157

SESSION KEYGEN:

PreMaster Secret:

0000: 03 01 79 04 7E 63 95 D5A3 5B 33 12 E3 EC 42 5C ..y..c...[3...B\

0010: 42 7F 1D 76 DA 1A F4 E91D 72 FF B5 57 01 4A 92 B..v.....r..W.J.

0020: C0 AC 23 55 C4 AA 74 B16F 3F 1B 43 51 1B 24 DE ..#U..t.o?.CQ.$.

CONNECTION KEYGEN:

Client Nonce:

0000: 41 66 36 66 E4 C4 0F 0FDF 3B 24 1B 22 4A E4 D7 Af6f.....;$."J..

0010: C2 AA 76 D5 AD 3D 1B DE52 3F 1E 29 76 0A 9C 6F ..v..=..R?.)v..o

Server Nonce:

0000: 41 66 36 F0 4B 2F D2 AEE7 EE 41 FF DB 22 22 06 Af6.K/....A.."".

0010: 2C 85 70 89 34 B5 D3 06BE 8C C5 D0 C3 71 FC 22 ,.p.4........q."

Master Secret:

0000: 00 17 40 6C 37 D3 1B ED94 DC FF 64 AF 74 23 C3 ..@l7......d.t#.

0010: B1 56 C9 4E 11 4E C1 62FC 6A D9 68 46 AA AC 7A .V.N.N.b.j.hF..z

0020: 27 B2 86 93 5B B3 82 ADC0 2C 20 55 9B D6 38 19 '...[...., U..8.

Client MAC write Secret:

0000: 77 EC 24 D9 47 86 1E DE7F B7 69 5F 3E 86 BA 5D w.$.G.....i_>..]

Server MAC write Secret:

0000: 7D 2D 36 68 E2 06 2F F0D0 A6 F2 DF 9E 68 87 95 .-6h../......h..

Client write key:

0000: 6B B5 D9 FE 3F C9 6F 78E9 90 A0 65 48 BE FC 23 k...?.ox...eH..#

Server write key:

0000: 51 F8 38 89 9B E7 B0 5AFD 9B CE 75 76 03 14 E9 Q.8....Z...uv...

... no IV for cipher

main, WRITE: TLSv1 Change Cipher Spec, length = 17

*** Finished

verify_data: { 24, 63, 249, 30, 84, 75, 79, 185, 195, 207, 75, 207 }

***

main, WRITE: TLSv1 Handshake, length = 32

main, READ: TLSv1 Change Cipher Spec, length = 17

main, READ: TLSv1 Handshake, length = 32

*** Finished

verify_data: { 105, 119, 27, 137, 242, 126, 125, 194, 235, 164, 113, 68 }

***

%% Cached client session: [Session-5, SSL_RSA_WITH_RC4_128_MD5]

main, READ: TLSv1 Application Data, length = 235

main, READ: TLSv1 Application Data, length = 116

main, called close()

main, called closeInternal(true)

main, SEND TLSv1 ALERT: warning, description = close_notify

main, WRITE: TLSv1 Alert, length = 18

export control - checking the cipher suites

export control - found legal entry in cache...

%% Client cached [Session-5, SSL_RSA_WITH_RC4_128_MD5]

%% Try resuming [Session-5, SSL_RSA_WITH_RC4_128_MD5] from port 1220

*** ClientHello, TLSv1

RandomCookie: GMT: 1097217647 bytes = { 124, 210, 34, 40, 233, 225, 69, 66, 5, 77, 124, 155, 60, 166, 233, 92, 166, 233, 245, 22, 230, 197, 195, 205, 51, 177, 28, 224 }

Session ID: {57, 17, 0, 0, 195, 20, 4, 86, 253, 27, 55, 95, 164, 137, 204, 45, 161, 144, 81, 102, 26, 92, 240, 203, 141, 127, 158, 235, 51, 104, 195, 58}

Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]

Compression Methods: { 0 }

***

main, WRITE: TLSv1 Handshake, length = 105

main, READ: TLSv1 Handshake, length = 74

*** ServerHello, TLSv1

RandomCookie: GMT: 1097217526 bytes = { 229, 229, 64, 175, 98, 65, 76, 148, 136, 151, 34, 249, 242, 98, 109, 95, 172, 220, 1, 68, 98, 4, 145, 123, 4, 224, 158, 51 }

Session ID: {57, 17, 0, 0, 195, 20, 4, 86, 253, 27, 55, 95, 164, 137, 204, 45, 161, 144, 81, 102, 26, 92, 240, 203, 141, 127, 158, 235, 51, 104, 195, 58}

Cipher Suite: SSL_RSA_WITH_RC4_128_MD5

Compression Method: 0

***

CONNECTION KEYGEN:

Client Nonce:

0000: 41 66 36 6F 7C D2 22 28E9 E1 45 42 05 4D 7C 9B Af6o.."(..EB.M..

0010: 3C A6 E9 5C A6 E9 F5 16E6 C5 C3 CD 33 B1 1C E0 <..\........3...

Server Nonce:

0000: 41 66 36 F6 E5 E5 40 AF62 41 4C 94 88 97 22 F9 Af6...@.bAL...".

0010: F2 62 6D 5F AC DC 01 4462 04 91 7B 04 E0 9E 33 .bm_...Db......3

Master Secret:

0000: 00 17 40 6C 37 D3 1B ED94 DC FF 64 AF 74 23 C3 ..@l7......d.t#.

0010: B1 56 C9 4E 11 4E C1 62FC 6A D9 68 46 AA AC 7A .V.N.N.b.j.hF..z

0020: 27 B2 86 93 5B B3 82 ADC0 2C 20 55 9B D6 38 19 '...[...., U..8.

Client MAC write Secret:

0000: B7 B6 20 D9 40 27 23 5062 86 46 79 0B 24 84 CA .. .@'#Pb.Fy.$..

Server MAC write Secret:

0000: BD 5A AA 47 5D 5B 9F 1526 43 03 4B C2 9D 5B 20 .Z.G][..&C.K..[

Client write key:

0000: 68 28 42 5A 35 2B 28 050A 23 2B 71 33 5D 1B 57 h(BZ5+(..#+q3].W

Server write key:

0000: 68 B3 86 D7 91 D2 59 C411 64 7C 41 3B EB 3B 82 h.....Y..d.A;.;.

... no IV for cipher

%% Server resumed [Session-5, SSL_RSA_WITH_RC4_128_MD5]

main, READ: TLSv1 Change Cipher Spec, length = 1

main, READ: TLSv1 Handshake, length = 32

*** Finished

verify_data: { 214, 232, 108, 218, 213, 113, 71, 180, 149, 23, 80, 133 }

***

main, WRITE: TLSv1 Change Cipher Spec, length = 1

*** Finished

verify_data: { 176, 183, 112, 102, 102, 139, 13, 7, 98, 71, 250, 212 }

***

main, WRITE: TLSv1 Handshake, length = 32

main, WRITE: TLSv1 Application Data, length = 246

main, READ: TLSv1 Application Data, length = 159

main, READ: TLSv1 Application Data, length = 116

main, called close()

main, called closeInternal(true)

main, SEND TLSv1 ALERT: warning, description = close_notify

main, WRITE: TLSv1 Alert, length = 18

main, called close()

main, called closeInternal(true)

main, WRITE: TLSv1 Application Data, length = 477

main, READ: TLSv1 Handshake, length = 20

*** HelloRequest (empty)

%% Client cached [Session-2, SSL_RSA_WITH_RC4_128_MD5]

%% Try resuming [Session-2, SSL_RSA_WITH_RC4_128_MD5] from port 1208

*** ClientHello, TLSv1

RandomCookie: GMT: 1097217647 bytes = { 236, 2, 203, 230, 104, 34, 161, 214, 253, 56, 76, 231, 183, 129, 85, 82, 45, 217, 9, 114, 31, 81, 245, 6, 23, 20, 222, 232 }

Session ID: {85, 3, 0, 0, 145, 87, 253, 252, 230, 227, 117, 24, 5, 16, 2, 75, 231, 106, 71, 202, 7, 159, 181, 91, 7, 35, 193, 224, 62, 167, 163, 247}

Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]

Compression Methods: { 0 }

***

main, WRITE: TLSv1 Handshake, length = 121

main, READ: TLSv1 Handshake, length = 5112

*** ServerHello, TLSv1

RandomCookie: GMT: 1097217527 bytes = { 44, 236, 28, 209, 167, 68, 211, 125, 131, 71, 86, 173, 185, 158, 135, 17, 101, 215, 199, 206, 206, 215, 187, 18, 134, 177, 108, 0 }

Session ID: {147, 27, 0, 0, 151, 33, 98, 239, 168, 101, 1, 178, 238, 33, 4, 71, 95, 184, 190, 30, 158, 72, 239, 78, 213, 120, 114, 175, 137, 141, 34, 177}

Cipher Suite: SSL_RSA_WITH_RC4_128_MD5

Compression Method: 0

***

%% Created: [Session-6, SSL_RSA_WITH_RC4_128_MD5]

** SSL_RSA_WITH_RC4_128_MD5

*** Certificate chain

chain [0] = [

[

Version: V3

Subject: CN=www.eurobank.gr, OU=web4, O=Eurobank Ergasias, OU="Member, VeriSign Trust Network", OU=Authenticated by ADACOM S.A., OU=Terms of use at www.adacom.com/RPA (c)00, L=Athens, ST=Attica, C=GR

Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4

Key: Sun RSA public key, 1024 bits

modulus: 123955472607331726479621756046273477514211514168982641155112085691417459299196379333577719929671693952930305166876986601834738091415780321967406159700570640509048939389698246011659995632788221452012025188834832473933909057913549443647319577384906130719424342418108311813641574760957440556518520772078539797177

public exponent: 65537

Validity: [From: Mon Aug 09 03:00:00 EEST 2004,

To: Wed Aug 24 02:59:59 EEST 2005]

Issuer: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

SerialNumber: [525ca522 22543b04 82731b9c 86648b58]

Certificate Extensions: 4

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL server

]

[2]: ObjectId: 2.5.29.3 Criticality=false

Extension unknown: DER encoded OCTET string =

0000: 04 82 02 16 30 82 02 1230 82 02 0E 30 82 02 0A ....0...0...0...

0010: 06 0B 60 86 48 01 86 F845 01 07 01 01 30 82 01 ..`.H...E....0..

0020: F9 16 82 01 A7 54 68 6973 20 63 65 72 74 69 66 .....This certif

0030: 69 63 61 74 65 20 69 6E63 6F 72 70 6F 72 61 74 icate incorporat

0040: 65 73 20 62 79 20 72 6566 65 72 65 6E 63 65 2C es by reference,

0050: 20 61 6E 64 20 69 74 7320 75 73 65 20 69 73 20and its use is

0060: 73 74 72 69 63 74 6C 7920 73 75 62 6A 65 63 74 strictly subject

0070: 20 74 6F 2C 20 74 68 6520 56 65 72 69 53 69 67to, the VeriSig

0080: 6E 20 43 65 72 74 69 6669 63 61 74 69 6F 6E 20 n Certification

0090: 50 72 61 63 74 69 63 6520 53 74 61 74 65 6D 65 Practice Stateme

00A0: 6E 74 20 28 43 50 53 292C 20 61 76 61 69 6C 61 nt (CPS), availa

00B0: 62 6C 65 20 61 74 3A 2068 74 74 70 73 3A 2F 2F ble at: https://

00C0: 77 77 77 2E 76 65 72 6973 69 67 6E 2E 63 6F 6D www.verisign.com

00D0: 2F 43 50 53 3B 20 62 7920 45 2D 6D 61 69 6C 20 /CPS; by E-mail

00E0: 61 74 20 43 50 53 2D 7265 71 75 65 73 74 73 40 at CPS-requests@

00F0: 76 65 72 69 73 69 67 6E2E 63 6F 6D 3B 20 6F 72 verisign.com; or

0100: 20 62 79 20 6D 61 69 6C20 61 74 20 56 65 72 69by mail at Veri

0110: 53 69 67 6E 2C 20 49 6E63 2E 2C 20 32 35 39 33 Sign, Inc., 2593

0120: 20 43 6F 61 73 74 20 4176 65 2E 2C 20 4D 6F 75Coast Ave., Mou

0130: 6E 74 61 69 6E 20 56 6965 77 2C 20 43 41 20 39 ntain View, CA 9

0140: 34 30 34 33 20 55 53 4120 54 65 6C 2E 20 2B 31 4043 USA Tel. +1

0150: 20 28 34 31 35 29 20 3936 31 2D 38 38 33 30 20(415) 961-8830

0160: 43 6F 70 79 72 69 67 6874 20 28 63 29 20 31 39 Copyright (c) 19

0170: 39 36 20 56 65 72 69 5369 67 6E 2C 20 49 6E 63 96 VeriSign, Inc

0180: 2E 20 20 41 6C 6C 20 5269 67 68 74 73 20 52 65 . All Rights Re

0190: 73 65 72 76 65 64 2E 2043 45 52 54 41 49 4E 20 served. CERTAIN

01A0: 57 41 52 52 41 4E 54 4945 53 20 44 49 53 43 4C WARRANTIES DISCL

01B0: 41 49 4D 45 44 20 61 6E64 20 4C 49 41 42 49 4C AIMED and LIABIL

01C0: 49 54 59 20 4C 49 4D 4954 45 44 2E A0 0E 06 0C ITY LIMITED.....

01D0: 60 86 48 01 86 F8 45 0107 01 01 01 A1 0E 06 0C `.H...E.........

01E0: 60 86 48 01 86 F8 45 0107 01 01 02 30 2C 30 2A `.H...E.....0,0*

01F0: 16 28 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 .(https://www.ve

0200: 72 69 73 69 67 6E 2E 636F 6D 2F 72 65 70 6F 73 risign.com/repos

0210: 69 74 6F 72 79 2F 43 5053 20itory/CPS

[3]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[2.16.840.1.113730.4.1, 1.3.6.1.4.1.311.10.3.3]]

[4]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:false

PathLen: undefined

]

]

Algorithm: [MD5withRSA]

Signature:

0000: D5 F8 E0 C2 E5 E6 73 7B52 3C 26 18 6F B3 E2 25 ......s.R<&.o..%

0010: 12 04 DE A3 39 5A 60 76CC 55 6F 0C D2 74 C3 49 ....9Z`v.Uo..t.I

0020: 7B 13 4B 07 25 40 34 D03D EF 17 8E 78 F6 74 DB ..K.%@4.=...x.t.

0030: 95 2A 3A 36 C8 24 2A 0916 E4 38 90 E8 08 68 C3 .*:6.$*...8...h.

0040: 14 0E F1 EE 36 BC 10 0043 E3 A8 64 E6 5F 29 E7 ....6...C..d._).

0050: 62 2D DE 03 21 45 30 5E5E 73 1F 3E 09 DB FA 0F b-..!E0^^s.>....

0060: 17 16 D3 5C 25 D4 67 39B8 94 FA 40 6D 4B 6C 92 ...\%.g9...@mKl.

0070: 74 53 CF 72 02 63 BE C370 F1 FA 61 9B 61 0C 5E tS.r.c..p..a.a.^

]

chain [1] = [

[

Version: V3

Subject: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5

Key: Sun RSA public key, 1024 bits

modulus: 152038337595048255423847391294280316829513160608880590645748454678611296410614722508245144022405726502805452059694145417254341557335953427821740975082044924575579268245924346494324451976855998250066581618028401376050836623416546828558818294849045727347102003201845243865318616842453964918804144784127904873327

public exponent: 65537

Validity: [From: Thu Apr 17 03:00:00 EEST 1997,

To: Tue Oct 25 02:59:59 EEST 2011]

Issuer: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US

SerialNumber: [78ee48de 185b2071 c9c9c3b5 1d7bddc1]

Certificate Extensions: 6

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL CA

S/MIME CA

]

[2]: ObjectId: 2.5.29.31 Criticality=false

CRLDistributionPoints [

[DistributionPoint:

[URIName: http://crl.verisign.com/pca3-g2.crl]

]]

[3]: ObjectId: 2.5.29.15 Criticality=false

KeyUsage [

Key_CertSign

Crl_Sign

]

[4]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[1.3.6.1.5.5.7.3.1, 1.3.6.1.5.5.7.3.2, 2.16.840.1.113730.4.1, 2.16.840.1.113733.1.8.1]]

[5]: ObjectId: 2.5.29.32 Criticality=false

CertificatePolicies [

[CertificatePolicyId: [2.16.840.1.113733.1.7.1.1]

[PolicyQualifierInfo: [

qualifierID: 1.3.6.1.5.5.7.2.1

qualifier: 0000: 16 1C 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 ..https://www.ve

0010: 72 69 73 69 67 6E 2E 636F 6D 2F 43 50 53risign.com/CPS

]] ]

]

[6]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:true

PathLen:0

]

]

Algorithm: [SHA1withRSA]

Signature:

0000: 23 5D EE A6 24 05 FD 76D3 6A 1A D6 BA 46 06 AA #]..$..v.j...F..

0010: 6A 0F 03 90 66 B2 B0 A6C2 9E C9 1E A3 55 53 AF j...f........US.

0020: 3E 45 FD DC 8C 27 DD 5338 09 BB 7C 4B 2B BA 95 >E...'.S8...K+..

0030: 4A FE 70 4E 1B 69 D6 3CF7 4F 07 C5 F2 17 5A 4C J.pN.i.<.O....ZL

0040: A2 8F AC 0B 8A 06 DB B9D4 6B C5 1D 58 DA 17 52 .........k..X..R

0050: E3 21 F1 D2 D7 5A D5 E5AB 59 7B 21 7A 86 6A D4 .!...Z...Y.!z.j.

0060: FE 17 11 3A 53 0D 9C 60A0 4A D9 5E E4 1D 0C 29 ...:S..`.J.^...)

0070: AA 13 07 65 86 1F BF B4C9 82 53 9C 2C 02 8F 23 ...e......S.,..#

]

***

Found trusted certificate:

[

[

Version: V3

Subject: CN=www.eurobank.gr, OU=web4, O=Eurobank Ergasias, OU="Member, VeriSign Trust Network", OU=Authenticated by ADACOM S.A., OU=Terms of use at www.adacom.com/RPA (c)00, L=Athens, ST=Attica, C=GR

Signature Algorithm: MD5withRSA, OID = 1.2.840.113549.1.1.4

Key: Sun RSA public key, 1024 bits

modulus: 123955472607331726479621756046273477514211514168982641155112085691417459299196379333577719929671693952930305166876986601834738091415780321967406159700570640509048939389698246011659995632788221452012025188834832473933909057913549443647319577384906130719424342418108311813641574760957440556518520772078539797177

public exponent: 65537

Validity: [From: Mon Aug 09 03:00:00 EEST 2004,

To: Wed Aug 24 02:59:59 EEST 2005]

Issuer: OU=www.verisign.com/CPS Incorp.by Ref. LIABILITY LTD.(c)97 VeriSign, OU=VeriSign International Server CA - Class 3, OU="VeriSign, Inc.", O=VeriSign Trust Network

SerialNumber: [525ca522 22543b04 82731b9c 86648b58]

Certificate Extensions: 4

[1]: ObjectId: 2.16.840.1.113730.1.1 Criticality=false

NetscapeCertType [

SSL server

]

[2]: ObjectId: 2.5.29.3 Criticality=false

Extension unknown: DER encoded OCTET string =

0000: 04 82 02 16 30 82 02 1230 82 02 0E 30 82 02 0A ....0...0...0...

0010: 06 0B 60 86 48 01 86 F845 01 07 01 01 30 82 01 ..`.H...E....0..

0020: F9 16 82 01 A7 54 68 6973 20 63 65 72 74 69 66 .....This certif

0030: 69 63 61 74 65 20 69 6E63 6F 72 70 6F 72 61 74 icate incorporat

0040: 65 73 20 62 79 20 72 6566 65 72 65 6E 63 65 2C es by reference,

0050: 20 61 6E 64 20 69 74 7320 75 73 65 20 69 73 20and its use is

0060: 73 74 72 69 63 74 6C 7920 73 75 62 6A 65 63 74 strictly subject

0070: 20 74 6F 2C 20 74 68 6520 56 65 72 69 53 69 67to, the VeriSig

0080: 6E 20 43 65 72 74 69 6669 63 61 74 69 6F 6E 20 n Certification

0090: 50 72 61 63 74 69 63 6520 53 74 61 74 65 6D 65 Practice Stateme

00A0: 6E 74 20 28 43 50 53 292C 20 61 76 61 69 6C 61 nt (CPS), availa

00B0: 62 6C 65 20 61 74 3A 2068 74 74 70 73 3A 2F 2F ble at: https://

00C0: 77 77 77 2E 76 65 72 6973 69 67 6E 2E 63 6F 6D www.verisign.com

00D0: 2F 43 50 53 3B 20 62 7920 45 2D 6D 61 69 6C 20 /CPS; by E-mail

00E0: 61 74 20 43 50 53 2D 7265 71 75 65 73 74 73 40 at CPS-requests@

00F0: 76 65 72 69 73 69 67 6E2E 63 6F 6D 3B 20 6F 72 verisign.com; or

0100: 20 62 79 20 6D 61 69 6C20 61 74 20 56 65 72 69by mail at Veri

0110: 53 69 67 6E 2C 20 49 6E63 2E 2C 20 32 35 39 33 Sign, Inc., 2593

0120: 20 43 6F 61 73 74 20 4176 65 2E 2C 20 4D 6F 75Coast Ave., Mou

0130: 6E 74 61 69 6E 20 56 6965 77 2C 20 43 41 20 39 ntain View, CA 9

0140: 34 30 34 33 20 55 53 4120 54 65 6C 2E 20 2B 31 4043 USA Tel. +1

0150: 20 28 34 31 35 29 20 3936 31 2D 38 38 33 30 20(415) 961-8830

0160: 43 6F 70 79 72 69 67 6874 20 28 63 29 20 31 39 Copyright (c) 19

0170: 39 36 20 56 65 72 69 5369 67 6E 2C 20 49 6E 63 96 VeriSign, Inc

0180: 2E 20 20 41 6C 6C 20 5269 67 68 74 73 20 52 65 . All Rights Re

0190: 73 65 72 76 65 64 2E 2043 45 52 54 41 49 4E 20 served. CERTAIN

01A0: 57 41 52 52 41 4E 54 4945 53 20 44 49 53 43 4C WARRANTIES DISCL

01B0: 41 49 4D 45 44 20 61 6E64 20 4C 49 41 42 49 4C AIMED and LIABIL

01C0: 49 54 59 20 4C 49 4D 4954 45 44 2E A0 0E 06 0C ITY LIMITED.....

01D0: 60 86 48 01 86 F8 45 0107 01 01 01 A1 0E 06 0C `.H...E.........

01E0: 60 86 48 01 86 F8 45 0107 01 01 02 30 2C 30 2A `.H...E.....0,0*

01F0: 16 28 68 74 74 70 73 3A2F 2F 77 77 77 2E 76 65 .(https://www.ve

0200: 72 69 73 69 67 6E 2E 636F 6D 2F 72 65 70 6F 73 risign.com/repos

0210: 69 74 6F 72 79 2F 43 5053 20itory/CPS

[3]: ObjectId: 2.5.29.37 Criticality=false

ExtendedKeyUsages [

[2.16.840.1.113730.4.1, 1.3.6.1.4.1.311.10.3.3]]

[4]: ObjectId: 2.5.29.19 Criticality=false

BasicConstraints:[

CA:false

PathLen: undefined

]

]

Algorithm: [MD5withRSA]

Signature:

0000: D5 F8 E0 C2 E5 E6 73 7B52 3C 26 18 6F B3 E2 25 ......s.R<&.o..%

0010: 12 04 DE A3 39 5A 60 76CC 55 6F 0C D2 74 C3 49 ....9Z`v.Uo..t.I

0020: 7B 13 4B 07 25 40 34 D03D EF 17 8E 78 F6 74 DB ..K.%@4.=...x.t.

0030: 95 2A 3A 36 C8 24 2A 0916 E4 38 90 E8 08 68 C3 .*:6.$*...8...h.

0040: 14 0E F1 EE 36 BC 10 0043 E3 A8 64 E6 5F 29 E7 ....6...C..d._).

0050: 62 2D DE 03 21 45 30 5E5E 73 1F 3E 09 DB FA 0F b-..!E0^^s.>....

0060: 17 16 D3 5C 25 D4 67 39B8 94 FA 40 6D 4B 6C 92 ...\%.g9...@mKl.

0070: 74 53 CF 72 02 63 BE C370 F1 FA 61 9B 61 0C 5E tS.r.c..p..a.a.^

]

*** CertificateRequest

Cert Types: RSA,

Cert Authorities:

<CN=EUROBANK RETAIL ISSUING CA, OU=E-SOLUTIONS, O=EUROBANK ERGASIAS, L=ATHENS, ST=ATTIKI, C=GR, EMAILADDRESS=cliakeas@e-solutions.gr>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 1 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 4 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<EMAILADDRESS=personal-freemail@thawte.com, CN=Thawte Personal Freemail CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>

<EMAILADDRESS=personal-premium@thawte.com, CN=Thawte Personal Premium CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>

<CN=First Data Digital Certificates Inc. Certification Authority, O=First Data Digital Certificates Inc., C=US>

<EMAILADDRESS=personal-basic@thawte.com, CN=Thawte Personal Basic CA, OU=Certification Services Division, O=Thawte Consulting, L=Cape Town, ST=Western Cape, C=ZA>

<OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>

<OU=Class 2 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>

<OU=Class 1 Public Primary Certification Authority, O="VeriSign, Inc.", C=US>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 3 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<CN=EFG Eurobank Ergasias Root CA, OU=e-Banking, O=EFG Eurobank Ergasias S.A., L=Athens, ST=Attica, C=GR, EMAILADDRESS=rootca@eurobank.gr>

<CN=GTE CyberTrust Root, O=GTE Corporation, C=US>

<CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>

<CN=Microsoft Root Authority, OU=Microsoft Corporation, OU=Copyright (c) 1997 Microsoft Corp.>

<OU=VeriSign Trust Network, OU="(c) 1998 VeriSign, Inc. - For authorized use only", OU=Class 2 Public Primary Certification Authority - G2, O="VeriSign, Inc.", C=US>

<CN=GTE CyberTrust Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US>

*** ServerHelloDone

*** Certificate chain

***

*** ClientKeyExchange, RSA PreMasterSecret, TLSv1

Random Secret: { 3, 1, 199, 161, 77, 163, 108, 8, 154, 126, 220, 198, 138, 91, 68, 230, 224, 162, 3, 229, 247, 181, 255, 35, 137, 14, 77, 177, 69, 112, 41, 234, 54, 126, 75, 43, 178, 209, 188, 108, 36, 55, 24, 170, 123, 18, 228, 241 }

main, WRITE: TLSv1 Handshake, length = 157

SESSION KEYGEN:

PreMaster Secret:

0000: 03 01 C7 A1 4D A3 6C 089A 7E DC C6 8A 5B 44 E6 ....M.l......[D.

0010: E0 A2 03 E5 F7 B5 FF 2389 0E 4D B1 45 70 29 EA .......#..M.Ep).

0020: 36 7E 4B 2B B2 D1 BC 6C24 37 18 AA 7B 12 E4 F1 6.K+...l$7......

CONNECTION KEYGEN:

Client Nonce:

0000: 41 66 36 6F EC 02 CB E668 22 A1 D6 FD 38 4C E7 Af6o....h"...8L.

0010: B7 81 55 52 2D D9 09 721F 51 F5 06 17 14 DE E8 ..UR-..r.Q......

Server Nonce:

0000: 41 66 36 F7 2C EC 1C D1A7 44 D3 7D 83 47 56 AD Af6.,....D...GV.

0010: B9 9E 87 11 65 D7 C7 CECE D7 BB 12 86 B1 6C 00 ....e.........l.

Master Secret:

0000: B7 FC 82 D2 68 9D 65 C870 AD 90 A9 80 D7 3E 12 ....h.e.p.....>.

0010: 9F 67 24 FD 4E 1A 98 162C 87 A0 E5 74 FE 49 1F .g$.N...,...t.I.

0020: A6 6E BE D2 D2 33 7A CAC4 15 85 AE 7B 22 79 55 .n...3z......"yU

Client MAC write Secret:

0000: 32 48 D0 86 DB 01 85 ECA7 44 E5 9B 7E EC D9 4E 2H.......D.....N

Server MAC write Secret:

0000: 8A 5D 6F F7 6B B7 DD 65E3 19 E9 EE 39 4B 79 70 .]o.k..e....9Kyp

Client write key:

0000: 8D 1C 97 ED 61 08 61 A08B 2A 84 75 4C 0B C6 02 ....a.a..*.uL...

Server write key:

0000: A0 EA 7D FE 57 B4 94 CF26 28 5F 74 05 9D C3 91 ....W...&(_t....

... no IV for cipher

main, WRITE: TLSv1 Change Cipher Spec, length = 17

*** Finished

verify_data: { 90, 133, 244, 93, 118, 80, 217, 79, 194, 1, 97, 98 }

***

main, WRITE: TLSv1 Handshake, length = 32

main, READ: TLSv1 Change Cipher Spec, length = 17

main, READ: TLSv1 Handshake, length = 32

*** Finished

verify_data: { 255, 202, 105, 47, 168, 26, 17, 57, 143, 133, 31, 146 }

***

%% Cached client session: [Session-6, SSL_RSA_WITH_RC4_128_MD5]

main, READ: TLSv1 Application Data, length = 268

main, WRITE: TLSv1 Application Data, length = 459

main, READ: TLSv1 Application Data, length = 137

main, received EOFException: ignored

main, called closeInternal(false)

main, SEND TLSv1 ALERT: warning, description = close_notify

main, WRITE: TLSv1 Alert, length = 18

main, called close()

main, called closeInternal(true)

main, called close()

main, called closeInternal(true)

%% Client cached [Session-6, SSL_RSA_WITH_RC4_128_MD5]

%% Try resuming [Session-6, SSL_RSA_WITH_RC4_128_MD5] from port 1221

*** ClientHello, TLSv1

RandomCookie: GMT: 1097217647 bytes = { 9, 134, 124, 185, 243, 183, 58, 173, 31, 207, 222, 44, 51, 14, 34, 226, 204, 140, 141, 226, 245, 229, 232, 250, 158, 53, 4, 127 }

Session ID: {147, 27, 0, 0, 151, 33, 98, 239, 168, 101, 1, 178, 238, 33, 4, 71, 95, 184, 190, 30, 158, 72, 239, 78, 213, 120, 114, 175, 137, 141, 34, 177}

Cipher Suites: [SSL_RSA_WITH_RC4_128_MD5, SSL_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_RSA_WITH_AES_128_CBC_SHA, TLS_DHE_DSS_WITH_AES_128_CBC_SHA, SSL_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_RSA_WITH_3DES_EDE_CBC_SHA, SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA, SSL_RSA_WITH_DES_CBC_SHA, SSL_DHE_RSA_WITH_DES_CBC_SHA, SSL_DHE_DSS_WITH_DES_CBC_SHA, SSL_RSA_EXPORT_WITH_RC4_40_MD5, SSL_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_RSA_EXPORT_WITH_DES40_CBC_SHA, SSL_DHE_DSS_EXPORT_WITH_DES40_CBC_SHA]

Compression Methods: { 0 }

***

main, WRITE: TLSv1 Handshake, length = 105

main, READ: TLSv1 Handshake, length = 74

*** ServerHello, TLSv1

RandomCookie: GMT: 1097217527 bytes = { 191, 65, 139, 104, 105, 74, 219, 199, 221, 42, 44, 15, 70, 56, 174, 27, 62, 228, 242, 76, 85, 86, 84, 204, 185, 163, 69, 108 }

Session ID: {147, 27, 0, 0, 151, 33, 98, 239, 168, 101, 1, 178, 238, 33, 4, 71, 95, 184, 190, 30, 158, 72, 239, 78, 213, 120, 114, 175, 137, 141, 34, 177}

Cipher Suite: SSL_RSA_WITH_RC4_128_MD5

Compression Method: 0

***

CONNECTION KEYGEN:

Client Nonce:

0000: 41 66 36 6F 09 86 7C B9F3 B7 3A AD 1F CF DE 2C Af6o......:....,

0010: 33 0E 22 E2 CC 8C 8D E2F5 E5 E8 FA 9E 35 04 7F 3."..........5..

Server Nonce:

0000: 41 66 36 F7 BF 41 8B 6869 4A DB C7 DD 2A 2C 0F Af6..A.hiJ...*,.

0010: 46 38 AE 1B 3E E4 F2 4C55 56 54 CC B9 A3 45 6C F8..>..LUVT...El

Master Secret:

0000: B7 FC 82 D2 68 9D 65 C870 AD 90 A9 80 D7 3E 12 ....h.e.p.....>.

0010: 9F 67 24 FD 4E 1A 98 162C 87 A0 E5 74 FE 49 1F .g$.N...,...t.I.

0020: A6 6E BE D2 D2 33 7A CAC4 15 85 AE 7B 22 79 55 .n...3z......"yU

Client MAC write Secret:

0000: 68 03 C4 4E D5 D0 5A B6EA 67 69 A5 23 E3 E3 1C h..N..Z..gi.#...

Server MAC write Secret:

0000: 9A 53 E8 A9 72 0C 31 01C2 AB BF 8F F5 DC 74 63 .S..r.1.......tc

Client write key:

0000: 92 4F 75 9A 70 59 47 3D16 0C C0 10 09 DA 83 DD .Ou.pYG=........

Server write key:

0000: CE 01 FA 4F 81 D4 C9 3B13 14 4A C1 4B E5 36 E7 ...O...;..J.K.6.

... no IV for cipher

%% Server resumed [Session-6, SSL_RSA_WITH_RC4_128_MD5]

main, READ: TLSv1 Change Cipher Spec, length = 1

main, READ: TLSv1 Handshake, length = 32

*** Finished

verify_data: { 22, 164, 75, 39, 32, 172, 76, 231, 162, 71, 120, 58 }

***

main, WRITE: TLSv1 Change Cipher Spec, length = 1

*** Finished

verify_data: { 140, 233, 79, 21, 37, 193, 175, 64, 140, 103, 214, 138 }

***

main, WRITE: TLSv1 Handshake, length = 32

main, WRITE: TLSv1 Application Data, length = 459

main, READ: TLSv1 Application Data, length = 193

Redirection to page: https://www.eurobank.gr/europortal/certs/certerror.asp

egazi at 2007-7-6 23:37:01 > top of Java-index,Security,Java Secure Socket Extension (JSSE)...
# 3
Did you give the correct trust strore location? I think your java program looking at different truststore.
chvmurali at 2007-7-6 23:37:01 > top of Java-index,Security,Java Secure Socket Extension (JSSE)...
Security
Java Secure Socket Extension (JSSE)

Security New Topic

Security Hot Topic

Security

All Classified