результары тетса. часть информации вырезал. та которая не интересная.
Код:
depth=2 C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=1 C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Ser
ver CA
verify return:1
depth=0 OU = Domain Control Validated, OU = PositiveSSL Wildcard, CN = *.<site>.ru
verify return:1
CONNECTED(0000022C)
---
Certificate chain
0 s:OU = Domain Control Validated, OU = PositiveSSL Wildcard, CN = *.<site>.ru
i:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
1 s:C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
2 s:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust RSA Certification Authority
i:C = SE, O = AddTrust AB, OU = AddTrust External TTP Network, CN = AddTrust External CA Root
---
Server certificate
subject=OU = Domain Control Validated, OU = PositiveSSL Wildcard, CN = *.<site>.ru
issuer=C = GB, ST = Greater Manchester, L = Salford, O = Sectigo Limited, CN = Sectigo RSA Domain Validation Secure Server CA
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 5191 bytes and written 451 bytes
Verification error: unable to get local issuer certificate
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: 1C725759C2B984A4B297B13323CE26F8AAC1692941E51AAA5BDC04D4B05A4EE3
Session-ID-ctx:
Master-Key: 6CDC5646D24A389FA0AC58135603E866FC65292A29E0BB79EBE23FCB5C000F8B78E5E0BD11AF9EC7442FCA645494ABC6
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 300 (seconds)
TLS session ticket:
0000 - a3 e5 36 c0 b0 3e b8 b3-f9 c3 6b 2f a3 b4 e2 9a ..6..>....k/....
0010 - 81 35 15 7a 4b dd 2e 0f-a0 b8 9d ac 9b 48 df 28 .5.zK........H.(
0020 - 1b a2 29 a1 2e 3b 49 35-5b 30 43 1d 06 84 9e 08 ..)..;I5[0C.....
0030 - 0a 4a 78 54 46 7a f5 12-83 82 f4 3a 41 22 4e 49 .JxTFz.....:A"NI
0040 - dc 28 cb 7b 70 7b cf 35-25 c0 12 f9 da aa 19 cd .(.{p{.5%.......
0050 - 57 f2 cd 6b de d4 6d a5-a0 f7 9e 1b bc 4d e8 da W..k..m......M..
0060 - 03 5b fc ce ca 0d d6 44-50 53 0b 13 3c 69 de d7 .[.....DPS..<i..
0070 - d8 50 ba e6 99 ae da d0-ab 4f 30 f1 0b 1c 36 9f .P.......O0...6.
0080 - fc c8 82 14 73 77 5d 23-e9 ee 00 71 54 63 11 ec ....sw]#...qTc..
0090 - 95 66 b8 4e c2 4a e1 df-54 c1 df 37 c2 4b eb 8e .f.N.J..T..7.K..
00a0 - d5 11 9a 32 18 3e f0 70-f0 cf d6 ea f2 4b e3 cc ...2.>.p.....K..
00b0 - f1 6d f2 81 3c 2f fe ca-b5 02 b9 a0 10 8c d6 22 .m..</........."
Start Time: 1559206636
Timeout : 7200 (sec)
Verify return code: 20 (unable to get local issuer certificate)
Extended master secret: no
---
* OK Kerio Connect 9.2.9 patch 1 IMAP4rev1 server ready
подозрительная запись тут
verify error:num=20:unable to get local issuer certificate