how to download the ssl certificate from a website?

In order to download the certificate, you need to use the client built into openssl like so:

echo -n | openssl s_client -connect $HOST:$PORTNUMBER -servername $SERVERNAME \
    | openssl x509 > /tmp/$SERVERNAME.cert

That will save the certificate to /tmp/$SERVERNAME.cert.

The -servername is used to select the correct certificate when multiple are presented, in the case of SNI.

You can use -showcerts if you want to download all the certificates in the chain. But if you just want to download the server certificate, there is no need to specify -showcerts. The x509 at the end will strip out the intermediate certs, you will need to use sed -n '/-----BEGIN/,/-----END/p' instead of the x509 at the end.

echo -n gives a response to the server, so that the connection is released

openssl x509 removes information about the certificate chain and connection details. This is the preferred format to import the certificate into other keystores.

Related Posts:

  1. How to generate a self-signed SSL certificate using OpenSSL?
  2. Generating a self-signed cert with openssl that works in Chrome 58
  3. How to install OpenSSL in windows 10?
  4. SSL Error: unable to get local issuer certificate
  5. curl: (60) SSL certificate problem: unable to get local issuer certificate
  6. curl: (60) SSL certificate problem: unable to get local issuer certificate
  7. What is .crt and .key files and how to generate them?
  8. NET::ERR_CERT_REVOKED in Chrome, when the certificate is not actually revoked
  9. Java: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  10. What exactly is cacert.pem for?
  11. OpenSSL: unable to verify the first certificate for Experian URL
  12. How to disable cURL SSL certificate verification
  13. Getting error in Curl – Peer certificate cannot be authenticated with known CA certificates
  14. How do you sign a Certificate Signing Request with your Certification Authority?
  15. Java Keytool error after importing certificate , “keytool error: java.io.FileNotFoundException & Access Denied”
  16. Displaying a remote SSL certificate details using CLI tools
  17. How to view all ssl certificates in a bundle?
  18. Is there a reason to use an SSL certificate other than Let’s Encrypt’s free SSL?
  19. Does each subdomain need it’s own SSL certificate?
  20. Best location to keep SSL certificates and private keys on Ubuntu servers?
  21. Openssl : error “self signed certificate in certificate chain”
  22. “ssl module in Python is not available” when installing package with pip3
  23. Received fatal alert: handshake_failure through SSLHandshakeException
  24. Convert .pem to .crt and .key
  25. Received fatal alert: handshake_failure through SSLHandshakeException
  26. HTTPS connection Python
  27. SSL_ERROR_BAD_CERT_DOMAIN
  28. CFNetwork SSLHandshake failed iOS 9
  29. Caused by: java.security.UnrecoverableKeyException: Cannot recover key
  30. SSL CA cert (path? access rights?)
  31. “The underlying connection was closed: An unexpected error occurred on a send.” With SSL Certificate
  32. Unable to establish SSL connection upon wget on Ubuntu 14.04 LTS
  33. urllib and “SSL: CERTIFICATE_VERIFY_FAILED” Error
  34. Python requests SSL error – certificate verify failed
  35. WordPress wp-admin https redirect loop
  36. Howto force SSL for all requests?
  37. Local version of a WordPress site – SSL/HTTPS enforced?
  38. Images causing Mixed Content with SSL
  39. bloginfo() and get_template_directory_uri() with SSL?
  40. Favicon causes mixed content warning over SSL
  41. Enabling SSL on wordpress results in 404
  42. SSL setup: wp-login css doesn’t load over httpS
  43. Divert http to https with WordPress on IIS
  44. WordPress : To load all asset files coming from HTTP to HTTPS?
  45. XML asset fails to load using https
  46. Search and replace http:// links to https:// to get the green padlock
  47. I changed my site from HTTPS back to HTTP and now it is broken- Cannot access Admin panel on HTTP URL
  48. un-loading https
  49. How to set up HTTPS WordPress from Install Step?
  50. wp_remote_get – curl error 28 connection timed out – using SANS in URL
  51. SSL certificate error on Google Chrome , IE [closed]
  52. How do I set up a local version of my https wordpress site for testing and development using MAMP
  53. WordPress + SSL + Varnish + Pound
  54. Jetpack “Connect to WordPress” serving insecure content under HTTPS
  55. Website access with http and https
  56. How to force non SSL on just one page?
  57. Need ideas for HTTPS multiple domain solution
  58. Redirect the whole blog to SSL but not the RSS feed (under Nginx)
  59. How to control SSL in WordPress for automatically changing http to https?
  60. Site not reachable due to change from HTTP to HTTPS [closed]
  61. All content is HTTPS, but browsers warn of HTTP mixed content [closed]
  62. How do I handle SSL properly when WP is behind a reverse proxy?
  63. Hi do I change Media files that still show as http after installing ssl
  64. Errors on a single host using wp_remote_get() unless sslverify is set to false
  65. How to keep WP from using https to get to wordpress.org?
  66. SSL doesn’t work on certain pages – what is wrong?
  67. WordPress site shown as Not Secure on Chrome when SSL certificate is valid
  68. Self signed certificate issue with WooCommerce rest api connection
  69. ERR_TOO_MANY_REDIRECTS on wordpress page [closed]
  70. Disable WordPress accessing WordPress.org to check for updates
  71. How to protect login via SSL but not the rest of the dashboard
  72. The REST API request failed due to an error. cURL error 60: SSL certificate problem: certificate has expired
  73. Do I install WordPress from my Cpanel on https or http, if my website has valid certificate?
  74. SSL not working fine, Home url not matching with site url wordpress errors
  75. Website Migration (with https) to a new domain(http)
  76. How to move my local wordpress to https?
  77. Why does WordPress uses HTTPS for JS, CSS on EC2
  78. ERR_SSL_PROTOCOL_ERROR
  79. WordPress – SSL not working – browser console error “Mixed Content” and “Failed to load resource”
  80. Implications of not completing all tasks when switching to HTTPS
  81. Update not working after installing up SSL
  82. Front-end pages messed up due to HTTPS
  83. How to send user data from one website to another
  84. How come all my http URLs are turned to https?
  85. site on subdomain is redirecting to main site after installing wildcard ssl cert on both
  86. Forcing SSL (Bad Theme coding)
  87. How to switch static files back to using HTTP instead of HTTPS?
  88. WordPress Insecure Content
  89. SSL certificate breaks CSS (in combination with W3TC)
  90. I would like to add ssl certificate to my already existing wordpress site
  91. My WordPress site SSL is in red crossed color and can’t load at first time?
  92. SSL/HTTPS Redirect Loop
  93. Adding SSL certificate to the front end of my site
  94. iHow to redirect all http traffic to https now that a SSL certificate is added?
  95. WordPress stuck at Step 1 of setup behind nginx reverse proxy
  96. Issue when site move from ssl domain to new domain without ssl
  97. How do I view the details of a digital certificate .cer file?
  98. SSL Certificate Location on UNIX/Linux
  99. Wildcard SSL certificate for second-level subdomain
  100. Changing my URL in General Settings cause the site to crash

Leave a Comment