gitmedia/mivita
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

update 20.10.2025

Browse source
This commit is contained in:
Kevin Adametz 2025-10-20 17:42:08 +02:00
parent 8c11130b5d
commit a939cd51ef
616 changed files with 84821 additions and 4121 deletions
Download patch file Download diff file Expand all files Collapse all files

167
dev/dhl-modul/DHL_CURL_781_EXTREME_FIX.md Normal file
View file

@ -0,0 +1,167 @@
# DHL cURL 7.81.0 Extreme Fix - Hartnäckiges SSL-Problem
## Problem identifiziert
Ihr Live-Server hat ein **extrem hartnäckiges SSL-Problem** mit:
- **cURL 7.81.0** (Release-Date: 2022-01-05)
- **OpenSSL 3.0.2** (15 Mar 2022)
- **PHP 8.4.12**
**Alle bisherigen Methoden schlagen fehl:**
- Method 1: Enhanced SSL ❌
- Method 2: Relaxed SSL ❌
- Method 3: Direct cURL ❌
## Extreme Lösung implementiert
### 1. Vierte Fallback-Methode hinzugefügt
**Method 4: Extreme Fallback** mit minimaler SSL-Konfiguration:
- ✅ **SSL-Verifikation komplett deaktiviert**
- ✅ **TLS 1.2 erzwungen**
- ✅ **HTTP/1.1 erzwungen**
- ✅ **IPv4 erzwungen**
- ✅ **DNS-Cache deaktiviert**
- ✅ **Keep-Alive deaktiviert**
- ✅ **Fresh Connections**
- ✅ **Minimale Buffer-Größe**
- ✅ **Längere Timeouts (30s)**
### 2. Spezielle Konfiguration für cURL 7.81.0
#### .env-Konfiguration:
```env
# DHL Extreme Fallback für cURL 7.81.0
DHL_BASE_URL=https://api-eu.dhl.com
DHL_TEST_MODE=false
DHL_SANDBOX=false
# Extreme SSL-Konfiguration
DHL_SSL_VERIFY_PEER=false
DHL_SSL_VERIFY_HOST=false
DHL_SSL_VERSION=TLSv1_2
DHL_TIMEOUT=60
DHL_CONNECT_TIMEOUT=30
# Ihre Live-Daten
DHL_API_KEY=your_real_live_api_key
DHL_USERNAME=your_real_live_username
DHL_PASSWORD=your_real_live_password
```
### 3. Was die extreme Methode macht
#### Minimale SSL-Konfiguration:
```php
CURLOPT_SSL_VERIFYPEER => false,
CURLOPT_SSL_VERIFYHOST => false,
CURLOPT_SSLVERSION => CURL_SSLVERSION_TLSv1_2,
```
#### Maximale Kompatibilität:
```php
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
CURLOPT_IPRESOLVE => CURL_IPRESOLVE_V4,
CURLOPT_DNS_CACHE_TIMEOUT => 0,
CURLOPT_TCP_KEEPALIVE => 0,
CURLOPT_FRESH_CONNECT => true,
CURLOPT_FORBID_REUSE => true,
```
#### Erweiterte Timeouts:
```php
CURLOPT_TIMEOUT => 30,
CURLOPT_CONNECTTIMEOUT => 30,
CURLOPT_LOW_SPEED_TIME => 30,
CURLOPT_LOW_SPEED_LIMIT => 1,
```
### 4. Test der extremen Lösung
```bash
# Konfiguration neu laden
php artisan config:clear
# Test mit allen 4 Methoden
php artisan tinker
```
```php
$settingController = new \App\Http\Controllers\SettingController();
$dhlConfig = $settingController->getDhlConfig();
$dhlClient = new \Acme\Dhl\Support\DhlClient(
$dhlConfig['base_url'],
$dhlConfig['api_key'],
$dhlConfig['username'],
$dhlConfig['password']
);
$result = $dhlClient->testConnection();
echo $result ? 'SUCCESS' : 'FAILED';
```
### 5. Erwartete Logs
Sie sollten jetzt folgende Logs sehen:
```
[INFO] DHL API connection test - trying Laravel HTTP with enhanced SSL
[WARNING] DHL API connection test failed with Laravel HTTP with enhanced SSL
[INFO] DHL API connection test - trying Laravel HTTP with relaxed SSL
[WARNING] DHL API connection test failed with Laravel HTTP with relaxed SSL
[INFO] DHL API connection test - trying Direct cURL fallback
[WARNING] DHL API connection test failed with Direct cURL fallback
[INFO] DHL API connection test - trying Extreme fallback with minimal SSL
[INFO] DHL API connection test successful with Extreme fallback with minimal SSL
```
### 6. Warum diese Lösung funktioniert
#### Problem mit cURL 7.81.0:
- **Bekannte SSL-Bugs** in dieser Version
- **Probleme mit modernen TLS-Handshakes**
- **Instabile Verbindungen** bei komplexen SSL-Konfigurationen
#### Extreme Lösung:
- **Minimale SSL-Konfiguration** - nur das Nötigste
- **Erzwungene IPv4** - vermeidet IPv6-Probleme
- **Deaktivierte Caching** - frische Verbindungen
- **Längere Timeouts** - mehr Zeit für langsame Verbindungen
- **Spezielle User-Agent** - kompatibel mit DHL-Servern
### 7. Sicherheitshinweise
⚠️ **Wichtig**: Diese Lösung deaktiviert SSL-Verifikation für maximale Kompatibilität.
**Für Produktionsumgebungen empfohlen:**
1. **cURL aktualisieren** auf Version 8.0+ wenn möglich
2. **OpenSSL aktualisieren** auf Version 3.0.13+
3. **Alternative**: Proxy-Server mit moderner SSL-Konfiguration
### 8. Monitoring
Die Lösung loggt detailliert:
- Welche Methode erfolgreich war
- Detaillierte cURL-Fehlerinformationen
- Server-Umgebungsdetails
## Fazit
Diese extreme Lösung sollte auch das hartnäckigste SSL-Problem mit cURL 7.81.0 beheben! 🎉
**Falls auch Method 4 fehlschlägt, liegt das Problem wahrscheinlich an:**
- Server-Firewall/Proxy-Konfiguration
- Netzwerk-Infrastruktur
- DHL-Server-seitige Probleme

152
dev/dhl-modul/DHL_LEGACY_CURL_CONFIG.md Normal file
View file

@ -0,0 +1,152 @@
# DHL Konfiguration für ältere cURL-Versionen (Live-Server)
## Problem identifiziert
Ihr Live-Server verwendet:
- **cURL 7.81.0** (ältere Version)
- **OpenSSL 3.0.2** (ältere Version)
- **PHP 8.2.29**
Im Vergleich zu Ihrem Testserver:
- **cURL 8.5.0** (neuere Version)
- **OpenSSL 3.0.13** (neuere Version)
- **PHP 8.4.12**
## Optimierte Lösung implementiert
### 1. Automatische cURL-Versionserkennung
Die Lösung erkennt automatisch ältere cURL-Versionen (< 8.0.0) und passt die Konfiguration an:
- **HTTP/2 deaktiviert** für ältere cURL-Versionen
- **TCP Keep-Alive aktiviert** für bessere Verbindungsstabilität
- **Fresh Connections** für jeden Request
- **Optimierte SSL-Handhabung** für ältere OpenSSL-Versionen
### 2. Spezielle Konfiguration für Ihren Live-Server
#### .env-Konfiguration:
```env
# DHL Live-Konfiguration für ältere cURL-Versionen
DHL_BASE_URL=https://api-eu.dhl.com
DHL_TEST_MODE=false
DHL_SANDBOX=false
# SSL-Konfiguration optimiert für cURL 7.81.0
DHL_SSL_VERIFY_PEER=true
DHL_SSL_VERIFY_HOST=true
DHL_SSL_VERSION=TLSv1_2
DHL_TIMEOUT=30
DHL_CONNECT_TIMEOUT=15
# Ihre Live-Daten
DHL_API_KEY=your_real_live_api_key
DHL_USERNAME=your_real_live_username
DHL_PASSWORD=your_real_live_password
```
### 3. Fallback-Optionen für problematische Server
#### Option A: SSL-Verifikation deaktivieren (falls weiterhin Probleme)
```env
DHL_SSL_VERIFY_PEER=false
DHL_SSL_VERIFY_HOST=false
```
#### Option B: Ältere TLS-Version verwenden
```env
DHL_SSL_VERSION=TLSv1_1
```
#### Option C: Längere Timeouts
```env
DHL_TIMEOUT=60
DHL_CONNECT_TIMEOUT=30
```
### 4. Was die Lösung automatisch macht
#### Für cURL 7.81.0 (Ihr Live-Server):
- ✅ Verwendet HTTP/1.1 statt HTTP/2
- ✅ Aktiviert TCP Keep-Alive für bessere Verbindungsstabilität
- ✅ Verwendet Fresh Connections für jeden Request
- ✅ Optimiert SSL-Handhabung für OpenSSL 3.0.2
#### Für cURL 8.5.0+ (Ihr Testserver):
- ✅ Verwendet HTTP/2 wenn verfügbar
- ✅ Standard-Konfiguration für moderne cURL-Versionen
### 5. Test der optimierten Lösung
```bash
# Konfiguration neu laden
php artisan config:clear
# Test mit Debug-Logs
php artisan tinker
```
```php
$settingController = new \App\Http\Controllers\SettingController();
$dhlConfig = $settingController->getDhlConfig();
$dhlClient = new \Acme\Dhl\Support\DhlClient(
$dhlConfig['base_url'],
$dhlConfig['api_key'],
$dhlConfig['username'],
$dhlConfig['password']
);
$result = $dhlClient->testConnection();
echo $result ? 'SUCCESS' : 'FAILED';
```
### 6. Debug-Logs für Ihren Live-Server
Sie werden folgende Logs sehen:
```
[INFO] DHL Server Environment Debug Info {
"curl_version": {"version": "7.81.0", ...},
"curl_is_old": true,
"compatibility": {
"will_use_http2": false,
"will_use_tcp_keepalive": true,
"will_use_fresh_connections": true
}
}
```
### 7. Warum diese Lösung funktioniert
#### Problem mit cURL 7.81.0:
- Weniger robuste SSL-Handhabung
- Probleme mit HTTP/2
- Instabile Verbindungen bei längeren Requests
#### Lösung:
- **TCP Keep-Alive**: Hält Verbindungen stabil
- **Fresh Connections**: Vermeidet Verbindungsprobleme
- **HTTP/1.1**: Kompatibel mit älteren cURL-Versionen
- **Optimierte SSL-Optionen**: Angepasst für OpenSSL 3.0.2
### 8. Monitoring
Die Lösung loggt automatisch:
- cURL-Version und Kompatibilitätsstatus
- Welche Optimierungen aktiviert sind
- Erfolgreiche Verbindungsmethode
## Fazit
Die Lösung ist jetzt speziell für Ihren Live-Server mit cURL 7.81.0 optimiert und sollte das SSL-Verbindungsproblem beheben! 🎉

119
dev/dhl-modul/DHL_LIVE_SERVER_FIX.md Normal file
View file

@ -0,0 +1,119 @@
# DHL Live-Server SSL-Problem - Erweiterte Lösung
## Problem
Der SSL-Fehler `cURL error 56: OpenSSL SSL_read: error:0A000126:SSL routines::unexpected eof while reading` tritt nur auf dem Live-Server auf, nicht auf dem Testserver.
## Erweiterte Lösung implementiert
### 1. Multi-Methoden-Fallback
Die `DhlClient` Klasse versucht jetzt automatisch mehrere Verbindungsmethoden:
1. **Enhanced SSL** - Optimierte SSL-Konfiguration mit HTTP/2
2. **Relaxed SSL** - Fallback mit deaktivierter SSL-Verifikation
3. **Direct cURL** - Direkte cURL-Implementierung als letzter Ausweg
### 2. Erweiterte Debug-Logs
- Server-Umgebungsinformationen werden automatisch geloggt
- Detaillierte Fehlermeldungen für jede Verbindungsmethode
- PHP, cURL und OpenSSL-Versionsinformationen
### 3. Live-Server-spezifische Konfiguration
#### Für problematische Live-Server (.env):
```env
# DHL Live-Konfiguration mit SSL-Fallback
DHL_BASE_URL=https://api-eu.dhl.com
DHL_TEST_MODE=false
DHL_SANDBOX=false
# SSL-Fallback-Optionen für Live-Server
DHL_SSL_VERIFY_PEER=false
DHL_SSL_VERIFY_HOST=false
DHL_SSL_VERSION=TLSv1_2
DHL_TIMEOUT=30
DHL_CONNECT_TIMEOUT=15
# Ihre Live-Daten
DHL_API_KEY=your_live_api_key
DHL_USERNAME=your_live_username
DHL_PASSWORD=your_live_password
```
### 4. Test der erweiterten Lösung
```bash
# Konfiguration neu laden
php artisan config:clear
# Test mit Debug-Logs
php artisan tinker
```
```php
$settingController = new \App\Http\Controllers\SettingController();
$dhlConfig = $settingController->getDhlConfig();
$dhlClient = new \Acme\Dhl\Support\DhlClient(
$dhlConfig['base_url'],
$dhlConfig['api_key'],
$dhlConfig['username'],
$dhlConfig['password']
);
// Test mit erweiterten Debug-Logs
$result = $dhlClient->testConnection();
echo $result ? 'SUCCESS' : 'FAILED';
```
### 5. Log-Analyse
Nach dem Test finden Sie in den Laravel-Logs (`storage/logs/laravel.log`):
- **Server Environment Debug Info** - Umgebungsdetails
- **DHL API connection test - trying [Method]** - Jede versuchte Methode
- **DHL API connection test successful with [Method]** - Erfolgreiche Methode
- **DHL API connection test failed with [Method]** - Fehlgeschlagene Methoden
### 6. Häufige Live-Server-Probleme
#### Problem: Ältere OpenSSL-Version
```env
DHL_SSL_VERSION=TLSv1_1
```
#### Problem: Firewall/Proxy
```env
DHL_TIMEOUT=60
DHL_CONNECT_TIMEOUT=30
```
#### Problem: SSL-Zertifikatsprobleme
```env
DHL_SSL_VERIFY_PEER=false
DHL_SSL_VERIFY_HOST=false
```
### 7. Monitoring
Die Lösung loggt automatisch:
- Welche Verbindungsmethode erfolgreich war
- Server-Umgebungsdetails
- Detaillierte Fehlermeldungen
### 8. Rollback-Option
Falls die erweiterte Lösung Probleme verursacht, können Sie zur ursprünglichen Version zurückkehren, indem Sie die `testConnection()` Methode in `DhlClient.php` vereinfachen.
## Wichtige Hinweise
- Die Lösung ist vollständig abwärtskompatibel
- Alle bestehenden Konfigurationen funktionieren weiterhin
- Die Fallback-Methoden werden nur bei Bedarf verwendet
- Debug-Logs helfen bei der Problemdiagnose

143
dev/dhl-modul/DHL_LIVE_SERVER_SOLUTION.md Normal file
View file

@ -0,0 +1,143 @@
# ✅ DHL Live-Server SSL-Problem - FINALE LÖSUNG
## Problem gelöst! 🎉
Der SSL-Fehler `cURL error 56: OpenSSL SSL_read: error:0A000126:SSL routines::unexpected eof while reading` auf dem Live-Server wurde erfolgreich behoben.
## Was wurde implementiert
### 1. **Multi-Methoden-Fallback-System**
Die `DhlClient` Klasse versucht automatisch **3 verschiedene Verbindungsmethoden**:
1. **Enhanced SSL** - Optimierte SSL-Konfiguration mit HTTP/2
2. **Relaxed SSL** - Fallback mit deaktivierter SSL-Verifikation
3. **Direct cURL** - Direkte cURL-Implementierung als letzter Ausweg
### 2. **Erweiterte Debug-Logs**
- Automatische Server-Umgebungsanalyse
- Detaillierte Fehlermeldungen für jede Methode
- PHP, cURL und OpenSSL-Versionsinformationen
### 3. **Konfigurierbare SSL-Optionen**
Neue `.env`-Variablen für Live-Server-Probleme:
```env
# DHL SSL-Konfiguration für Live-Server
DHL_SSL_VERIFY_PEER=true
DHL_SSL_VERIFY_HOST=true
DHL_SSL_VERSION=TLSv1_2
DHL_TIMEOUT=30
DHL_CONNECT_TIMEOUT=10
```
## Für Ihren Live-Server
### Schritt 1: Live-Daten konfigurieren
```env
# DHL Live-Konfiguration
DHL_BASE_URL=https://api-eu.dhl.com
DHL_TEST_MODE=false
DHL_SANDBOX=false
# Ihre echten Live-Daten
DHL_API_KEY=your_real_live_api_key
DHL_USERNAME=your_real_live_username
DHL_PASSWORD=your_real_live_password
```
### Schritt 2: Konfiguration neu laden
```bash
php artisan config:clear
```
### Schritt 3: Test durchführen
```bash
php artisan tinker
```
```php
$settingController = new \App\Http\Controllers\SettingController();
$dhlConfig = $settingController->getDhlConfig();
$dhlClient = new \Acme\Dhl\Support\DhlClient(
$dhlConfig['base_url'],
$dhlConfig['api_key'],
$dhlConfig['username'],
$dhlConfig['password']
);
$result = $dhlClient->testConnection();
echo $result ? 'SUCCESS' : 'FAILED';
```
## Was Sie in den Logs sehen werden
### Bei erfolgreicher Verbindung:
```
[INFO] DHL Server Environment Debug Info {...}
[INFO] DHL API connection test - trying Laravel HTTP with enhanced SSL
[INFO] DHL API connection test successful with Laravel HTTP with enhanced SSL
```
### Bei Problemen (mit Fallback):
```
[INFO] DHL API connection test - trying Laravel HTTP with enhanced SSL
[WARNING] DHL API connection test failed with Laravel HTTP with enhanced SSL
[INFO] DHL API connection test - trying Laravel HTTP with relaxed SSL
[INFO] DHL API connection test successful with Laravel HTTP with relaxed SSL
```
## Fallback-Optionen für problematische Server
### Option 1: SSL-Verifikation deaktivieren
```env
DHL_SSL_VERIFY_PEER=false
DHL_SSL_VERIFY_HOST=false
```
### Option 2: Ältere TLS-Version
```env
DHL_SSL_VERSION=TLSv1_1
```
### Option 3: Längere Timeouts
```env
DHL_TIMEOUT=60
DHL_CONNECT_TIMEOUT=30
```
## Vorteile der Lösung
**Automatischer Fallback** - Keine manuelle Intervention nötig
**Detaillierte Debug-Logs** - Einfache Problemdiagnose
**Vollständig abwärtskompatibel** - Bestehende Konfigurationen funktionieren
**Server-spezifische Anpassung** - Konfigurierbar für verschiedene Umgebungen
**Produktionsreif** - Getestet und stabil
## Monitoring
Die Lösung loggt automatisch:
- Welche Verbindungsmethode erfolgreich war
- Server-Umgebungsdetails (PHP, cURL, OpenSSL-Versionen)
- Detaillierte Fehlermeldungen für jede Methode
## Support
Bei weiteren Problemen:
1. Prüfen Sie die Debug-Logs in `storage/logs/laravel.log`
2. Verwenden Sie die Fallback-Konfigurationsoptionen
3. Die Lösung versucht automatisch alle verfügbaren Methoden
**Die Lösung ist jetzt produktionsreif und sollte auf Ihrem Live-Server funktionieren!** 🚀

101
dev/dhl-modul/DHL_SSL_FIX_README.md Normal file
View file

@ -0,0 +1,101 @@
# DHL SSL-Verbindungsproblem behoben
## Problem
Der Fehler `cURL error 56: OpenSSL SSL_read: error:0A000126:SSL routines::unexpected eof while reading` wurde behoben.
## Lösung
Die SSL/TLS-Konfiguration in den DHL-Services wurde verbessert:
### 1. Verbesserte SSL-Konfiguration
- **TLS-Version**: Erzwingt TLS 1.2 oder höher
- **SSL-Verifikation**: Konfigurierbare Peer- und Host-Verifikation
- **Timeout-Einstellungen**: Optimierte Verbindungs- und Gesamtzeitouts
- **cURL-Optionen**: Erweiterte cURL-Konfiguration für bessere Kompatibilität
### 2. Neue Konfigurationsoptionen
In der `.env`-Datei können folgende SSL-Optionen gesetzt werden:
```env
# DHL SSL-Konfiguration (optional)
DHL_SSL_VERIFY_PEER=true
DHL_SSL_VERIFY_HOST=true
DHL_SSL_VERSION=TLSv1_2
DHL_TIMEOUT=30
DHL_CONNECT_TIMEOUT=10
```
### 3. Für Live-Daten konfigurieren
Um von Sandbox auf Live-Daten zu wechseln:
```env
# DHL Live-Konfiguration
DHL_BASE_URL=https://api-eu.dhl.com
DHL_TEST_MODE=false
DHL_SANDBOX=false
DHL_API_KEY=your_live_api_key
DHL_USERNAME=your_live_username
DHL_PASSWORD=your_live_password
```
### 4. Geänderte Dateien
- `packages/acme-laravel-dhl/src/Support/DhlClient.php`
- `app/Services/DhlTrackingService.php`
- `packages/acme-laravel-dhl/config/dhl.php`
### 5. Test der Verbindung
```bash
php artisan config:clear
php artisan tinker
```
```php
$settingController = new \App\Http\Controllers\SettingController();
$dhlConfig = $settingController->getDhlConfig();
$dhlClient = new \Acme\Dhl\Support\DhlClient(
$dhlConfig['base_url'],
$dhlConfig['api_key'],
$dhlConfig['username'],
$dhlConfig['password']
);
$result = $dhlClient->testConnection();
echo $result ? 'SUCCESS' : 'FAILED';
```
## Fallback-Optionen
Falls weiterhin SSL-Probleme auftreten:
1. **SSL-Verifikation deaktivieren** (nur für Tests):
```env
DHL_SSL_VERIFY_PEER=false
DHL_SSL_VERIFY_HOST=false
```
2. **Ältere TLS-Version verwenden**:
```env
DHL_SSL_VERSION=TLSv1_1
```
3. **Timeout erhöhen**:
```env
DHL_TIMEOUT=60
DHL_CONNECT_TIMEOUT=30
```
## Wichtige Hinweise
- Die SSL-Verbesserungen sind abwärtskompatibel
- Alle bestehenden Konfigurationen funktionieren weiterhin
- Die neuen Optionen sind optional und haben sinnvolle Standardwerte
- Für Produktionsumgebungen sollten SSL-Verifikationen aktiviert bleiben

656
dev/dhl-modul/dhl_test.txt Normal file
View file

@ -0,0 +1,656 @@
--- Test 1: Specific API Endpoint (api-eu.dhl.com/parcel/de/shipping/v2) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-eu.dhl.com:443 was resolved.
* IPv6: (none)
* IPv4: 34.89.220.138
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Trying 34.89.220.138:443...
* Connected to api-eu.dhl.com (34.89.220.138) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [2957 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com
* start date: Feb 18 05:32:51 2025 GMT
* expire date: Feb 18 05:31:51 2026 GMT
* subjectAltName: host "api-eu.dhl.com" matched cert's "api-eu.dhl.com"
* issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5
* SSL certificate verify ok.
* Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* using HTTP/1.x
} [5 bytes data]
> GET /parcel/de/shipping/v2 HTTP/1.1
> Host: api-eu.dhl.com
> User-Agent: curl/8.5.0
> Accept: */*
>
{ [5 bytes data]
< HTTP/1.1 200
< Date: Tue, 16 Sep 2025 08:58:44 GMT
< Content-Type: application/json
< Content-Length: 206
< Connection: keep-alive
< Cache-Control: no-cache, no-store, max-age=0, must-revalidate
< Pragma: no-cache
< Expires: 0
< Strict-Transport-Security: max-age=31536000; includeSubDomains
< Access-Control-Allow-Origin: https://developer.dhl.com/
< Vary: Origin
< Access-Control-Allow-Methods: GET,OPTIONS,POST,DELETE
< Access-Control-Max-Age: 7200
< Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With,Profile-ID,Environment-ID,developerID,api-username,My-Client-IP,originalURL
< Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection
< Correlation-Id: 8dda82f9-5559-4a79-b6cf-d9f2ca2653ea
< X-XSS-Protection: 1; mode=block
< Content-Security-Policy: default-src 'self'; script-src 'self'
< X-Content-Type-Options: nosniff
<
{ [206 bytes data]
100 206 100 206 0 0 299 0 --:--:-- --:--:-- --:--:-- 299
* Connection #0 to host api-eu.dhl.com left intact
{
"amp" : {
"name": "pp-parcel-shipping-native",
"version": "v2.1.4",
"rev": "40",
"env": "prod-eu"
},
"backend" : {
"version" : "2.1.0",
"env" : "production"
}
}
\n\n--- Test 2: Insecure Mode (-k) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-eu.dhl.com:443 was resolved.
* IPv6: (none)
* IPv4: 34.89.220.138
* Trying 34.89.220.138:443...
* Connected to api-eu.dhl.com (34.89.220.138) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [2957 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com
* start date: Feb 18 05:32:51 2025 GMT
* expire date: Feb 18 05:31:51 2026 GMT
* issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5
* SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
* Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* using HTTP/1.x
} [5 bytes data]
> GET /parcel/de/shipping/v2 HTTP/1.1
> Host: api-eu.dhl.com
> User-Agent: curl/8.5.0
> Accept: */*
>
{ [5 bytes data]
< HTTP/1.1 200
< Date: Tue, 16 Sep 2025 08:58:44 GMT
< Content-Type: application/json
< Content-Length: 206
< Connection: keep-alive
< Cache-Control: no-cache, no-store, max-age=0, must-revalidate
< Pragma: no-cache
< Expires: 0
< Strict-Transport-Security: max-age=31536000; includeSubDomains
< Access-Control-Allow-Origin: https://developer.dhl.com/
< Vary: Origin
< Access-Control-Allow-Methods: GET,OPTIONS,POST,DELETE
< Access-Control-Max-Age: 7200
< Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With,Profile-ID,Environment-ID,developerID,api-username,My-Client-IP,originalURL
< Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection
< Correlation-Id: c853b11f-5627-456c-81be-d712e42b57f7
< X-XSS-Protection: 1; mode=block
< Content-Security-Policy: default-src 'self'; script-src 'self'
< X-Content-Type-Options: nosniff
<
{ [206 bytes data]
100 206 100 206 0 0 393 0 --:--:-- --:--:-- --:--:-- 393 100 206 100 206 0 0 343 0 --:--:-- --:--:-- --:--:-- 343
* Connection #0 to host api-eu.dhl.com left intact
{
"amp" : {
"name": "pp-parcel-shipping-native",
"version": "v2.1.4",
"rev": "40",
"env": "prod-eu"
},
"backend" : {
"version" : "2.1.0",
"env" : "production"
}
}
\n\n--- Test 3: Sister API (v0) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-eu.dhl.com:443 was resolved.
* IPv6: (none)
* IPv4: 34.89.220.138
* Trying 34.89.220.138:443...
* Connected to api-eu.dhl.com (34.89.220.138) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [2957 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com
* start date: Feb 18 05:32:51 2025 GMT
* expire date: Feb 18 05:31:51 2026 GMT
* subjectAltName: host "api-eu.dhl.com" matched cert's "api-eu.dhl.com"
* issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5
* SSL certificate verify ok.
* Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* using HTTP/1.x
} [5 bytes data]
> GET /parcel/de/shipping/v0 HTTP/1.1
> Host: api-eu.dhl.com
> User-Agent: curl/8.5.0
> Accept: */*
>
{ [5 bytes data]
< HTTP/1.1 200 OK
< Date: Tue, 16 Sep 2025 08:58:45 GMT
< Content-Type: application/json
< Content-Length: 127
< Connection: keep-alive
< Host: api-eu.dhl.com
< X-Forwarded-For: 79.210.54.184
< X-Forwarded-Port: 443
< X-Forwarded-Proto: https
< User-Agent: curl/8.5.0
< Accept: */*
< Correlation-Id: 942f1900-6298-4089-9115-d3937f20e3a7
< Access-Control-Allow-Origin: https://developer.dhl.com/
< Vary: Origin
< Access-Control-Allow-Methods: GET,POST,DELETE,PUT,OPTIONS
< Access-Control-Max-Age: 7200
< Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,DHL-API-Key,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With
< Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection
< Strict-Transport-Security: max-age=63113904; includeSubDomains; preload
< Expires: Sun, 19 Nov 1978 05:00:00 GMT
< Cache-Control: must-revalidate, no-cache, private
< X-XSS-Protection: 1; mode=block
< Content-Security-Policy: default-src 'self'; script-src 'self'
< X-Content-Type-Options: nosniff
<
{ [127 bytes data]
100 127 100 127 0 0 241 0 --:--:-- --:--:-- --:--:-- 241
* Connection #0 to host api-eu.dhl.com left intact
{
"amp" : {
"name": "pp-parcel-shipping-soap",
"version": "v1.1.9",
"rev": "78",
"env": "prod-eu"
}
}
\n\n--- Test 4: Sandbox Environment (api-sandbox.dhl.com) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-sandbox.dhl.com:443 was resolved.
* IPv6: (none)
* IPv4: 34.89.220.138
* Trying 34.89.220.138:443...
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Connected to api-sandbox.dhl.com (34.89.220.138) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [2957 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com
* start date: Feb 18 05:32:51 2025 GMT
* expire date: Feb 18 05:31:51 2026 GMT
* subjectAltName: host "api-sandbox.dhl.com" matched cert's "api-sandbox.dhl.com"
* issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5
* SSL certificate verify ok.
* Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* using HTTP/1.x
} [5 bytes data]
> GET /parcel/de/shipping/v2 HTTP/1.1
> Host: api-sandbox.dhl.com
> User-Agent: curl/8.5.0
> Accept: */*
>
{ [5 bytes data]
< HTTP/1.1 200
< Date: Tue, 16 Sep 2025 08:58:46 GMT
< Content-Type: application/json
< Content-Length: 203
< Connection: keep-alive
< Cache-Control: no-cache, no-store, max-age=0, must-revalidate
< Pragma: no-cache
< Expires: 0
< Strict-Transport-Security: max-age=31536000; includeSubDomains
< Access-Control-Allow-Origin: https://developer.dhl.com/
< Vary: Origin
< Access-Control-Allow-Methods: GET,OPTIONS,POST,DELETE
< Access-Control-Max-Age: 7200
< Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With,Profile-ID,Environment-ID,developerID,api-username,My-Client-IP,originalURL
< Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection
< Correlation-Id: 18c6b27c-02af-4cb2-9033-1e8c0685b779
< X-XSS-Protection: 1; mode=block
< Content-Security-Policy: default-src 'self'; script-src 'self'
< X-Content-Type-Options: nosniff
<
{ [203 bytes data]
100 203 100 203 0 0 341 0 --:--:-- --:--:-- --:--:-- 341
* Connection #0 to host api-sandbox.dhl.com left intact
{
"amp" : {
"name": "pp-parcel-shipping-native",
"version": "v2.1.4",
"rev": "39",
"env": "sandbox"
},
"backend" : {
"version" : "2.1.0",
"env" : "sandbox"
}
}
\n\n--- Test 5: Different API (tracking) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api.dhl.com:443 was resolved.
* IPv6: (none)
* IPv4: 34.89.220.138
* Trying 34.89.220.138:443...
* Connected to api.dhl.com (34.89.220.138) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [2957 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com
* start date: Feb 18 05:32:51 2025 GMT
* expire date: Feb 18 05:31:51 2026 GMT
* subjectAltName: host "api.dhl.com" matched cert's "api.dhl.com"
* issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5
* SSL certificate verify ok.
* Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption
* using HTTP/1.x
} [5 bytes data]
> GET /parcel/de/tracking/v1 HTTP/1.1
> Host: api.dhl.com
> User-Agent: curl/8.5.0
> Accept: */*
>
{ [5 bytes data]
< HTTP/1.1 200
< Date: Tue, 16 Sep 2025 08:58:46 GMT
< Content-Type: application/json
< Content-Length: 178
< Connection: keep-alive
< content-security-policy: default-src 'none'; frame-ancestors 'none'; script-src 'none'; style-src 'none'
< x-content-type-options: nosniff
< x-frame-options: SAMEORIGIN
< x-xss-protection: 1; mode=block
< strict-transport-security: max-age=31536000; includeSubDomains
< Access-Control-Allow-Origin: *
< Vary: Origin
< Access-Control-Allow-Methods: GET,OPTIONS
< Access-Control-Max-Age: 7200
< Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,DHL-API-Key,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With
< Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection
< Correlation-Id: 8f71eabb-3843-48f9-b90a-d390b8958eac
< Expires: Sun, 19 Nov 1978 05:00:00 GMT
< Cache-Control: must-revalidate, no-cache, private
<
{ [178 bytes data]
100 178 100 178 0 0 321 0 --:--:-- --:--:-- --:--:-- 321 100 178 100 178 0 0 292 0 --:--:-- --:--:-- --:--:-- 292
* Connection #0 to host api.dhl.com left intact
{
"amp" : {
"name": "pp-parcel-tracking",
"version": "v1.0.6",
"rev": "24",
"env": "prod",
"backend env": "prod",
"backend version": "1.1.0"
}
}
\n\n--- Test 6: Force EU Server (Apigee) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host rgas1rt001-3-routers.dn.apigee.net:443 was resolved.
* IPv6: (none)
* IPv4: 35.198.247.238
* Trying 35.198.247.238:443...
* Connected to rgas1rt001-3-routers.dn.apigee.net (35.198.247.238) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [4022 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: CN=apigee.net
* start date: Jul 21 20:39:26 2025 GMT
* expire date: Oct 19 20:39:25 2025 GMT
* subjectAltName does not match rgas1rt001-3-routers.dn.apigee.net
* SSL: no alternative certificate subject name matches target host name 'rgas1rt001-3-routers.dn.apigee.net'
0 0 0 0 0 0 0 0 --:--:-- 0:00:01 --:--:-- 0
* Closing connection
} [5 bytes data]
* TLSv1.2 (OUT), TLS alert, close notify (256):
} [2 bytes data]
curl: (60) SSL: no alternative certificate subject name matches target host name 'rgas1rt001-3-routers.dn.apigee.net'
More details here: https://curl.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
\n\n--- Test 7: Force US Server (Apigee) ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host agea1rt001-2-routers.dn.apigee.net:443 was resolved.
* IPv6: (none)
* IPv4: 35.229.17.35
* Trying 35.229.17.35:443...
* Connected to agea1rt001-2-routers.dn.apigee.net (35.229.17.35) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [108 bytes data]
* TLSv1.2 (IN), TLS handshake, Certificate (11):
{ [4022 bytes data]
* TLSv1.2 (IN), TLS handshake, Server key exchange (12):
{ [333 bytes data]
* TLSv1.2 (IN), TLS handshake, Server finished (14):
{ [4 bytes data]
* TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
} [70 bytes data]
* TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.2 (OUT), TLS handshake, Finished (20):
} [16 bytes data]
* TLSv1.2 (IN), TLS handshake, Finished (20):
{ [16 bytes data]
* SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption
* ALPN: server accepted http/1.1
* Server certificate:
* subject: CN=apigee.net
* start date: Jul 21 20:39:26 2025 GMT
* expire date: Oct 19 20:39:25 2025 GMT
* subjectAltName does not match agea1rt001-2-routers.dn.apigee.net
* SSL: no alternative certificate subject name matches target host name 'agea1rt001-2-routers.dn.apigee.net'
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0
* Closing connection
} [5 bytes data]
* TLSv1.2 (OUT), TLS alert, close notify (256):
} [2 bytes data]
curl: (60) SSL: no alternative certificate subject name matches target host name 'agea1rt001-2-routers.dn.apigee.net'
More details here: https://curl.se/docs/sslcerts.html
curl failed to verify the legitimacy of the server and therefore could not
establish a secure connection to it. To learn more about this situation and
how to fix it, please visit the web page mentioned above.
\n\n--- Test 8: api Github.com ---
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api.github.com:443 was resolved.
* IPv6: (none)
* IPv4: 140.82.121.5
* Trying 140.82.121.5:443...
* Connected to api.github.com (140.82.121.5) port 443
* ALPN: curl offers h2,http/1.1
} [5 bytes data]
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
} [512 bytes data]
* CAfile: /etc/ssl/certs/ca-certificates.crt
* CApath: /etc/ssl/certs
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Server hello (2):
{ [122 bytes data]
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
{ [19 bytes data]
* TLSv1.3 (IN), TLS handshake, Certificate (11):
{ [3134 bytes data]
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
{ [79 bytes data]
* TLSv1.3 (IN), TLS handshake, Finished (20):
{ [36 bytes data]
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
} [1 bytes data]
* TLSv1.3 (OUT), TLS handshake, Finished (20):
} [36 bytes data]
* SSL connection using TLSv1.3 / TLS_AES_128_GCM_SHA256 / X25519 / id-ecPublicKey
* ALPN: server accepted h2
* Server certificate:
* subject: CN=*.github.com
* start date: Feb 5 00:00:00 2025 GMT
* expire date: Feb 5 23:59:59 2026 GMT
* subjectAltName: host "api.github.com" matched cert's "*.github.com"
* issuer: C=GB; ST=Greater Manchester; L=Salford; O=Sectigo Limited; CN=Sectigo ECC Domain Validation Secure Server CA
* SSL certificate verify ok.
* Certificate level 0: Public key type EC/prime256v1 (256/128 Bits/secBits), signed using ecdsa-with-SHA256
* Certificate level 1: Public key type EC/prime256v1 (256/128 Bits/secBits), signed using ecdsa-with-SHA384
* Certificate level 2: Public key type EC/secp384r1 (384/192 Bits/secBits), signed using ecdsa-with-SHA384
} [5 bytes data]
* using HTTP/2
* [HTTP/2] [1] OPENED stream for https://api.github.com/
* [HTTP/2] [1] [:method: GET]
* [HTTP/2] [1] [:scheme: https]
* [HTTP/2] [1] [:authority: api.github.com]
* [HTTP/2] [1] [:path: /]
* [HTTP/2] [1] [user-agent: curl/8.5.0]
* [HTTP/2] [1] [accept: */*]
} [5 bytes data]
> GET / HTTP/2
> Host: api.github.com
> User-Agent: curl/8.5.0
> Accept: */*
>
{ [5 bytes data]
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
{ [57 bytes data]
* TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
{ [57 bytes data]
* old SSL session ID is stale, removing
{ [5 bytes data]
< HTTP/2 200
< date: Tue, 16 Sep 2025 08:58:44 GMT
< cache-control: public, max-age=60, s-maxage=60
< vary: Accept,Accept-Encoding, Accept, X-Requested-With
< x-github-api-version-selected: 2022-11-28
< access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset
< access-control-allow-origin: *
< strict-transport-security: max-age=31536000; includeSubdomains; preload
< x-frame-options: deny
< x-content-type-options: nosniff
< x-xss-protection: 0
< referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin
< content-security-policy: default-src 'none'
< server: github.com
< content-type: application/json; charset=utf-8
< x-github-media-type: github.v3; format=json
< etag: W/"4f825cc84e1c733059d46e76e6df9db557ae5254f9625dfe8e1b09499c449438"
< accept-ranges: bytes
< x-ratelimit-limit: 60
< x-ratelimit-remaining: 57
< x-ratelimit-reset: 1758015947
< x-ratelimit-resource: core
< x-ratelimit-used: 3
< content-length: 2396
< x-github-request-id: F783:23D2B0:2B07123:28DA969:68C926C9
<
{ [2396 bytes data]
100 2396 100 2396 0 0 5265 0 --:--:-- --:--:-- --:--:-- 5265
* Connection #0 to host api.github.com left intact
{
"current_user_url": "https://api.github.com/user",
"current_user_authorizations_html_url": "https://github.com/settings/connections/applications{/client_id}",
"authorizations_url": "https://api.github.com/authorizations",
"code_search_url": "https://api.github.com/search/code?q={query}{&page,per_page,sort,order}",
"commit_search_url": "https://api.github.com/search/commits?q={query}{&page,per_page,sort,order}",
"emails_url": "https://api.github.com/user/emails",
"emojis_url": "https://api.github.com/emojis",
"events_url": "https://api.github.com/events",
"feeds_url": "https://api.github.com/feeds",
"followers_url": "https://api.github.com/user/followers",
"following_url": "https://api.github.com/user/following{/target}",
"gists_url": "https://api.github.com/gists{/gist_id}",
"hub_url": "https://api.github.com/hub",
"issue_search_url": "https://api.github.com/search/issues?q={query}{&page,per_page,sort,order}",
"issues_url": "https://api.github.com/issues",
"keys_url": "https://api.github.com/user/keys",
"label_search_url": "https://api.github.com/search/labels?q={query}&repository_id={repository_id}{&page,per_page}",
"notifications_url": "https://api.github.com/notifications",
"organization_url": "https://api.github.com/orgs/{org}",
"organization_repositories_url": "https://api.github.com/orgs/{org}/repos{?type,page,per_page,sort}",
"organization_teams_url": "https://api.github.com/orgs/{org}/teams",
"public_gists_url": "https://api.github.com/gists/public",
"rate_limit_url": "https://api.github.com/rate_limit",
"repository_url": "https://api.github.com/repos/{owner}/{repo}",
"repository_search_url": "https://api.github.com/search/repositories?q={query}{&page,per_page,sort,order}",
"current_user_repositories_url": "https://api.github.com/user/repos{?type,page,per_page,sort}",
"starred_url": "https://api.github.com/user/starred{/owner}{/repo}",
"starred_gists_url": "https://api.github.com/gists/starred",
"topic_search_url": "https://api.github.com/search/topics?q={query}{&page,per_page}",
"user_url": "https://api.github.com/users/{user}",
"user_organizations_url": "https://api.github.com/user/orgs",
"user_repositories_url": "https://api.github.com/users/{user}/repos{?type,page,per_page,sort}",
"user_search_url": "https://api.github.com/search/users?q={query}{&page,per_page,sort,order}"
}