--- Test 1: Specific API Endpoint (api-eu.dhl.com/parcel/de/shipping/v2) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-eu.dhl.com:443 was resolved. * IPv6: (none) * IPv4: 34.89.220.138 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Trying 34.89.220.138:443... * Connected to api-eu.dhl.com (34.89.220.138) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [2957 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com * start date: Feb 18 05:32:51 2025 GMT * expire date: Feb 18 05:31:51 2026 GMT * subjectAltName: host "api-eu.dhl.com" matched cert's "api-eu.dhl.com" * issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5 * SSL certificate verify ok. * Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * using HTTP/1.x } [5 bytes data] > GET /parcel/de/shipping/v2 HTTP/1.1 > Host: api-eu.dhl.com > User-Agent: curl/8.5.0 > Accept: */* > { [5 bytes data] < HTTP/1.1 200 < Date: Tue, 16 Sep 2025 08:58:44 GMT < Content-Type: application/json < Content-Length: 206 < Connection: keep-alive < Cache-Control: no-cache, no-store, max-age=0, must-revalidate < Pragma: no-cache < Expires: 0 < Strict-Transport-Security: max-age=31536000; includeSubDomains < Access-Control-Allow-Origin: https://developer.dhl.com/ < Vary: Origin < Access-Control-Allow-Methods: GET,OPTIONS,POST,DELETE < Access-Control-Max-Age: 7200 < Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With,Profile-ID,Environment-ID,developerID,api-username,My-Client-IP,originalURL < Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection < Correlation-Id: 8dda82f9-5559-4a79-b6cf-d9f2ca2653ea < X-XSS-Protection: 1; mode=block < Content-Security-Policy: default-src 'self'; script-src 'self' < X-Content-Type-Options: nosniff < { [206 bytes data] 100 206 100 206 0 0 299 0 --:--:-- --:--:-- --:--:-- 299 * Connection #0 to host api-eu.dhl.com left intact { "amp" : { "name": "pp-parcel-shipping-native", "version": "v2.1.4", "rev": "40", "env": "prod-eu" }, "backend" : { "version" : "2.1.0", "env" : "production" } } \n\n--- Test 2: Insecure Mode (-k) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-eu.dhl.com:443 was resolved. * IPv6: (none) * IPv4: 34.89.220.138 * Trying 34.89.220.138:443... * Connected to api-eu.dhl.com (34.89.220.138) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [2957 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com * start date: Feb 18 05:32:51 2025 GMT * expire date: Feb 18 05:31:51 2026 GMT * issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5 * SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway. * Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * using HTTP/1.x } [5 bytes data] > GET /parcel/de/shipping/v2 HTTP/1.1 > Host: api-eu.dhl.com > User-Agent: curl/8.5.0 > Accept: */* > { [5 bytes data] < HTTP/1.1 200 < Date: Tue, 16 Sep 2025 08:58:44 GMT < Content-Type: application/json < Content-Length: 206 < Connection: keep-alive < Cache-Control: no-cache, no-store, max-age=0, must-revalidate < Pragma: no-cache < Expires: 0 < Strict-Transport-Security: max-age=31536000; includeSubDomains < Access-Control-Allow-Origin: https://developer.dhl.com/ < Vary: Origin < Access-Control-Allow-Methods: GET,OPTIONS,POST,DELETE < Access-Control-Max-Age: 7200 < Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With,Profile-ID,Environment-ID,developerID,api-username,My-Client-IP,originalURL < Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection < Correlation-Id: c853b11f-5627-456c-81be-d712e42b57f7 < X-XSS-Protection: 1; mode=block < Content-Security-Policy: default-src 'self'; script-src 'self' < X-Content-Type-Options: nosniff < { [206 bytes data] 100 206 100 206 0 0 393 0 --:--:-- --:--:-- --:--:-- 393 100 206 100 206 0 0 343 0 --:--:-- --:--:-- --:--:-- 343 * Connection #0 to host api-eu.dhl.com left intact { "amp" : { "name": "pp-parcel-shipping-native", "version": "v2.1.4", "rev": "40", "env": "prod-eu" }, "backend" : { "version" : "2.1.0", "env" : "production" } } \n\n--- Test 3: Sister API (v0) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-eu.dhl.com:443 was resolved. * IPv6: (none) * IPv4: 34.89.220.138 * Trying 34.89.220.138:443... * Connected to api-eu.dhl.com (34.89.220.138) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [2957 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com * start date: Feb 18 05:32:51 2025 GMT * expire date: Feb 18 05:31:51 2026 GMT * subjectAltName: host "api-eu.dhl.com" matched cert's "api-eu.dhl.com" * issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5 * SSL certificate verify ok. * Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * using HTTP/1.x } [5 bytes data] > GET /parcel/de/shipping/v0 HTTP/1.1 > Host: api-eu.dhl.com > User-Agent: curl/8.5.0 > Accept: */* > { [5 bytes data] < HTTP/1.1 200 OK < Date: Tue, 16 Sep 2025 08:58:45 GMT < Content-Type: application/json < Content-Length: 127 < Connection: keep-alive < Host: api-eu.dhl.com < X-Forwarded-For: 79.210.54.184 < X-Forwarded-Port: 443 < X-Forwarded-Proto: https < User-Agent: curl/8.5.0 < Accept: */* < Correlation-Id: 942f1900-6298-4089-9115-d3937f20e3a7 < Access-Control-Allow-Origin: https://developer.dhl.com/ < Vary: Origin < Access-Control-Allow-Methods: GET,POST,DELETE,PUT,OPTIONS < Access-Control-Max-Age: 7200 < Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,DHL-API-Key,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With < Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection < Strict-Transport-Security: max-age=63113904; includeSubDomains; preload < Expires: Sun, 19 Nov 1978 05:00:00 GMT < Cache-Control: must-revalidate, no-cache, private < X-XSS-Protection: 1; mode=block < Content-Security-Policy: default-src 'self'; script-src 'self' < X-Content-Type-Options: nosniff < { [127 bytes data] 100 127 100 127 0 0 241 0 --:--:-- --:--:-- --:--:-- 241 * Connection #0 to host api-eu.dhl.com left intact { "amp" : { "name": "pp-parcel-shipping-soap", "version": "v1.1.9", "rev": "78", "env": "prod-eu" } } \n\n--- Test 4: Sandbox Environment (api-sandbox.dhl.com) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api-sandbox.dhl.com:443 was resolved. * IPv6: (none) * IPv4: 34.89.220.138 * Trying 34.89.220.138:443... 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Connected to api-sandbox.dhl.com (34.89.220.138) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [2957 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com * start date: Feb 18 05:32:51 2025 GMT * expire date: Feb 18 05:31:51 2026 GMT * subjectAltName: host "api-sandbox.dhl.com" matched cert's "api-sandbox.dhl.com" * issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5 * SSL certificate verify ok. * Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * using HTTP/1.x } [5 bytes data] > GET /parcel/de/shipping/v2 HTTP/1.1 > Host: api-sandbox.dhl.com > User-Agent: curl/8.5.0 > Accept: */* > { [5 bytes data] < HTTP/1.1 200 < Date: Tue, 16 Sep 2025 08:58:46 GMT < Content-Type: application/json < Content-Length: 203 < Connection: keep-alive < Cache-Control: no-cache, no-store, max-age=0, must-revalidate < Pragma: no-cache < Expires: 0 < Strict-Transport-Security: max-age=31536000; includeSubDomains < Access-Control-Allow-Origin: https://developer.dhl.com/ < Vary: Origin < Access-Control-Allow-Methods: GET,OPTIONS,POST,DELETE < Access-Control-Max-Age: 7200 < Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With,Profile-ID,Environment-ID,developerID,api-username,My-Client-IP,originalURL < Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection < Correlation-Id: 18c6b27c-02af-4cb2-9033-1e8c0685b779 < X-XSS-Protection: 1; mode=block < Content-Security-Policy: default-src 'self'; script-src 'self' < X-Content-Type-Options: nosniff < { [203 bytes data] 100 203 100 203 0 0 341 0 --:--:-- --:--:-- --:--:-- 341 * Connection #0 to host api-sandbox.dhl.com left intact { "amp" : { "name": "pp-parcel-shipping-native", "version": "v2.1.4", "rev": "39", "env": "sandbox" }, "backend" : { "version" : "2.1.0", "env" : "sandbox" } } \n\n--- Test 5: Different API (tracking) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api.dhl.com:443 was resolved. * IPv6: (none) * IPv4: 34.89.220.138 * Trying 34.89.220.138:443... * Connected to api.dhl.com (34.89.220.138) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [2957 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: C=DE; ST=Nordrhein-Westfalen; L=Bonn; O=Deutsche Post AG; CN=api.dhl.com * start date: Feb 18 05:32:51 2025 GMT * expire date: Feb 18 05:31:51 2026 GMT * subjectAltName: host "api.dhl.com" matched cert's "api.dhl.com" * issuer: C=DE; O=Deutsche Post AG; CN=DPDHL Global TLS CA - I5 * SSL certificate verify ok. * Certificate level 0: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 1: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * Certificate level 2: Public key type RSA (2048/112 Bits/secBits), signed using sha256WithRSAEncryption * using HTTP/1.x } [5 bytes data] > GET /parcel/de/tracking/v1 HTTP/1.1 > Host: api.dhl.com > User-Agent: curl/8.5.0 > Accept: */* > { [5 bytes data] < HTTP/1.1 200 < Date: Tue, 16 Sep 2025 08:58:46 GMT < Content-Type: application/json < Content-Length: 178 < Connection: keep-alive < content-security-policy: default-src 'none'; frame-ancestors 'none'; script-src 'none'; style-src 'none' < x-content-type-options: nosniff < x-frame-options: SAMEORIGIN < x-xss-protection: 1; mode=block < strict-transport-security: max-age=31536000; includeSubDomains < Access-Control-Allow-Origin: * < Vary: Origin < Access-Control-Allow-Methods: GET,OPTIONS < Access-Control-Max-Age: 7200 < Access-Control-Allow-Headers: Accept-Encoding,Accept-Language,Accept,Authorization,Cache-Control,Content-Language,Content-Length,Content-Type,Correlation-Id,DHL-API-Key,Expires,Host,Last-Modified,Origin,Pragma,Referer,User-Agent,X-Forwarded-For,X-Forwarded-Port,X-Forwarded-Proto,X-Requested-With < Access-Control-Expose-Headers: Cache-Control,Content-Encoding,Content-Language,Content-Length,Content-Type,Correlation-Id,Expires,Last-Modified,Pragma,Referrer-Policy,Strict-Transport-Security,Vary,X-Content-Type-Options,X-DNS-Prefetch-Control,X-Frame-Options,X-XSS-Protection < Correlation-Id: 8f71eabb-3843-48f9-b90a-d390b8958eac < Expires: Sun, 19 Nov 1978 05:00:00 GMT < Cache-Control: must-revalidate, no-cache, private < { [178 bytes data] 100 178 100 178 0 0 321 0 --:--:-- --:--:-- --:--:-- 321 100 178 100 178 0 0 292 0 --:--:-- --:--:-- --:--:-- 292 * Connection #0 to host api.dhl.com left intact { "amp" : { "name": "pp-parcel-tracking", "version": "v1.0.6", "rev": "24", "env": "prod", "backend env": "prod", "backend version": "1.1.0" } } \n\n--- Test 6: Force EU Server (Apigee) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host rgas1rt001-3-routers.dn.apigee.net:443 was resolved. * IPv6: (none) * IPv4: 35.198.247.238 * Trying 35.198.247.238:443... * Connected to rgas1rt001-3-routers.dn.apigee.net (35.198.247.238) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [4022 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: CN=apigee.net * start date: Jul 21 20:39:26 2025 GMT * expire date: Oct 19 20:39:25 2025 GMT * subjectAltName does not match rgas1rt001-3-routers.dn.apigee.net * SSL: no alternative certificate subject name matches target host name 'rgas1rt001-3-routers.dn.apigee.net' 0 0 0 0 0 0 0 0 --:--:-- 0:00:01 --:--:-- 0 * Closing connection } [5 bytes data] * TLSv1.2 (OUT), TLS alert, close notify (256): } [2 bytes data] curl: (60) SSL: no alternative certificate subject name matches target host name 'rgas1rt001-3-routers.dn.apigee.net' More details here: https://curl.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above. \n\n--- Test 7: Force US Server (Apigee) --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host agea1rt001-2-routers.dn.apigee.net:443 was resolved. * IPv6: (none) * IPv4: 35.229.17.35 * Trying 35.229.17.35:443... * Connected to agea1rt001-2-routers.dn.apigee.net (35.229.17.35) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [108 bytes data] * TLSv1.2 (IN), TLS handshake, Certificate (11): { [4022 bytes data] * TLSv1.2 (IN), TLS handshake, Server key exchange (12): { [333 bytes data] * TLSv1.2 (IN), TLS handshake, Server finished (14): { [4 bytes data] * TLSv1.2 (OUT), TLS handshake, Client key exchange (16): } [70 bytes data] * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.2 (OUT), TLS handshake, Finished (20): } [16 bytes data] * TLSv1.2 (IN), TLS handshake, Finished (20): { [16 bytes data] * SSL connection using TLSv1.2 / ECDHE-RSA-AES256-GCM-SHA384 / prime256v1 / rsaEncryption * ALPN: server accepted http/1.1 * Server certificate: * subject: CN=apigee.net * start date: Jul 21 20:39:26 2025 GMT * expire date: Oct 19 20:39:25 2025 GMT * subjectAltName does not match agea1rt001-2-routers.dn.apigee.net * SSL: no alternative certificate subject name matches target host name 'agea1rt001-2-routers.dn.apigee.net' 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0 * Closing connection } [5 bytes data] * TLSv1.2 (OUT), TLS alert, close notify (256): } [2 bytes data] curl: (60) SSL: no alternative certificate subject name matches target host name 'agea1rt001-2-routers.dn.apigee.net' More details here: https://curl.se/docs/sslcerts.html curl failed to verify the legitimacy of the server and therefore could not establish a secure connection to it. To learn more about this situation and how to fix it, please visit the web page mentioned above. \n\n--- Test 8: api Github.com --- % Total % Received % Xferd Average Speed Time Time Time Current Dload Upload Total Spent Left Speed 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0* Host api.github.com:443 was resolved. * IPv6: (none) * IPv4: 140.82.121.5 * Trying 140.82.121.5:443... * Connected to api.github.com (140.82.121.5) port 443 * ALPN: curl offers h2,http/1.1 } [5 bytes data] * TLSv1.3 (OUT), TLS handshake, Client hello (1): } [512 bytes data] * CAfile: /etc/ssl/certs/ca-certificates.crt * CApath: /etc/ssl/certs { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Server hello (2): { [122 bytes data] * TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8): { [19 bytes data] * TLSv1.3 (IN), TLS handshake, Certificate (11): { [3134 bytes data] * TLSv1.3 (IN), TLS handshake, CERT verify (15): { [79 bytes data] * TLSv1.3 (IN), TLS handshake, Finished (20): { [36 bytes data] * TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1): } [1 bytes data] * TLSv1.3 (OUT), TLS handshake, Finished (20): } [36 bytes data] * SSL connection using TLSv1.3 / TLS_AES_128_GCM_SHA256 / X25519 / id-ecPublicKey * ALPN: server accepted h2 * Server certificate: * subject: CN=*.github.com * start date: Feb 5 00:00:00 2025 GMT * expire date: Feb 5 23:59:59 2026 GMT * subjectAltName: host "api.github.com" matched cert's "*.github.com" * issuer: C=GB; ST=Greater Manchester; L=Salford; O=Sectigo Limited; CN=Sectigo ECC Domain Validation Secure Server CA * SSL certificate verify ok. * Certificate level 0: Public key type EC/prime256v1 (256/128 Bits/secBits), signed using ecdsa-with-SHA256 * Certificate level 1: Public key type EC/prime256v1 (256/128 Bits/secBits), signed using ecdsa-with-SHA384 * Certificate level 2: Public key type EC/secp384r1 (384/192 Bits/secBits), signed using ecdsa-with-SHA384 } [5 bytes data] * using HTTP/2 * [HTTP/2] [1] OPENED stream for https://api.github.com/ * [HTTP/2] [1] [:method: GET] * [HTTP/2] [1] [:scheme: https] * [HTTP/2] [1] [:authority: api.github.com] * [HTTP/2] [1] [:path: /] * [HTTP/2] [1] [user-agent: curl/8.5.0] * [HTTP/2] [1] [accept: */*] } [5 bytes data] > GET / HTTP/2 > Host: api.github.com > User-Agent: curl/8.5.0 > Accept: */* > { [5 bytes data] * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4): { [57 bytes data] * TLSv1.3 (IN), TLS handshake, Newsession Ticket (4): { [57 bytes data] * old SSL session ID is stale, removing { [5 bytes data] < HTTP/2 200 < date: Tue, 16 Sep 2025 08:58:44 GMT < cache-control: public, max-age=60, s-maxage=60 < vary: Accept,Accept-Encoding, Accept, X-Requested-With < x-github-api-version-selected: 2022-11-28 < access-control-expose-headers: ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset < access-control-allow-origin: * < strict-transport-security: max-age=31536000; includeSubdomains; preload < x-frame-options: deny < x-content-type-options: nosniff < x-xss-protection: 0 < referrer-policy: origin-when-cross-origin, strict-origin-when-cross-origin < content-security-policy: default-src 'none' < server: github.com < content-type: application/json; charset=utf-8 < x-github-media-type: github.v3; format=json < etag: W/"4f825cc84e1c733059d46e76e6df9db557ae5254f9625dfe8e1b09499c449438" < accept-ranges: bytes < x-ratelimit-limit: 60 < x-ratelimit-remaining: 57 < x-ratelimit-reset: 1758015947 < x-ratelimit-resource: core < x-ratelimit-used: 3 < content-length: 2396 < x-github-request-id: F783:23D2B0:2B07123:28DA969:68C926C9 < { [2396 bytes data] 100 2396 100 2396 0 0 5265 0 --:--:-- --:--:-- --:--:-- 5265 * Connection #0 to host api.github.com left intact { "current_user_url": "https://api.github.com/user", "current_user_authorizations_html_url": "https://github.com/settings/connections/applications{/client_id}", "authorizations_url": "https://api.github.com/authorizations", "code_search_url": "https://api.github.com/search/code?q={query}{&page,per_page,sort,order}", "commit_search_url": "https://api.github.com/search/commits?q={query}{&page,per_page,sort,order}", "emails_url": "https://api.github.com/user/emails", "emojis_url": "https://api.github.com/emojis", "events_url": "https://api.github.com/events", "feeds_url": "https://api.github.com/feeds", "followers_url": "https://api.github.com/user/followers", "following_url": "https://api.github.com/user/following{/target}", "gists_url": "https://api.github.com/gists{/gist_id}", "hub_url": "https://api.github.com/hub", "issue_search_url": "https://api.github.com/search/issues?q={query}{&page,per_page,sort,order}", "issues_url": "https://api.github.com/issues", "keys_url": "https://api.github.com/user/keys", "label_search_url": "https://api.github.com/search/labels?q={query}&repository_id={repository_id}{&page,per_page}", "notifications_url": "https://api.github.com/notifications", "organization_url": "https://api.github.com/orgs/{org}", "organization_repositories_url": "https://api.github.com/orgs/{org}/repos{?type,page,per_page,sort}", "organization_teams_url": "https://api.github.com/orgs/{org}/teams", "public_gists_url": "https://api.github.com/gists/public", "rate_limit_url": "https://api.github.com/rate_limit", "repository_url": "https://api.github.com/repos/{owner}/{repo}", "repository_search_url": "https://api.github.com/search/repositories?q={query}{&page,per_page,sort,order}", "current_user_repositories_url": "https://api.github.com/user/repos{?type,page,per_page,sort}", "starred_url": "https://api.github.com/user/starred{/owner}{/repo}", "starred_gists_url": "https://api.github.com/gists/starred", "topic_search_url": "https://api.github.com/search/topics?q={query}{&page,per_page}", "user_url": "https://api.github.com/users/{user}", "user_organizations_url": "https://api.github.com/user/orgs", "user_repositories_url": "https://api.github.com/users/{user}/repos{?type,page,per_page,sort}", "user_search_url": "https://api.github.com/search/users?q={query}{&page,per_page,sort,order}" }