Verify SSL Server Certificate

Demonstrates how to connect to an SSL server and verify its SSL certificate.

Download Chilkat Socket ActiveX

<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
set socket = Server.CreateObject("Chilkat.Socket")

success = socket.UnlockComponent("Anything for 30-day trial")
If (success <> 1) Then
    Response.Write "Failed to unlock component" & "<br>"

End If

ssl = 1
maxWaitMillisec = 20000

'  The SSL server hostname may be an IP address, a domain name,
'  or "localhost".

sslServerHost = "www.paypal.com"
sslServerPort = 443

'  Connect to the SSL server:
success = socket.Connect(sslServerHost,sslServerPort,ssl,maxWaitMillisec)
If (success <> 1) Then
    Response.Write socket.LastErrorText & "<br>"

End If

Set cert = socket.GetSslServerCert()
If (Not (cert Is Nothing )) Then

    Response.Write Server.HTMLEncode( "Server Certificate:") & "<br>"
    Response.Write Server.HTMLEncode( "Distinguished Name: " _
         & cert.SubjectDN) & "<br>"
    Response.Write Server.HTMLEncode( "Common Name: " _
         & cert.SubjectCN) & "<br>"
    Response.Write Server.HTMLEncode( "Issuer Distinguished Name: " _
         & cert.IssuerDN) & "<br>"
    Response.Write Server.HTMLEncode( "Issuer Common Name: " _
         & cert.IssuerCN) & "<br>"

    bExpired = cert.IsExpired()
    bRevoked = cert.Revoked
    bSignatureVerified = cert.SignatureVerified
    bTrustedRoot = cert.TrustedRoot

    Response.Write Server.HTMLEncode( "Expired: " _
         & bExpired) & "<br>"
    Response.Write Server.HTMLEncode( "Revoked: " _
         & bRevoked) & "<br>"
    Response.Write Server.HTMLEncode( "Signature Verified: " _
         & bSignatureVerified) & "<br>"
    Response.Write Server.HTMLEncode( "Trusted Root: " _
         & bTrustedRoot) & "<br>"

End If

'  Close the connection with the server
'  Wait a max of 20 seconds (20000 millsec)
socket.Close 20000


%>
</body>
</html>