Verify SSL Server Certificate

Demonstrates how to connect to an SSL server and verify its SSL certificate.

Download Chilkat Socket ActiveX

LOCAL loSocket
LOCAL lnSuccess
LOCAL lnSsl
LOCAL lnMaxWaitMillisec
LOCAL lcSslServerHost
LOCAL lnSslServerPort
LOCAL loCert
LOCAL lnBExpired
LOCAL lnBRevoked
LOCAL lnBSignatureVerified
LOCAL lnBTrustedRoot

loSocket = CreateObject('Chilkat.Socket')

lnSuccess = loSocket.UnlockComponent("Anything for 30-day trial")
IF (lnSuccess <> 1) THEN
    =MESSAGEBOX("Failed to unlock component")
    QUIT
ENDIF

lnSsl = 1

lnMaxWaitMillisec = 20000

*  The SSL server hostname may be an IP address, a domain name,
*  or "localhost".

lcSslServerHost = "www.paypal.com"

lnSslServerPort = 443

*  Connect to the SSL server:
lnSuccess = loSocket.Connect(lcSslServerHost,lnSslServerPort,lnSsl,lnMaxWaitMillisec)
IF (lnSuccess <> 1) THEN
    =MESSAGEBOX(loSocket.LastErrorText)
    QUIT
ENDIF

loCert = loSocket.GetSslServerCert()
IF (NOT (loCert = NULL )) THEN

    ? "Server Certificate:"
    ? "Distinguished Name: " + loCert.SubjectDN
    ? "Common Name: " + loCert.SubjectCN
    ? "Issuer Distinguished Name: " + loCert.IssuerDN
    ? "Issuer Common Name: " + loCert.IssuerCN

    lnBExpired = loCert.IsExpired()
    lnBRevoked = loCert.Revoked
    lnBSignatureVerified = loCert.SignatureVerified
    lnBTrustedRoot = loCert.TrustedRoot

    ? "Expired: " + lnBExpired
    ? "Revoked: " + lnBRevoked
    ? "Signature Verified: " + lnBSignatureVerified
    ? "Trusted Root: " + lnBTrustedRoot

    RELEASE loCert
ENDIF

*  Close the connection with the server
*  Wait a max of 20 seconds (20000 millsec)
loSocket.Close(20000)