Sample code for 30+ languages & platforms
Classic ASP

Examine SSL/TLS Server Certificate

See more Socket/SSL/TLS Examples

Demonstrates how an application can examine and check a server's SSL/TLS certificate.

Chilkat Classic ASP Downloads

Classic ASP
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<%
success = 0

' This example assumes the Chilkat API to have been previously unlocked.
' See Global Unlock Sample for sample code.

set socket = Server.CreateObject("Chilkat.Socket")

' Connect to a server.
useTls = 1
maxWaitMs = 2000
success = socket.Connect("www.intel.com",443,useTls,maxWaitMs)
If (success = 0) Then
    Response.Write "<pre>" & Server.HTMLEncode( socket.LastErrorText) & "</pre>"
    Response.End
End If

' If we get here, the TLS connection ws made..
' In any SSL/TLS handshake, the server sends its certificate in a TLS handshake message.
' Chilkat will keep it cached within the object that made the connection.
' Get the server's cert and examine a few things.
set cert = Server.CreateObject("Chilkat.Cert")
success = socket.GetServerCert(cert)

Response.Write "<pre>" & Server.HTMLEncode( "Distinguished Name: " & cert.SubjectDN) & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "Common Name: " & cert.SubjectCN) & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "Issuer Distinguished Name: " & cert.IssuerDN) & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "Issuer Common Name: " & cert.IssuerCN) & "</pre>"

Response.Write "<pre>" & Server.HTMLEncode( "Expired: " & cert.Expired) & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "Revoked: " & cert.Revoked) & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "Signature Verified: " & cert.SignatureVerified) & "</pre>"
Response.Write "<pre>" & Server.HTMLEncode( "Trusted Root: " & cert.TrustedRoot) & "</pre>"

' Sample output:

' Distinguished Name: C=US, ST=California, O=Intel Corporation, CN=*.intel.com
' Common Name: *.intel.com
' Issuer Distinguished Name: C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Organization Validation Secure Server CA
' Issuer Common Name: Sectigo RSA Organization Validation Secure Server CA
' Expired: False
' Revoked: False
' Signature Verified: True
' Trusted Root: True

%>
</body>
</html>