Kyle Isom
154d5a6c2e
+ Many lib functions have been split out into separate packages. + Adding cert/key generation tooling. + Add new time.Duration parser.
62 lines
1.3 KiB
Go
62 lines
1.3 KiB
Go
package main
|
|
|
|
import (
|
|
"crypto/x509"
|
|
"flag"
|
|
"fmt"
|
|
"strings"
|
|
|
|
"git.wntrmute.dev/kyle/goutils/die"
|
|
"git.wntrmute.dev/kyle/goutils/lib"
|
|
"git.wntrmute.dev/kyle/goutils/lib/dialer"
|
|
"git.wntrmute.dev/kyle/goutils/lib/fetch"
|
|
)
|
|
|
|
const displayInt lib.HexEncodeMode = iota
|
|
|
|
func parseDisplayMode(mode string) lib.HexEncodeMode {
|
|
mode = strings.ToLower(mode)
|
|
|
|
if mode == "int" {
|
|
return displayInt
|
|
}
|
|
|
|
return lib.ParseHexEncodeMode(mode)
|
|
}
|
|
|
|
func serialString(cert *x509.Certificate, mode lib.HexEncodeMode) string {
|
|
if mode == displayInt {
|
|
return cert.SerialNumber.String()
|
|
}
|
|
|
|
return lib.HexEncode(cert.SerialNumber.Bytes(), mode)
|
|
}
|
|
|
|
func main() {
|
|
var skipVerify bool
|
|
var strictTLS bool
|
|
dialer.StrictTLSFlag(&strictTLS)
|
|
displayAs := flag.String("d", "int", "display mode (int, hex, uhex)")
|
|
showExpiry := flag.Bool("e", false, "show expiry date")
|
|
flag.BoolVar(&skipVerify, "k", false, "skip server verification") // #nosec G402
|
|
flag.Parse()
|
|
|
|
tlsCfg, err := dialer.BaselineTLSConfig(skipVerify, strictTLS)
|
|
die.If(err)
|
|
|
|
displayMode := parseDisplayMode(*displayAs)
|
|
|
|
for _, arg := range flag.Args() {
|
|
var cert *x509.Certificate
|
|
|
|
cert, err = fetch.GetCertificate(arg, tlsCfg)
|
|
die.If(err)
|
|
|
|
fmt.Printf("%s: %s", arg, serialString(cert, displayMode))
|
|
if *showExpiry {
|
|
fmt.Printf(" (%s)", cert.NotAfter.Format("2006-01-02"))
|
|
}
|
|
fmt.Println()
|
|
}
|
|
}
|