60 lines
1.2 KiB
Go
60 lines
1.2 KiB
Go
package main
|
|
|
|
import (
|
|
"crypto/x509"
|
|
"flag"
|
|
"fmt"
|
|
"strings"
|
|
|
|
"git.wntrmute.dev/kyle/goutils/die"
|
|
"git.wntrmute.dev/kyle/goutils/lib"
|
|
)
|
|
|
|
const displayInt lib.HexEncodeMode = iota
|
|
|
|
func parseDisplayMode(mode string) lib.HexEncodeMode {
|
|
mode = strings.ToLower(mode)
|
|
|
|
if mode == "int" {
|
|
return displayInt
|
|
}
|
|
|
|
return lib.ParseHexEncodeMode(mode)
|
|
}
|
|
|
|
func serialString(cert *x509.Certificate, mode lib.HexEncodeMode) string {
|
|
if mode == displayInt {
|
|
return cert.SerialNumber.String()
|
|
}
|
|
|
|
return lib.HexEncode(cert.SerialNumber.Bytes(), mode)
|
|
}
|
|
|
|
func main() {
|
|
var skipVerify bool
|
|
var strictTLS bool
|
|
lib.StrictTLSFlag(&strictTLS)
|
|
displayAs := flag.String("d", "int", "display mode (int, hex, uhex)")
|
|
showExpiry := flag.Bool("e", false, "show expiry date")
|
|
flag.BoolVar(&skipVerify, "k", false, "skip server verification") // #nosec G402
|
|
flag.Parse()
|
|
|
|
tlsCfg, err := lib.BaselineTLSConfig(skipVerify, strictTLS)
|
|
die.If(err)
|
|
|
|
displayMode := parseDisplayMode(*displayAs)
|
|
|
|
for _, arg := range flag.Args() {
|
|
var cert *x509.Certificate
|
|
|
|
cert, err = lib.GetCertificate(arg, tlsCfg)
|
|
die.If(err)
|
|
|
|
fmt.Printf("%s: %s", arg, serialString(cert, displayMode))
|
|
if *showExpiry {
|
|
fmt.Printf(" (%s)", cert.NotAfter.Format("2006-01-02"))
|
|
}
|
|
fmt.Println()
|
|
}
|
|
}
|