Przy próbie aktualizacji repozytorium pojawia się błąd:
Get “https://hub.eadministracja.nask.pl/chartrepo/ezdrp/index.yaml”: tls: failed to verify certificate: x509: certificate signed by unknown authority
openssl s_client -showcerts -connect hub.eadministracja.nask.pl:443
CONNECTED(00000003)
depth=0 CN = *.eadministracja.nask.pl
verify error:num=20:unable to get local issuer certificate
verify return:1
depth=0 CN = *.eadministracja.nask.pl
verify error:num=21:unable to verify the first certificate
verify return:1
depth=0 CN = *.eadministracja.nask.pl
verify return:1
---
Certificate chain
0 s:CN = *.eadministracja.nask.pl
i:C = PL, O = cyber_Folks S.A., CN = cyber_Folks
a:PKEY: id-ecPublicKey, 256 (bit); sigalg: RSA-SHA256
v:NotBefore: Jul 25 06:37:21 2024 GMT; NotAfter: Jul 25 06:37:20 2025 GMT
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = *.eadministracja.nask.pl
issuer=C = PL, O = cyber_Folks S.A., CN = cyber_Folks
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: ECDSA
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 1690 bytes and written 425 bytes
Verification error: unable to verify the first certificate
---
New, TLSv1.2, Cipher is ECDHE-ECDSA-AES128-GCM-SHA256
Server public key is 256 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-ECDSA-AES128-GCM-SHA256
Session-ID: 42D3C790DA9D5440F20ACD5037AAA90AD90D22F01F69E0A0D0EC1057A854BA92
Session-ID-ctx:
Master-Key: 92CEF8841D84FC2C3E1626EBC0B2B69C6E2EA3246E80ED5D0A4CE2FA77B474A7C22B8B82D35FE3DDC2EA155FF659E2B2
PSK identity: None
PSK identity hint: None
SRP username: None
Start Time: 1721910559
Timeout : 7200 (sec)
Verify return code: 21 (unable to verify the first certificate)
Extended master secret: yes
---