Our IRC servers support SSL-enabled connections on ports 6697 and 9999. We currently sign our IRC server certificates using our own DareNET Certificate Authority (CA). This page describes how you can obtain and verify our certificates.
You can download our CA certificate from https://www.darenet.org/ssl/darenet-ca.pem
We also offer our CA certificate in DER format.
We believe it's important that your IRC client be able to verify the server you're connecting to is really DareNET, and not one pretending to be DareNET (see: man-in-the-middle attack). This is acheived by using signed certificates issued by someone you trust, such as DareNET. The certificate allows you to be certain that our servers are who they say they are, and that your messages are not being intercepted in the middle.
Unfortunately, IRC software has no trusted authorities who verify the ownership of servers. Our IRC server certificates are signed by us using our own DareNET Certificate Authority. It only works if you import it to your client, or add it to your system's trusted list in advance.
It's still possible to use SSL without installing our CA, but you'll need to configure your IRC client to accept invalid certificates.