IRC SSL Certificates

Our IRC servers support SSL-enabled connections on ports 6697 and 9999. We currently sign our IRC server certificates using our own DareNET Certificate Authority (CA). This page describes how you can obtain and verify our certificates.

Download CA Certificate

You can download our CA certificate from https://www.darenet.org/ssl/darenet-ca.pem

SHA512 sum: 43893e9c9e5bf1ea0c0659aa2fd8a5edc1a611e49e747f90335ec7633304855afc8e6bd01222e242159d09aeb5acc51714d6853e757c0a372b9fc9c6d2f39641

SHA1 sum:
f64c2b1a73865cb915ebab71bfb025caee806a58

MD5 sum:
cb3037c7e2e26ef7982362ec89e955f5

SHA1 fingerprint:
EE:0F:0A:FD:16:6D:3E:BB:EF:9D:D4:D4:E3:8E:49:6D:F8:18:E6:CC

We also offer our CA certificate in DER format.

Why?

We believe it's important that your IRC client be able to verify the server you're connecting to is really DareNET, and not one pretending to be DareNET (see: man-in-the-middle attack). This is acheived by using signed certificates issued by someone you trust, such as DareNET. The certificate allows you to be certain that our servers are who they say they are, and that your messages are not being intercepted in the middle.

Unfortunately, IRC software has no trusted authorities who verify the ownership of servers. Our IRC server certificates are signed by us using our own DareNET Certificate Authority. It only works if you import it to your client, or add it to your system's trusted list in advance.

It's still possible to use SSL without installing our CA, but you'll need to configure your IRC client to accept invalid certificates.