ssl certificate error while making cURL request to IP address

ssl-certificate rackspace rackspace-cloud

I'll make this a new answer, since it's going in quite a different direction. In fact it doesn't answer the question as posed, but is perhaps the direction the OP should be looking.

The usual configuration when using a load balancer is that the SSL certificate doesn't live on the web server at all, but rather the SSL is handed off to the load balancer.

The end user makes an HTTPS request to the load balancer. The load balancer unwraps the SSL, and forward the request via unencrypted HTTP to the web server, with a header that tells the Web server that the original request was encrypted. (important for embedding URLs in the response, and for avoiding serving secure content over http).


You can use the domain name as usual but override the resolver like so:

curl -v --resolve subdomain.example.com:443:x.x.x.x https://subdomain.example.com/

It might be awkward to maintain a lot of such mappings though. You might prefer to just ignore the cert mismatch:

curl --insecure https://subdomain.example.com/

IF you want, you could use --insecure --verbose and parse the messages to check that the cert is for the expected domain, but that's probably more work than using --resolve

Related

How do I detect what is changing file ownership on Linux?
Querying services from a remote Windows 7 PC extremely slow
Any semblance of originally-requested domain name in HTTP, post DNS-resolution?
Download exported Mikrotik config
Pursuit of True Active Directory Integration
Why Failover instead of Load Balancing for HA
Spamassassin Systemd Error
When is it cost effective to become a DNS registrar? [closed]
Enable SELinux on Centos7 LXC container with Ubuntu 14.04 host
Grep access on maillog for non root
Change MySQL root password with bash script
Can Windows 2008 DNS assign 2 host names to one IP address