...
The output of the certificates only gets a few human readable items, such as 'Version', 'Serial Number', 'Signature Algorithem', 'Validity' and 'Subject'.
The fellow bellow example displays the 'showcerts' without option, the server url is 'zedcloud.local.zededa.net', and the proxy is '31.198.61.228:3128'. The certificates from the peer are belong to the server or the controller, not to the proxy server. This may help the toubleshooting to determine if the proxy is a passthrough or a MiTM type.
edgeview.sh showcerts
=== Network: <peercerts> ===
url: zedcloud.local.zededa.net/3531.197198.6361.228:80283128(0) Certificate:
Data:
Version: 3
Serial Number:
503025477018159975346019544684339737623192390922
Signature Algorithem: SHA256-RSA
Issuer:CN=Zededa Inc. Intermediat CA1,O=Zededa Inc.,ST=California,C=USValidity:
Not Before: 2022-04-11 18:19:37 +0000 UTCNot After: 2023-04-21 18:19:37 +0000 UTC
Subject: CN=zedcloud.local.zededa.net,O=Zededa Inc.,L=San Jose,ST=California,C=US
(1) Certificate:
Data:
Version: 3Serial Number:
4098
Signature Algorithem: SHA256-RSA
Issuer:CN=Zededa Inc. Root CA,O=Zededa Inc.,L=San Jose,ST=California,C=US,1.2.840.113549.1.9.1=#0c0f63657274407a65646564612e6e6574Validity:
Not Before: 2017-03-20 19:19:54 +0000 UTCNot After: 2027-03-18 19:19:54 +0000 UTC
Subject: CN=Zededa Inc. Intermediat CA1,O=Zededa Inc.,ST=California,C=US
Socket
socket - display all the ipv4 listening socket ports and established ports
...