Traefik is working as the API Gateway of our service and which would verify the client cert while the request is sent in. When client cert is expired, the DEBUG log only prints out the info as below:
DBG log/log.go:245 > http: TLS handshake error from 10.17.134.5:44452: tls: failed to verify certificate: x509: certificate has expired or is not yet valid: current time 2025-12-16T15:14:00+08:00 is after 2025-11-15T07:04:56Z
May I know if there is any way to print out the details of this very expired cert so that I can find out which client is leveraging on it?
I have tried middleware “passTLSClientCert“ and my own plugin, they can only print the cert info when they are valid but not available for the expired ones.