>openssl s_client -connect ldap.company.de:389 -starttls ldap
CONNECTED(00000005)
depth=0 C = DE, L = City, O = company GmbH, CN = *.company.de, emailAddress = system@company.de
verify error:num=18:self signed certificate
verify return:1
depth=0 C = DE, L = City, O = company GmbH, CN = *.company.de, emailAddress = system@company.de
verify return:1
---
Certificate chain
 0 s:C = DE, L = City, O = company GmbH, CN = *.company.de, emailAddress = system@company.de
   i:C = DE, L = City, O = company GmbH, CN = *.company.de, emailAddress = system@company.de
---
Server certificate
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
subject=C = DE, L = City, O = company GmbH, CN = *.company.de, emailAddress = system@company.de

issuer=C = DE, L = City, O = company GmbH, CN = *.company.de, emailAddress = system@company.de

---
No client certificate CA names sent
---
SSL handshake has read 945 bytes and written 563 bytes
Verification error: self signed certificate
---
New, SSLv3, Cipher is AES256-SHA
Server public key is 1024 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.1
    Cipher    : AES256-SHA
    Session-ID: 3F6E48D0...
    Session-ID-ctx:
    Master-Key: 02158253D6C...
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    Start Time: 1611324515
    Timeout   : 7200 (sec)
    Verify return code: 18 (self signed certificate)
    Extended master secret: no
---