## Durumdara (durumd...@gmail.com):
> Do we have chance to log somewhere the connected client's certificate, or
> some info about it?
There's pg_stat_ssl, and if you had an recent version of PostgreSQL
(9.6 is too old for that), you'd even have the serial number of
the certificate in there:
https
Hello!
PGSQL 9.6, Linux, SSL.
We want to change certs to new, but somehow we need to detect which old
cert is in use before the expiration.
So now they could connect with old and new too. We want to warn the clients
with old certs to update, before they will be denied.
Do we have chance to log so
