More verbose output if ssl cert is expired
The first attached patche changes the core that if a ssl key is expired or not valid yet, a more exactly message is written to stdout or log instead of just an invalid cert.
This is usefull if you check the log searching why you can't use ssl.
The second patch changes the core and client, so the client gets the info why he can't use ssl, if the cert is expired or not valid yet. This one seems to break the protocol.
It is debatable if such information should be given the any client user. Maybe further patches make this configurable.