Right from https://github.com/monitoring-plugins/monitoring-plugins/pull/1195#issuecomment-33554590:
I noticed is that for straight up SSL services, check_http certificate check works! Makes me think the check should actually be implemented in check_tcp for all SSL protocols. Then once we get there, what prevent us form adding just the required logic in check_tcp to implement the STARTTLS certificate checks for every other STARTTLS-cabaple protocol? -- Reply to this email on GitHub: https://github.com/monitoring-plugins/monitoring-plugins/issues/1282
