$ openSSL s_client
If the public key of an ssh server changes you will get a DNS spoofing warning.
ssh-keygen is a tool for creating new authentication key pairs for SSH. Such key pairs are used for automating logins, single sign-on, and for authenticating hosts.
TLS 1.2 came out in 2008 (9 years later)
https - the S can be SSL or TLS