Adam Ronthal wrote: > > Hi all, > > I'm having trouble getting the private key out of an IIS .key cert. > > I've followed the instructions to strip off the extra ASN1 SEQUENCE data at > the beginning of the key, but it doesn't seem to work: > > On Win32: > > E:\openssl-win32>openssl rsa -inform NET -in priv.key -out key.pem > read RSA key > Enter Private Key password: > unable to load key > 1692:error:0D08C007:asn1 encoding routines:D2I_NETSCAPE_PKEY:expecting an > asn1 sequence:.\crypto\asn1\n_pkey.c:311:address=3131288 offset=0 > 1692:error:0D08E08B:asn1 encoding routines:d2i_Netscape_RSA_2:unable to > decode rsa private key:.\crypto\asn1\n_pkey.c:268: > 1692:error:0D08D06F:asn1 encoding routines:d2i_Netscape_RSA:decoding > error:.\crypto\asn1\n_pkey.c:4535002:address=8650824 offset=17 >
Try the -sgckey option. If that doesn't work try exporting with a different password. Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
