Yes..im tryin this out now...If theres a easier way out..i would take
it...why cant these pple use a single format?Saves everyone trouble
and time
Thanks,
Sudharsan
On 5/15/06, Marek Marcola <[EMAIL PROTECTED]> wrote:
Hello,
> I dont really need to care about the private key. I need to know the
> format of the public key of DNSSec, cause i am gonna use openSSL to
> verify the SIG records signed using a KEY record.
Second file generated with dnssec-keygen is dns file record
for example:
xyz. IN DNSKEY 256 3 1
AQO2SoMgtzHArqduMTayjjzXvciXeMh97BD5TioQAn4JJC4keaNhXYe0
MKSN/vlk6sAs59Pn/Uh1aHmYQdOKKSSX
After decoding base64 you will have binary public key
with format explained in RFC2537 (not DER). After some work you will
have publicExponent (e) and modulus (n).
Next you should read this to RSA structure and use for verify.
But I'm sure that there should be some more simple way :-)
Best regards,
--
Marek Marcola <[EMAIL PROTECTED]>
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
