On Wed, Sep 19, 2007 at 04:09:29PM -0500, Murphy, David F wrote:
> From what I can tell the extensions are just not being added to my
> certificate.
>
> I see no indication the extensions were added in the output of the
> following command ...
>
> [EMAIL PROTECTED]:Active] ssl.crt # openssl x509 -in
> btesting.bx05.com.crt -noout -text
> Certificate:
> Data:
> Version: 1 (0x0)
> Serial Number:
> 84:36:1d:d4:d4:8b:a6:4d
> Signature Algorithm: sha1WithRSAEncryption
> Issuer: C=US, ST=xx, L=xx, O=xx, OU=IT, CN=btesting.bx05.aa.com
> Validity
> Not Before: Sep 19 20:55:41 2007 GMT
> Not After : Sep 18 20:55:41 2008 GMT
> Subject: C=US, ST=xx, L=xx, O=xxxxxxxxxxxx, OU=IT,
> CN=btesting.bx05..com
> Subject Public Key Info:
> Public Key Algorithm: rsaEncryption
> RSA Public Key: (1024 bit)
> Modulus (1024 bit):
> ...
> Exponent: 65537 (0x10001)
> Signature Algorithm: sha1WithRSAEncryption
> ...
>
This is a version 1 certificate, and so cannot possibly hold v3
extensions. You need to generate a v3 cert.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
