Re: CSR has invalid signature

Fri, 26 Sep 2008 00:21:03 -0700 

Hi Rob - thankyou for the reply!

When I do the same I get this: (it says verify failure) but nothing. Btw not
sure if this helps but i am using the correct private key from my knowledge.
I have followed the directions word by word from the comodo site. Sorry for
my ignorance, but can I just generate a CSR from ANY computer? 


 /usr/local/ssl/bin/openssl req -text -noout -verify -in server.csr

Using configuration from /usr/local/ssl/openssl.cnf
verify failure
Certificate Request:
    Data:
        Version: 0 (0x0)
        Subject: C=AU, ST=South Australia, L=Adelaide, O=South Australian
Police
, OU=ITS, CN=sapcad002.sapoldom.sa.gov.au/[EMAIL PROTECTED]
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
            RSA Public Key: (1024 bit)
                Modulus (1024 bit):
                    00:c3:01:ac:82:3c:1a:88:c5:94:b6:7c:90:52:98:
                    39:b1:30:ca:66:ed:1a:50:67:2b:b1:54:0e:6f:6b:
                    d8:66:1a:51:cb:19:11:05:07:bf:e3:7a:c2:7e:6b:
                    b3:7e:81:57:6d:81:aa:5c:ae:9c:0f:c2:67:51:ab:
                    7d:e9:1a:bc:5f:d0:92:af:4f:6c:36:a7:12:fb:f9:
                    6b:19:ea:33:c3:b6:e0:4c:5f:82:67:5e:7b:95:e1:
                    16:98:6d:6c:2b:32:95:79:8e:fc:cb:80:84:8e:b5:
                    ff:94:19:b2:39:0e:25:28:18:9a:bd:ce:47:c4:cd:
                    2b:61:72:55:80:6b:aa:69:ab
                Exponent: 65537 (0x10001)
        Attributes:
            a0:00
    Signature Algorithm: md5WithRSAEncryption
        0e:7a:97:42:5d:69:fe:4f:1d:3b:56:98:b0:44:6b:1e:f3:c8:
        83:80:48:9a:cb:48:96:54:67:7b:8e:44:32:e0:9e:64:fa:d2:
        93:0f:b3:86:b1:57:c1:ad:f9:81:19:14:34:7c:31:81:11:b2:
        ac:9a:97:dd:ff:87:86:3b:7c:85:f8:33:8c:4c:98:fc:e6:4e:
        c4:0e:fd:12:56:ea:a7:e1:ec:99:42:6e:eb:70:27:c1:80:e7:
        c5:cf:b9:98:2e:07:af:84:14:cd:8f:e2:e4:c5:cd:a9:89:33:
        7a:c5:5f:5e:56:26:5a:39:ef:75:23:b9:4a:70:d4:be:8f:2b:
        20:fd







Jacob, try putting that CSR thru "openssl req -text -noout -verify".

For me, that command reports...

verify failure
7046:error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type
is 
not 01:rsa_pk1.c:100:
7046:error:04067072:rsa routines:RSA_EAY_PUBLIC_DECRYPT:padding check 
failed:rsa_eay.c:699:
7046:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP 
lib:a_verify.c:168:

Perhaps you signed your CSR with the wrong private key?

-- 
View this message in context: 
http://www.nabble.com/CSR-has-invalid-signature-tp19663868p19680644.html
Sent from the OpenSSL - User mailing list archive at Nabble.com.
______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    openssl-users@openssl.org
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to