Hi Jacob. Yes, you can generate a CSR from any computer. :-)
Please tell us the exact OpenSSL commands you used to generate the CSR and keypair. I cannot reproduce the problem. Thanks. On Friday 26 September 2008 01:24:59 JacobLovell wrote: > Hi Rob - thankyou for the reply! > > When I do the same I get this: (it says verify failure) but nothing. Btw > not sure if this helps but i am using the correct private key from my > knowledge. I have followed the directions word by word from the comodo > site. Sorry for my ignorance, but can I just generate a CSR from ANY > computer? > > > /usr/local/ssl/bin/openssl req -text -noout -verify -in server.csr > > Using configuration from /usr/local/ssl/openssl.cnf > verify failure > Certificate Request: > Data: > Version: 0 (0x0) > Subject: C=AU, ST=South Australia, L=Adelaide, O=South Australian > Police > , OU=ITS, CN=sapcad002.sapoldom.sa.gov.au/[EMAIL PROTECTED] > Subject Public Key Info: > Public Key Algorithm: rsaEncryption > RSA Public Key: (1024 bit) > Modulus (1024 bit): > 00:c3:01:ac:82:3c:1a:88:c5:94:b6:7c:90:52:98: > 39:b1:30:ca:66:ed:1a:50:67:2b:b1:54:0e:6f:6b: > d8:66:1a:51:cb:19:11:05:07:bf:e3:7a:c2:7e:6b: > b3:7e:81:57:6d:81:aa:5c:ae:9c:0f:c2:67:51:ab: > 7d:e9:1a:bc:5f:d0:92:af:4f:6c:36:a7:12:fb:f9: > 6b:19:ea:33:c3:b6:e0:4c:5f:82:67:5e:7b:95:e1: > 16:98:6d:6c:2b:32:95:79:8e:fc:cb:80:84:8e:b5: > ff:94:19:b2:39:0e:25:28:18:9a:bd:ce:47:c4:cd: > 2b:61:72:55:80:6b:aa:69:ab > Exponent: 65537 (0x10001) > Attributes: > a0:00 > Signature Algorithm: md5WithRSAEncryption > 0e:7a:97:42:5d:69:fe:4f:1d:3b:56:98:b0:44:6b:1e:f3:c8: > 83:80:48:9a:cb:48:96:54:67:7b:8e:44:32:e0:9e:64:fa:d2: > 93:0f:b3:86:b1:57:c1:ad:f9:81:19:14:34:7c:31:81:11:b2: > ac:9a:97:dd:ff:87:86:3b:7c:85:f8:33:8c:4c:98:fc:e6:4e: > c4:0e:fd:12:56:ea:a7:e1:ec:99:42:6e:eb:70:27:c1:80:e7: > c5:cf:b9:98:2e:07:af:84:14:cd:8f:e2:e4:c5:cd:a9:89:33: > 7a:c5:5f:5e:56:26:5a:39:ef:75:23:b9:4a:70:d4:be:8f:2b: > 20:fd > > > > > > > > Jacob, try putting that CSR thru "openssl req -text -noout -verify". > > For me, that command reports... > > verify failure > 7046:error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type > is > not 01:rsa_pk1.c:100: > 7046:error:04067072:rsa routines:RSA_EAY_PUBLIC_DECRYPT:padding check > failed:rsa_eay.c:699: > 7046:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP > lib:a_verify.c:168: > > Perhaps you signed your CSR with the wrong private key? -- Rob Stradling Senior Research & Development Scientist Comodo - Creating Trust Online Office Tel: +44.(0)1274.730505 Fax Europe: +44.(0)1274.730909 www.comodo.com Comodo CA Limited, Registered in England No. 04058690 Registered Office: 3rd Floor, 26 Office Village, Exchange Quay, Trafford Road, Salford, Manchester M5 3EQ This e-mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the sender by replying to the e-mail containing this attachment. Replies to this email may be monitored by Comodo for operational or business reasons. Whilst every endeavour is taken to ensure that e-mails are free from viruses, no liability can be accepted and the recipient is requested to use their own virus checking software. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
