On Fri, Dec 18, 2009, tushar ganguli wrote: > Hi Steve, > I did what you said (please correct me if I am wrong) and still the ouput is > not mappiing, below please find the steps I'd taken: > > 1. openssl asn1parse -inform der -in my.key > 0:d=0 hl=4 l= 629 cons: SEQUENCE > 4:d=1 hl=2 l= 1 prim: INTEGER :00 > 7:d=1 hl=2 l= 13 cons: SEQUENCE > 9:d=2 hl=2 l= 9 prim: OBJECT :rsaEncryption > 20:d=2 hl=2 l= 0 prim: NULL > 22:d=1 hl=4 l= 607 prim: OCTET STRING [HEX DUMP]: > > 2. openssl asn1parse -inform der -in my.key -strparse 22 -out mypubkey.der > 3. openssl sha1 -c mypubkey.der > SHA1(mypubkey.der)= > 8d:51:f3:a7:03:5a:79:ca:14:1c:5f:9d:92:39:32:28:a8:1e:e3:7f > > SKID stored in the certificate is : > C5:C1:98:9F:22:2E:13:25:31:E7:15:7C:2F:E2:C9:9D:45:94:56:D7 > > Which still differs from the original one. >
That looks like a PKCS#8 private key structure not a public key one. The public key structure can be obtained by doing: openssl x509 -in cert.pem -pubkey -noout >key.pem Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
