Hi Andy: I have no idea what you are trying to do :)
Certificates don't have URLs - it could be argued that in a perfect world, with a global yellow pages, you should be able to look up a Certificate for an entity via LDAP/X.500. (To the rest of the folks on the list - just leave it - I'm kidding :), but they don't have URLs of their own. Now, a URL may have an associated Certificate (HTTPS, LDAPS, SMTP with STARTTLS, etc.) - if you want to connect to such services, you can use the openssl s_client program with the appropriate switches, and those will give you information that you can then extract the certificate from. Once you have extracted the certificate, it is trivial to search through it (I've used grep to pull out the information that you're looking for). Certificates can also contain URLS (AIA and CRL DP come to mind). And those may point to locations where additional Certificates may be downloaded. But you don't usually start with a URL that points to a certificate. If you give us more information on what, exactly you are trying to do or accomplish, then we may be able to help you more. Best Regards. Patrick. On 2010-12-21, at 6:14 PM, Andy GOKTAS wrote: > Hello, > > I'm looking into the openSSL command/syntax to be used in order to retrieve > information on a certificate via it's URL. > > Anyone have a good example to accomplish this? > > All that needs to happen is to Display information on a cert (via Windows > command line, but that shouldn't matter). Such as issuer, cn, expiration, > encryption strength, etc.. I don't need to export it to text or anything > like that. Just want to use it as a quick took to pull a certs info via > https, ldap over ssl, etc. > > Thanks! > Andy G > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager majord...@openssl.org --- Patrick Patterson Chief PKI Architect Carillon Information Security Inc. http://www.carillon.ca ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
