Hi,I need to verify the attached certificate (cert.bin) and read the asn1 info stored in it. I'm using the following commands:
openssl smime -verify -in cert.pem -inform pem -CAfile "signer.pem" > cert.data
and then: openssl asn1parse -inform DER -in cert.datanow if the signer give me "signer.pem" all is fine. Some signer put their public certificate inside the binary certificate (see cert.bin attached), in this cases I'm unable to verify the certificate.
I get this error: Verification failure10280:error:2107C080:PKCS7 routines:PKCS7_get0_signers:signer certificate not found:pk7_smime.c:378:
Attached are: 1) cert.bin, the original binary certificate2) cert.pem, obtained with the command: openssl pkcs7 -in cert.bin -out cert.pem -inform DER 3) as signer certificate (signer.pem) I'm using the certificate found at the end of cert.cer. cert.cer is obtained with the command: openssl pkcs7 -in cert.bin -inform DER -print_certs -text > cert.cer
any hints would be appreciated, thanks Nicola
cert.bin
Description: Binary data
cert.pem
Description: application/x509-ca-cert
cert.cer
Description: application/pkix-cert
