On 11/26/2011 6:00 PM, Lou Picciano wrote:
Can a certificate's expiration date be queried directly?
IE, apart from an expired cert being rejected out of hand, or from a
CRL being read to determine a cert's validitiy...?
I'm interested in reading the expiration from a loaded,
currently-valid cert.
Yes of cause.
Since you are talking about a loaded certificate, I presume you are
coding/modifying an application that is already using the OpenSSL
to process the certificate, in which case I think it is easy:
You presumably have the loaded cert as a pointer to type X509,
lets call it pCert. The expiry date and time is stored at
pCert->cert_info->validity->notAfter
which is a pointer to type ASN1_TIME
P.S.
A little Zimbra issue to watch out for:
If you pick a mail on the mailing list and press reply, Zimbra tells the
mailing
list to mark your mail as an answer to that mail, even if you remove all
the text
that mentions the old mail. Zimbra may not show you this happened, but most
other mail programs show it to the world.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
