I want to create expired Certs as to address them in code. You would think this would be easy.
I use this command below to create a Cert and then a PKCS12 which I commonly use for things. openssl genrsa -out myrsa.pem 2048 openssl req -new -key myrsa.pem -inform pem -x509 -days 731 -out my.crt -subj "/C=US/ST=NC/L=RTP/O=Temp Corp" openssl x509 -text -in my.crt openssl pkcs12 -export -in my.crt -inkey myrsa.pem -out rsa.p12 -name rsa0 -passout pass:password and thats works fine and can use the PKCS12. Of course this is just verifying code with dummy passwords. I try this command well all sorts of things because I really want an expired date to be used. openssl ca -in my.crt -out new.crt -startdate 120815080000Z -enddate 120815090000Z I have looked on the forum and still have no idea how to create a Cert that has a notBeginDate I can see opening as an x509 that is expired of course. -- View this message in context: http://openssl.6102.n7.nabble.com/set-a-startdate-for-CERT-tp43561.html Sent from the OpenSSL - User mailing list archive at Nabble.com. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
