On 08/22/2013 01:29 PM, Peter1234 wrote:
Hi Walter,
I started with release 0.9.8h and just updated to release 1.0.1e (both on MS
Windows). The update to release 1.0.1e didn't change anything unless that
the new release does not redirect certificates converted from PEM format to
text format into specified file:
openssl x509 -in Root_Key_SCert.pem -out Root_Key_SCert.txt -text (text is
displayed on screen but not redirected to file, worked with release 0.9.8h)
Peter
Verification of pathlen is for relying parties.
If you own the key of a "CA" (the quotes are intended), you can
sign whatever structure you want. Openssl just uses a ca certficate
as a "helper" to avoid copying its name and some other things.
You can use the raw asn1 encoder to create very funny things.
No control, nothing, it works as intended.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
