The answer is:
openssl pkcs7 -in [chained cert file] -print_certs -out
[output file]
The output file will contain each individual cert
including issuer info, etc.
DB
I
have a chained cert (from Verisign). What I want is to break out just the
domain cert. I can use sgcinst.exe to do exactly this, but would prefer to
use openssl if possible. Is there a way of breaking up a cert chain using
openssl?
thanks,
don
bynum
I have a chained
cert (from Verisign). What I want is to break out just the domain
cert. I can use sgcinst.exe to do exactly this, but would prefer to use
openssl if possible. Is there a way of breaking up a cert chain using
openssl?
thanks,
don
bynum
Donald E.
BynumDirector, Ar
Take an openssl asn1parse -inform der -in AttribCert.ber
and you see that it starts with a Context 1 and not with a sequence,
it seems to be an encoding of
[1] IMPLICIT AttributeCertificate.
Hashim Saleem wrote:
Hi all,
I have made a try to parse attribute certificate by writing attrib
I fixed the problem myself. For
anybody who looks into this in the future:
Rather than creating an fd from the
HANDLE, then a FILE * from the fd, just create the fd and use BIO_new_fd
instead of BIO_new_fp. The FILE * created by fdopen is doing something incompatible
with named pipes.
Well,
I am not a guru concerning ac but looking at the ac you send with your mail my
ASN.1-Dump told me there's a negative INTEGER in it (at approx. octet 497,
length 2), but an INTEGER mustn't be negative. Maybe this is the "Wrong
Tag"?
Regards
Thomas
-Ursprüngliche Nachricht
One of the authors of OCSP once explained that his motivation was that
debugging could be simpler because a parser doesn't need to know the
syntax behind implicit tags. There was no other particular reason.
sravan wrote:
I thank Steven & David for taking their time in explaining the concept
of
Hi,
Can anyone please help me?
Thanks in advance
BhupendraBhupendra K Joshi <[EMAIL PROTECTED]> wrote:
Hi,
I have downloaded the openssl library for windows. I got the .dll file from the site.
The problem is that when I genarete a signature with that .dll file and try to verify it with any o
Hi All,
I m creating a CA named CA1 using openssl.
CA1 needs to certify other certification authorities called CA2 & CA3 (generated through openssl).
CA1
/ \
CA2 CA3
/
\
