Re: How to retrieve the certificate from remote SMTPS/POP3S mail server and store them locally?

Viktor Dukhovni wrote: openssl pkcs7 -print_certs -text Certificate: Data: Version: 3 (0x2) Serial Number: 4243532547640530163 (0x3ae40e5e6eec14f3) Signature Algorithm: sha1WithRSAEncryption Issuer: C=US, O=Google Inc, CN=Google Inte

Using FIPS 1.2 for new private certificate

Hi, I can see there is an important note that FIPS 1.2 is no longer valid in its current form past 2010 (http://www.openssl.org/docs/fips/fipsnotes.html) There is also a reference to SP 800-131. >From reading it, it looks like it should be ok to use it until 2015. For example, the random number

OpenSSL cannot store retrieved certificate in local (Windows) dir with -CApath

I am using the windows port of OpenSSL to retrieve a SMTP over STARTTLS server certificate with the following (anonymized) command: openssl s_client -connect smtp.foobar.com:587 -starttls smtp -CApath "D:\certs\smtp" resp openssl s_client -connect smtp.haertfelder.com:25 -starttls smtp -verif