Re: refresh validity dates on a certificate

2007-10-26 Thread Simon McMahon
PROTECTED] cc openssl-users@openssl.org Subject Re: refresh validity dates on a certificate The Authority Key Identifier should be the ID of the CA's key. The Subject Key Identifier should be the ID of the certified key. If they are the same, then it is a self-signed certificate. (Th

Re: refresh validity dates on a certificate

2007-10-25 Thread Kyle Hamilton
openssl-users@openssl.org To "Kyle Hamilton" <[EMAIL PROTECTED]> cc openssl-users@openssl.org Subject Re: refresh validity dates on a certificate Great idea! That certainly should work but didn't for me. My openssl is "OpenSSL 0.9.8b 04 May 2006" Th

Re: refresh validity dates on a certificate

2007-10-24 Thread Simon McMahon
g To "Kyle Hamilton" <[EMAIL PROTECTED]> cc openssl-users@openssl.org Subject Re: refresh validity dates on a certificate Great idea! That certainly should work but didn't for me. My openssl is "OpenSSL 0.9.8b 04 May 2006" The 1st command worked fine and gave a s

Re: refresh validity dates on a certificate

2007-10-24 Thread Simon McMahon
39:c9:0c:2d:38:4b:2e:ae:21:f7:b7:3a:a0:82:03: c3:fd Simon McMahon "Kyle Hamilton" <[EMAIL PROTECTED]> 25/10/2007 01:09 PM To openssl-users@openssl.org, Simon McMahon/Australia/Contr/[EMAIL PROTECTED] cc Subject Re: refresh validity dates on a certificate

Re: refresh validity dates on a certificate

2007-10-24 Thread Kyle Hamilton
What I would do is a pair of commands: $ openssl x509 -in currentcertificate.pem -out selfsigned.pem -days 1024 -signkey currentkey.pem $ openssl x509 -in selfsigned.pem -days 1024 -CA ca.pem -CAserial serial -out refreshedcert.pem -outform PEM Since you're creating a self-signed cert in the firs

RE: refresh validity dates on a certificate

2007-10-24 Thread Simon McMahon
TECTED]> Sent by: [EMAIL PROTECTED] 24/10/2007 05:13 PM Please respond to openssl-users@openssl.org To cc Subject RE: refresh validity dates on a certificate > I just saw the "RE: Changing the expiry date of a cert" thread > but I think > my question is a little

RE: refresh validity dates on a certificate

2007-10-24 Thread David Schwartz
> I just saw the "RE: Changing the expiry date of a cert" thread > but I think > my question is a little different. > > My certs are not CA certs they are user certs where the only thing I > really need to preserve are subject, issuer, key & cert extensions. The > serial # doesn't matter. > > The

Re: refresh validity dates on a certificate

2007-10-23 Thread Simon McMahon
penssl-users@openssl.org To openssl-users@openssl.org cc Subject refresh validity dates on a certificate Hi, I have some old certificates where the private key is fine but the cert has expired. My environment is only a test env by the way so there are no security issues here. I just want an

refresh validity dates on a certificate

2007-10-23 Thread Simon McMahon
Hi, I have some old certificates where the private key is fine but the cert has expired. My environment is only a test env by the way so there are no security issues here. I just want an easy way to refresh the certs whenever they expire. Is there some way with openssl that I can just refresh