howtos:view_the_signer_of_a_certificate
no way to compare when less than two revisions
Differences
This shows you the differences between two versions of the page.
— | howtos:view_the_signer_of_a_certificate [02/12/2018 21:34] (current) – created - external edit 127.0.0.1 | ||
---|---|---|---|
Line 1: | Line 1: | ||
+ | (Note: This requires OpenSSL version 0.9.8a or higher.) You may want to find out what Certificate Authority (CA) signed a particular certificate. OpenSSL terms this CA as the " | ||
+ | |||
+ | > openssl x509 -in cert.pem -noout -issuer -issuer_hash | ||
+ | issuer= / | ||
+ | be7cee67 | ||
+ | > | ||
+ | |||
+ | Here's an explanation of the command line options: | ||
+ | |||
+ | * -in cert.pem - read in the certificate in question from the file cert.pem. | ||
+ | * -noout - do not output the PEM-encoded version of the certificate. | ||
+ | * -issuer - output the issuer' | ||
+ | * -issuer_hash - output the hash of the certificate issuer' | ||
+ | |||
+ | |||
+ | Note that this command only gives you the entity that signed this certificate. It does NOT give you the root CA, since a certificate chain can contain many entities. To get to the root CA, you have to keep running this command on the " | ||
+ | |||
howtos/view_the_signer_of_a_certificate.txt · Last modified: 02/12/2018 21:34 by 127.0.0.1