the leaf certificate and the intermediate (chain) certificates. It only shows which certificates are sent by the server, i.e. Which is the Root Certificate? The first one listed or the last? Which is the Root Certificate? The first one listed or the last? Why are they all reported? Isn't one validation enough to move on with?Ġ s:/C=US/ST=California/L=Mountain View/O=Google Inc/CN=i:/C=US/O=Google Inc/CN=Google Internet Authority G2 My question is in regard to the Certificate Chain section. MIIEgDCCA2igAwIBAgIIMPM39zVrKUkwDQYJKoZIhvcNAQELBQAwSTELMAkGA1UEīhMCVVM圎zARBgNVBAoTCkdvb2dsZSBJbmMxJTAjBgNVBAMTHEdvb2dsZSBJbnRl
I:/C=US/O=Equifax/OU=Equifax Secure Certificate Authority I:/C=US/O=GeoTrust Inc./CN=GeoTrust Global CAĢ s:/C=US/O=GeoTrust Inc./CN=GeoTrust Global CA Verify return:1UuiFeti7EjUXr0E58NMnBw39Zv6nZaSbppvlLR/jRBKCRB7jBĭepth=0 /C=US/ST=California/L=Mountain View/O=Google Inc/CN=verify return:1sfjYdq1K94yLkfe6mUR7Go6JUkD/eB/Aq9KKoSJbJEvvjGIiJĠ s:/C=US/ST=California/L=Mountain View/O=Google Inc/CN=i:/C=US/O=Google Inc/CN=Google Internet Authority G2G2ġ s:/C=US/O=Google Inc/CN=Google Internet Authority G2 Verify return:11cY/EIksH6hXF6EFnS+8vWZs8Ka8FyQi76cUOSqk2ed2DvOeTĭepth=1 /C=US/O=Google Inc/CN=Google Internet Authority G2Bii82d Verify return:1BAgIwMAYDVR0fBCkwJzAloCOgIYYfaHR0cDov元BraS5nb29nĭepth=2 /C=US/O=GeoTrust Inc./CN=GeoTrust Global CAyd2eyQKKxh3vJ
I get CONNECTED(00000003)IzJZ5dQUbs0pjW3tAgTAMBgNVHRMBAf8EAjAAMB8GA1Udĭepth=3 /C=US/O=Equifax/OU=Equifax Secure Certificate AuthorityW When I give the command (using a standard ca bundle) openssl s_client -connect -CAfile ca-bundle.crt
#Openssl read cert how to
I'm trying to understand how to read the output of OpenSSL commands.Ĭurrently, I am trying to understand how Certificate Chains work.
0 kommentar(er)
