I got the Object ID and version straight out of the Certificate using Keystore Explorer. I'm not sure why there is a difference.
The "\" is because I manually deleted the beginning part of the path. It's correct in the actual file. Java is 1.8. On Wed, Apr 3, 2024 at 6:11 PM Konstantin Kolinko <knst.koli...@gmail.com> wrote: > > Caused by: java.security.NoSuchAlgorithmException: The PKCS#8 encryption > > algorithm with DER encoded OID of [2a864886f70d010c0103] was not > recognised > > If I google for the above hex number, it finds the following: > > '2A864886F70D010C0103' -- 1.2.840.113549.1.12.1.3 > pbeWithSHAAnd3-KeyTripleDES-CBC (PKCS #12 PbeIds) > > (actually a comment in some random source file, but it explains what > the value is). > > If I manually decode that value, thanks to > https://stackoverflow.com/a/24720842 > I get the same value: > > 2a = 42 = 1 * 40 + 2 -> "1.2" > 8648 = (0x06 * 128) + 0x48 = 6 * 128 + 72 = 840 > 86f70d = ((0x06 * 128) + (0x77 * 128) + 0x0d = ((6 * 128) + 119) * 128 > + 13 = 113549 > 01 = 1 > 0c = 12 > 01 = 1 > 03 = 3 > > I saw that you mentioned > > The ASN.1 is OBJECT IDENTIFIER=Sha256WithRSAEncryption > (1.2.840.113549.1.1.11) > > but the value is different. > *.1.1.11 vs *.1.12.1.3 > > Maybe it helps. > > What is your version of Java? > > Isn't the algorithm (mentioned in the error message) deprecated, > because it uses SHA-1 ? > > > SSLCertificateChainFile="C:Certificate\Public Key\WSD-2DNX4M3.......cer" > > A '\' is missing after ':'. > > Best regards, > Konstantin Kolinko > > --------------------------------------------------------------------- > To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org > For additional commands, e-mail: users-h...@tomcat.apache.org > >
