Hi,
I'm trying to verify this file [1] from [2] but openssl return with
error message "Verification failure Verify error:unable to get local
issuer certificate".
The problem is that signer certificate has a different issuer and
subject, here's a snippet:
Version: 3 (0x2)
Serial Number: 35:d9:75:94:d1:b6:75:4d:b6:36:42:cb:b5:ea:cf:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=IT, O=DigitPA, CN=Ufficio Sicurezza
Validity
Not Before: May 20 08:39:46 2010 GMT
Not After : May 17 08:39:46 2020 GMT
Subject: C=IT, O=DigitPA, GN=Ufficio,
SN=Sicurezza/serialNumber=97103420580
(openssl's error is X509_V_ERR_SUBJECT_ISSUER_MISMATCH)
This is an important file because it contains all the certificates of
the authorized italian CA and TSA.
It is possible that they went wrong or is it a correct procedure (though
not canonical), and, in this case, how can I solve it with openssl?
Thanks,
Antonio Iacono
http://opensignature.sf.net
[1] http://www.cnipa.gov.it/site/_files/LISTACER_20110805.zip.p7m
[2] http://www.digitpa.gov.it/principali-attivit%C3%A0/lista-dei-certificati
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [email protected]
Automated List Manager [email protected]
