I run a my own CA based on OpenSSL, got with the CA.sh script.
The certificates that I find in the repository (that is the directory
newcerts) have the X509 extensions correcty readable, i.e.:
X509v3 extensions:
Netscape Base Url:
https://aurora.space.worlds/ca/
Netscape CA Revocation Url:
crl/ca-crl.php3
Netscape CA Policy Url:
CPS/ident.html
Netscape Comment:
Certificato con identificazione. Le CPS si trovano alla URL:
http://aurora.space.worlds/ca/CPS/ident.html
Netscape Cert Type:
0xA0
When I process the same certificate from the PEM format (from instance
by a cgi on the web server) with the command:
x509 -in mycert.pem -text
I get something that is a little bit confused:
X509v3 extensions:
Netscape Base Url:
..https://aurora.space.worlds/ca/
Netscape CA Revocation Url:
..crl/ca-crl.php3
Netscape CA Policy Url:
..CPS/ident.html
Netscape Comment:
.iCertificato con identificazione. Le CPS si trovano alla URL:
http://aurora.space.worlds/ca/CPS/ident.html
Netscape Cert Type:
....
Thank you in advance for any help.
--
Mario
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
