So with the CA's server's private key and cert (converted in pem format) I would be able to use them as the CA for openssl, therefore issue certs based on this ? Thanks... Dr S N Henson wrote: > > Ricardo Stella wrote: > > > > We were using Netscape Cert. Server 1.01. It was it's own root CA. We > > would like to make that CA certificate the one used by openssl to issue > > certificates. > > > > In other words, if I issue a new certificate via openssl. I believe > > there was the issue on extracting the CAs private key into pem format. > > > > You may be able to use a hack mentioned on my homepage which used > Netscape 3.0 then 4.0 to extract the key. It is awkward but I did manage > to extract some older cert server keys using it and you only have to do > it once. > > Steve. > -- > Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ > Personal Email: [EMAIL PROTECTED] > Senior crypto engineer, Celo Communications: http://www.celocom.com/ > Core developer of the OpenSSL project: http://www.openssl.org/ > Business Email: [EMAIL PROTECTED] PGP key: via homepage. > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] -- ------------------------------------------------------------------ Ricardo Stella O.I.T. (609)896-5000 x7436 _suAve_ Rider University *** Remove 'no-spam' from e-mail address before replying. ***
begin:vcard adr;dom:;;;Lawrenceville;NJ;08648; adr:;;2083 Lawreceville Road;Lawrenceville;NJ;08648; n:Stella;Ricardo tel;fax:1-609-219-4994 tel;work:1-609-896-5000 x7436 x-mozilla-html:FALSE url:http://poseidon.rider.edu org:Rider University;O.I.T. version:2.1 title:Manager x-mozilla-cpt:;-9584 fn:Ricardo Stella end:vcard