On Tue, Sep 23, 2003, Christian Barmala wrote: > Hi, > > I generated a certificate request with the cisco vpn client. But when I > wanted to examin it with "openssl req -text -inform PEM -in myReq.cer", I > got "unable to load X509 request". Why? The command won't tell me. Any > ideas? >
Why don't you post the file or send it to me if you prefer? > >From the header > -----BEGIN NEW CERTIFICATE REQUEST----- > I concluded I had to add the option "-asn1-kludge", but this didn't help. > No that option is only used when OpenSSL generates a request. > Beside the usual cn, e, ou, o st and c parameter it might contain an IP > address and a domain. Two parameters, which usually aren't in the > openssl.cnf file, but does this relly matter, when I only want to transform > the request into text form? > No it doesn't matter, the config file is only used when creating a request. Steve. -- Dr Stephen N. Henson. Core developer of the OpenSSL project: http://www.openssl.org/ Freelance consultant see: http://www.drh-consultancy.demon.co.uk/ Email: [EMAIL PROTECTED], PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]