Hi there: On July 28, 2008 08:07:22 am Takurou Saitou wrote: > Hi. > > On the Openssl 0.9.8h, I want to execute certificate verify that contains > the certificate policy check by using "openssl verify" command. > > I succeed the verification though random OID is specified > for the "-policy" option of "openssl verify" command. > > Is my usage wrong? > > > (Use example) > openssl verify -policy 1.2.46.67. -policy_check -CAfile cacert.pem cert.pem > cacert.pem: OK > I think that you need to add -explicit_policy to the arguments.
To see what it is doing, you may want to also add -policy_print Have fun. -- Patrick Patterson President and Chief PKI Architect, Carillon Information Security Inc. http://www.carillon.ca ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
