On Tue, Oct 05, 2010, colombus wrote: > > Hi > I tried and I am getting following output > openssl x509 -inform PEM -in online.crt -noout -text > text.txt > unable to load certificate > 844:error:0906D06C:PEM routines:PEM_read_bio:no start > line:.\crypto\pem\pem_lib. > c:650:Expecting: TRUSTED CERTIFICATE > > openssl x509 -inform DER -in online.crt -noout -text > unable to load certificate > 3756:error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong > tag:.\crypto\as > n1\tasn_dec.c:1316: > 3756:error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 > error:.\ > crypto\asn1\tasn_dec.c:380:Type=X509 > > Sorry its actually a digital signature and i need to verify it >
Then you should use the smime or cms command instead. Something like... openssl smime -verify -inform DER -in online.crt -noverify initially to test it then with: openssl smime -verify -inform DER -in online.crt -CAfile ca.pem with an appropriate CA certificate. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org