Thanks Marek for the reply. I hope that it is ok if the key and cert files are with ".key" and ".crt" extensions (instead of pem).
If yes, then fortunately (or unfortunately) the modulus matches. ####################################################################################################### [ajay@ajay certs]$ openssl rsa -in ssl.key -noout -modulus Modulus=9ED17DA2E4C31CD5C1E24FE985C4DBC80A7A10FD1ADEBE828C4185AC3E36E188BC79E3A05C2C28E2CFE187DB5A765FFCB8BC70E74CBED24433F881830993267E6DC78C181233A135E09BB77B1404F550FED56EB5143DA7C005C13485D151DD35FC4F8E124DBCF675479BB89212C2CE184063A5B4278A6DE8D2204BB1D020FF2F [ajay@ajay certs]$ openssl x509 -in ssl.crt -noout -modulus Modulus=9ED17DA2E4C31CD5C1E24FE985C4DBC80A7A10FD1ADEBE828C4185AC3E36E188BC79E3A05C2C28E2CFE187DB5A765FFCB8BC70E74CBED24433F881830993267E6DC78C181233A135E09BB77B1404F550FED56EB5143DA7C005C13485D151DD35FC4F8E124DBCF675479BB89212C2CE184063A5B4278A6DE8D2204BB1D020FF2F ####################################################################################################### So, Marek :: a) Could there be any other reason, where a return value of "0" may be returned? b) The permissions for "server.key" and "server.crt" are 0755. I hope, these are valid permissions. c) Finally, I would appreciate if you could send me a pair of "key" and "crt" files, generated from your end (or alternatively, send me the command to generate these files), THAT WOULD GUARANTEE THAT "EVP_PKEY_cmp(xk, k)" RETURNS 1 (as the success value). Thanks again. Regards, Ajay On Fri, Mar 23, 2012 at 8:40 PM, <marek.marc...@malkom.pl> wrote: > Hello, > > owner-openssl-us...@openssl.org wrote on 03/23/2012 03:10:47 PM: > > > Ajay Garg <ajaygargn...@gmail.com> > > Sent by: owner-openssl-us...@openssl.org > > > .... > > Hi all. > > > > I have been trying lately to debug a startup issue in APACHE's httpd > service; and the > > last logs I receive in "/etc/httpd/logs_error_log" is > > > > > > ##################################################################################################################### > > [error] SSL Library Error: 185073780 error:0B080074:x509 certificate > > routines:X509_check_private_key:key values mismatch > > > > ##################################################################################################################### > > Just do: > $ openssl rsa -in key.pem -noout -modulus > Modulus=E43E2DAB15DA7E70FC2E2149FC00481816650E799AAEC... > $ openssl x509 -in crt.pem -noout -modulus > Modulus=E43E2DAB15DA7E70FC2E2149FC00481816650E799AAEC... > and check if output maches. > > Best regards, > -- > Marek Marcola <marek.marc...@malkom.pl> > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager majord...@openssl.org >
