The "Signature Algorithm" field is the correct field to check.
As clarification: MD5 is not a signature algorithm, it's a hashing algorithm. A certificate is hashed using the specified hashing algorithm, and then signed using the specified signature algorithm. Thus, sha1WithRSAEncryption indicates that the certificate was hashed using sha1, and the result was encrypted using RSA to generate the signature. Md5WithRSAEncryption indicates it was hashed using md5, and signed with RSA. Thus, the certificate you're looking at was hashed with SHA1, not MD5. Derek From: owner-openssl-us...@openssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of val john Sent: Tuesday, September 24, 2013 1:03 AM To: openssl-users@openssl.org Subject: detect Md5 sign signatures Hi guys i have server certificate used in company Radius server , i how can check wheather its a md5 sign cert or sha sign certificate . which attribute that indicate whether its md5 sign or sha sign ? is iSignature Algorithm: sha1WithRSAEncryptiot " attribute Please advice Thank You John