On Thu, Feb 11, 2010 at 1:31 PM, skillz...@gmail.com wrote:
I have a DER-encoded PKCS#7 file that I'd like to extract the
certificate from, verify that certificate against a specific sub-CA
certificate, then use the certificate's public key to verify a
signature.
I looked at the code for
I have a DER-encoded PKCS#7 file that I'd like to extract the
certificate from, verify that certificate against a specific sub-CA
certificate, then use the certificate's public key to verify a
signature.
I looked at the code for the pkcs7 tool and it looks directly inside
the PKCS7 object to
On Wed, Feb 10, 2010 at 4:23 AM, Dr. Stephen Henson st...@openssl.org wrote:
On Tue, Feb 09, 2010, skillz...@gmail.com wrote:
I'm trying to programmatically verify that a certificate from a sub-CA
is signed by a specific root CA. I get an error of 7
(X509_V_ERR_CERT_SIGNATURE_FAILURE) from
I'm trying to programmatically verify that a certificate from a sub-CA
is signed by a specific root CA. I get an error of 7
(X509_V_ERR_CERT_SIGNATURE_FAILURE) from X509_verify_cert. If I verify
with the openssl command line tool using 'openssl verify -CAfile
root.pem cert.pem', it returns OK.