Re: refresh validity dates on a certificate

2007-10-26 Thread Simon McMahon
PROTECTED] cc openssl-users@openssl.org Subject Re: refresh validity dates on a certificate The Authority Key Identifier should be the ID of the CA's key. The Subject Key Identifier should be the ID of the certified key. If they are the same, then it is a self-signed certificate. (Th

Re: refresh validity dates on a certificate

2007-10-25 Thread Kyle Hamilton
openssl-users@openssl.org To "Kyle Hamilton" <[EMAIL PROTECTED]> cc openssl-users@openssl.org Subject Re: refresh validity dates on a certificate Great idea! That certainly should work but didn't for me. My openssl is "OpenSSL 0.9.8b 04 May 2006" Th

Re: refresh validity dates on a certificate

2007-10-24 Thread Simon McMahon
g To "Kyle Hamilton" <[EMAIL PROTECTED]> cc openssl-users@openssl.org Subject Re: refresh validity dates on a certificate Great idea! That certainly should work but didn't for me. My openssl is "OpenSSL 0.9.8b 04 May 2006" The 1st command worked fine and gave a s

Re: refresh validity dates on a certificate

2007-10-24 Thread Simon McMahon
39:c9:0c:2d:38:4b:2e:ae:21:f7:b7:3a:a0:82:03: c3:fd Simon McMahon "Kyle Hamilton" <[EMAIL PROTECTED]> 25/10/2007 01:09 PM To openssl-users@openssl.org, Simon McMahon/Australia/Contr/[EMAIL PROTECTED] cc Subject Re: refresh validity dates on a certificate

Re: refresh validity dates on a certificate

2007-10-24 Thread Kyle Hamilton
What I would do is a pair of commands: $ openssl x509 -in currentcertificate.pem -out selfsigned.pem -days 1024 -signkey currentkey.pem $ openssl x509 -in selfsigned.pem -days 1024 -CA ca.pem -CAserial serial -out refreshedcert.pem -outform PEM Since you're creating a self-signed cert in the firs

RE: refresh validity dates on a certificate

2007-10-24 Thread Simon McMahon
TECTED]> Sent by: [EMAIL PROTECTED] 24/10/2007 05:13 PM Please respond to openssl-users@openssl.org To cc Subject RE: refresh validity dates on a certificate > I just saw the "RE: Changing the expiry date of a cert" thread > but I think > my question is a little

RE: refresh validity dates on a certificate

2007-10-24 Thread David Schwartz
> I just saw the "RE: Changing the expiry date of a cert" thread > but I think > my question is a little different. > > My certs are not CA certs they are user certs where the only thing I > really need to preserve are subject, issuer, key & cert extensions. The > serial # doesn't matter. > > The

Re: refresh validity dates on a certificate

2007-10-23 Thread Simon McMahon
Hi, I just saw the "RE: Changing the expiry date of a cert" thread but I think my question is a little different. My certs are not CA certs they are user certs where the only thing I really need to preserve are subject, issuer, key & cert extensions. The serial # doesn't matter. The thing I w