If no one answers, the way I do my work with certificates is I just
wrap OpenSSL myself by doing a popen call (probably now should be
using subprocess for any future scripts I write). I then redirect the
output that normally goes to the shell window into a buffer then I
search/slice out the fields
Hello, list!
I use pyopenssl [0] for checking SSL certificates.
And one of such checks is if given certificate is self-signed.
I can do it using values of X509v3 extensions: the subject key identifier and
the authority key id:
X509v3 Subject Key Identifier:
0E:D4:AA:B1:09:91:7C:36:60:EA:56:4E:9C:5
