Openunix.eu


OpenSSL

Common commands

Check a certificate and return information about it (signing authority, expiration date, etc.):

openssl x509 -text -noout -in server.crt

Check the SSL key and verify the consistency:

openssl rsa -in server.key -check

Verify the CSR and print CSR data filled in when generating the CSR:

openssl req -text -noout -verify -in server.csr

Verify a certificate and key matches

openssl rsa -noout -modulus -in server.key| openssl md5
openssl x509 -noout -modulus -in server.crt| openssl md5

From https://support.asperasoft.com/hc/en-us/articles/216128468-OpenSSL-commands-to-check-and-verify-your-SSL-certificate-key-and-CSR

Show a remote certificate

openssl s_client -showcerts -connect imap.example.com:993
openssl s_client -showcerts -connect webmail.example.com:443

OpenSSL Post Signum certificate

 

Powered by OpenBSD. Puffy on duty!