Common commands

Check a certificate and return information about it (signing authority, expiration date, etc.):

openssl x509 -text -noout -in server.crt

Check the SSL key and verify the consistency:

openssl rsa -in server.key -check

Verify the CSR and print CSR data filled in when generating the CSR:

openssl req -text -noout -verify -in server.csr

Verify a certificate and key matches

openssl rsa -noout -modulus -in server.key| openssl md5
openssl x509 -noout -modulus -in server.crt| openssl md5


Show a remote certificate

openssl s_client -showcerts -connect
openssl s_client -showcerts -connect

OpenSSL Post Signum certificate


Powered by NetBSD. Running on a toaster.