OpenSSL Cheat Sheet

From Carini MediaWiki

Jump to navigation Jump to search

Comandi più comuni con OpenSSL:

Verifica da file:

Chiave privata: openssl rsa -check -noout -in ./private.key -> Ritorna RSA key ok o RSA key error: [...]
Certificato: openssl x509 -subject -ext subjectAltName -dates -noout -in ./public.pem -> Ritorna subject e validità
CSR: openssl req -text -noout -verify -in ./request.csr -> Ritorna OK
Coerenza fra certificato pubblico e chiave privata: openssl x509 -noout -modulus -in ./public.pem deve coincidere con openssl rsa -noout -modulus -in ./private.key

Operazioni sui file:

Estrarre la chiave privata da un file .pfx (PKCS#12): openssl pkcs12 -nocerts -nodes -in ./store.pfx -out ./private.key

Verifica da sito (online):

Certificato: openssl s_client -showcerts -connect DOMAIN:443 </dev/null 2>/dev/null | openssl x509 -subject -ext subjectAltName -dates -noout -> Ritorna Issuer, Validità, Subject e altre informazioni

Retrieved from "https://wiki.carini.ch/index.php?title=OpenSSL_Cheat_Sheet&oldid=155"

Cookies help us deliver our services. By using our services, you agree to our use of cookies.