I know this - but this key does not include a URI to obtain the certificate :(
So I can use this to select a certificate out of known ones, but I am unable to fetch it from "teh web"
"good" mailclients include the complete chain in the signature. The recipient only needs to trust the root ca once. But i think you know this or?
Hmm, than it seems that mozilla is a bad client: mail.txt is the original text of a mail send and signed by me....
openssl smime -in mail.txt -verify
Verification failure
2013:error:21075075:PKCS7 routines:PKCS7_verify:certificate verify error:pk7_smime.c:222:Verify error:unable to get local issuer certificate
Oliver -- Diese Nachricht wurde digital unterschrieben oliwel's public key: http://www.oliwel.de/oliwel.crt Basiszertifikat: http://www.ldv.ei.tum.de/page72
smime.p7s
Description: S/MIME Cryptographic Signature
