Are you sure there's a SAN extension in the displayed CSR?
Dump the entire content with asn1parse.
--
Erwann ABALEA
Le 23/05/2013 17:41, Craig White a écrit :
I want to be able to view CSR's with subjectAltName's but I can't figure out
any way to make it happen. I have poured over the man
On Thu, May 23, 2013 at 06:12:39PM +0200, Erwann Abalea wrote:
Le 23/05/2013 17:41, Craig White a ?crit :
I want to be able to view CSR's with subjectAltName's but I
can't figure out any way to make it happen. I have poured over the
man pages and googled it to death already.
openssl req
hmmm… I guess it may not be there but it's there in the cert that I signed with
my CA self which is using the same csr
Is there something wrong with the way I am generating them?
openssl req -new -nodes \
-out $CERTPATH/http.csr \
-keyout $CERTPATH/http.key \
-days 3650 \
On 5/23/2013 6:21 PM, Craig White wrote:
hmmm… I guess it may not be there but it's there in the cert that I signed with
my CA self which is using the same csr
Is there something wrong with the way I am generating them?
openssl req -new -nodes \
-out $CERTPATH/http.csr \
-keyout
On May 23, 2013, at 10:28 AM, Jakob Bohm wrote:
On 5/23/2013 6:21 PM, Craig White wrote:
hmmm… I guess it may not be there but it's there in the cert that I signed
with my CA self which is using the same csr
Is there something wrong with the way I am generating them?
openssl req -new
From: owner-openssl-us...@openssl.org On Behalf Of Craig White
Sent: Thursday, 23 May, 2013 15:31
On May 23, 2013, at 10:28 AM, Jakob Bohm wrote:
snip
I think you have hit the nail on the head. The
subjectAltName(s) aren't getting included in requests but are
being included in
got it now… the script I was using was directing it to a different openssl.cnf
than the one I was editing. I obviously moved a copy of the entire directory to
play with a copy and not the real CA.
Thanks all
Craig
On May 23, 2013, at 10:28 AM, Jakob Bohm wrote:
On 5/23/2013 6:21 PM, Craig