Hi all
As part of ASN.1, DER is raw binary format and PEM is base64 encoded DER
format.
In IOS, if you issue "sh run" or "sh crypto key mypubkey rsa" you can see
the cert and keys in HEX format. Is this a standard format used across
various vendors? Can someone please let me know the name for this HEX
format.
*sh run O/P snippet*
!
crypto pki certificate chain self
certificate self-signed 01
30820188 30820132 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
18311630 1406092A 864886F7 0D010902 1607726F 75746572 35301E17 0D313030
39313530 38313631 325A170D 32303031 30313030 30303030 5A301831 16301406
092A8648 86F70D01 09021607 726F7574 65723530 5C300D06 092A8648 86F70D01
01010500 034B0030 48024100 AB964E6B 2F24A5C9 F1C25AE1 ED3BF2E5 EE70B8B7
6CFEA180 8232D011 E66F088E 1CDD7ADE 1BAD527E FE97B716 E44B8FAE 0DEE6A18
C0C7663A B32659B4 3BB2A29B 02030100 01A36730 65300F06 03551D13 0101FF04
05300301 01FF3012 0603551D 11040B30 09820772 6F757465 7235301F 0603551D
23041830 168014F7 8170B153 ECC2DFD3 43FD9A6E 32D1C84E 315B1830 1D060355
1D0E0416 0414F781 70B153EC C2DFD343 FD9A6E32 D1C84E31 5B18300D 06092A86
4886F70D 01010405 00034100 38286923 8BDF523C A474E42C CD033266 AAB1ABC8
3CD8899B BB65BDAC 70B32996 B4A671E1 01CF46FE 641F9DA4 2792859D AB9E75FB
31212A97 A44CB623 B582C5F7
quit
*sh crypto key mypubkey rsa*
router5#sh crypto key mypubkey rsa
% Key pair was generated at: 08:14:23 UTC Sep 15 2010
Key name: cisco
Storage Device: not specified
Usage: General Purpose Key
Key is not exportable.
Key Data:
305C300D 06092A86 4886F70D 01010105 00034B00 30480241 009CCE51 F11A3673
3599CF74 D5163537 5C4285BC 25EAA16B 01F8B08F B92B6539 F41166EC C3CCDD20
B3EBA08F 3496F8C5 3B3F6654 355D68C9 B88FE549 DF3560B9 FD020301 0001
% Key pair was generated at: 08:15:00 UTC Sep 15 2010
Key name: cisco123
Storage Device: not specified
Usage: General Purpose Key
Key is exportable.
Key Data:
305C300D 06092A86 4886F70D 01010105 00034B00 30480241 00DFE61B 3A1F8AEB
EE1DECD6 AB554A6E 02520AFD F56EFE52 F28BE02A CFE9AC6B FDD457BB D2108B09
E356541A 5E5B02E4 23E564C6 2B110F74 D6FF0056 D47E427A 81020301 0001
% Key pair was generated at: 08:16:08 UTC Sep 15 2010
Key name: router5
Storage Device: not specified
Usage: General Purpose Key
Key is not exportable.
Key Data:
305C300D 06092A86 4886F70D 01010105 00034B00 30480241 00AB964E 6B2F24A5
C9F1C25A E1ED3BF2 E5EE70B8 B76CFEA1 808232D0 11E66F08 8E1CDD7A DE1BAD52
7EFE97B7 16E44B8F AE0DEE6A 18C0C766 3AB32659 B43BB2A2 9B020301 0001
% Key pair was generated at: 10:14:26 UTC Sep 15 2010
Key name: cisco.server
Temporary key
Usage: Encryption Key
Key is not exportable.
Key Data:
307C300D 06092A86 4886F70D 01010105 00036B00 30680261 00B7BC5C 581C0079
67083719 C851AEA0 E14A1247 4E5EDE84 6638F8BD A1D2A0A1 74DFA183 036B1F1F
4EDA35FC 05EFFE94 B763B4B1 CF5C2D45 1DBEBC36 168CA24B 6AA4B7C4 A0172F93
93E49AD9 67B7697B 02B38656 4A039ACC 1147A4BF 3333772E 8D020301 0001
With regards
Kings
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
