You should be able to use X509_verify() for this. Just get the public key for the issuing certificate and then pass this plus the certificate you want to verify to X509_verify().
There are verification functions like that for CRL and CSR objects as well, which work the same way. Erik On Thu, Oct 29, 2015 at 12:30 PM, Benn Bollay <benn.bol...@gmail.com> wrote: > If I have two X509.Certificate objects, how would I validate that one is > correctly subordinate (that is, the signature is correct) to the other? > > Cheers, > --B > > _______________________________________________ > Cryptography-dev mailing list > Cryptography-dev@python.org > https://mail.python.org/mailman/listinfo/cryptography-dev > _______________________________________________ Cryptography-dev mailing list Cryptography-dev@python.org https://mail.python.org/mailman/listinfo/cryptography-dev
