Hi Paul, If what you're trying to do is manipulate X.509 certificates and public keys, I think you'll have an easier time using the pyca/cryptography APIs, they're significantly richer and better tested -- and since pyOpenSSL depends on pyca/cryptography you already have a copy :-)
https://cryptography.io/en/latest/x509/ are our X.509 docs, and https://cryptography.io/en/latest/hazmat/primitives/asymmetric/serialization/ are the docs for key serialization. Let us know if you have any questions. Alex On Thu, Apr 20, 2017 at 8:14 AM, Paul King via Cryptography-dev < cryptography-dev@python.org> wrote: > Hi > > I am using pyOpenSSL to process a PEM certificate. > > From the command line I can use ‘openssl x509 -inform pem -text -in > 10.pem’ to process the certificate and can see: > > Signature Algorithm: ecdsa-with-SHA256 > > However, when I try this in python with pyOpenSSL on my Mac, I struggle. > > Can someone advise me on how to process this type in python with pyOpenSSL? > > Code: > > pub = cert.get_pubkey() > pub_asn1 = OpenSSL.crypto.dump_publickey( > OpenSSL.crypto.FILETYPE_ASN1, pub ) > > Similarly I want to do the same for the Subject Public Key: > > Subject Public Key Info: > Public Key Algorithm: id-ecPublicKey > Public-Key: (256 bit) > pub: > <-snip-> > ASN1 OID: prime256v1 > NIST CURVE: P-256 > > > Does that make sense for what I am trying to do, and should I be able to > do this with pyOpenSSL? > > > Thanks > Paul > > > > > > > _______________________________________________ > Cryptography-dev mailing list > Cryptography-dev@python.org > https://mail.python.org/mailman/listinfo/cryptography-dev > -- "I disapprove of what you say, but I will defend to the death your right to say it." -- Evelyn Beatrice Hall (summarizing Voltaire) "The people's good is the highest law." -- Cicero GPG Key fingerprint: D1B3 ADC0 E023 8CA6
_______________________________________________ Cryptography-dev mailing list Cryptography-dev@python.org https://mail.python.org/mailman/listinfo/cryptography-dev
