Hmmm, it seems as if some libstrongswan plugins are missing. ipsec pki --keyid with RSA keys requires either
sha1 gmp pkcs1 pem x509 or openssl pkcs1 pem x509 Regards Andreas On 04.05.2010 16:35, J. Tang wrote: > Andreas Steffen<[email protected]> writes: >> But you can compute the keyid of a certificate directly with the >> following command: >> >> ipsec pki --keyid --in strongswanCert.pem --type x509 > > This command did not work for me: > > $ ipsec pki --pub --in strongswanCert.pem --type x509 > building CRED_CERTIFICATE - X509 failed, tried 3 builders > parsing certificate failed > > Thas was with the certificate in > strongswan-4.3.6/testing/hosts/carol/etc/ipsec.d/cacerts. ====================================================================== Andreas Steffen [email protected] strongSwan - the Linux VPN Solution! www.strongswan.org Institute for Internet Technologies and Applications University of Applied Sciences Rapperswil CH-8640 Rapperswil (Switzerland) ===========================================================[ITA-HSR]== _______________________________________________ Dev mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/dev
