I am trying to get an IIS cert working with Apache. I believe that the
file I am working with is a combination key and cert. I think this is
the case as when I type:
openssl asn1parse -inform NET -in inputfile
I see:
0:d=0 hl=4 l= 664 cons: SEQUENCE
4:d=1 hl=2 l= 11 prim: OCTET STRING :private-key
17:d=1 hl=4 l= 647 cons: SEQUENCE
21:d=2 hl=2 l= 10 cons: SEQUENCE
23:d=3 hl=2 l= 8 prim: OBJECT :rc4
33:d=2 hl=4 l= 631 prim: OCTET STRING
668:d=0 hl=2 l= 2 cons: appl [ 28 ]
670:d=1 hl=2 l= 0 prim: EOC
672:d=0 hl=4 l= 632 cons: SEQUENCE
676:d=1 hl=2 l= 11 prim: OCTET STRING :certificate
.
.
.
Lots more information. My guess is that if the file were only a private
key there would not be any info in there such as the organizationa dn
common name.
I got the key out by editing the file in a hex editor and following the
instructions at the Thawte support site. The key is now stored in a
seperate file. Now what do I do to get the cert out and in a useful
format? I do not have any files to use other than the one from which I
grabbed the key (an NT admin in a different time zone should get back to
me some time and let me know if there is another file which just
contains the cert). In the meantime I will try hex editing the file
again, maybe if I advance to the string that says certificate and trim
from there rather than earlier in the file at the private-key point?
Thanks for any help!!!
Dan
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
