Hi,
I created certificates by command line with openssl 0.9.7c and had the same result :-/ And I could not find what is wrong, I've had a look at openssl's doc... It is not clear what's wrong here.
But a commercial issued (but testing) certificate I've got has the same "Yes" than below...
So maybe it's an uncared extension ???
You should not take care about what the openssl's porpouse command says as it could be an error in the extension parsing. Check the certificate and look at the extensions that have been set: if you have the right ones set you are good, otherwise, as dailini said, check the .ext files where the extensions configurations for different kind of certificates are held and edit them.
If I had the chance I will try to check the openssl command and report if there is an error there.
Merry Christmas.
--
C'you,
Massimiliano Pala
--o-------------------------------------------------------------------------
Dr. Massimiliano Pala [OpenCA Project Manager] [EMAIL PROTECTED]
Tel.: +39 (0)59 270 094
http://www.openca.org Fax: +39 178 270 2077
http://openca.sourceforge.net Mobile: +39 (0)347 7222 365University of Modena and Reggio Emilia Certification Authority Informations:
Authority Access Point http://pki.unimo.it Authority's Certificate: http://pki.unimo.it/ca/issuers.html Certificate Revocation List: http://pki.unimo.it/crl/cacrl.crl --o-------------------------------------------------------------------------
smime.p7s
Description: S/MIME Cryptographic Signature
