Manuel Mollar wrote:
>
> I have a expired certificate that appears as 'valid' in the index.txt file:
>
> V 990930204854Z 6A unknown
>/C=ES/ST=Castell\xF3/L=Castell\xF3/O=University Jaume I/OU=Student -
>Estudiante/CN=Gil Andres [EMAIL PROTECTED]
>
> It is expired. Trying to create a new certificate (openssl 0.94) , I obtain:
>
> ERROR:There is already a certificate for
>/C=ES/ST=Castell\xF3/L=Castell\xF3/O=University Jaume I/OU=Student -
>Estudiante/CN=Gil Andres [EMAIL PROTECTED]
>
> The matching entry has the following details
> Type :Valid
> Expires on :990930204854Z
>
> So, what is the solution?
You should use the :
$ openssl ca -updatedb
to update the index file. Than all should be fine. I suggest, anyway to get a patch
(that should be available, I do not know where exactly) that allows you to issue
certificates with the same DN.
Ops, I suppose the patches have not yet been included. You can download from the
ftp://ftp.openca.org site the patches needed (ca.c) tu support the updatedb tag.
I am wondering why it is not been included in the main package. I thought it was.
C'you,
Massimiliano Pala ([EMAIL PROTECTED])
S/MIME Cryptographic Signature
