[openssl.org #3525] CRL tool doesn't show leading 0's in output

Kurt Roeckx via RT Thu, 11 Sep 2014 03:09:34 -0700

Hi,

I was looking at the following CRL:
http://www.rsasecurity.com/products/keon/repository/certificate_status/RSA_Security_2048_v3.CRL


Using openssl crl -in RSA_Security_2048_v3.CRL -inform der -noout -text I see 
things like:
    Serial Number: E6C1BA5399D31F8ADD15D36418DB066C
        Revocation Date: Sep 10 13:51:50 2014 GMT
        CRL entry extensions:
            X509v3 CRL Reason Code:
                Cessation Of Operation
            Invalidity Date:
                Sep 10 13:51:30 2014 GMT

However, the real serial number has 2 leading 00's, so:
00E6C1BA5399D31F8ADD15D36418DB066C


Kurt

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
Development Mailing List                       openssl-dev@openssl.org
Automated List Manager                           majord...@openssl.org

[openssl.org #3525] CRL tool doesn't show leading 0's in output

Reply via email to