Re: AW: Converting privatekey from DER to NET fails

Dr S N Henson Wed, 21 Feb 2001 11:29:22 -0800
[EMAIL PROTECTED] wrote:
> 
> Thanks for the suggestion. But now the error message is different.
> 
> 
> C:\certs>openssl rsa -inform DER -in private.der -outform NET -out
> privatekey.net
> read RSA key
> unable to load key
> 276:error:0D080071:asn1 encoding routines:d2i_ASN1_INTEGER:expecting an
> integer:
> a_int.c:204:
> 276:error:0D09D082:asn1 encoding
> routines:d2i_RSAPrivateKey:parsing:d2i_r_pr.c:116:
> 
> When I open the private key with a text editor the content looks like
> this:
> ...
> ~aKfSj4s f$0?K
> t.qc(c)Ni3=h*g'p~*?QE34/?ds
> ...
> 
> I doubt that this is a normal private key, isn't it? Does anything went
> wrong during
> the generation of the key (note: I didn't generate the key with
> openSSL)?
> 

Try this:

openssl pkcs8 -inform DER -in private.der -out private.pem

if that fails try:

openssl pkcs8 -nocrypt -inform DER -in private.der -out private.pem

After that you will have a PEM encoded private key which you can then
feed to the rsa utility.

If that doesn't work see what the output of:

openssl asn1parse -inform DER -in private.der

produces. Some private key formats are undocumented and look just like
random data, without some documentation as to the format used there's
not much that can be done.

Steve.
-- 
Dr Stephen N. Henson.   http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED] 
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the   OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]
Re: AW: Converting privatekey from DER to NET fails

Reply via email to
