Tomas Anderson wrote: > > > I have a java keystore and want to export the private > key and certificate (Verisign 128-bits) in it for use > with Apache (we are changing server from a java-based > server to Apache (mod_ssl)). Apache works like a dream > when tested (compared to .... java.) with OpenSSL made > keys and cert. > [snip] > > The raw bytestream out from Java is supposedly PKCS8. > And OpenSSL wants PEM encoding?? Well. I am pretty new > with all this.... >
Try: openssl pkcs8 -inform DER -in whatever.der -out key.pem or openssl pkcs8 -nocrypt -inform DER -in whatever.der -out key.pem Steve. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Gemplus: http://www.gemplus.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
