Hi,

I'm trying to take out the private key from the pfx file but with no luck,
this is what I did:
I changed the pfx to pem
openssl pkcs12 -in iis.pfx -out iis.pem

then run:

openssl rsa -in iis.pem -out iiskey.key -outform NET

then open hex editor
1. Find the string  : "private-key" in the binary file
2. Trace back until I find this Hex value: "30 82"
but this was the start of the file so I just did SAVE AS tmp.bin
and then run:

openssl rsa -inform NET -in tmp.bin -out key.pem

but I got this error:
unable to load key
1344:error:0D08C007:asn1 encoding routines:D2I_NETSCAPE_PKEY:expecting an
asn1 s
equence:./crypto/asn1/n_pkey.c:351:address=45144784 offset=0
1344:error:0D08E08B:asn1 encoding routines:d2i_Netscape_RSA_2:unable to
decode r
sa private key:./crypto/asn1/n_pkey.c:308:
1344:error:0D08D06F:asn1 encoding routines:d2i_Netscape_RSA:decoding
error:./cry
pto/asn1/n_pkey.c:10240:address=45219912 offset=17

Please help,

Regards,

Yuval
Domain The Net Technologies Ltd.
6 Weitzman Blvd.
Ramat-Hasharon
Israel 47211
Tel: 972-3-5474443
Fax: 972-3-5474446
www.DomainTheNet.com

�This email message and any attachments hereto are intended only for use by
the addressee(s) named above, and may contain legally privileged and/or
confidential information. If you are not the intended addressee, you are
hereby kindly notified that any dissemination, distribution or copying of
this email and any attachments hereto is strictly prohibited. If you have
received this email in error, kindly delete it from your computer system,
and notify us at the telephone number or email address appearing above.
Thank you"


______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to