On Tue, Aug 15, 2006, [EMAIL PROTECTED] wrote: > Hi, > > this is what I get with > > openssl x509 -certopt ext_error -text -noout -in .... > > ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ > X509v3 Key Usage: > Digital Signature, Key Encipherment > 1.3.6.1.4.1.311.21.7: > <Not Supported> > X509v3 Extended Key Usage: > TLS Web Server Authentication, TLS Web Client Authentication > X509v3 Certificate Policies: > <Parse Error> > 1.3.6.1.4.1.311.21.10: > <Not Supported> > Signature Algorithm: sha1WithRSAEncryption > ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ >
So it doesn't like the certificate policies extension. Can you post or send me the certificate privately and I'll check to see if there's a bug in OpenSSL or an encoding error in the certificate. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
