Hi all, I test a chain of certificates by calling
X509_verify_cert( X509_STORE_CTX_variable ). This function works fine, but it seems to me that it uses the current system time to check the certificate expiration. The problem is that I need to check the expiration against a defined checktime. I found the following, but it doesn't seem to work right in my implementation: pStoreCtx->param->check_time = signTime; pStoreCtx->param->flags = X509_V_FLAG_USE_CHECK_TIME; int nReturn = X509_verify_cert( pStoreCtx ); The return is 0 and the error is 'unsupported certificate purpose'. Anyone an idea? I use OpenSSL 0.9.8e with Visual C++ 2005. Best regards Frank Wockenfuß ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]