Hi Akash, -----Original Message----- > From: Akash Deo > Sent: Monday, May 02, 2011 7:19 AM > To: openssl-usersSubject: How I can find URI for this ca certificate? > > Hi, > I am trying to verify whether a ca signed certificate is revoked. > > Openssl verify option requires following parameters: > > cert : A ca signed certificate to be verified. > > cafile: FilePath to ca certificate used to sign the certificate (cert). > How I can find URI for this ca certificate? > > crlfile: Can be obtained from CRL Distribution Points field in certificate > (cert). > > How I can find URI for ca certificate?
Wherever you put the CA certificate on your filesystem, that's your cafile. How you retrieve the CA certificate, you have to figure out yourself. Usually CAs publish their CA certificates on their website and/or on their directory server. Also application protocols usually provide means for adding all the certificates necessary to verify a signature to said signature. HTH, Patrick Eisenacher ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
