The way I would verify this is by writting the original X509 object into PEM file and dumping the X509 object resulted from d2i_x509() into another PEM file and compares both files using the openssl ; either using asnparse or x509 command.
On Wed, Jul 27, 2011 at 9:46 AM, Andrea Saracino <saracino.and...@gmail.com>wrote: > Hello everyone, > I've found some issues using the function X509_verify() on a simple X509 > certificate. After the creation, if I call: > > X509_verify(certificate,ca_key); > > the function returns 1, but if I call the i2d_X509() function on the > certificate and then the d2i_X509() on the obtained byte string, the > X509_verify() on the resultant certificate returns 0. > > I printed the certificate, in a readable format, before and after the i2d() > and d2i() execution and the result is exactly the same. The various fields > (issuer, subject...) have the correct values. Any ideas? > > Best Regards > > Andrea Saracino > > > >
