On 1/22/2013 12:36 PM, kapetr wrote:
... just little P.S.:
the -pkeyopt digest:sha256 is probably (?) necessary while the signatureAlgorithm in
SIgnerInfo is "sha256WithRSAEncryption"
I have another TS reply (from Comodo) and there is only "rsaEncryption"
I think there the verification will work vice versa only without the -pkeyopt.
No, in that case you need to find the name of the hash algorithm
elsewhere in either the SignedData structure or its context.
> ...
Enjoy
Jakob
--
Jakob Bohm, CIO, Partner, WiseMo A/S. http://www.wisemo.com
Transformervej 29, 2730 Herlev, Denmark. Direct +45 31 13 16 10
This public discussion message is non-binding and may contain errors.
WiseMo - Remote Service Management for PCs, Phones and Embedded
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
