On 14 Jun 2013, at 6:09 AM, anand rao wrote: > I am using openssl 1.0.1e to create a CA and generate certificates. > > I am facing an issue while generating the device certificates. > After creating the ca certificate using below command > > # openssl req -x509 -new -newkey rsa:1024 -keyout private/cakey.pem -days > 3650 -out cacert.pem > > when we try to display the contents the signature algorithm is shown as > itu-t instead of sha1WithRSAEncryption > > #openssl x509 -in cacert.pem -noout -text > > > Certificate: [...] > Signature Algorithm: itu-t
That certainly looks wrong to me. What do you get if you run "openssl asn1parse -i -in cacert.pem" ? ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
