On Tue, April 2, 2024 11:15, James B. Byrne wrote:
> On Tue, April 2, 2024 10:37, Martin Bartosch wrote:
>> openssl x509 parses this just fine, but the API requires a pure PEM block.
>> This is not the same.
>>
I extracted the PEM format certificate and attempted to import it:
openssl crl2pkcs7 -nocrl -certfile hllcerts/20160001.pem \
| openssl pkcs7 -print_certs \
| awk '/BEGIN CERTIFICATE/,/END CERTIFICATE/' \
> bare_20160001.pem
openxpkicli import_certificate --realm hll_ca2016 --filearg
data=bare_20160001.pem
Error: Certificate already exists in database
Now, the problem is I cannot find that certificate to delete it. I presume
that something I did earlier put the certificate into the global space as I
cannot find it in either the democa or hll_ca2016 realms.
I cannot identify a command that will list all certificates regardless of
realm. How do I identify the certificate entry and remove it?\
Thanks,
--
*** e-Mail is NOT a SECURE channel ***
Do NOT transmit sensitive data via e-Mail
Unencrypted messages have no legal claim to privacy
Do NOT open attachments nor follow links sent by e-Mail
James B. Byrne mailto:[email protected]
Harte & Lyne Limited http://www.harte-lyne.ca
9 Brockley Drive vox: +1 905 561 1241
Hamilton, Ontario fax: +1 905 561 0757
Canada L8E 3C3
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
