OpenSSL tricks - x509, pkcs12, verify output
The OpenSSL commands may seem daunting at first, but there are a lot of useful commands in the OpenSSL toolbox for viewing and managing X.509 certificates and private keys. This recipe will show how to use a few of those commands.
Getting ready
Set up the easy-rsa
certificate environment using the first recipe from Chapter 2, Client-server IP-only Networks, by sourcing the vars
file. This recipe was performed on a computer running Fedora 22 Linux but it can easily be run on Windows or MacOS.
How to do it...
For this recipe, we need to perform the following steps:
- To view the subject and expiry date of a given certificate, type:
$ cd /etc/openvpn/cookbook/keys $ openssl x509 -subject -enddate -noout -in client1.crt ...
Get OpenVPN Cookbook - Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.