MzczM1oweDELMAkGA1UEBhMCRVM圎TAPBgNVBAoMCEZOTVQtUkNNMQ4wDAYDVQQLĭAVDZXJlczEYMBYGA1UEYQwPVkFURVMtUTI4MjYwMDRKMSwwKgYDVQQDDCNBQyBS Q00gU0VSVklET1JFUyBTRUdVUk9TMB4XDTE4MTIyMDA5MzczM1oXDTQzMTIyMDA5 Certificate) you can then pick the actual certificate with: # Let's say you want to pick certificate number 3Īwk -v n=3 '/BEGIN CERTIFICATE/ & ++k = n, /END CERTIFICATE/' /etc/ssl/certs/ca-certificates.crt
Issuer: OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES Owner: OU=AC RAIZ FNMT-RCM, O=FNMT-RCM, C=ES Subject Public Key Algorithm: 4096-bit RSA key Signature algorithm name: SHA1withRSA (weak) Issuer: C=ES, O=ACCV, OU=PKIACCV, CN=ACCVRAIZ1 Owner: C=ES, O=ACCV, OU=PKIACCV, CN=ACCVRAIZ1 # By piping to less you can manually search by hitting '/'Ĭat /etc/ssl/certs/ca-certificates.crt | keytool -printcert 2>/dev/null | In general verifying the certificate fingerprint rather than just its name/issuer name/date e.t.c is very important. You can also pass the output to less for searching/matching manually. Most of the times, when examining ca certificates, you will want (and should) grep with fingerprint.
0 kommentar(er)
