ZioByte

Asked: 2020-09-03 03:13:21 +0800 CST2020-09-03 03:13:21 +0800 CST 2020-09-03 03:13:21 +0800 CST

Certificate validation with non-standard CA

I have a Certificate which has been issued by a non-standard CA over which I have no control.

I generated the CSR, sent it to non-standard CA and it returned a valid Certificate.

This Certificate is normally used to sign documents I send to CA owners and they only accept documents signed with their own CA.

So far everything works as expected.

I also have CA public certificate. I would like (for testing and other purposes) to be able to verify locally MY Certificate is valid (i.e.: use some local openssl command to verify Certificate returned against CA Certificate).

Is this at all possible? If, so how?

Plain verification fails (perhaps because I have just the CA Certificate and not the whole chain):

$ openssl verify -CAfile CertificatoCA.pem 9AIN2012501.cer 
C = IT, O = Certificate Authority, OU = Nonstandard Certificate Authority, CN = 9AIN2012501
error 20 at 0 depth lookup: unable to get local issuer certificate
error 9AIN2012501.cer: verification failed

Any idea? Thanks in Advance

Certificate validation with non-standard CA

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?

Certificate validation with non-standard CA

0 Answers