Ping a Specific Port

Question

Powerriegel

Asked: 2022-08-31 22:58:27 +0800 CST2022-08-31 22:58:27 +0800 CST 2022-08-31 22:58:27 +0800 CST

Check bit length of ssl certificates for both, RSA and elliptic curves

772

We're using a script based on acme.sh to generate our SSL certificates. acme.sh also supports elliptic curves. I wonder, how to check the keylength for both, RSA and elliptic curve certificates. I need to know the keylength (e.g. 256 for ec or 2048 for RSA) to determine if a certificate needs to be replaced.

openssl rsa -in privatekey.pem -text -noout | grep "Private-Key"

works for RSA but not for elliptic curves.

openssl ec -in privatekey.pem -text -noout | grep "Private-Key"

Works for elliptic curves, but I then need to distinguish between rsa and ec. There should be an easier way to get the bit length?

1 Answers

Voted

garethTheRed · Answer 1 · 2022-09-01T01:28:15+08:00

Best Answer

garethTheRed

2022-09-01T01:28:15+08:002022-09-01T01:28:15+08:00

Simply read the certificate with:

openssl x509 -noout -text -in unknown.pem | grep 'Public-Key'

Which returns: Public-Key: (2048 bit) or Public-Key: (256 bit)

1

Check bit length of ssl certificates for both, RSA and elliptic curves

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?