Verifying that a Certificate is issued by a CA

How to use OpenSSL on the command line to verify that a certificate was issued by a specific CA, given that CA's certificate

$ openssl verify -verbose -CAfile cacert.pem  server.crt
server.crt: OK

If you get any other message, the certificate was not issued by that CA.

See Also:

Keywords:verify openssl ssl certificate cert ca   Doc ID:4543
Owner:MST Support .Group:Identity and Access Management
Created:2006-03-02 19:00 CDTUpdated:2022-05-25 15:15 CDT
Sites:Identity and Access Management
Feedback:  24   4