Verifying that a Certificate is issued by a CA

How to use OpenSSL on the command line to verify that a certificate was issued by a specific CA, given that CA's certificate

$ openssl verify -verbose -CAfile cacert.pem  server.crt
server.crt: OK

If you get any other message, the certificate was not issued by that CA.

See Also:




Keywords:verify openssl ssl certificate cert ca   Doc ID:4543
Owner:Naomi S.Group:Identity and Access Management
Created:2006-03-02 19:00 CDTUpdated:2020-04-09 08:58 CDT
Sites:Identity and Access Management, Middleware
Feedback:  136   36