Verifying that a Certificate is issued by a CA

How to use OpenSSL on the command line to verify that a certificate was issued by a specific CA, given that CA's certificate

$ openssl verify -verbose -CAfile cacert.pem  server.crt
server.crt: OK

If you get any other message, the certificate was not issued by that CA.

See Also:

Keywords:verify openssl ssl certificate cert ca   Doc ID:4543
Owner:Naomi S.Group:Identity and Access Management
Created:2006-03-02 19:00 CDTUpdated:2020-04-09 08:58 CDT
Sites:Identity and Access Management
Feedback:  20   4