Verifying that a Certificate is issued by a CA

How to use OpenSSL on the command line to verify that a certificate was issued by a specific CA, given that CA's certificate

$ openssl verify -verbose -CAfile cacert.pem  server.crt
server.crt: OK

If you get any other message, the certificate was not issued by that CA.

See Also:




Keywords:verify openssl ssl certificate cert ca   Doc ID:4543
Owner:Jon M.Group:Middleware
Created:2006-03-02 19:00 CDTUpdated:2013-10-07 21:53 CDT
Sites:Middleware
Feedback:  51   21