![]() Join the nixCraft community via RSS Feed, Email Newsletter or follow on Twitter. He wrote more than 7k+ posts and helped numerous readers to master IT topics. Vivek Gite is the founder of nixCraft, the oldest running blog about Linux and open source. Subject: CN=Subject Public Key Algorithm: RSAĪlgorithm Security Level: High (4096 bits)Īnd there you have it, either use the openssl or certtool command to find out the common name (CN) from your SSL certificate. Issuer: C=US,O=Let's Encrypt,CN=Let's Encrypt Authority X3 ![]() Sample outputs: X.509 Certificate Information: openssl sclient -showcerts -connect :443 Read Web Sites HTTPS TLS/SSL Certificates Read PKCS12 File We can also read and print PKCS12 files which can be used store keys and related information. Setting up gnutls-bin (3.4.10-4ubuntu1.2). We can print the SSL/TLS X509 certificate with the following command. To do this, I used the 'openssl x509' command to view r and keytoolcrt. Processing triggers for man-db (2.7.5-1). One way to verify if 'keytool' did export my certificate using DER and PEM formats correctly or not is to use 'OpenSSL' to view those certificate files. Processing triggers for libc-bin (2.23-0ubuntu5). Selecting previously unselected package gnutls-bin. 34082 files and directories currently installed.) Selecting previously unselected package libopts25:amd64. ![]() Get:2 xenial-updates/universe amd64 gnutls-bin amd64 3.4.10-4ubuntu1.2 The following NEW packages will be installed:Ġ upgraded, 2 newly installed, 0 to remove and 0 not upgraded.Īfter this operation, 990 kB of additional disk space will be used. The following additional packages will be installed: Type the following apt-get command/ apt command: You can install certtool using the gnutls-bin package on Debian or Ubuntu Linux. Sample outputs: subject= /CN=Say hello to certtool command $ openssl x509 -noout -subject -in /etc/ssl/ ![]() Where x509 is a certificate utility, -in is the certificate to view, -text means to print the full details of the certificate in text form, and -noout means to not print out the encoded certificate. $ openssl x509 -noout -subject -in /etc/ssl/glusterfs.pem To view and parse a certificate with openssl, run the following command with the openssl x509 utility: openssl x509 -in -text -noout. Openssl x509 -noout -subject -in /etc/ssl/ Openssl x509 -noout -subject -in your-file.pem Fig.01: Example of host name and CN match giving out green icon How do I get common name (CN) from SSL certificate? ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |