Rob Garth Mildly Useful Stuff

Cert testing from the command line

I am always forgetting openssl command-line options. Just some quick commands for testing the validity of ssl certs from the command line

Checking local cert validity

openssl x509 -in server.crt -text -noout

Check a key

openssl rsa -in server.key -check

Check a remote cert

$ echo | openssl s_client -servername \
 -connect 2>/dev/null | \
 openssl x509 -text