本文介绍如何将PKCS12证书转换为临时PEM格式,并使用OpenSSL工具查询证书的有效期。提供了两种方法来获取证书的有效截止日期,一种只显示截止日期,另一种则提供更多关于证书的详细信息。
First you will need to translate the pkcs12 certificate into a PEM certificate.
The PEM certificate is only needed temporarily and can later be removed.
|
1
2
3
4
5
|
$ openssl pkcs12 -
in
certificate.p12 -out tempcrt.pem
Enter Import Password:
MAC verified OK
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
|
Now, we use thetempcrt.pemthat we generated to determine the expiration date. The first method, which only displays the expiration date can be retrieved like this:
|
1
2
|
$ openssl x509 -
in
tempcrt.pem -noout -enddate
notAfter=Jan 3 23:19:24 2009 GMT
|
The second method which includes a lot more detail about the certificate below, I’ve only included the details relevant to the creation and expiration dates.
|
1
2
3
4
5
6
|
$ openssl x509 -
in
tempcrt.pem -noout -text
[ ... snip ... ]
Validity
Not Before: Jan 3 23:19:24 2008 GMT
Not After : Jan 3 23:19:24 2009 GMT
[ ... snip ... ]
|
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
