From e4ed366f64923af9b1b5a8cd780064dfd663d8ff Mon Sep 17 00:00:00 2001 From: inference Date: Tue, 30 May 2023 00:33:48 +0100 Subject: [PATCH] Also verify intermediate certificate authority key. --- security/openssl_certificate_chain.adoc | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/security/openssl_certificate_chain.adoc b/security/openssl_certificate_chain.adoc index a741531..da5f94a 100644 --- a/security/openssl_certificate_chain.adoc +++ b/security/openssl_certificate_chain.adoc @@ -1,6 +1,6 @@ = OpenSSL Certificate Chain -Version: 0.0.0.1 +Version: 0.0.0.2 This documentation contains the complete set of commands to create a new OpenSSL self-signed @@ -27,6 +27,9 @@ Each key can be encrypted or unencrypted, with multiple encryption options; AES == Create Intermediate Certificate Authority Key `openssl genrsa -aes256 -out intermediate-key.pem 4096` +== Verify Certificate Authority Key +`openssl rsa -noout -text -in ca-key.pem` + == Create Intermediate Certificate Signing Request `openssl req -new -sha256 -key intermediate-key.pem -out intermediate-csr.pem`