Tell me the best way to verify ssl certificates from command line?
I'm trying to validateverify that the rsa ca-bundle and certificate are stored here They are not served by a webserver How can i verify these things?
Best Answer
You can print your certificates in pem format
openssl verify cert.pem
If your package contains additional intermediate certificates in pem format
openssl verify -untrusted ca-bundle cert.pem
If your openssl isn't set up to automatically use an installed set of root certificates (e.g. in /etc/ssl/certs ), then you can use -CApath or -CAfile to specify the CA.