go-x509ck

command module
v0.1.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 20, 2018 License: MIT Imports: 8 Imported by: 0

README

x509ck - Check arbitrary X.509 Certificates

I had a problem the other day; I didn't trust that I'd been given the right CA + certificate + private key combination. I tried using openssl; then I had two problems.

So I wrote this utility.

Usage is straightforward:

$ x509ck --ca   suspect-ca.pem \
         --cert suspect-cert.pem \
         --key  suspect-key.pem
x509 ok!

This checks that:

  1. suspect-ca.pem contains a valid, PEM-encoded X.509 cert.
  2. suspect-cert.pem contains a valid, PEM-encoded X.509 cert.
  3. suspect-key.pem contains a valid, PEM-encoded RSA key.
  4. suspect-key.pem is the key for suspect-cert.pem
  5. suspect-ca.pem signed suspect-cert.pem

If you don't have a CA (or don't care about parent signing), you can omit the --ca flag and steps 1 and 5 will be skipped:

$ x509ck -c suspect-cert.pem \
         -k suspect-key.pem

Happy Hacking!

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.