Checking an Certificate Chain

  • Post by Mike Dixson
  • Jul 20, 2020
post-thumb

Use the following one liner to check the a certificate chain in detail:

openssl crl2pkcs7 -nocrl -certfile chained.crt | openssl pkcs7 -print_certs -text -noout | less

Use this command to produce a simple list of the chain in order:

echo "" | openssl s_client -connect www.google.com:443 2>&1 | grep -A 6 "Certificate chain"

#If your testing a local server which is listening on the same port for different headers use this:
echo "" | openssl s_client -connect 172.217.169.4:443 -servername www.google.com 2>&1 | grep -A 6 "Certificate chain"
LATEST POST
  • Post By Mike Dixson
  • Oct 25, 2024
Bulk Clearing Scheduled Downtime in Nagios
  • Post By Mike Dixson
  • Sep 15, 2024
Three Mes - How Past Me Pays it Forward
  • Post By Mike Dixson
  • Sep 10, 2024
SSH to an AWS Instance over SSM
  • Post By Mike Dixson
  • Sep 08, 2024
Posting on the go with Hugo
  • Post By Mike Dixson
  • Aug 30, 2024
AI Pay My Bills: A Quick and Easy Lifehack for Splitting Receipts
  • Post By Mike Dixson
  • Aug 27, 2024
Everyday AI in IT
  • Post By Mike Dixson
  • Jul 18, 2023
Copying a Sharepoint Page To Another Site
  • Post By Mike Dixson
  • Aug 20, 2021
Why I’m putting my pronouns in my signature/everywhere and you should too
  • Post By Mike Dixson
  • Nov 17, 2020
Using MFA for Sudo Only
  • Post By Mike Dixson
  • Oct 26, 2020
Finally Solved – Nextcloud SMB Not Working on Ubuntu 20.04
CATEGORIES