Verification of the above CSR fails again:
140551506605376:error:0D0C5006:asn1 encoding routines:ASN1_item_verify:EVP lib:../crypto/asn1/a_verify.c:170:
Can you try it with this one? This should work.
Seems to "work".
It crashes because i just give it this and no private key.
but it's made using pebble, and it says that you should not use them.
If my theory is correct this should work.
MIIBMDCB1QIBADAjMQswCQYDVQQGEwJTVjEUMBIGA1UEAwwLc21ha2Rldi5uZXQwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASrjUcTneMlpvzNZ59jcOXQqk2gqF3dO7SOuF4/45ZiHbWekhJK9EFlAwH0G0dWDzysYsQgOGHr/aTmLKAKJk+AoFAwTgYJKoZIhvcNAQkOMUEwPzA9BgNVHREENjA0ggtzbWFrZGV2Lm5ldIIPd3d3LnNtYWtkZXYubmV0ghRsYXVuY2hlci5zbWFrZGV2Lm5ldDAMBggqhkjOPQQDAgUAA0gAMEUCIQCjm0q0WlCfjTQyLH6Zgn0XqLRPHU4T/eJc3FSa4E2cYQIgQf7PrYTHGfyhT7hdImt+tiec39mpVnUF8vAYOtojclk=
But maby not.
Looks good:
# openssl req -noout -text -verify
-----BEGIN CERTIFICATE REQUEST-----
MIIBMDCB1QIBADAjMQswCQYDVQQGEwJTVjEUMBIGA1UEAwwLc21ha2Rldi5uZXQwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASrjUcTneMlpvzNZ59jcOXQqk2gqF3dO7SOuF4/45ZiHbWekhJK9EFlAwH0G0dWDzysYsQgOGHr/aTmLKAKJk+AoFAwTgYJKoZIhvcNAQkOMUEwPzA9BgNVHREENjA0ggtzbWFrZGV2Lm5ldIIPd3d3LnNtYWtkZXYubmV0ghRsYXVuY2hlci5zbWFrZGV2Lm5ldDAMBggqhkjOPQQDAgUAA0gAMEUCIQCjm0q0WlCfjTQyLH6Zgn0XqLRPHU4T/eJc3FSa4E2cYQIgQf7PrYTHGfyhT7hdImt+tiec39mpVnUF8vAYOtojclk=
-----END CERTIFICATE REQUEST-----
verify OK
1 Like
So that problem is fixed (needed to add a 0 in front of the integers only if the first byte was negative).
So to conclude this:
The thing mensioned above.
I had the wrong format on the signature.
2 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.