[openssl-users] Need help encrypting my ca.key

jack seth bird_112 at hotmail.com
Wed Jan 7 03:38:24 UTC 2015

Thanks for your help.  I prefer to err on the side of caution.  Before I delete my plaintext ca.key; I want to be absolutely sure that I get back the exact key when I decrypt it.  I'm a noob with this so I don't want to take any chances.

Thanks again.

> Date: Tue, 6 Jan 2015 23:39:04 +0000
> From: openssl-users at dukhovni.org
> To: openssl-users at openssl.org
> Subject: Re: [openssl-users] Need help encrypting my ca.key
> On Tue, Jan 06, 2015 at 05:25:21PM -0600, jack seth wrote:
> > Well I ran the command 
> > openssl asn1parse -in ca.key
> > 
> > I got a bunch of numbers, a hex dump, and something that says 'rsaEncryption'
> In that case, this is a PKCS#8 file encoded in PEM.  The first
> line was probably:
> 	-----BEGIN PRIVATE KEY-----
> > It does have MII at the start but it also has ----Begin Private Key---- at the beginning.
> Now that I've read this far, good to see everything still makes
> sense.
> > Any more steps to follow to find out what type of key this is?
> It is an RSA key, in PKCS#8 format, encoded as PEM.  The "openssl
> pkey" command outputs PKCS#8.  The "openssl rsa" command outputs
> the legacy RSA format.  Use "openssl pkey" not "openssl rsa".
> But to be blunt this is all a big waste of time.  Both formats work
> just fine, and contain identical data, if you bother to check it
> with "-text".
> -- 
> 	Viktor.
> _______________________________________________
> openssl-users mailing list
> openssl-users at openssl.org
> https://mta.opensslfoundation.net/mailman/listinfo/openssl-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.opensslfoundation.net/pipermail/openssl-users/attachments/20150106/f97a9273/attachment.html>

More information about the openssl-users mailing list