[openssl-users] Need help encrypting my ca.key
jack seth
bird_112 at hotmail.com
Wed Jan 7 03:38:24 UTC 2015
Thanks for your help. I prefer to err on the side of caution. Before I delete my plaintext ca.key; I want to be absolutely sure that I get back the exact key when I decrypt it. I'm a noob with this so I don't want to take any chances.
Thanks again.
> Date: Tue, 6 Jan 2015 23:39:04 +0000
> From: openssl-users at dukhovni.org
> To: openssl-users at openssl.org
> Subject: Re: [openssl-users] Need help encrypting my ca.key
>
> On Tue, Jan 06, 2015 at 05:25:21PM -0600, jack seth wrote:
>
> > Well I ran the command
> > openssl asn1parse -in ca.key
> >
> > I got a bunch of numbers, a hex dump, and something that says 'rsaEncryption'
>
> In that case, this is a PKCS#8 file encoded in PEM. The first
> line was probably:
>
> -----BEGIN PRIVATE KEY-----
>
> > It does have MII at the start but it also has ----Begin Private Key---- at the beginning.
>
> Now that I've read this far, good to see everything still makes
> sense.
>
> > Any more steps to follow to find out what type of key this is?
>
> It is an RSA key, in PKCS#8 format, encoded as PEM. The "openssl
> pkey" command outputs PKCS#8. The "openssl rsa" command outputs
> the legacy RSA format. Use "openssl pkey" not "openssl rsa".
>
> But to be blunt this is all a big waste of time. Both formats work
> just fine, and contain identical data, if you bother to check it
> with "-text".
>
> --
> Viktor.
> _______________________________________________
> openssl-users mailing list
> openssl-users at openssl.org
> https://mta.opensslfoundation.net/mailman/listinfo/openssl-users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.opensslfoundation.net/pipermail/openssl-users/attachments/20150106/f97a9273/attachment.html>
More information about the openssl-users
mailing list