Subject Key Identifier hash method
Robert Moskowitz
rgm at htt-consult.com
Wed Jun 7 12:56:51 UTC 2023
I am trying to figure out if the Subject Key Identifier hash method is
carried in the certificate. An asn1dump of a "regular" cert shows:
276:d=4 hl=2 l= 29 cons: SEQUENCE
278:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Subject Key
Identifier
283:d=5 hl=2 l= 22 prim: OCTET STRING [HEX
DUMP]:04144F0C1A75F4AF13DC67EC18465C020FC22A82616B
307:d=4 hl=2 l= 31 cons: SEQUENCE
309:d=5 hl=2 l= 3 prim: OBJECT :X509v3 Authority
Key Identifier
314:d=5 hl=2 l= 24 prim: OCTET STRING [HEX
DUMP]:30168014A8885F91878E4ED6AA2056C535E2212413F96BA2
I cannot easily see if the hashing method is contained here. I am
assuming it is a sha2 hash of the EdDSA public keys, but how do I tell?
Of course I am asking as I want to use the rfc9374 DETs here.
thanks
More information about the openssl-users
mailing list