Date: Thu, 13 Nov 1997 14:46:33 -0600
From: Todd Shutts <todd@innovision.com>
To: java-security@web2.javasoft.com
Subject: JDK1.2 keytool
Greetings:
keytool is success is printing the information for the first
certificate. Signed by Verisign Class 3.
The second certificate (PEM below) fails. It is signed by
Open Financial Exchange CA, which is signed by a Verisign
root CA. This is not a PKCS #7 certificate, but a Subscriber
format.
I am going to try to write an application to using the x.509
classes to display certificate info. What are my changes
of working with these certificates signed with the OFX CA?
Thanks,
-Todd
-- Todd Shutts Innovision Corporation 913-226-8700
nala:[1] keytool -printcert -file ~/certs/vsjsdc.response keytool: Command not found. nala:[2] exitScript done, file is typescript nala:[254] keytool -printcert -file ~/certs/vsjsdc.response Owner: CN=vsjsdc.innovision.com, OU=OFX Products, O=Innovision Corporation, L=Lenexa, S=Kansas, C=US Issuer: OU=Secure Server Certification Authority, O="RSA Data Security, Inc.", C=US Serial Number: 7b1e60a0e4561aafe5a96d9c8289cdbf Valid from: Thu Sep 25 19:00:00 CDT 1997 until: Sat Sep 26 18:59:59 CDT 1998 Certificate Fingerprints: MD5: EC:B2:8B:DE:5F:17:EA:34:9A:63:85:BA:01:99:CB:20 SHA1: 64:F9:72:0F:14:66:FB:9D:C9:36:20:FA:84:C9:CF:89:3E:E0:F8:D9 nala:[255] keytool -printcert -file ~/certs/ofxjsdc.response java.security.cert.CertificateException: InvocationTargetException: java.security.cert.CertificateParsingException: java.io.IOException
PEM for the failed certificate -----BEGIN CERTIFICATE----- MIIDdzCCAuCgAwIBAgIQf/V6lUefAMjyeBsYHSdUgzANBgkqhkiG9w0BAQQFADCB mjEfMB0GA1UEChMWVmVyaVNpZ24gVHJ1c3QgTmV0d29yazEtMCsGA1UECxMkT3Bl biBGaW5hbmNpYWwgRXhjaGFuZ2UgQ0EgLSBDbGFzcyAzMUgwRgYDVQQLEz93d3cu dmVyaXNpZ24uY29tL0NQUyBJbmNvcnAuIEJ5IFJlZi4sTElBQi4gTFRELiAoYykg OTcgVmVyaVNpZ24wHhcNOTcwOTI1MDAwMDAwWhcNOTgwOTI1MjM1OTU5WjCBiDEL MAkGA1UEBhMCVVMxDzANBgNVBAgTBkthbnNhczEPMA0GA1UEBxQGTGVuZXhhMR8w HQYDVQQKFBZJbm5vdmlzaW9uIENvcnBvcmF0aW9uMRUwEwYDVQQLFAxPRlggUHJv ZHVjdHMxHzAdBgNVBAMUFm9meGpzZGMuaW5ub3Zpc2lvbi5jb20wgZ8wDQYJKoZI hvcNAQEBBQADgY0AMIGJAoGBAMTePL3Us0WQIdT4+vJseykuabd+Rn4L4yvFCpd8 1Z0DmimHIx+xd8B5lynK343Sakt64tPs3P5vytk6Dvsr5ojbJ5OnLqj9N7VYOYov URzd9HDKP9ewrR/cnkVbHyVdu0QoOmlTv7ib9StcPS+DjsHh2aWYAu/GzmnsRayO PpSrAgMBAAGjgc0wgcowCQYDVR0TBAIwADALBgNVHQ8EBAMCBaAwga8GA1UdIASB pzCAMIAGC2CGSAGG+EUBBwEBMIAwKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LnZl cmlzaWduLmNvbS9DUFMwYgYIKwYBBQUHAgIwVjAVFg5WZXJpU2lnbiwgSW5jLjAD AgEBGj1WZXJpU2lnbidzIENQUyBpbmNvcnAuIGJ5IHJlZmVyZW5jZSBsaWFiLiBs dGQuIChjKTk3IFZlcmlTaWduAAAAAAAAMA0GCSqGSIb3DQEBBAUAA4GBAFT43jcy VH5UWjxO+BDz3RTZ9JTiQqrquBTE3/X+Io9O7FjY+4A9nhoNTwbTOO6cd0UyksJa KdAHH5EThP/pqRbrmlKLoMsaJjsFwp9tzjPGlEnUhXcuSjiprgnii4SuZvloh2R7 r1gczgfwdR2DHbrCPI5up5rQTerlXBkKGwGW -----END CERTIFICATE-----