์ด ๋ช
๋ น์ด๋ CRL ํ์ผ์ DER ๋๋ PEM ํ์์ ๋ง๋ค๊ธฐ ์ํ ๋ช
๋ น์ด ์ด๋ค
https://www.openssl.org/docs/man3.0/man1/openssl-crl.html ์ฐธ์กฐ ํ์๋ค.
PEM ํ์์ CRL ํ์ผ์ DER ๋ก ๋ฐ๊พธ๊ธฐ
openssl crl -in crl.pem -outform DER -out crl.der
CRL ํ์ผ ์ ๋ณด ๋ณด๊ธฐ
openssl crl -in crl.der -text -noout
CRL ํ์ผ ์ ๋ณด ๋ณด๊ธฐ ๊ฒฐ๊ณผ
ertificate Revocation List (CRL):
Version 2 (0x1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: C = KR, ST = Korea, O = TEST, CN = CA
Last Update: Apr 25 06:42:20 2023 GMT
Next Update: May 25 06:42:20 2023 GMT
CRL extensions:
X509v3 CRL Number:
3
Revoked Certificates:
Serial Number: 3C6145066B40C0D30AB6394A4B64C0913D361C05
Revocation Date: Apr 25 06:39:50 2023 GMT
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
4d:ae:11:dd:6c:a8:6a:17:f7:c6:20:8a:94:90:b2:5f:c5:68:
b3:1b:b6:8d:c8:02:54:31:fb:96:3b:d2:7a:91:d6:95:70:ec:
26:32:15:80:2f:a6:f2:08:c1:fe:e8:db:05:0b:48:08:ba:a8:
e7:28:df:65:ee:fe:a9:d1:c2:b2:2b:33:b5:dd:74:a0:b0:63:
34:03:41:94:d5:72:57:c6:4e:ee:6a:5a:f2:44:45:61:0c:f3:
b3:5a:2d:6a:76:3a:61:28:cc:33:97:0b:2a:49:6e:03:54:c8:
da:58:5a:d6:e7:37:b2:36:93:b6:73:0b:1f:37:eb:39:65:03:
9b:b0:6e:5e:47:a4:79:9e:87:ea:b0:2e:c5:c7:7c:49:34:13:
98:21:be:20:3a:51:3d:96:fa:d7:93:b4:eb:52:4c:de:19:6e:
79:9a:a6:81:b2:2a:73:14:45:a7:10:d9:a7:ed:c9:50:df:40:
b9:a8:bd:3e:17:7a:b8:5b:bf:57:57:30:00:0f:54:f2:12:ab:
01:ea:41:a1:2a:54:92:8e:ba:62:80:02:0d:ae:ec:46:4c:21:
cf:f4:2c:14:8d:c7:d7:46:dd:86:eb:5c:fa:bf:80:2a:62:f7:
51:45:fb:1d:93:75:3d:e5:fd:69:89:45:c2:3b:da:94:d1:ae:
d0:71:3f:ff
CRL ์ ๋ณด์์ issuer ๋ณด๊ธฐ
openssl crl -in crl.der -issuer -noout
issuer=C = KR, ST = Korea, O = TEST, CN = CA
crl ๋ช
๋ น์ด๋ก๋ crl ์ ๋ณด๋ฅผ ๋ณด๊ธฐ ์ํ ๊ธฐ๋ฅ์ ์ ๊ณตํ๋ค.
crl ์์ฑ์ ํ๋ ๊ฒ์ ca ๋ช
๋ น์ด์์ ์ง์ํ๋ค.
'Manual > OpenSSL' ์นดํ ๊ณ ๋ฆฌ์ ๋ค๋ฅธ ๊ธ
[OpenSSL] EdDSA ์๊ณ ๋ฆฌ์ฆ Ed25519 Ed448 ํค ์์ฑ (0) | 2023.06.14 |
---|---|
[OpenSSL] ca ๋ช ๋ น์ด (0) | 2023.05.24 |
[OpenSSL] x509 ๋ช ๋ น์ด (0) | 2023.05.20 |
[OpenSSL] pkeyutl ๋ช ๋ น์ด (0) | 2023.05.19 |
[OpenSSL] asn1parse ๋ช ๋ น์ด (0) | 2023.05.15 |