Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

extract private key bytes in C#

Tags:

.net

openssl

I am currently able to extract a private key from a PFX file using OpenSSL using the following commands:

openssl pkcs12 -in filename.pfx -nocerts -out privateKey.pem

openssl.exe rsa -in privateKey.pem -out private.pem

The private.pem file begins with ---BEGIN RSA PRIVATE KEY--- and ends with ---END RSA PRIVATE KEY---

I want to do the same in C# using .NET libraries or the Bouncy Castle library.

How do I do this?

like image 453
Subbu Avatar asked Jun 06 '11 22:06

Subbu

1 Answers

This is what worked for me. Should also work for you:

using System;
using System.IO;
using System.Security.Cryptography;
using System.Security.Cryptography.X509Certificates;
using System.Text;
using Org.BouncyCastle.Crypto;
using Org.BouncyCastle.OpenSsl;
using Org.BouncyCastle.Security;

namespace SO6258771
{
    class Program
    {
        static void Main()
        {
            // Load your certificate from file
            X509Certificate2 certificate = new X509Certificate2("filename.pfx", "password", X509KeyStorageFlags.Exportable | X509KeyStorageFlags.PersistKeySet);

            // Now you have your private key in binary form as you wanted
            // You can use rsa.ExportParameters() or rsa.ExportCspBlob() to get you bytes
            // depending on format you need them in
            RSACryptoServiceProvider rsa = (RSACryptoServiceProvider)certificate.PrivateKey;

            // Just for lulz, let's write out the PEM representation of the private key
            // using Bouncy Castle, so that we are 100% sure that the result is exaclty the same as:
            // openssl pkcs12 -in filename.pfx -nocerts -out privateKey.pem
            // openssl.exe rsa -in privateKey.pem -out private.pem

            // You should of course dispose of / close the streams properly. I'm skipping this part for brevity
            MemoryStream memoryStream = new MemoryStream();
            TextWriter streamWriter = new StreamWriter(memoryStream);
            PemWriter pemWriter = new PemWriter(streamWriter);

            AsymmetricCipherKeyPair keyPair = DotNetUtilities.GetRsaKeyPair(rsa);
            pemWriter.WriteObject(keyPair.Private);
            streamWriter.Flush();

            // Here is the output with ---BEGIN RSA PRIVATE KEY---
            // that should be exactly the same as in private.pem
            Console.Write(Encoding.ASCII.GetString(memoryStream.GetBuffer()));
        }
    }
}
like image 181
Andrew Savinykh Avatar answered Nov 15 '22 08:11

Andrew Savinykh
Sign in to Comment

Related questions

.NET Data Storage - Database vs single file
Why GetHashCode() matters?
In LINQ, can I select multiple items?
Function or interface marked as restricted, or the function uses an Automation type not supported in Visual Basic
What should I map a TimeZoneInfo property to a SQL Server 2008 DB Type?
Hash on Unicode Password
Passing in an anonymous delegate to a thread...why does this work?
How to Switch Cascade delete off in a One to Many Relationship with EF CTP5 Fluent API
Change scrollbar position in TextBox?
How can I define an array without a fixed size?
How can I remove the border padding on container controls in WinForms?
Get DialogResult from custom dialog
How to test file system operations
Format decimal as US currency
System.Management.ManagementException
What is the Fastest Way to Select a Whole Table in SQL Server?
Finding Changes between 2 HUGE zone (text) files
Inserting data multiple times into an SQL table, from a single button on Windows Forms
Curious to mscorlib reference
When to use which for?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!