Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

ssl : Unable to load certificate

Tags:

I have 2 files - CSR.csr and newkey.key, both seem to be in PEM format as follows -

-----BEGIN CERTIFICATE REQUEST-----  MIID....  -----END CERTIFICATE REQUEST-----  -----BEGIN RSA PRIVATE KEY-----  MI...  -----END RSA PRIVATE KEY-----

When I'm trying to read the CSR.csr file, I get the following error :

$ openssl x509 -in CSR.csr -text -noout unable to load certificate 140518720210760:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:698:Expecting: TRUSTED CERTIFICATE

I read that we get this error when the input file is in DER format, so I tried the following -

$ openssl x509 -inform DER -in CSR.csr -text -noout

but now I get the error -

unable to load certificate 140519053051720:error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag:tasn_dec.c:1320: 140519053051720:error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error:tasn_dec.c:382:Type=X509

And it seems this error occurs when the input file is already in PEM format and one tries to read it in DER format.

Really confused how to go about it as I'm new to SSL. Please help!

like image 385
Kat.S Avatar asked Apr 12 '16 06:04

Kat.S

People also ask

How do you bypass a certificate error?

Open Internet Explorer. Select the options gear, then select “Internet Options“. Select the “Advanced” tab. Scroll down to the “Security” section, and uncheck the “Warn about certficate address mismatch” option.

What is SSL certification failed?

An SSL certificate error occurs when the browser cannot verify the SSL certificates returned by the server. When the error happens, the browser blocks the website and warns the user that the website cannot be trusted as shown below. These warnings will negatively impact the user's trust in your website.

1 Answers

In my case I was trying to read my cer file and was receiving the error stated above

openssl x509 -in CSR.csr -text -noout unable to load certificate 140518720210760:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:698:Expecting: TRUSTED CERTIFICATE

I had to convert it to a crt file using openssl. 

openssl x509 -inform DER -in <certname>.cer -out <certname>.crt openssl x509 -in <certname>.crt -text

Here's the doc i used. I was able to read it using openssl after that

like image 140
Norbert Avatar answered Oct 14 '22 06:10

Norbert
Sign in to Comment

Related questions

How to Clear Database in Realm in Android
Proper mechanism to downgrade react-native
C# Generic Interface and Factory Pattern
sqlx - non-struct dest type struct with >1 columns (2)
Crashlytics does not show crashes
Angular 2 Error: No provider for Http in Karma-Jasmine Test
In c, in bool, true == 1 and false == 0?
Can I create an alias of a type in Golang?
Copy file from Elastic beanstalk to local machine
Passing API key with HTTP header in cURL
What is the difference between void and static void function in C?
Jenkins Global environment variables in Jenkinsfile

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!