BenjaminSchnell.ch - all about
msgbartop
…my life
msgbarbottom

06 Jul 11 OCSP-Überprüfung mit OpenSSL

Um ein den Status eines elektronischen Zertifikats üeberprüfen zu können, kann der sogenannte OCSP (Online Certificate Status Protocol) verwendet werden. Dies ist jeweils ein Dienst, der bei der ausstellenden CA (Certificate-Authority) betrieben wird.

Voraussetzungen: OpenSSL, zu überprüfendes Zertifikat mit der dazugehörige Ausstellerzertifikat (im PEM-Format)

1. Kopieren der obigen Zertifikate ins OpenSSL-Laufverzeichnis, z. B. C:\OpenSSL\bin\

2. Ausführen
openssl ocsp -issuer certs/issuer.cer -cert certs/beny.cer -url http://ocsp.quovadisglobal.com/ -resp_text -respout resp.der

3. Ausgabe von OpenSSL

C:\OpenSSL-Win32\bin>openssl ocsp -issuer issuer.cer -cert beny.cer -url http://
ocsp.quovadisglobal.com/ -resp_text -respout resp.der
OCSP Response Data:
OCSP Response Status: successful (0×0)
Response Type: Basic OCSP Response
Version: 1 (0×0)
Responder Id: F1B74A6C3755B84DE763188F7FC6716F838B6FCA
Produced At: Jul 6 12:19:15 2011 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: B376E315FFDED52E3B5E59BC23F43035F5B88E34
Issuer Key Hash: D5337B2F7AEB59B1CFD64965031F146743A3709E
Serial Number: 3ACA5CA4408F9A1C
Cert Status: good
This Update: Jul 6 09:00:08 2011 GMT
Next Update: Jul 7 08:59:00 2011 GMT

Response Extensions:
OCSP Nonce:
0410323169731BA6FEEC50E1A41FA15123EF
Signature Algorithm: sha1WithRSAEncryption
21:9a:fc:ef:5c:3d:e4:96:f8:85:e6:db:36:31:71:27:3b:9d:
87:05:9a:c5:4f:27:39:cb:c9:56:82:a3:56:86:03:2a:2c:e3:
11:61:fb:36:7f:c5:9f:e3:c7:db:96:b0:43:ac:64:1d:a5:c9:
cc:29:47:5e:ce:68:70:a6:76:84:de:7b:af:3f:f0:74:83:9a:
79:c6:be:c3:ad:e7:e7:76:b3:8c:7e:3c:40:8c:03:e7:75:ab:
5b:ff:45:d0:4e:c1:e1:ba:a2:72:14:f4:24:3b:a2:7c:42:7c:
36:da:89:30:d2:a9:83:49:18:5c:61:7f:ee:6a:23:f5:f1:a4:
64:8e:83:79:7a:e0:52:74:0e:fd:2c:ff:54:2e:7e:e9:11:da:
18:11:80:22:4e:36:e4:13:7a:08:d1:44:7a:e4:5a:b4:71:52:
e9:29:7f:91:3e:10:b7:af:4f:bb:54:a6:96:03:5a:32:f8:3d:
3e:65:92:4b:d6:7c:60:6e:0a:59:97:49:77:92:cd:83:01:21:
d0:d1:d0:0d:04:6e:f7:2c:3d:ea:39:00:81:4d:60:ed:a0:cf:
b3:aa:b4:04:1f:04:78:66:93:4d:b6:ac:c4:5d:85:6b:1a:d4:
10:e2:fb:71:bb:7e:f3:d8:c1:9e:d7:95:22:27:10:1b:bd:bf:
b6:4b:68:1e
Certificate:
Data:
Version: 3 (0×2)
Serial Number:
3a:ca:5c:a4:40:8f:b2:45
Signature Algorithm: sha1WithRSAEncryption
Issuer: C=CH, O=QuoVadis Trustlink Switzerland Ltd., OU=Issuing Certific
ation Authority, CN=QuoVadis SuisseID Advanced CA
Validity
Not Before: Feb 7 15:00:45 2011 GMT
Not After : Mar 23 18:09:00 2020 GMT
Subject: C=BM, O=QuoVadis Limited, OU=OCSP Responder, CN=QuoVadis OCSP A
uthority Signature
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:99:d2:2b:17:18:51:03:19:95:78:8e:0b:05:ba:
4f:ff:ee:6a:3d:06:d8:48:2b:de:60:f3:5d:85:f9:
15:3e:81:d7:1d:53:7e:2f:6e:7d:08:38:e8:cc:09:
23:10:14:a0:15:18:50:43:ac:61:2c:8c:af:87:56:
c6:3c:8f:e5:71:29:68:30:eb:ce:11:22:68:41:74:
b4:a7:98:9d:5b:8f:c3:f0:06:73:f2:bc:48:99:9b:
71:92:90:85:59:b0:68:71:03:81:ef:ff:a3:71:01:
ea:f7:a1:95:17:2b:05:cb:e0:f8:b9:31:2e:aa:d1:
80:41:24:24:5a:80:57:b2:69:c8:bc:e8:bb:0a:4b:
2e:cb:11:94:c5:06:dc:e9:c0:28:7b:0f:3e:5a:57:
03:8b:23:f3:85:24:a7:24:5c:ae:91:c7:71:95:3b:
84:3f:41:d0:17:9f:fe:0e:00:7b:8d:54:b5:f2:9e:
0d:6d:0f:fd:08:46:3d:fb:ba:8b:da:ff:26:58:ca:
f4:04:77:26:9a:33:c0:37:03:ad:01:c2:a2:b6:6a:
43:44:40:e9:ba:b3:31:c2:c5:6a:68:03:37:1c:c8:
c6:2d:2c:83:7d:89:45:0e:b4:ad:fa:b8:29:65:d8:
16:df:36:02:9a:9e:f1:39:30:14:7a:b6:81:2a:46:
c2:35
Exponent: 65537 (0×10001)
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
OCSP No Check:

X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.8024.1.300

X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
OCSP Signing
X509v3 Authority Key Identifier:
keyid:D5:33:7B:2F:7A:EB:59:B1:CF:D6:49:65:03:1F:14:67:43:A3:70:9
E

X509v3 Subject Key Identifier:
F1:B7:4A:6C:37:55:B8:4D:E7:63:18:8F:7F:C6:71:6F:83:8B:6F:CA
Signature Algorithm: sha1WithRSAEncryption
87:aa:83:e8:f2:61:40:9c:fb:28:b2:88:3b:81:bd:fe:43:2e:
11:67:e5:4d:69:b1:36:5b:bf:74:50:da:b7:74:97:ed:01:36:
6e:0e:84:62:53:d2:5b:ec:33:7b:b0:6c:49:cf:17:8f:c4:f0:
14:44:ae:39:02:1e:43:9d:e0:fd:16:05:cd:ae:ab:96:70:dc:
fd:93:8a:f9:90:c9:82:dd:21:bc:e5:37:1e:00:2b:e5:26:29:
b5:0c:c1:bc:8d:25:d3:07:61:97:c6:b2:07:8f:29:e8:6f:31:
bf:c2:95:12:0d:d7:80:69:04:c2:8c:c3:26:90:f8:26:2e:8d:
f1:8a:9c:e0:12:70:a4:c9:a0:53:b2:be:c7:da:ee:05:43:f2:
a9:26:13:d0:03:fc:01:36:11:01:8c:69:41:bd:c2:6c:b2:70:
65:7a:d2:27:73:2f:3b:6b:8e:11:61:19:41:e0:a4:09:a3:e2:
c4:32:89:54:46:4e:e3:fd:da:c1:f1:cd:63:86:17:23:78:aa:
c8:36:a3:25:ae:76:82:70:bd:8d:71:e7:1f:63:67:f9:02:e9:
ee:24:85:a2:0f:a8:cf:ee:01:46:82:f4:32:06:3c:b2:b2:93:
47:e3:e4:a2:cb:d8:8e:84:a8:b7:2d:42:ac:4e:c3:a8:dd:5c:
23:0b:7b:16:ba:69:8e:d2:d3:dc:8a:b7:d5:4d:30:11:7e:86:
a0:40:fb:4a:bc:37:60:93:59:f2:00:20:b5:d0:6a:d6:9a:fa:
0e:4d:2d:83:d6:d2:94:fe:f6:50:31:68:50:57:ee:70:49:ef:
27:06:a8:2f:db:cd:23:0c:9c:d9:f3:f0:da:22:a3:35:5b:b2:
fc:74:ad:ab:37:74:40:da:f9:36:c4:01:5d:6b:a1:f2:52:10:
b9:9d:3c:e0:45:ad:94:2b:86:b4:8e:c4:a9:79:89:4a:35:15:
bc:d3:4e:f8:36:46:57:c0:40:9e:ac:52:e4:db:b8:88:a9:e1:
c3:1e:6c:a2:ac:76:34:da:7c:87:e9:63:d0:39:82:32:f7:5c:
18:53:46:46:3a:b1:c9:b5:bc:a5:9e:ed:44:47:ee:14:77:e6:
1f:b3:7e:53:8b:14:a4:49:04:d1:70:87:54:58:4f:3c:b0:86:
ed:e0:32:20:d4:86:fd:86:98:1a:e3:15:9a:aa:8c:8b:3a:92:
83:20:d3:e0:b1:67:e2:9a:b9:12:ac:ca:71:33:a5:8d:38:2f:
80:5c:fd:4c:67:06:15:c5:11:60:31:de:bc:df:9b:54:ab:e8:
b5:8b:ec:84:6e:f8:75:c9:71:d2:f9:04:08:08:01:ac:e2:31:
11:0a:ce:49:29:64:60:5b
—–BEGIN CERTIFICATE—–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×1Tfi9ufQg46MwJIxAUoBUYUEOsYSyMr4dWxjyP5XEpaDDrzhEiaEF0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×9jZ/kC6e4khaIPqM/uAUaC9DIGPLKyk0fj5KLL2I6EqLctQqxOw6jdXCMLexa6
aY7S09yKt9VNMBF+hqBA+0q8N2CTWfIAILXQataa+g5NLYPW0pT+9lAxaFBX7nBJ
7ycGqC/bzSMMnNnz8NoiozVbsvx0ras3dEDa+TbEAV1rofJSELmdPOBFrZQrhrSO
xKl5iUo1FbzTTvg2RlfAQJ6sUuTbuIip4cMebKKsdjTafIfpY9A5gjL3XBhTRkY6
scm1vKWe7URH7hR35h+zflOLFKRJBNFwh1RYTzywhu3gMiDUhv2GmBrjFZqqjIs6
koMg0+CxZ+KauRKsynEzpY04L4Bc/UxnBhXFEWAx3rzfm1Sr6LWL7IRu+HXJcdL5
BAgIAaziMREKzkkpZGBb
—–END CERTIFICATE—–

Filed in Digital Certificates with 0 Comments

05 Jul 11 musicaloper.ch: Marketing-Idee gesucht

Wie vermarktet man am besten eine Musical-Oper mit Socialmedia?
Ideen an socialmedia@musicaloper.ch

Informationen zum Projekt findet ihr auf:
www.musicaloper.ch

Filed in Miscellaneous with 0 Comments
« Previous Posts
sidebartop

Categories

sidebarbottom
sidebartop

Links

sidebarbottom
sidebartop
sidebarbottom
© BenjaminSchnell.ch - all about / Design: Smashing Wordpress Themes