Hi
I am using pyOpenSSL to process a PEM certificate.
From the command line I can use ‘openssl x509 -inform pem -text -in 10.pem’ to
process the certificate and can see:
Signature Algorithm: ecdsa-with-SHA256
However, when I try this in python with pyOpenSSL on my Mac, I struggle.
Can someon
Hi Paul,
If what you're trying to do is manipulate X.509 certificates and public
keys, I think you'll have an easier time using the pyca/cryptography APIs,
they're significantly richer and better tested -- and since pyOpenSSL
depends on pyca/cryptography you already have a copy :-)
https://crypto
Sure, you can parse an X.509 certificate and then do whatever you want with
it:
https://cryptography.io/en/latest/x509/reference/#cryptography.x509.load_pem_x509_certificate
There's no standard JSON serializatino for X.509, but you can use the
individual attributes/methods from a certificate to se
I've figured out how to create a self signed key that does not have a CSR
associated with it, and I know how to create a CSR. I cannot seem to
figure out or find examples of using PyOpenSSL to create a certificate with
a CSR associated with it. What am I missing?
Thank You...James
Hi James,
While this is possible with pyOpenSSL (via
http://pyopenssl.readthedocs.io/en/stable/api/crypto.html#OpenSSL.crypto.X509Req.sign),
I'd recommend doing it with pyca/cryptography. It has a much better
documented API (https://cryptography.io/en/latest/x509/) and is the
preferred API if poss
(Please reply to the full mailing lists)
https://cryptography.io/en/latest/hazmat/primitives/asymmetric/ec/#cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey
describes the methods that an EllipticCurvePublicKey has for exporting the
key, either to bytes or ot raw numbers.
Alex
