Questions tagged [pem]
Privacy Enhanced Mail (PEM) is a scheme for encoding cryptographic data into ASCII as used by PGP clients. Alternate usage: `.pem` files are a container format for storing certificates, private keys, and CSRs.
38 questions
2votes
1answer
122views
Extract CRT and KEY from signed PEM file without the openssl tool
Is there any way to extract a private key from a PEM file without the openssl tool on Windows? Windows MMC won't do the trick as I cannot export to PKCS#12 due to my work laptop security restrictions ...
1vote
3answers
122views
Why does PEM Base64 created by `openssl pkey` not match the DER file passed in?
In experimenting with openssl on the Linux command line with elliptic curve secp256k1 I encountered a strange situation where on converting a DER private key file to PEM format using openssl pkey the ...
0votes
1answer
799views
Is it possible to extend the validity of a pem certificate
Please help me understand and solve this problem. Assumptions Let's start with an IoT design. When it is working correctly, a remote device has a pem certificate which is used to validate traffic to ...
- 113
0votes
1answer
1kviews
How to decrypt ECDSA_secp256k1 private key from PEM format generated with OpenSSL
I'm trying to decrypt an encrypted ECDSA_secp256k1 private key generated using the OpenSSL CLI command openssl ecparam -genkey -name secp256k1 | openssl ec -aes-128-cbc -out ecdsa_priv.pem but I want ...
6votes
1answer
2kviews
Same domain, same local network, different certificate chain
I was doing some security checks in some devices in my local network and I noticed that I obtain two different certificate chains for the same domain (www.google.com) from two different devices (...
- 63
1vote
2answers
4kviews
What format is this private key in, and how can I process it using bouncycastle?
I have the following private key. I'd like to be able to process it into an instance of ECPrivateKey using Bouncycastle (or the builtin Java security API if bouncycastle isn't necessary). -----BEGIN ...
0votes
0answers
3kviews
How to properly encode in PEM an RSA private key encrypted with another RSA key?
Say I have an RSA private key, if encoded in PEM, it usually looks like: -----BEGIN RSA PRIVATE KEY----- <base64 encoded bits> -----END RSA PRIVATE KEY----- If I encrypt the said key with a ...
- 167
0votes
0answers
415views
Is it inappropriate at all for someone in my client organization to email their PEM file to me?
I have a SAML offering for my clients to access my cloud based application. Should I have a portal for them to upload their certificates or should I go the easy route and just have them e-mail them to ...
0votes
0answers
610views
How can I check the validity of a selfsigned xrdp certificate
I am connecting to a fedora xrdp server from the built-in Windows Remote Desktop client. I have access to the /etc/xrdp/key.pem and to the certificate inspection window on on Windows Remote Desktop ...
- 101
1vote
0answers
4kviews
Unable to add Zscaler certificates to Ubuntu trusted store
I have a set of three certificates to form a trusted chain from Zscaler but I cannot install them in the Ubuntu trusted store. The three corresponding certificates are there for reference: Zscaler ...
1vote
1answer
9kviews
converting just a public key from PEM to DER using openssl
There are plenty of instructions for converting PEM certificates to DER which also pop up when looking for ways to convert public keys. These are among the options offered: openssl x509 -in cert.pem -...
- 141
0votes
0answers
3kviews
How to save AES Key in PEM file
I'd like to store a private symmetric key, aes-256, in a PEM file. My understanding is that usually these types of keys are derived using RSA/EC DH and there's no need to save them, but in my ...
0votes
1answer
312views
When I run this command in OpenSSL, it also creates a file called `serial_number.pem` [closed]
Note that 00 in 00.pem is the serial number of the certificate. When I run this command, it also creates a file called 00.pem in the new certs directory. The 00.pem has the same content as enduser-...
4votes
1answer
3kviews
What is LS0... encoding of a PKI certificate?
I am looking through a set of PKI certificates and key strings that are specified in a kubernetes yaml file. They are used for testing. Some of the strings are keyed (as in yaml key-value) as crt.pem. ...
- 143
0votes
1answer
5kviews
Is it possible to decode an encoded PEM SSL certificate without OpenSSL in CLI? [closed]
It is said that PEM certificates are encoded with ASCII (Base64), excluding labels. Let's take this certificate as an example. -----BEGIN CERTIFICATE----- ...
- 127
