Solved

identifying the proper extensions for .txt SSL certificates

Posted on 2014-01-27
1
333 Views
Last Modified: 2014-03-05
Hello, I have some SSL certs in ASCII format and I am trying to identify what was the proper file type so I can save them and upload them in my systems

The three files I have are all opened in notepad , the filenames are :

root certificate.txt
chain certificate.txt
server certificate.txt

every other time i've worked with SSL I had the files either in .crt , or .cer format, or .pfx. I tried to decode them on the SSLshopper SSL decoder which uses openssl, but it does not show me what extension i need to use.

Thank you
0
Comment
Question by:sk391
1 Comment
 
LVL 3

Accepted Solution

by:
cristiantm earned 500 total points
ID: 39812039
Extensions are just something to give a hint to your system on what the system will find inside that file.

Certificate files can be basically in two formats: DER or PEM. DER is ANS.1 binary encoded, and PEM is base64 encoded with some header and footer (all printable chars, probably this is what you mean with ASCII format).

Windows will identify CER and CRT extensions as certificates, no matter if the file is in DER or PEM.

Openssl will assume the file is PEM, no matter the extension. If you want to inform a DER file, you need to use the -inform DER parameter when calling it.

From [1] it seems that you need them in PEM for the tool you cite. But the extension does not matter. In fact, if you are talking about that tool, the extension really can not even be seen by the tool since you can only paste the content of the file.

For the system that you want to upload the files, it will depend on the system you are talking about.

Side note about PFX: .PFX usually is a PKCS#12 file, that is not a certificate file. It is another format, that is used for Key transport and may contain a certificate inside. Nut it is not a *certificate* extension/format.

[1] http://www.sslshopper.com/certificate-decoder.html
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

First of all, clustering IIS is something you should rarely consider doing. In almost all cases, Microsoft Network Load Balancing (NLB) (http://technet.microsoft.com/en-us/library/cc758834(WS.10).aspx) is a much better solution when you need to p…
Imagine a situation that you have installed SSL (http://en.wikipedia.org/wiki/Secure_Sockets_Layer) Certificate on your Cisco ASA (Cisco Adaptive Security Appliance) firewall. Installation of SSL certificate on ASA is an another topic for which you …
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now