ipsec pki --print¶

Synopsis¶

  pki --print [--in file] [--type rsa-priv|ecdsa-priv|pub|x509]

        --help     (-h)  show usage information
        --in       (-i)  input file, default: stdin
        --type     (-t)  type of credential, default: x509
        --debug    (-v)  set debug level, default: 1
        --options  (-+)  read command line options from file

Description¶

Print credentials in a human readable form.

Examples¶

• Print a X.509 CA certificate:

$ ipsec pki --print -i caCert.der

cert:      X509
subject:  "C=CH, O=strongSwan, CN=strongSwan CA" 
issuer:   "C=CH, O=strongSwan, CN=strongSwan CA" 
validity:  not before Jul 23 16:32:42 2010, ok
           not after  Jul 22 16:32:42 2013, ok (expires in 1094 days)
serial:    1f:a2:d4:d5:ab:fc:b1:b2
flags:     CA self-signed 
authkeyId: ec:e3:b5:f3:45:1f:2d:cd:8e:9e:dc:20:65:75:6a:56:9e:04:96:b7
subjkeyId: ec:e3:b5:f3:45:1f:2d:cd:8e:9e:dc:20:65:75:6a:56:9e:04:96:b7
pubkey:    RSA 2048 bits
keyid:     fb:81:5e:b9:2c:0a:4d:ff:f3:9f:35:4b:d5:79:2e:85:02:ca:30:d2
subjkey:   ec:e3:b5:f3:45:1f:2d:cd:8e:9e:dc:20:65:75:6a:56:9e:04:96:b7