jsrsasign - how to extract an x.509 certificate

2019-09-01 14:33发布

Is it possible to use jsrsasign to extract the fingerprint of an x.509 certficate, similar to what can be achieved using this openssl command:

openssl x509 -sha1 -in cert.pem -noout -fingerprint - Ref: openssl x.509 doc

I'm reading my X509 like so:

var c = new X509(); c.readCertPEM(cert); \\ how to get the fingerprint?

Ref: jsrsasign x.509 apidoc

标签： javascript security cryptography digital-signature x509

2条回答

倾城　Initia

2楼-- · 2019-09-01 14:55

Thank you for using jsrsasign. You can write like this:

hex = KEYUTIL.getHexFromPEM(certPEMstring);

fingerprint = KJUR.crypto.Util.hashHex(hex, 'sha256');

You can also find a fingerprint example here: http://kjur.github.io/jsrsasign/tool_certview.html

0人赞添加讨论(0) 举报

闹够了就滚

3楼-- · 2019-09-01 15:16

You just need to extract the string from between the "-----BEGIN CERTIFICATE-----" header and "-----END CERTIFICATE----- " footer, base64 decode it and compute SHA1 hash of decoded data.

0人赞添加讨论(0) 举报

jsrsasign - how to extract an x.509 certificate

采纳回答

编辑标签

举报内容

检举类型

检举原因

检举说明(必填)

打开微信“扫一扫”，打开网页后点击屏幕右上角分享按钮

付费偷看金额在0.1-10元之间