Categories:
DH Keys (39)
DSA Keys (71)
EC Keys (281)
Firefox (32)
General (13)
Google Chrome (25)
Intermediate CA (152)
Java VM (20)
JDK Keytool (25)
Microsoft CertUtil (26)
Mozilla CertUtil (18)
OpenSSL (237)
Other (17)
Portecle (38)
Publishers (1786)
Revoked Certificates (30)
Root CA (87)
RSA Keys (2036)
Tools (47)
Tutorial (7)
What Is (21)
Windows (129)
Collections:
Other Resources:
OpenSSL "rsautl -verify" - RSA Signature Verification
What is the purpose of the OpenSSL "rsautl -verify" command? Can I use it to verify a signed document?
✍: FYIcenter.com
Yes, you can use OpenSSL "rsautl -verify" command to verify a signed document.
But you need other OpenSSL commands to generate a digest from the document first.
For example, you received 3 files as part of a "signed" document: notepad.exe, sha1_signed.dgt, and my_rsa_pub.key, you can the following OpenSSL commands to verify the signature:
C:\Users\fyicenter>\local\openssl\openssl.exe OpenSSL> dgst -sha1 -binary -out sha1.dgt \windows\system32\notepad.exe OpenSSL> rsautl -verify -pubin -inkey my_rsa_pub.key -in sha1_signed.dgt -out sha1_decrypted.dgt OpenSSL> exit C:\Users\fyicenter>comp sha1.dgt sha1_decrypted.dgt Comparing sha1.dgt and sha1_decrypted.dgt... Files compare OK
Commands used in this test are:
Since the two digests are identical, the digital signature is valid.
⇒ OpenSSL "rsautl -encrypt" vs. "rsautl -sign"
⇐ OpenSSL Verify Signed Documents with RSA Keys
2017-03-25, 5161👍, 0💬
Popular Posts:
Certificate Summary: Subject: Chambers of Commerce Root - 2008 Issuer: Chambers of Commerce Root - 2...
Certificate Summary: Subject: GlobalSign Issuer: GlobalSign Expiration: 2029-03-18 10:00:00 UTC Key ...
How to import personal certificate into certificate stores using "certmgr.msc"? My personal certific...
Certificate Summary: Subject: Sonera Class1 CA Issuer: Sonera Class1 CA Expiration: 2021-04-06 10:49...
Certificate Summary: Subject: CLASS 2 KEYNECTIS CA Issuer: Class 2 Primary CA Expiration: 2019-07-06...