Collections:
Other Resources:
OpenSSL "rsautl -verify" - RSA Signature Verification
What is the purpose of the OpenSSL "rsautl -verify" command? Can I use it to verify a signed document?
✍: FYIcenter.com
Yes, you can use OpenSSL "rsautl -verify" command to verify a signed document.
But you need other OpenSSL commands to generate a digest from the document first.
For example, you received 3 files as part of a "signed" document: notepad.exe, sha1_signed.dgt, and my_rsa_pub.key, you can the following OpenSSL commands to verify the signature:
C:\Users\fyicenter>\local\openssl\openssl.exe OpenSSL> dgst -sha1 -binary -out sha1.dgt \windows\system32\notepad.exe OpenSSL> rsautl -verify -pubin -inkey my_rsa_pub.key -in sha1_signed.dgt -out sha1_decrypted.dgt OpenSSL> exit C:\Users\fyicenter>comp sha1.dgt sha1_decrypted.dgt Comparing sha1.dgt and sha1_decrypted.dgt... Files compare OK
Commands used in this test are:
Since the two digests are identical, the digital signature is valid.
⇒ OpenSSL "rsautl -encrypt" vs. "rsautl -sign"
⇐ OpenSSL Verify Signed Documents with RSA Keys
2017-03-25, ≈12🔥, 0💬
Popular Posts:
How to get a list of all certificates in "Personal" certificate store using "certmgr.exe"? The inter...
What can I use OpenSSL "ans1parse" command for? What are options supported by the "ans1parse" comman...
Why I am getting the "error while loading CRL number" error when running OpenSSL "ca -gencrl" comman...
Certificate summary - Owner: *.api.answers.com, Answers Corporation, L=New York, ST=New York, US Iss...
Certificate summary - Owner: *.vimeo.com, "Vimeo, LLC", L=New York, ST=New York, US Issuer: DigiCert...