DH Keys DSA Keys EC Keys Firefox General Google Chrome IE (Internet Explorer) Intermediate CA Java VM JDK Keytool Microsoft CertUtil Mozilla CertUtil OpenSSL Other Portecle Publishers Revoked Certificates Root CA RSA Keys Tools Tutorial What Is Windows

OpenSSL "ans1parse" - ASN.1 INTEGER Field Type

Q

What is ASN.1 INTEGER field type? How to specify INTEGER field type in OpenSSL "asn1parse" command?

✍: FYIcenter.com

A

ASN.1 INTEGER field is a primitive field that can be used to store signed integers of any size. To use ASN.1 INTEGER field in OpenSSL "asn1parse" command, you need to remember the following rules:

  • ASN.1 INTEGER type tag is 0x02.
  • ASN.1 INTEGER type code for "asn1parse" command is INTEGER or INT.
  • ASN.1 INTEGER value literal can be a signed integer in decimal or hexadecimal digits of any size. For example, 1, -1, 128, -128, 0x01, and -0x01 are all valid INTEGER values.
  • ASN.1 INTEGER value is stored with DER encoding in signed binary integer format. For example, 1, -1, 128, and -128 are stored in DER format as 0x01, 0xff, 0x0080, and 0x80 Note that in signed binary number format, integer 128 must stored with 2 bytes as 0x0080 to keep the sign bit (the leading bit) as 0.

Here are examples of using INTEGER with the OpenSSL "asn1parse" command: 

C:\Users\fyicenter>\local\openssl\openssl.exe

OpenSSL> asn1parse -genstr INTEGER:1 -out p1.der
    0:d=0  hl=2 l=   1 prim: INTEGER           :01

OpenSSL> asn1parse -genstr INTEGER:-1 -out n1.der
    0:d=0  hl=2 l=   1 prim: INTEGER           :-01

OpenSSL> asn1parse -genstr INTEGER:128 -out p128.der
    0:d=0  hl=2 l=   2 prim: INTEGER           :80

OpenSSL> asn1parse -genstr INTEGER:-128 -out n128.der
    0:d=0  hl=2 l=   1 prim: INTEGER           :-80
    
OpenSSL> asn1parse -genstr INTEGER:0x01 -out p1x.der
    0:d=0  hl=2 l=   1 prim: INTEGER           :01

OpenSSL> asn1parse -genstr INTEGER:-0x01 -out n1x.der
    0:d=0  hl=2 l=   1 prim: INTEGER           :-01

OpenSSL> exit

C:\Users\fyicenter>bin2hex p1.der
020101

C:\Users\fyicenter>bin2hex n1.der
0201ff

C:\Users\fyicenter>bin2hex p128.der
02020080

C:\Users\fyicenter>bin2hex n128.der
020180

C:\Users\fyicenter>bin2hex p1x.der
020101

C:\Users\fyicenter>bin2hex n1x.der
0201ff

Note that "bin2hex" is not a Windows command, You need to create your own tool to dump a binary file in hex format.

 

OpenSSL "ans1parse" - ASN.1 IA5STRING Field Type

OpenSSL "ans1parse -strparse" - Extract ASN.1 Sub Structure

OpenSSL "ans1parse" Command

⇑⇑ OpenSSL Tutorials

2016-09-30, 6088👍, 0💬

DH Keys DSA Keys EC Keys Firefox General Google Chrome IE (Internet Explorer) Intermediate CA Java VM JDK Keytool Microsoft CertUtil Mozilla CertUtil OpenSSL Other Portecle Publishers Revoked Certificates Root CA RSA Keys Tools Tutorial What Is Windows