Cryptography Tutorials - Herong's Tutorial Examples - Version 5.33, by Dr. Herong Yang
Certification Path Validation Rules
This section describes verification rules of a certificate path - The issuer's digital signature must match the subject's public key of the previous certificate in the path.
A certification path needs to be validated. Here are the validation rules:
OpenSSL offers a nice tool, the "verify" command, to validate a certification path. Here is the syntax of the "verify" command:
verify -CAfile first.crt -untrusted all_middle.crt last.crt
Last update: 2013.
Table of Contents