6 Sep
2007
6 Sep
'07
9:41 p.m.
I very much doubt that, at least if you want to report decoded information. Conceptually, there is an infinite number of extensions, and when you are done, I can show you lots of certificates that have extensions that you don't support.
I'm not going to decode anything; I'm just using the OpenSSL functionality and providing whatever it provides.
Hmm. In this certificate, none of the extensions you report have been marked critical; they are all non-critical.
That's what I meant by "simpler to show everything".
Also, you are reporting the logotype (1.3.6.1.5.5.7.1.12) incorrectly; it's defined in RFC 3709, and it's definitely not an empty string in the certificate you've used.
Yes, I see. I'll poke at the OpenSSL code harder :-). Bill