Verify SSL Certificates using Openssl

[virenajmera]

I am working on below things:

1. Generate CSR(Certificate Signing Request)
2. Upload SSL Certificates

 

To generate SSL certificate I am using something like:

            $privkey = openssl_pkey_new();
            $csr = openssl_csr_new($dn, $privkey);
            $sscert = openssl_csr_sign($csr, null, $privkey, $days);
            openssl_csr_export($csr, $csrout);
            openssl_pkey_export($privkey, $pkeyout, $_POST['password']);
            openssl_pkey_export_to_file($privkey, "<path/to/store/server.key>");
            openssl_csr_export_to_file($csr, "/tmp/".<domain-name>.".csr");

 

Now using CSR request, I am able to generate <domain-name.cer>,<DigitalCert.cer>.

 

Now once I upload this(.cer) certificates, I need to verify those certificates.

Reason: Someone generated these certificates on say "a.com" and tries to upload on "b.com". this should not happen, so I want to validate the uploaded SSL certificates.

 

In PHP, we have

$ok = openssl_verify($data, $signature, $pubkeyid);

but i am not able to get what things would be treated as $data, $signature and $pubkeyid based on the above certificate generation process.

 

Please help me on this. Sample code will be really appreciated

 

Eagerly waiting for the reply .

 

Thanks,

Viren Ajmera

[neubert]

Seems like you've had a good number of answers on stackoverflow:

 

http://stackoverflow.com/q/20207985/569976

 

It also seems like you've ignored some of those answers - ie. mine