OpenSSL encoding errors while converting cer to pem
Solution 1
I had this problem also. Just rename the CER to PEM was enough :)
Solution 2
Like explained by ssl.com, a .cer file can be either in der or pem encoding. If it is in der encoding, you'll need to do conversion like you have tried, but if it is already in pem encoding, no conversion is necessary and you get the error you've got if you try - and you can just rename the file.
If you're unsure, it is good to know that .der is a binary format, whereas .pem is ascii one. If you echo the contents of your certificate out, a .pem file would look something like this:
-----BEGIN CERTIFICATE-----
MIIEuTCCA6G[snip lots of chars]
XmCpajQ==
-----END CERTIFICATE-----
And a .der file would look like this:
0▒▒0▒▒▒@*▒H▒▒▒▒▒0
0▒▒1
0 UUS10U
VeriSign, Inc.10U
VeriSign Trust Network1:08U
Solution 3
no need to convert the file from .cer to .pem you just need to use this command and desired result will be get openssl x509 -inform pem -in certificate.cer -pubkey -noout > certificate_publickey.pem it all depends on which encoding type used to generate the certificate as mentioned by @eis
Arthur Kushman
3.1415, 2.718, 1.6, 1-2-3-5-8-13-21, N!, 25K, R-2R
Updated on January 19, 2022Comments
-
Arthur Kushman over 2 years
I`m trying to convert the .cer file to .pem through openssl, the command is:
openssl x509 -inform der -in certnew.cer -out ymcert.pemand that's the errors I`m getting:
unable to load certificate 140735105180124:error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag:tasn_dec.c:1319: 140735105180124:error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error:tasn_dec.c:381:Type=X509What am I doing wrong?