openssl: No certificate matches private key / chained certificate

openssl certificate chained
10,808

I just had such a problem and it turned out that the "chainedcertificate.pem" file must have root, intermediate, key certificate in this exact order. Then it worked.

Share:
10,808
user643605
Author by

user643605

Updated on June 04, 2022

Comments

  • user643605
    user643605 almost 2 years

    I am getting this error while binding a chained certificate with a private key:

    "No certificate matches private key"

    the command I use is the following:

    openssl pkcs12 -export -in chainedcertificate.pem -inkey private.pem -name MyCert -out chained.p12

    Inside my chainedcertificate.pem is three blocks of BEGIN/END CERTIFICATE. CA, Intermediate and user certificate are in the file in reverse order (i.e. CA being last).

    When I remove the the two last blocks and leave only the user certifcate, the chained.p12 is generated without any error.

    Why would the insertion of the root certificate and intermediate would compromise the creation with this kind of error message ???

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Windows 2008R2 CA & OpenSSL CSR: Error parsing CSR ASN1 bad value met
Error while creating self-signed SSL certificate
OpenSSL Verify Peer (Client) Certificate in C++
How to create a single line x509 certificate that can be parsed by OpenSSL commandline tool
How to use OpenSSL for self-signed certificates with custom CA and proper SAN settings?
SSL certificate not accepted
Generate CSR with 2 OU Names
Use RSA public key to generate private key in Openssl?
SSL certificate generated with OpenSSL not working on NSS
Self Signed Certificate in Windows without makecert?