Reputation: 12518
How can I pull the SSL certificate from a remote server?
As the title says. I need to use it to work around an SSL error I am getting in my application.
Upvotes: 1
Views: 5080
Answers (1)
Reputation: 2836
You can do this with openssl via terminal, this question has actually been asked over on ServerFault.
In order to download the certificate, you need to use the client built into openssl like so:
echo -n | openssl s_client -connect HOST:PORTNUMBER | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > /tmp/$SERVERNAME.cert
That will save the certificate to /tmp/$SERVERNAME.cert.
You can use -showcerts if you want to download all the certificates in the chain. But if you just want to download the server certificate, there is no need to specify -showcerts
echo -n gives a response to the server, so that the connection is released
sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' removes information about the certificate chain. This is the preferred format to import the certificate into other keystores.
Upvotes: 2
Related Questions
- Using openssl to get the certificate from a server
- How do I download the certificate from a web server that is self signed using PowerShell?
- How can I fetch a certificate from a URL?
- getting ssl certificate issued to programmatically
- Get ssl certificate on localhost
- Fetch specific website'SSL certificate's public key on shared server
- how to obtain SSL certificate information of a remote server in c#
- obtain ssl certificate information - .net
- c# how to read the certificate information from an untrusted server
- Open SSL get certificate from server