Show content of a PEM certificate:

(only the first one if more chained)

$ openssl x509 -in certfile.pem -noout -text
$ openssl x509 -in certfile.pem -noout -pubkey

Options:

-noout: do not print the PEM itself (the input)
-text: print full details
-pubkey: print PEM public key

Show items of a PEM chain (file / connect):

$ openssl crl2pkcs7 -nocrl -certfile certchain.pem | openssl pkcs7 -print_certs [-noout]
$ openssl s_client -showcerts -connect <server>:443 </dev/null

Check a PEM private key (w. pkey/rsa subcommand):

$ file privkey.pem
$ openssl pkey -in privkey.pem -noout -check
$ openssl rsa -in privkey.pem -noout -check
$ openssl rsa -in privkey.pem -noout -text
$ openssl rsa -in privkey.pem -pubout

Check/show a PEM public key:

$ openssl rsa -in privkey.pem -pubout | openssl rsa -pubin -noout -text
$ openssl rsa -in pubkey.pem -pubin -noout -text

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

openssl.md

openssl.md

Show content of a PEM certificate:

Show items of a PEM chain (file / connect):

Check a PEM private key (w. pkey/rsa subcommand):

Check/show a PEM public key:

Files

openssl.md

Latest commit

History

openssl.md

File metadata and controls

Show content of a PEM certificate:

Show items of a PEM chain (file / connect):

Check a PEM private key (w. pkey/rsa subcommand):

Check/show a PEM public key: