{"data":[{"type":"content","namespace":"default","id":"54b58332-aa20-44c9-aee8-9855aff4f91c","attributes":{"slug":"openssl-certificate-chain","date":"2017-02-11T20:58:49.000Z","type":"post","url":"/2017/02/11/openssl-certificate-chain/","aliases":["/2017/02/11/openssl-certificate_chain/"],"language":"en","title":"Extract a certificate chain with OpenSSL","author":"bhuisgen","image":"https://blog-storage.hbis.fr/content/default/content/post/openssl-certificate-chain/image.png","content":"

The openssl command makes it possible to retrieve the certificate chain from a host.

\n\n

The following command retrieves the full chain and saves it into a file:

\n\n

$ echo | openssl s_client -connect my.host.com:443 -showcerts 2>&1 |  \\\n    sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > fullchain.pem\n

\n","excerpt":"The `openssl` command makes it possible to retrieve the certificate chain from a host.","categories":["administration"],"tags":["openssl"],"series":null,"keywords":null},"links":{"self":"https://blog-api:8443/v1/namespaces/default/content/54b58332-aa20-44c9-aee8-9855aff4f91c"}}],"included":[{"type":"author","namespace":"default","id":"7c787f8d-8936-4680-baf5-525e9cac7f57","attributes":{"slug":"bhuisgen","date":"2021-10-24T12:00:00.000Z","name":"Boris HUISGEN","image":"https://blog-storage.hbis.fr/content/default/authors/bhuisgen/image.jpg","language":"en","bio":"Blog owner"},"links":{"self":"https://blog-api:8443/v1/namespaces/default/authors/7c787f8d-8936-4680-baf5-525e9cac7f57"}}],"links":{"self":"https://blog-api:8443/v1/namespaces/default/content","first":"https://blog-api:8443/v1/namespaces/default/content?include=author&language=en&limit=1&offset=0&type=post&url=%2F2017%2F02%2F11%2Fopenssl-certificate-chain%2F","last":"https://blog-api:8443/v1/namespaces/default/content?include=author&language=en&limit=1&offset=0&type=post&url=%2F2017%2F02%2F11%2Fopenssl-certificate-chain%2F"},"meta":{"total":1,"offset":0,"limit":1}}