program displays information contained within a certificate file. By default it shows a text representation of the entire certificate. Specific facts about the certificate can be shown instead by using command-line options. If any of those options are used, then the default display is suppressed. This can be added to the output by using the
If multiple display options are included on the command-line, the facts related to those will be displayed on separate lines in the order that they occur. If an option is specified multiple time, that fact will be displayed multiple times.
The full set of command-line options to
Display the command-line options to
Display the version number of the
command. The second form includes more details.
Display information about the first certificate contained in the file named by
instead of the default user certificate.
Display X.509 distinguished names using the string representation defined in RFC 2253 instead of the default OpenSSL oneline format.
Display the text representation of the entire certificate in addition to any other facts requested by command-line options. This is the default if no fact-specific command-line options are used.
Display the subject name of the X.509 certificate.
Display the issuer name of the X.509 certificate.
Display the default hash of the issuer name of the X.509 certificate. This can be used to locate which CA certificate in the trusted certificate directory issued the certifcate being inspected.
Display a string representation of the date and time when the certificate is valid from. This is displayed in the format used by the OpenSSL
Display a string representation of the date and time when the certificate is valid until. This is displayed in the format used by the OpenSSL
Display the validity times for the default certificate
Aug 31 12:33:47 2009 GMT
Aug 31 12:33:47 2010 GMT
Display the same information about a different certificate specified on the command-line