Netscape Certificates, RSA Keys, and GPG?

Pedro Díaz Jiménez pdiaz88@terra.es
Sat Jun 30 15:38:01 2001


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Friday 29 June 2001 13:17, Janusz A. Urbanowicz wrote:

> Justin Wienckowski wrote/napisa³[a]:
> > My company issues personal certificates (for use by Netscape and IE) as
> > part of our PKI services. We're currently trying to extend that
> > infastructure to support digital signatures, and guess who gets to
> > develop it? ;)
> >
> >
> > The short of it is, we're using RSA keypairs in these signed
> > certificates. I can extract the RSA public and private keys using
> > openssl's pkcs12 and x509 libraries, but neither GPG nor PGP seem to like
> > the resulting pem-formatted RSA keypair.
> >
> >
> > Any suggestions for how to import these RSA keys into gpg (highly
> > preferred) or pgp? I'm not even quite sure what problems I"m running
> > into, as I'm not intimately familiar with the PEM message format that
> > gpg/pgp are attempting to parse.
>
> You can't do this, period. Certs you are talking about are X509 certs and
> have completely different structure. You can't make them into OpenPGP
> keys w/ signatures.
>
> The only software for Linux I know of supporting it is Netscape, premail
> with RIPEM and some mutation of mutt.
Hi, Mozilla also supports X509 certs in mail & web Cheers Pedro
>
> Alex
- -- __________________________________________________ / \ | Pedro Diaz Jimenez | | | | pdiaz88@terra.es pdiaz@acm.asoc.fi.upm.es | | | | Wanna see how 100.000! looks like? | | http://acm.asoc.fi.upm.es/~pdiaz/fact_100.000 | | | | | | There are no stupid questions, but there's a lot | | of inquisitve idiots | | Anonymous | \__________________________________________________/ - -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org mQGiBDqcGZsRBADFIahNPLk8suMlS39m8RqatLgX4dO7PU2F5p1oVvkyB7PaLQCv FREWwfrjGpxAjRnxyZ4TdaFi1oCP495t5R2CdjPZu0EfjsEqosdLXkjDsKl2n4Wo Afb6BaHMJS5PADEI0QfpZOkB8OruAZja/oGmn5rThyjgCxWHUuK1ArmeGwCg7+9a owg9wP1RohePHJSDB9d2HYMD/i7z1X4ev+K90LumgJwSWlScJ7MEip5rw4wqGOkK lF/C2nTYsoX5CVEn/pu7hROL/BWIYtBgkNDaEjsVsyb+4KjQXcZUW5l3ADipWYx2 r9s4sFfeZ9nfhDcG0aNYRcCNkYSZ/WxUkXS8UjVEAEhkFu1BA+6UZmeq3pKtJZTR +HqKA/9zRmgTon36zt2qe9eiR6DyY0EpGEI0iY+KYX6GC/wxizeHBw0FW1eOEoxF GjtxdBv/U9vi7Vgav6aY+pr4la5q6jVabe03Y8yGDFeL8jM+lqww1rzpABiGrF+W qge65zCUjL3jJE5+5yi+KcRyllb1OA7uXQTtsRw+TGq9Dvaaz7QwUGVkcm8gRGlh eiBKaW1lbmV6IChCLk8uRi5ILikgPHBkaWF6ODhAdGVycmEuZXM+iFYEExECABYF AjqcGZsECwoEAwMVAwIDFgIBAheAAAoJEJ7ud33hGMZRj20An2Ce4S/vBTuZDxnL WFBrJRnc3UdaAKDnIPNRbz7r4dh9AuBcpbCE1pQ/SLkBDQQ6nBmqEAQAr7O07Dws 5zAbQvm1hwGthXKCHtIIuWCPdX/XkNG6ZxV/cXgs4LI4oAg3GhttD2JIEk2SoVXE FOf/wIddIDz70/9mIZavMvpR31LxBFSJk0Up3caOvThM90wMttRi7tg7cf04rrMM Phy8T5bOIW/q5SMwZffbJXD7bA0/jDLdQ6MAAwYD/1emSwNTzOOmMCZadoEBpKIE HA35P2/m/SsCI+pQ/OKXKPvvrQKTQqRCcDa5aq31oSiT9M5WQ96BlIGKHRPWGpvm 0822V7M9RF2mYZPIfgKfTSvZpYHzjz+RM7PvBBiBc9l95vy70Sh7SywIF86H80Ag D0dUIDtGlrSANhXjx4EJiEYEGBECAAYFAjqcGaoACgkQnu53feEYxlHdVACgjVhU Y8CKf6MYZgQOR9eIDNvTX0AAn3dwbW1HLxEF5OQKJIsngl0BUlYK =d4S3 - -----END PGP PUBLIC KEY BLOCK----- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.4 (GNU/Linux) Comment: For info see http://www.gnupg.org iD8DBQE7PfFenu53feEYxlERAq5TAJ0QEb+dAqmJoOxW3bEa/56hEcFxggCgguPj aE8jzFy/Qqa7j/38wBuJRIA= =iHdB -----END PGP SIGNATURE-----