How to view all ssl certificates in a bundle?

http://comments.gmane.org/gmane.comp.encryption.openssl.user/43587 suggests this one-liner:

openssl crl2pkcs7 -nocrl -certfile CHAINED.pem | openssl pkcs7 -print_certs -text -noout

It indeed worked for me, but I don’t understand the details so can’t say if there are any caveats.

updated june 22:

for openssl 1.1.1 and higher: a single-command answer can be found here serverfault.com/a/1079893 (openssl storeutl -noout -text -certs bundle.crt)

Related Posts:

  1. Best location to keep SSL certificates and private keys on Ubuntu servers?
  2. SSL Error: unable to get local issuer certificate
  3. How to install OpenSSL in windows 10?
  4. curl: (60) SSL certificate problem: unable to get local issuer certificate
  5. curl: (60) SSL certificate problem: unable to get local issuer certificate
  6. How to generate a self-signed SSL certificate using OpenSSL?
  7. how to download the ssl certificate from a website?
  8. Heartbleed: how to reliably and portably check the OpenSSL version?
  9. Generating a self-signed cert with openssl that works in Chrome 58
  10. ping: google.com: Temporary failure in name resolution [closed]
  11. When you use ‘badidea’ or ‘thisisunsafe’ to bypass a Chrome certificate/HSTS error, does it only apply for the current site? [closed]
  12. When you use ‘badidea’ or ‘thisisunsafe’ to bypass a Chrome certificate/HSTS error, does it only apply for the current site? [closed]
  13. Docker System has not been booted with systemd as init system
  14. Openssl : error “self signed certificate in certificate chain”
  15. CentOS vs. Ubuntu [closed]
  16. What is .crt and .key files and how to generate them?
  17. NET::ERR_CERT_REVOKED in Chrome, when the certificate is not actually revoked
  18. Docker error : no space left on device
  19. How to establish ssh key pair when “Host key verification failed”
  20. How to solve “Kernel panic – not syncing – Attempted to kill init” — without erasing any user data
  21. Received fatal alert: handshake_failure through SSLHandshakeException
  22. localhost/phpinfo.php
  23. SSL_read failing with SSL_ERROR_SYSCALL error
  24. After installing with pip, “jupyter: command not found”
  25. gpg: no valid OpenPGP data found
  26. Received fatal alert: handshake_failure through SSLHandshakeException
  27. gpg: no valid OpenPGP data found
  28. Java: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  29. E: Unable to locate package mongodb-org
  30. How to open the terminal in Atom?
  31. Error Importing SSL certificate : Not an X.509 Certificate
  32. What exactly is cacert.pem for?
  33. Valgrind permission denied on file
  34. OpenSSL: unable to verify the first certificate for Experian URL
  35. Caused by: java.security.UnrecoverableKeyException: Cannot recover key
  36. SSL CA cert (path? access rights?)
  37. nginx – nginx: [emerg] bind() to [::]:80 failed (98: Address already in use)
  38. Unable to establish SSL connection upon wget on Ubuntu 14.04 LTS
  39. When you use ‘badidea’ or ‘thisisunsafe’ to bypass a Chrome certificate/HSTS error, does it only apply for the current site?
  40. urllib and “SSL: CERTIFICATE_VERIFY_FAILED” Error
  41. How to install Boost on Ubuntu
  42. How to verify if nginx is running or not?
  43. wget returns “Unable to establish SSL connection”
  44. Python requests SSL error – certificate verify failed
  45. Error `sec_error_revoked_certificate` when viewed in Firefox only
  46. How to disable cURL SSL certificate verification
  47. Getting error in Curl – Peer certificate cannot be authenticated with known CA certificates
  48. pdflatex not found. pdflatex is needed for pdf output
  49. Nginx: stat() failed (13: permission denied)
  50. PIP Could not find any downloads that satisfy the requirement SQLAlchemy
  51. MySQL: How to reset or change the MySQL root password?
  52. Removing all installed OpenCV libs
  53. How do you sign a Certificate Signing Request with your Certification Authority?
  54. Vim: No write since last change, even though I changed the file 
  55. Java Keytool error after importing certificate , “keytool error: java.io.FileNotFoundException & Access Denied”
  56. Why can’t I print to terminal with my python script?
  57. How to kill a process on a port on ubuntu
  58. whats the meaning of curl “-s” and “-m”
  59. Is there a way to force ssl on certain pages
  60. Share same domain for wp-admin but for different website
  61. Run WordPress frontend and backend in different domains
  62. FORCE_SSL_ADMIN not working
  63. How can I make uploaded images in the editor load with HTTPS?
  64. Network Admin URL is shown to anyone before accessing a blog
  65. HSTS header not being added correctly
  66. Specific Page/Post Need to Stay Non SSL
  67. My site thinks it’s secure when it is fact not
  68. Force SSL on a single page which is used as iFrame
  69. FORCE_SSL_ADMIN affecting subdomains
  70. Displaying a remote SSL certificate details using CLI tools
  71. Heartbleed: What is it and what are options to mitigate it?
  72. How do I view the details of a digital certificate .cer file?
  73. How do I ask apt-get to skip any interactive post-install configuration steps?
  74. SSL Certificate Location on UNIX/Linux
  75. Is there a reason to use an SSL certificate other than Let’s Encrypt’s free SSL?
  76. How to remove the “installed manually” flag and revert to “automatically installed” with apt-get?
  77. How do I get apt-get to ignore some dependencies?
  78. How do I auto-start docker containers at system boot?
  79. How do I reattach to Ubuntu Server’s ‘do-release-upgrade’ process?
  80. How to determine JAVA_HOME on Debian/Ubuntu?
  81. How to start/stop iptables on Ubuntu?
  82. Which ports do I need to open in the firewall to use NFS?
  83. list all packages from a repository in ubuntu / debian
  84. dpkg-reconfigure: unable to re-open stdin: No file or directory
  85. How can I edit the welcome message when ssh start?
  86. How does Ubuntu keep track of the “System restart required” flag in motd?
  87. Does each subdomain need it’s own SSL certificate?
  88. Amazon Linux vs. Ubuntu for Amazon EC2 [closed]
  89. Automate the installation of postfix on Ubuntu
  90. Why is ssh agent forwarding not working?
  91. Is it safe to update wp-includes/certificates/ca-bundle.crt manually?
  92. Unable to find valid certification path to requested target – error even after cert imported
  93. Unable to find valid certification path to requested target – error even after cert imported
  94. Authentication versus Authorization
  95. ssl_error_rx_record_too_long and Apache SSL [closed]
  96. Cannot connect to the Docker daemon at unix:/var/run/docker.sock. Is the docker daemon running?
  97. A fatal error occurred while creating a TLS client credential. The internal error state is 10013
  98. ERROR 1045 (28000): Access denied for user ‘root’@’localhost’ (using password: YES)
  99. Undefined function mysql_connect()
  100. ERROR 1045 (28000): Access denied for user ‘root’@’localhost’ (using password: YES)

Leave a Comment

Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)