•  01-07-2022
  •  | 
  •  

Question

Does anyone know if there exists a way to put comments in a pem certificate such that openssl will ignore the comments while parsing the certificate.

Thanks

Was it helpful?

Solution

Anything outside -----BEGIN FOO----- and -----END FOO----- should be ignored by OpenSSL.

This behavior is commonly used to e.g. embed an entire human-readable detailed description of the cert in the PEM file itself, so that anyone reading it can see what it encodes without having to invoke openssl x509 ... on it.

Licensed under: CC-BY-SA with attribution
Not affiliated with StackOverflow
scroll top