{"componentChunkName":"component---src-templates-manual-template-tsx","path":"/manuals/client-user/64/ssh-certview-g3.html","webpackCompilationHash":"d1750f6cc413894a8b5c","result":{"data":{"promoBlocks":{"edges":[{"node":{"contentful_id":"47glnSpWzXeFylv2vfQEF8","internal":{"type":"ContentfulPromotionBlock"},"title":{"internal":{"type":"ContentfulHeading"},"contentful_id":"7KIOfSfgwJnCXuvRN6CfrP","textContent":"Standing privileges are a risk with PAM","color":"black","size":"medium"},"subTitle":null,"content":{"nodeType":"document","internal":{"content":"{\"nodeType\":\"document\",\"data\":{},\"content\":[{\"nodeType\":\"paragraph\",\"content\":[{\"nodeType\":\"text\",\"value\":\"Start your journey towards a just-in-time (JIT) model with zero standing privileges (ZSP). Read 'Remove Standing Privileges Through a Just-In-Time PAM Approach' by Gartner , courtesy of SSH.COM.\\n \\n\",\"marks\":[],\"data\":{}}],\"data\":{}}]}"}},"callToAction":{"internal":{"type":"ContentfulButton"},"contentful_id":"19EUesynV2Z7HHcuJk0BAS","content":"Download Gartner research","internalLink":null,"externalLink":"https://info.ssh.com/gartner_research_privileged_access_management","assetLink":null,"anchor":null},"picture":{"internal":{"type":"ContentfulAsset"},"contentful_id":"2ClylmBswcfDx4XdO7NTmL","title":"ICON Gartner ZSP","description":"","file":{"url":"//images.ctfassets.net/0lvk5dbamxpi/2ClylmBswcfDx4XdO7NTmL/78e899153ed66aec3b03b9a2cacd112d/ICON_Gartner_ZSP_ICON_Gartner.png","contentType":"image/png"},"fluid":{"aspectRatio":1,"src":"//images.ctfassets.net/0lvk5dbamxpi/2ClylmBswcfDx4XdO7NTmL/78e899153ed66aec3b03b9a2cacd112d/ICON_Gartner_ZSP_ICON_Gartner.png?w=3000&q=50","srcSet":"//images.ctfassets.net/0lvk5dbamxpi/2ClylmBswcfDx4XdO7NTmL/78e899153ed66aec3b03b9a2cacd112d/ICON_Gartner_ZSP_ICON_Gartner.png?w=750&h=750&q=50 750w,\n//images.ctfassets.net/0lvk5dbamxpi/2ClylmBswcfDx4XdO7NTmL/78e899153ed66aec3b03b9a2cacd112d/ICON_Gartner_ZSP_ICON_Gartner.png?w=1500&h=1500&q=50 1500w,\n//images.ctfassets.net/0lvk5dbamxpi/2ClylmBswcfDx4XdO7NTmL/78e899153ed66aec3b03b9a2cacd112d/ICON_Gartner_ZSP_ICON_Gartner.png?w=1601&h=1601&q=50 1601w","sizes":"(max-width: 3000px) 100vw, 3000px"},"fixed":{"width":3000,"height":3000,"src":"//images.ctfassets.net/0lvk5dbamxpi/2ClylmBswcfDx4XdO7NTmL/78e899153ed66aec3b03b9a2cacd112d/ICON_Gartner_ZSP_ICON_Gartner.png?w=3000&q=50","srcSet":""}},"centered":true,"indentMainContent":null,"transparentBackground":null,"imageScale":70,"imagePadding":null,"name":"WIKI migration side promo block2","product":null,"funnel":null,"topic":null,"keywords":null,"type":null,"priority":null,"globalOverride":null}},{"node":{"contentful_id":"6dfNaA1UlY4bADKQk6awhs","internal":{"type":"ContentfulPromotionBlock"},"title":{"internal":{"type":"ContentfulHeading"},"contentful_id":"49Tb2wSR21P5C2cpcgMZ3","textContent":"Get Multi-cloud PAM software - for free!","color":"black","size":"medium"},"subTitle":null,"content":{"nodeType":"document","internal":{"content":"{\"data\":{},\"content\":[{\"data\":{},\"content\":[{\"data\":{},\"marks\":[],\"value\":\"PrivX® Free replaces your in-house jump hosts and combines your AWS, GCP and Azure access into one multi-cloud solution.\\n \\n\",\"nodeType\":\"text\"}],\"nodeType\":\"paragraph\"}],\"nodeType\":\"document\"}"}},"callToAction":{"internal":{"type":"ContentfulButton"},"contentful_id":"1dmQ13jyyZ46ID07eVNVFb","content":"PrivX Free","internalLink":null,"externalLink":"https://info.ssh.com/privx-free-access-management-software","assetLink":null,"anchor":null},"picture":{"internal":{"type":"ContentfulAsset"},"contentful_id":"4UUYdjING8micwZQur5o6d","title":"ICON computer (search)","description":"","file":{"url":"//images.ctfassets.net/0lvk5dbamxpi/4UUYdjING8micwZQur5o6d/1b378a0f4646075c7a4788f1afffbabe/ICON_computer__search_.svg","contentType":"image/svg+xml"},"fluid":{"aspectRatio":null,"src":null,"srcSet":null,"sizes":null},"fixed":{"width":null,"height":null,"src":null,"srcSet":null}},"centered":true,"indentMainContent":null,"transparentBackground":null,"imageScale":70,"imagePadding":null,"name":"WIKI migration side promo block1","product":null,"funnel":null,"topic":null,"keywords":null,"type":null,"priority":null,"globalOverride":null}}]}},"pageContext":{"isCreatedByStatefulCreatePages":false,"body":"
\"SSH\"
\"Home\" \"Prev\" \"Up\" \"Next\"  

ssh-certview-g3

ssh-certview-g3 — certificate viewer

Synopsis

ssh-certview-g3
[options...] file
[options...] file ...

Description

The ssh-certview-g3 program (ssh-certview-g3.exe on Windows) is a \nsimple command-line application, capable of decoding and showing X.509 \ncertificates, CRLs, and certification requests. The command output is \nwritten to the standard output.

Options

The following options are available:

-h

Displays a short help.

-verbose

Gives more diagnostic output.

-quiet

Gives no diagnostic output.

-auto

The next input file type is auto-detected (default).

-cert

The next input file is a certificate.

-certpair

The next input file is a cross-certificate pair.

-crmf

The next input file is a CRMF certification request.

-req

The next input file is a PKCS #10 certification request.

-crl

The next input file is a CRL.

-prv

The next input file is a private key.

-pkcs12

The next input file is a PKCS#12 package.

-ssh2

The next input file is an SSH2 public key.

-spkac

The next input file is a Netscape-generated SPKAC request.

-noverify

Does not check the validity of the signature on the input certificate.

-autoenc

Determines PEM/DER automatically (default).

-pem

Assumes that the input file is in PEM (ASCII base-64) format. \nThis option allows both actual PEM (with headers and footers), \nand plain base-64 (without headers and footers).\nAn example of PEM header and footer is shown below:\n

-----BEGIN CERTIFICATE-----\nencoded data\n-----END CERTIFICATE-----\n
-der

Assumes that the input file is in DER format.

-hexl

Assumes that the input file is in Hexl format. (Hexl is a \ncommon Unix tool for outputting binary files in a certain hexadecimal \nrepresentation.)

-skip number

Skips number bytes from the beginning of input before trying to \ndecode. This is useful if the file contains some garbage before the \nactual contents.

-ldap

Prints names in LDAP order.

-utf8

Prints names in UTF-8.

-latin1

Prints names in ISO-8859-1.

-base10

Outputs big numbers in base-10 (default).

-base16

Outputs big numbers in base-16.

-base64

Outputs big numbers in base-64.

-width number

Sets output width (number characters).

Example

For example, using a certificate downloaded from pki.ssh.com, \nwhen the following command is given:

$ ssh-certview-g3 -width 70 ca-certificate.cer\n

The following output is produced:

Certificate =\n  SubjectName = <C=FI, O=SSH Communications Security Corp, CN=Secure\n    Shell Test CA>\n  IssuerName = <C=FI, O=SSH Communications Security Corp, CN=Secure\n    Shell Test CA>\n  SerialNumber= 34679408\n  SignatureAlgorithm = rsa-pkcs1-sha1\n  Certificate seems to be self-signed.\n      * Signature verification success.\n  Validity =\n    NotBefore = 2003 Dec  3rd, 08:04:27 GMT\n    NotAfter  = 2005 Dec  2nd, 08:04:27 GMT\n  PublicKeyInfo =\n    PublicKey =\n      Algorithm name (SSH) : if-modn{sign{rsa-pkcs1-md5}}\n      Modulus n  (1024 bits) :\n        9635680922805930263476549641957998756341022541202937865240553\n        9374740946079473767424224071470837728840839320521621518323377\n        3593102350415987252300817926769968881159896955490274368606664\n        0759644131690750532665266218696466060377799358036735475902257\n        6086098562919363963470926690162744258451983124575595926849551\n        903\n      Exponent e (  17 bits) :\n        65537\n  Extensions =\n    Available = authority key identifier, subject key identifier, key\n      usage(critical), basic constraints(critical), authority\n      information access\n    KeyUsage = DigitalSignature KeyEncipherment KeyCertSign CRLSign\n        [CRITICAL]\n    BasicConstraints =\n      PathLength = 0\n      cA         = TRUE\n        [CRITICAL]\n    AuthorityKeyID =\n      KeyID =\n        eb:f0:4d:b5:b2:4c:be:47:35:53:a8:37:d2:8d:c8:b2:f1:19:71:79\n    SubjectKeyID =\n      KeyId =\n        eb:f0:4d:b5:b2:4c:be:47:35:53:a8:37:d2:8d:c8:b2:f1:19:71:79\n    AuthorityInfoAccess =\n      AccessMethod = 1.3.6.1.5.5.7.48.1\n      AccessLocation =\n        Following names detected =\n          URI (uniform resource indicator)\n        Viewing specific name types =\n          URI = http://pki.ssh.com:8090/ocsp-1/\n  Fingerprints =\n    MD5 = c7:af:e5:3d:f6:ea:ce:da:07:93:d0:06:8d:c0:0a:f8\n    SHA-1 =\n    27:d7:19:47:7c:08:3e:1a:27:4b:68:8e:18:83:e8:f9:23:e8:29:85\n
\"Home\" \"Prev\" \"Up\" \"Next\"  

\n Copyright 2020 SSH Communications Security Corporation
\n This software is protected by international copyright laws. All rights reserved.
Contact Information

","head":"ssh-certview-g3","url":"/manuals/client-user/64/ssh-certview-g3.html"}}}