What signature does pkcs11-tool -s create and how can I change it into an ascii-armore

Hi all,

I was wondering how I could get pcks11-tool to output
ascii-armored
signatures and/or to display what is actually 'in' the
signature in
human-readable format.

I tried everything I could think of with openssl's x509 and
verify
functions, but I have been unable to achieve anything.


All help appreciated 
Richard
_______________________________________________
opensc-user mailing list
opensc-userlists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-
user

Richard Hartmann wrote:
> Hi all,
> 
> I was wondering how I could get pcks11-tool to output
ascii-armored
> signatures and/or to display what is actually 'in' the
signature in
> human-readable format.

I wouldn't consider PEM human-readable ... pkcs11-tool
returns the
raw binary data

> 
> I tried everything I could think of with openssl's x509
and verify
> functions, but I have been unable to achieve anything.

"openssl verify" expects x509 certificates and not
raw signatures.
If you want to decrypt a raw signature try "openssl
rsautl ..."
(the exact parameter depend on the mechanism used for the
signature
creation).

Nils
_______________________________________________
opensc-user mailing list
opensc-userlists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-
user

On Mon, Feb 25, 2008 at 8:54 PM, Nils Larsch <nlarschgmx.net> wrote:

>  "openssl verify" expects x509 certificates
and not raw signatures.
>  If you want to decrypt a raw signature try
"openssl rsautl ..."
>  (the exact parameter depend on the mechanism used for
the signature
>  creation).

Thanks!


Richard
_______________________________________________
opensc-user mailing list
opensc-userlists.opensc-project.org
http://www.opensc-project.org/mailman/listinfo/opensc-
user