Networking
Showing results for 
Search instead for 
Do you mean 

perl and ssl certificate info

Honored Contributor Honored Contributor

perl and ssl certificate info

Hey;

I have over 100 systems from which I need to get ssl certificate information. The manual method is to hit each web site, view the certificate information, then record the following:

issued to
issued by
valid dates

This just screams for automation - that, or an intern; however, I'll try the automation first.

Does anyone know which modules might contain this information? I'm thinking something in LWP and will be checking shortly - just hoping that someone here knows off the top of their head and save me some research time.

Thanks.

Doug O'Leary

------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html
1 REPLIES
Highlighted
Honored Contributor Honored Contributor

Re: perl and ssl certificate info

Hey;

Turns out the right answer isn't perl - it's the openssl command.

echo | \
openssl s_client -connect ${url}:${port} \
sed -ne '/-BEGIN CERT/,/-END CERT/p' > /tmp/cert.pem

to obtain the cert from the remote site, then:

openssl x509 -noout -in /tmp/cert.pem -issuer -subject -dates

To get the required information from the downloaded cert.

A little perl script to wrap that and format the dates and I'm all done.

Doug O'Leary

------
Senior UNIX Admin
O'Leary Computers Inc
linkedin: http://www.linkedin.com/dkoleary
Resume: http://www.olearycomputers.com/resume.html