{"id":462,"date":"2014-09-24T01:15:54","date_gmt":"2014-09-24T09:15:54","guid":{"rendered":"https:\/\/cheapsslsecurity.com\/blog\/?p=462"},"modified":"2021-01-26T09:13:19","modified_gmt":"2021-01-26T17:13:19","slug":"various-types-ssl-commands-keytool","status":"publish","type":"post","link":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/","title":{"rendered":"Various Types of OpenSSL Commands and Keytool"},"content":{"rendered":"<h2>OpenSSL Commands and SSL Keytool List<\/h2>\n<p style=\"text-align: justify;\">OpenSSL is an open-source implementation of SSL\/TLS protocols and is considered to be one of the most versatile SSL tools. It\u2019s a library written in C programming language that implements the basic cryptographic functions. OpenSSL has different versions for most Unix-like operating systems, which include Mac OC X, Linux, and Microsoft Windows etc.<\/p>\n<p style=\"text-align: justify;\">Open SSL is normally used to generate a Certificate Signing Request (CSR) and private key for different platforms. However, it also has several different functions, which can be listed as follows. It is used to:<\/p>\n<ul style=\"text-align: justify;\">\n<li>View details about a CSR or a certificate<\/li>\n<li>Compare MD5 hash of a certificate and private key to ensure they match<\/li>\n<li>Verify proper installation of the certificate on a website<\/li>\n<li><span style=\"text-align: justify;\">Convert the certificate format<\/span><\/li>\n<\/ul>\n<p style=\"text-align: justify;\">Most of the functions mentioned below can also be performed without involving OpenSSL by using these convenient <strong><a href=\"https:\/\/cheapsslsecurity.com\/ssltools\/\">SSL tools<\/a><\/strong>. Here, we have put together few of the most common OpenSSL commands.<\/p>\n<p style=\"text-align: center;\"><img decoding=\"async\" class=\"aligncenter wp-image-726\" src=\"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/ssl-commands-and-keytool.jpg\" alt=\"SSL Commands and Keytool\" width=\"506\" height=\"286\" \/><\/p>\n<h2 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">General OpenSSL Commands<\/span><\/h2>\n<p style=\"text-align: justify;\">These are the set of commands that allow the users to generate CSRs, Certificates, Private Keys and many other miscellaneous tasks. Here, we have listed few such commands:<\/p>\n<p style=\"text-align: justify;\"><b>(1) Generate a Certificate Signing Request (CSR) and new private key<\/b><\/p>\n<pre style=\"padding-left: 30px;\">openssl req -out <span style=\"text-decoration: underline;\">CSR.csr<\/span> -new -newkey rsa:2048 -nodes -keyout <span style=\"text-decoration: underline;\">privateKey.key<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(2) Generate a self-signed certificate<\/b><\/p>\n<pre style=\"padding-left: 30px;\">openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout <span style=\"text-decoration: underline;\">privateKey.key<\/span> -out <span style=\"text-decoration: underline;\">certificate.crt<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(3) Create CSR based on an existing private key<\/b><\/p>\n<pre style=\"padding-left: 30px;\">openssl req -out <span style=\"text-decoration: underline;\">CSR.csr<\/span> -key <span style=\"text-decoration: underline;\">privateKey.key<\/span> \u2013new<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(4) Create CSR based on an existing certificate<\/b><\/p>\n<pre style=\"padding-left: 30px;\">openssl x509 -x509toreq -in <span style=\"text-decoration: underline;\">certificate.crt<\/span> -out <span style=\"text-decoration: underline;\">CSR.csr<\/span> -signkey <span style=\"text-decoration: underline;\">privateKey.key\r\n<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(5) Passphrase removal from a private key<\/b><\/p>\n<pre style=\"padding-left: 30px;\">openssl rsa -in <span style=\"text-decoration: underline;\">privateKey.pem<\/span> -out <span style=\"text-decoration: underline;\">newPrivateKey.pem<\/span><\/pre>\n<p>&nbsp;<\/p>\n<h3 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">SSL Check Commands<\/span><\/h3>\n<p style=\"text-align: justify;\">These commands are very helpful if the user wants to check the information within an SSL certificate, a Private Key, and CSR. Few online tools can also help you check CSRs and check SSL certificates.<\/p>\n<p style=\"text-align: justify;\"><b>(1) Certificate Signing Request (CSR)<\/b><\/p>\n<pre>openssl req -text -noout -verify -in <span style=\"text-decoration: underline;\">CSR.csr<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(2) Private Key<\/b><\/p>\n<pre>openssl rsa -in <span style=\"text-decoration: underline;\">privateKey.key<\/span> \u2013check<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(3) SSL Certificate<\/b><\/p>\n<pre>openssl x509 -in <span style=\"text-decoration: underline;\">certificate.crt<\/span> -text \u2013noout<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><b>(4) PKCS#12 File (.pfx or .p12)<\/b><\/p>\n<pre>openssl pkcs12 -info -in <span style=\"text-decoration: underline;\">keyStore.p12<\/span><\/pre>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">Convert Commands<\/span><\/h2>\n<p style=\"text-align: justify;\">As per the title, these commands help convert the certificates and keys into different formats to impart them the compatibility with specific servers types. For example, a <i>PEM <\/i>file, compatible with <i>Apache <\/i>server, can be converted to <i>PFX <\/i>(PKCS#12), after which it would be possible for it to work with <i>Tomcat <\/i>or<i> IIS. <\/i>However, you can also use the <a href=\"https:\/\/cheapsslsecurity.com\/ssltools\/ssl-converter.php\">SSL Converter<\/a> to change the format, without having to involve <i>OpenSSL.<\/i><\/p>\n<p style=\"text-align: justify;\"><strong>(1) Convert DER Files (.crt, .cer, .der) to PEM<\/strong><\/p>\n<pre>openssl x509 -inform der -in <span style=\"text-decoration: underline;\">certificate.cer<\/span> -out <span style=\"text-decoration: underline;\">certificate.pem<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(2) Convert PEM to DER<\/strong><\/p>\n<pre>openssl x509 -outform der -in <span style=\"text-decoration: underline;\">certificate.pem<\/span> -out <span style=\"text-decoration: underline;\">certificate.der<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(3) Convert PKCS #12 File (.pfx, .p12) Containing a Private Key and Certificate to PEM<\/strong><\/p>\n<pre>openssl pkcs12 -in <span style=\"text-decoration: underline;\">keyStore.pfx<\/span> -out <span style=\"text-decoration: underline;\">keyStore.pem<\/span> \u2013nodes<\/pre>\n<p style=\"text-align: justify;\">To output only the private key, users can add <i>\u2013nocerts <\/i>or \u2013nokeys to output only the certificates.<\/p>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(4) Convert PEM Certificate (File and a Private Key) to PKCS # 12 (.pfx #12)<\/strong><\/p>\n<pre>openssl pkcs12 -export -out <span style=\"text-decoration: underline;\">certificate.pfx<\/span> -inkey <span style=\"text-decoration: underline;\">privateKey.key<\/span> -in <span style=\"text-decoration: underline;\">certificate.crt<\/span> -certfile <span style=\"text-decoration: underline;\">CACert.crt<\/span><\/pre>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">Debugging Using OpenSSL Commands<\/span><\/h2>\n<p style=\"text-align: justify;\">If there are error messages popping up about your private key not matching the certificate or that the newly-installed certificate is not trusted, you can rely on one of the comments mentioned below. You can also use the <a href=\"https:\/\/cheapsslsecurity.com\/ssltools\/ssl-checker.php\">SSL certificate checker<\/a>\u00a0tool for verifying the correct installation of an SSL certificate.<\/p>\n<p style=\"text-align: justify;\"><strong>(1) Check SSL Connection (All certificates, including Intermediates, are to be displayed)<\/strong><\/p>\n<p style=\"text-align: justify;\">Here, all the certificates should be displayed, including the Intermediates as well.<b><\/b><\/p>\n<pre>openssl s_client -connect <span style=\"text-decoration: underline;\">www.paypal.com<\/span>:443<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(2) Check MD5 Hash of Public Key<\/strong><\/p>\n<p style=\"text-align: justify;\">This is to ensure that the public key matches with the CSR or the private key.<\/p>\n<pre>openssl x509 -noout -modulus -in <span style=\"text-decoration: underline;\">certificate.crt<\/span> | openssl md5\r\nopenssl rsa -noout -modulus -in <span style=\"text-decoration: underline;\">privateKey.key<\/span> | openssl md5\r\nopenssl req -noout -modulus -in <span style=\"text-decoration: underline;\">CSR.csr<\/span> | openssl md5<\/pre>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: justify;\"><span style=\"text-decoration: underline; color: #000000;\">SSL Keytool List<\/span><\/h2>\n<p style=\"text-align: justify;\"><strong><i>Java Keytool<\/i><\/strong> is a key and certificate management utility that allows the users to cache the certificate and manage their own private or public key pairs and certificates. Java Keytool stores all the keys and certificates in a \u2018<strong>Keystore<\/strong>\u2019, which is, by default, implemented as a file. It contains private keys and certificates that are essential for establishing the reliability of the primary certificate and completing a chain of trust.<\/p>\n<p style=\"text-align: justify;\">Every certificate in Java Keystore has a unique pseudonym\/alias. For creating a \u2018<strong>Java Keystore<\/strong>\u2019, you need to first create the <strong><i>.jks <\/i><\/strong>file containing only the private key in the beginning. After that, you need to generate a Certificate Signing Request (CSR) and generate a certificate from it. After this, import the certificate to the <strong>Keystore<\/strong> including any root certificates.<\/p>\n<p style=\"text-align: justify;\">The \u2018Java Keytool\u2019 basically contains several other functions that help the users export a certificate or to view the certificate details or the list of certificates in Keystore.<\/p>\n<p style=\"text-align: justify;\">Here are few important Java Keytool commands:<\/p>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">For Creating and Importing<\/span><\/h2>\n<p style=\"text-align: justify;\">These Keytool commands allow users to create a new Java Keytool keysKeystore, generate a Certificate Signing Request (CSR) and import certificates. Before you import the primary certificate for your domain, you need to first import any root or intermediate certificates.<\/p>\n<p style=\"text-align: justify;\"><strong>(1) Import a root or intermediate CA certificate to an existing Java keystore<\/strong><\/p>\n<pre>keytool -import -trustcacerts -alias root -file <span style=\"text-decoration: underline;\">Thawte.crt<\/span> -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(2) Import a signed primary certificate to an existing Java keystore<\/strong><\/p>\n<pre>keytool -import -trustcacerts -alias <span style=\"text-decoration: underline;\">mydomain<\/span> -file <span style=\"text-decoration: underline;\">mydomain.crt<\/span> -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(3) Generate a keystore and self-signed certificate<\/strong><\/p>\n<pre>keytool -genkey -keyalg RSA -alias selfsigned -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span> -storepass <span style=\"text-decoration: underline;\">password<\/span> -validity 360 -keysize 2048<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(4) Generate Key Pair &amp; Java Keystore<\/strong><\/p>\n<pre>keytool -genkey -alias <span style=\"text-decoration: underline;\">mydomain<\/span> -keyalg RSA -keystore <span style=\"text-decoration: underline;\">keystore.jks <\/span>-keysize 2048<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(5) Generate CSR for existing Java Keystore<\/strong><\/p>\n<pre>keytool -certreq -alias <span style=\"text-decoration: underline;\">mydomain<\/span> -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span> -file <span style=\"text-decoration: underline;\">mydomain.csr<\/span><\/pre>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">For Checking<\/span><\/h2>\n<p style=\"text-align: justify;\">Users can check the information within a certificate or Java keystore by using the following commands:<\/p>\n<p style=\"text-align: justify;\"><strong>(1) Check an individual certificate<\/strong><\/p>\n<pre>keytool -printcert -v -file <span style=\"text-decoration: underline;\">mydomain.crt<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(2) Check certificates in Java keystore<\/strong><\/p>\n<pre>keytool -list -v -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(3) Check specific keystore entry using an alias<\/strong><\/p>\n<pre>keytool -list -v -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span> -alias mydomain<b><\/b><\/pre>\n<p>&nbsp;<\/p>\n<h2 style=\"text-align: justify;\"><span style=\"color: #ff6600;\">Other Java Keytool Commands<\/span><\/h2>\n<p style=\"text-align: justify;\"><strong>(1) Delete a certificate from Java Keystore keystore<\/strong><\/p>\n<pre>keytool -delete -alias <span style=\"text-decoration: underline;\">mydomain<\/span> -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(2) Change the password in Java keystore \/ Change a Java keystore password<\/strong><\/p>\n<pre>keytool -storepasswd -new new_storepass -keystore <span style=\"text-decoration: underline;\">keystore.jks<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(3) Export certificate from Java keystore<\/strong><\/p>\n<pre>keytool -export -alias\u00a0<span style=\"text-decoration: underline;\">mydomain<\/span>\u00a0-file\u00a0<span style=\"text-decoration: underline;\">mydomain.crt<\/span>\u00a0-keystore\u00a0<span style=\"text-decoration: underline;\">keystore.jks<\/span><\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong>(4) List the trusted CA Certificate<\/strong><\/p>\n<pre>keytool -list -v -keystore $JAVA_HOME\/jre\/lib\/security\/cacerts<\/pre>\n<p>&nbsp;<\/p>\n<p style=\"text-align: justify;\"><strong> (5) Import new CA into Trusted Certs<\/strong><\/p>\n<pre>keytool -import -trustcacerts -file\u00a0<span style=\"text-decoration: underline;\">\/path\/to\/ca\/ca.pem<\/span>\u00a0-alias\u00a0<span style=\"text-decoration: underline;\">CA_ALIAS<\/span>\u00a0-keystore $JAVA_HOME\/jre\/lib\/security\/cacerts<\/pre>\n<h2>Related Posts<\/h2>\n<ul>\n<li><a href=\"https:\/\/cheapsslsecurity.com\/blog\/useful-ssl-tools-from-cheapsslsecurity\/\">Diagnose Common SSL Issues with Useful SSL Tools <\/a><\/li>\n<li><a href=\"https:\/\/cheapsslsecurity.com\/blog\/the-7-ultimate-ssl-certificate-tools-for-effortless-ssl-management\/\">SSL Certificate Tools for Effortless SSL Management<\/a><\/li>\n<\/ul>\n<div class=\"graysection\">\n<h2>Save Up to 89% on SSL Certificates<\/h2>\n<p>Get maximum discounts of up to 89% on DV SSL, OV SSL, Wildcard SSL, Multi-Domain SSL and EV SSL Certificates at CheapSSLsecurity. Boost up customer trust and secure their confidential information with high level encryption.<\/p>\n<p><a class=\"comparebtn\" href=\"https:\/\/cheapsslsecurity.com\/\">Buy SSL Certificates at $5.45<\/a><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>OpenSSL Commands and SSL Keytool List OpenSSL is an open-source implementation of SSL\/TLS protocols and is considered to be one of the most versatile SSL tools. It\u2019s a library written in C programming language that implements the basic cryptographic functions. OpenSSL has different versions for most Unix-like operating systems, which include Mac OC X, Linux,<\/p>\n","protected":false},"author":8,"featured_media":726,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[],"class_list":{"0":"post-462","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-ssl-pki"},"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Various Types of OpenSSL Commands and Keytool<\/title>\n<meta name=\"description\" content=\"List of Various OpenSSL Commands and KeyTool that are used to check\/generate CSR, Self Sign Certificate, Private key, convert CSR, convert certificate, etc...\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Various Types of OpenSSL Commands and Keytool\" \/>\n<meta property=\"og:description\" content=\"List of Various OpenSSL Commands and KeyTool that are used to check\/generate CSR, Self Sign Certificate, Private key, convert CSR, convert certificate, etc...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/\" \/>\n<meta property=\"og:site_name\" content=\"Savvy Security\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/cheapsslsecurities\" \/>\n<meta property=\"article:published_time\" content=\"2014-09-24T09:15:54+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-01-26T17:13:19+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/SSL-Commands-and-Keytool.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"844\" \/>\n\t<meta property=\"og:image:height\" content=\"476\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Savvy Security\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@sslsecurity\" \/>\n<meta name=\"twitter:site\" content=\"@sslsecurity\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Savvy Security\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/\"},\"author\":{\"name\":\"Savvy Security\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#\\\/schema\\\/person\\\/1ce9a5743b7f25b5be6e4972864b4493\"},\"headline\":\"Various Types of OpenSSL Commands and Keytool\",\"datePublished\":\"2014-09-24T09:15:54+00:00\",\"dateModified\":\"2021-01-26T17:13:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/\"},\"wordCount\":923,\"image\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/09\\\/SSL-Commands-and-Keytool.jpg\",\"articleSection\":[\"SSL &amp; PKI\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/\",\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/\",\"name\":\"Various Types of OpenSSL Commands and Keytool\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/09\\\/SSL-Commands-and-Keytool.jpg\",\"datePublished\":\"2014-09-24T09:15:54+00:00\",\"dateModified\":\"2021-01-26T17:13:19+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#\\\/schema\\\/person\\\/1ce9a5743b7f25b5be6e4972864b4493\"},\"description\":\"List of Various OpenSSL Commands and KeyTool that are used to check\\\/generate CSR, Self Sign Certificate, Private key, convert CSR, convert certificate, etc...\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#primaryimage\",\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/09\\\/SSL-Commands-and-Keytool.jpg\",\"contentUrl\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/wp-content\\\/uploads\\\/2014\\\/09\\\/SSL-Commands-and-Keytool.jpg\",\"width\":844,\"height\":476,\"caption\":\"SSL Commands and Keytool\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/various-types-ssl-commands-keytool\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Various Types of OpenSSL Commands and Keytool\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/\",\"name\":\"Savvy Security\",\"description\":\"Practical cybersecurity advice\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/#\\\/schema\\\/person\\\/1ce9a5743b7f25b5be6e4972864b4493\",\"name\":\"Savvy Security\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g\",\"caption\":\"Savvy Security\"},\"description\":\"Welcome to Savvy Security, a blog focused on providing practical cybersecurity advice for website owners and small businesses. Our team brings you the latest news, best practices and tips you can use to protect your business...without a multi-million dollar budget or 24\\\/7 security teams.\",\"sameAs\":[\"blogadmin\"],\"url\":\"https:\\\/\\\/cheapsslsecurity.com\\\/blog\\\/author\\\/blogadmin\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Various Types of OpenSSL Commands and Keytool","description":"List of Various OpenSSL Commands and KeyTool that are used to check\/generate CSR, Self Sign Certificate, Private key, convert CSR, convert certificate, etc...","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/","og_locale":"en_US","og_type":"article","og_title":"Various Types of OpenSSL Commands and Keytool","og_description":"List of Various OpenSSL Commands and KeyTool that are used to check\/generate CSR, Self Sign Certificate, Private key, convert CSR, convert certificate, etc...","og_url":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/","og_site_name":"Savvy Security","article_publisher":"https:\/\/www.facebook.com\/cheapsslsecurities","article_published_time":"2014-09-24T09:15:54+00:00","article_modified_time":"2021-01-26T17:13:19+00:00","og_image":[{"width":844,"height":476,"url":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/SSL-Commands-and-Keytool.jpg","type":"image\/jpeg"}],"author":"Savvy Security","twitter_card":"summary_large_image","twitter_creator":"@sslsecurity","twitter_site":"@sslsecurity","twitter_misc":{"Written by":"Savvy Security","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#article","isPartOf":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/"},"author":{"name":"Savvy Security","@id":"https:\/\/cheapsslsecurity.com\/blog\/#\/schema\/person\/1ce9a5743b7f25b5be6e4972864b4493"},"headline":"Various Types of OpenSSL Commands and Keytool","datePublished":"2014-09-24T09:15:54+00:00","dateModified":"2021-01-26T17:13:19+00:00","mainEntityOfPage":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/"},"wordCount":923,"image":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#primaryimage"},"thumbnailUrl":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/SSL-Commands-and-Keytool.jpg","articleSection":["SSL &amp; PKI"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/","url":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/","name":"Various Types of OpenSSL Commands and Keytool","isPartOf":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#primaryimage"},"image":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#primaryimage"},"thumbnailUrl":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/SSL-Commands-and-Keytool.jpg","datePublished":"2014-09-24T09:15:54+00:00","dateModified":"2021-01-26T17:13:19+00:00","author":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/#\/schema\/person\/1ce9a5743b7f25b5be6e4972864b4493"},"description":"List of Various OpenSSL Commands and KeyTool that are used to check\/generate CSR, Self Sign Certificate, Private key, convert CSR, convert certificate, etc...","breadcrumb":{"@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#primaryimage","url":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/SSL-Commands-and-Keytool.jpg","contentUrl":"https:\/\/cheapsslsecurity.com\/blog\/wp-content\/uploads\/2014\/09\/SSL-Commands-and-Keytool.jpg","width":844,"height":476,"caption":"SSL Commands and Keytool"},{"@type":"BreadcrumbList","@id":"https:\/\/cheapsslsecurity.com\/blog\/various-types-ssl-commands-keytool\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cheapsslsecurity.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Various Types of OpenSSL Commands and Keytool"}]},{"@type":"WebSite","@id":"https:\/\/cheapsslsecurity.com\/blog\/#website","url":"https:\/\/cheapsslsecurity.com\/blog\/","name":"Savvy Security","description":"Practical cybersecurity advice","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cheapsslsecurity.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/cheapsslsecurity.com\/blog\/#\/schema\/person\/1ce9a5743b7f25b5be6e4972864b4493","name":"Savvy Security","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/4e5539150b16b5af1d22136f03dedda89a96babb3e9b5ceb18c2bde4e1dcba57?s=96&d=mm&r=g","caption":"Savvy Security"},"description":"Welcome to Savvy Security, a blog focused on providing practical cybersecurity advice for website owners and small businesses. Our team brings you the latest news, best practices and tips you can use to protect your business...without a multi-million dollar budget or 24\/7 security teams.","sameAs":["blogadmin"],"url":"https:\/\/cheapsslsecurity.com\/blog\/author\/blogadmin\/"}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/posts\/462","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/users\/8"}],"replies":[{"embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/comments?post=462"}],"version-history":[{"count":0,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/posts\/462\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/media\/726"}],"wp:attachment":[{"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/media?parent=462"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/categories?post=462"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cheapsslsecurity.com\/blog\/wp-json\/wp\/v2\/tags?post=462"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}