Match certificate and its intermediate counterpart by using X.509 key identifier extension.
openssl utility to display and verify the certificate chain for a specific domain.
Match certificate and its private key by comparing the modulus of the certificate to the modulus of the private key.
openssl command-line utility to display TLS server extensions.
openssl utility to quickly determine if your web-server still supports deprecated
Check locally stored SSL certificate using essential utilities like
curl. This knowledge is especially useful when you want to prepare an SSL certificate for a load balancer.
Create a certificate signing request and use it to generate an SSL certificate. I strongly suggest reading my two earlier blog posts about self-signed SSL certificates and private keys as these contain useful information. I will describe three different ways to generate a certificate signing request.
Generate private key for an SSL certificate and verify its consistency.
openssl command-line utility to calculate and display days till the certificate expiration.
openssl command-line utility to display common name, certificate issuer, alternative names, start/end dates.