FreddyKaiser
commented
10 years ago OnDemand verification:
./ais-verify.sh -v myfile.txt myfile.ondemand.p7s
OK on myfile.ondemand.p7s with following details:
Signer : subject= CN=Hans Muster,O=ACME,C=CH
issuer= C=ch,O=Swisscom,OU=Digital Certificate Services,CN=Swisscom Saphir CA 2
validity= notBefore=Feb 28 07:57:44 2014 GMT notAfter=Feb 28 08:07:44 2014 GMT
OCSP check= good
Embedded OCSP: CMS (1.2.840.113549.1.9.16.2.24)= Yes
PDF (1.2.840.113583.1.1.8)= Yes
Embedded TSA : YesTimestamp verification:
./ais-verify.sh -v myfile.txt myfile.t7s
OK on myfile.t7s with following details:
Signer : subject= C=ch,O=Swisscom,OU=Digital Certificate Service,CN=Swisscom TSA 3
issuer= C=ch,O=Swisscom,OU=Digital Certificate Services,CN=Swisscom TSS CA 2
validity= notBefore=Aug 7 12:23:58 2012 GMT notAfter=Jan 11 09:55:58 2022 GMT
OCSP check= good
Embedded OCSP: CMS (1.2.840.113549.1.9.16.2.24)= Yes
PDF (1.2.840.113583.1.1.8)= No
Embedded TSA : No
As there are several embeded OCSP options in the response based on the OIDs, the verify script should explicitly display the details