1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
|
#!/usr/bin/env python
"""Cryptographic examples using python-gnutls"""
import sys
import os
import time
from gnutls.crypto import *
script_path = os.path.realpath(os.path.dirname(sys.argv[0]))
certs_path = os.path.join(script_path, 'certs')
cert = X509Certificate(open(certs_path + '/valid.crt').read())
crl = X509CRL(open(certs_path + '/crl.pem').read())
print ''
print 'CRL certs/crl.pem:'
print '------------------'
print 'CRL issuer:'
print ' CN = %s' % crl.issuer.CN # or crl.issuer.common_name
print ' O = %s' % crl.issuer.O # or crl.issuer.organization
print ' OU = %s' % crl.issuer.OU # or crl.issuer.organization_unit
print ' C = %s' % crl.issuer.C # or crl.issuer.country
print ' ST = %s' % crl.issuer.ST # or crl.issuer.state
print ' L = %s' % crl.issuer.L # or crl.issuer.locality
print ' EMAIL = %s' % crl.issuer.EMAIL # or crl.issuer.email
print 'CRL version:', crl.version
print 'CRL count: ', crl.count
print ''
print 'Certificate certs/valid.crt:'
print '----------------------------'
print 'Cert subject:'
print ' CN = %s' % cert.subject.CN # or cert.subject.common_name
print ' O = %s' % cert.subject.O # or cert.subject.organization
print ' OU = %s' % cert.subject.OU # or cert.subject.organization_unit
print ' C = %s' % cert.subject.C # or cert.subject.country
print ' ST = %s' % cert.subject.ST # or cert.subject.state
print ' L = %s' % cert.subject.L # or cert.subject.locality
print ' EMAIL = %s' % cert.subject.EMAIL # or cert.subject.email
print 'Cert issuer:'
print ' CN = %s' % cert.issuer.CN # or cert.issuer.common_name
print ' O = %s' % cert.issuer.O # or cert.issuer.organization
print ' OU = %s' % cert.issuer.OU # or cert.issuer.organization_unit
print ' C = %s' % cert.issuer.C # or cert.issuer.country
print ' ST = %s' % cert.issuer.ST # or cert.issuer.state
print ' L = %s' % cert.issuer.L # or cert.issuer.locality
print ' EMAIL = %s' % cert.issuer.EMAIL # or cert.issuer.email
print 'Cert serial: ', cert.serial_number
print 'Cert version: ', cert.version
print 'Cert activation:', time.ctime(cert.activation_time)
print 'Cert expiration:', time.ctime(cert.expiration_time)
print 'Cert is revoked:', crl.is_revoked(cert)
print ''
cert = X509Certificate(open(certs_path + '/revoked.crt').read())
print 'Certificate certs/revoked.crt:'
print '------------------------------'
print 'Cert subject:'
print ' CN = %s' % cert.subject.common_name # here we use long names
print ' O = %s' % cert.subject.organization
print ' OU = %s' % cert.subject.organization_unit
print ' C = %s' % cert.subject.country
print ' ST = %s' % cert.subject.state
print ' L = %s' % cert.subject.locality
print ' EMAIL = %s' % cert.subject.email
print 'Cert issuer:'
print ' CN = %s' % cert.issuer.common_name
print ' O = %s' % cert.issuer.organization
print ' OU = %s' % cert.issuer.organization_unit
print ' C = %s' % cert.issuer.country
print ' ST = %s' % cert.issuer.state
print ' L = %s' % cert.issuer.locality
print ' EMAIL = %s' % cert.issuer.email
print 'Cert serial: ', cert.serial_number
print 'Cert version: ', cert.version
print 'Cert activation:', time.ctime(cert.activation_time)
print 'Cert expiration:', time.ctime(cert.expiration_time)
print 'Cert is revoked:', crl.is_revoked(cert)
print ''
|
