The OpenSSL commands may seem daunting at first, but there are a lot of useful commands in the OpenSSL toolbox for viewing and managing X.509 certificates and private keys. This recipe will show how to use a few of those commands.
Set up the
easy-rsa certificate environment using the first recipe from Chapter 2, Client-server IP-only Networks, by sourcing the
vars file. This recipe was performed on a computer running Fedora 22 Linux but it can easily be run on Windows or MacOS.
For this recipe, we need to perform the following steps:
$ cd /etc/openvpn/cookbook/keys $ openssl x509 -subject -enddate -noout -in client1.crt ...