Linux, UNIX

You may want to monitor the validity of an SSL certificate from a remote server, without having the  certificate.crt  text file locally on your server? You can use the same  openssl  for that. To connect to a remote host and retrieve the public key of the SSL certificate, use the following command. openssl s_client -connect www.feistyduck.com:443 -CAfile /etc/ssl/certs -CAfile /etc/ssl/certs /ca-certificates.crt $ openssl s_client -showcerts -connect ma.ttias.be:443 This will connect to the host  ma.ttias.be  on port  443  and show the certificate. It's output looks like this. $ openssl s_client -showcerts -connect ma.ttias.be:443 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgISESHAjlbjcoBHxBYXS12oY6VjMA0GCSqGSIb3DQEBCwUA ... CzgXBhDR3themzPx4jwx2ckNFpNDK/6yQgrKaHTewAAj -----END CERTIFICATE----- --- Server certificate subject=/C=BE/OU=Domain Control Validated/CN=ma.ttias.be issuer=/C=BE/O=GlobalSign nv-sa/CN=AlphaSSL CA - SHA256 - G2 --- There's many more output,

Issue I would like to confirm my SSL certificate includes the correct information and validate it is in the right order. Resolution SSL (Secure Socket Layer) is a critical component of sites that need to handle sensitive or personal information. You can   use SSL with Acquia Cloud   by   adding HTTPS/SSL support to your site . Before you set up your certificates, it's a good idea to test them to ensure that they are correct and will work together. Here's how you can test the validity of an SSL certificate - also see below for additional checks, especially if your key or certificate is in a different format than   .key   or   .crt : Notes For these examples, assume that   certificate.crt   is the certificate to be uploaded,   certificate.key   is the private key for that certificate, and that the certificate chain information is found in   certificate-chain.crt . This article assumes you have OpenSSL installed in a place you can test with it. For full deta