Check full cert chain openssl
Display full chain: leaf → intermediate → root
openssl s_client -connect example.com:443 -showcerts 2>/dev/null | openssl crl2pkcs7 -nocrl | openssl pkcs7 -print_certs -noout -text | grep -E 'Subject:|Issuer:'
more openssl
all 27 commands →
Encrypt file with AES-256
openssl enc -aes-256-cbc -pbkdf2 -in secret.txt -out secret.enc
Decrypt AES-256 file
openssl enc -d -aes-256-cbc -pbkdf2 -in secret.enc -out secret.txt
Generate random hex token
openssl rand -hex 32
Full certificate inspect
openssl x509 -in cert.pem -noout -text
Cert expiry check (CI gate)
openssl x509 -in cert.pem -noout -checkend 86400 && echo OK || echo EXPIRING