SSL Certificate

Site Certificate

Here is a text copy of the SSL certificate which belongs to this site:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

This certificate was obtained by executing:

/usr/bin/openssl s_client -connect localhost:443

Certificate Signature

This certificate is signed by my GPG key, which you can find using your favourite keyserver (or in the debian-keyring package):

-----BEGIN PGP MESSAGE-----
Version: GnuPG v1.4.9 (GNU/Linux)

owGllUuL5FQUx3tGR53AgANuhcaFIK12pR5THVfeV5KbqpvuPCqP2kge1UnlUe/K
6xOouPALiLNxKQjiVlwJLmQ+h1tdCK5MVY8itijYWZ5w7j3/c/6/cz999MLJ/cff
Pfv+6x/Hjz679+WDX/1Xgtlm9+6u2in03sN3Dh8kElVPEdFNKlIETHKMcoxSwkyE
wGAdgZJCEFEFjO25lDUX89rtMNCRkLGWDOr3sEYg1CaAURkxbVsizcWcpWkSKRVZ
S4jOwIUE+AlBkNFJVy1CqYr9XKtIAjQYqRYEgYkmVurZg3noKAsPkxnHYHmTFDNL
l6y5Z4t7SsTUt7O956idIBc7ni3smQ5KHLm4vXBMytCZ2krjOXrGMcMtFXD8gUnF
98JesJ8+P2hs3z5onAv1tCE1w+AojXuuTQG6m4Rda+7bYhNKVq1JeubmWezP+Xgq
8Ss/z5pQVuJQygp/PiiCPCjlOFA5htNSTeiAmQHPmknHboPMpCVrKP9nLEGwTMiY
gfQoF8YM6R1aERNccTfNiUwkqonf07euPUiZTktyI0smZSZOpWzvLqx62o0qOQHB
Tc7SFCdtD27KhPBWmQnRGOjfNLhistXKC7pZZ2qSnCHtGAcVC7mwbds4/0+9FUtA
CaN0HadzSSg7EGnEpr3wUAEfBz09C1KYtqNZuXZ/59r6rp31qo3XrqOv/G5/7/eU
BaPS9d+NxYHWWW2lKsAIzrURjDSMOkFz5iZPqn00M3YXRjQdBliL093eHg/UXMLX
QO/HeGtgQl2OAXPSn2MUl4nu+W4qCRBH/U3ejTzTsBpbC0s5y882m/3GPpssCROW
59XSMWeeL9Y72uNGcbXpFiCwq6AZ0fQiGQ7gCKDrJ6HtFUo/GZa84+DZQIzNznC5
EAhvpEO5rkIrulyXFLcSAFz2KRw1LVBGa44WEEvvXELoEnHErqyFWRkjS4c2HxSL
5cgRzOGqUK9boHqHcXKywUg0uyijWQ3+LWHpynRFZfGvJB5A5O5C4gFE7i4kHkDk
7kLiwQvc/yNxhpCG+GW8Crhzus1VDNhBp6wzAk2AgSaf/9Mqaw0HwRilunLO75rJ
ysm2iCPCYu27G4xd53oudHApj69EKc4V0r8ajnduEmz1aKBQXCs9iIq+qPLDojvK
aj2sJOTsuak3HUiE32QqqGy14EPjIg284WUghqZz3kBDWmtaYbKlXksZwT7oaUGy
GZualOhbh19xqiP0eXObSju3FxdyMrHP3FwWChHXAndc3ETFt5f5h+KLJ4/vn7z0
4P5h7Z9wD1/941FwzZPP33/6tirnzrX+xunHL3Nvns6/+RacPH0m/OB98cHPX7Hf
Xuu//stHP71XffLW7w==
=GhDE
-----END PGP MESSAGE-----

Verifying the certificate

You can verify the validity of this certificate-signature by running the following commands:

 wget -q -O- 'http://www.debian-administration.org/about/SSL%20Certificate' | \
   gpg --decrypt | \
   openssl x509 -fingerprint -subject -out d-a.org.crt

This should give you output which looks something like this:

gpg: Signature made Mon 29 Jun 2009 18:59:37 BST using DSA key ID CD4C0D9D
gpg: Good signature from "Steve Kemp [steve@steve.org.uk]"
gpg:                 aka "Steve Kemp [skx@debian.org]"
SHA1 Fingerprint=55:F5:39:0F:8B:EB:7C:6D:5F:C8:E5:3C:40:DC:22:61:B2:B5:A0:FC
subject= /C=GB/ST=Scotland/L=Edinburgh/O=Debian Administration/OU=Website/CN=www.debian-administration.org/emailAddress=webmaster@debian-administration.org

If you receive errors please do let me know

Mandatory Secure Logins

If you wish to ensure that you always receive a secure connection, a secure login, and that people cannot sniff your traffic in transite you can visit the advanced login page to setup your options.

User Login

Username:

Password:

[ Advanced Login ]

Register Account

Quick Site Search