openssl verify utility can be used to verify and validate certificates
against known CAs.
In order to verify CDRouter’s default ACS server certificate
acs.cdroutertest.com.pem, which is signed by Comodo, using the openssl verify
utility, you must also specify the intermediate and root CAs (
acs.cdroutertest.com- rootca.pem, respectively) using the
# openssl verify -verbose -CAfile <(cat acs.cdroutertest.com-ca.pem acs.cdroutertest.com-rootca.pem) acs.cdroutertest.com.pem acs.cdroutertest.com.pem: OK
Note that all of CDRouter’s certificates are located in the