I’m trying validate an X.509 certificate received over a network. I have understood that

Question

0

Asked: May 22, 20262026-05-22T19:44:48+00:00 2026-05-22T19:44:48+00:00

I’m trying validate an X.509 certificate received over a network. I have understood that

0

I’m trying validate an X.509 certificate received over a network. I have understood that the digital signature is created by creating a message digest of the fields(don’t know which fields) in the signature and then encrypting it using the CA(Certificate Authority) private Key.We can validate the certificate by decrypting the digital signature using CA public key and comparing it with the message digest of the certificate fields.

I’m stuck at this point as I don’t know which all fields I should take to create the message digest for the validation. Can somebody please help me out

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-22T19:44:49+00:00

Editorial Team

2026-05-22T19:44:49+00:00Added an answer on May 22, 2026 at 7:44 pm

From a glance at the RFC it appears to be the whole tbsCertificate field.

[…] a digital signature computed upon
the ASN.1 DER encoded tbsCertificate. The ASN.1 DER encoded
tbsCertificate is used as the input to the signature function.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I’m trying validate an X.509 certificate received over a network. I have understood that

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply