I ran the CA.all script, before it issues the 2nd certificate i get this error message. Surely i know someone should have faced this issue, could you pls help me to resolve it.
<br>
<br>Please enter the following 'extra' attributes
<br>to be sent with your certificate request
<br>A challenge password <removed>:
<br>An optional company name []:
<br>+ openssl ca -policy policy_anything -out newcert.pem -passin '<pass:removed>' -key '<removed>' -extensions xpserver_ext -extfile xpextensions -infiles newreq.pem
<br>Using configuration from /usr/local/openssl/ssl/openssl.cnf
<br>DEBUG[load_index]: unique_subject = "yes"
<br>Check that the request matches the signature
<br>Signature ok
<br>Certificate Details:
<br> Serial Number:
<br> a1:cc:f7:86:19:ea:57:48
<br> Validity
<br> Not Before: Aug 30 22:25:40 2006 GMT
<br> Not After : Aug 30 22:25:40 2007 GMT
<br> Subject:
<br> countryName = US
<br> stateOrProvinceName = <removed>
<br> localityName = <removed>
<br> organizationName = <removed>
<br> organizationalUnitName = <removed>
<br> commonName = <removed>
<br> X509v3 extensions:
<br> X509v3 Extended Key Usage:
<br> TLS Web Server Authentication
<br>Certificate is to be certified until Aug 30 22:25:40 2007 GMT (365 days)
<br>Sign the certificate? [y/n]:y
<br>failed to update database
<br>TXT_DB error number 2
<br>+ openssl pkcs12 -export -in newcert.pem -inkey newreq.pem -out cert-srv.p12 -clcerts -passin 'pass:<removed>' -passout 'pass:<removed>'
<br>No certificate matches private key
<br>+ openssl pkcs12 -in cert-srv.p12 -out cert-srv.pem -passin 'pass:<removed>' -passout 'pass:<removed>'
<br>22665:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:asn1_lib.c:140:
<br>+ openssl x509 -inform PEM -outform DER -in cert-srv.pem -out cert-srv.der
<br>unable to load certificate
<br>22666:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:642:Expecting: TRUSTED CERTIFICATE
<br>+ echo -e '\n\t\t##################\n'
<br>
<br> ##################
<br>
<br>thanks in advance.