Ruby - How to extract public, rsa private and CA keys from .pfx file on ruby

Question

I have a certificate in .pfx format and I need to extract the Public, Private and CA certificates using ruby.

Using the shell I can make it this way:

# Extract Public Key (ask for password)
openssl pkcs12 -in file.pfx -out file_public.pem -clcerts -nokeys

# Extract Certificate Authority Key (ask for password)
openssl pkcs12 -in file.pfx -out file_ca.pem -cacerts -nokeys

# Extract Private Key (ask for password)
openssl pkcs12 -in file.pfx -out file_private.pem -nocerts -nodes

# Extract RSA Private Key from private .pem
openssl rsa -in file_private.pem -out file_private_rsa.key

# Create Combo file with Public and RSA Private Keys
cat file_private_rsa.key file_public.pem > file_combo.pem

On this post DMKE shows how to transform the keys to .PFX, but how to do the other way round?

score 9 · Answer 1 · answered May 16 '17 at 19:59

9

pkcs = OpenSSL::PKCS12.new(File.read("xyz.p12"), "password_for_xyz.p12")
key = OpenSSL::PKey::RSA.new(pkcs.key.to_pem)
cert = OpenSSL::X509::Certificate.new(pkcs.certificate.to_pem)

answered May 16 '17 at 19:59

Fredy Janeta Bastidas

91
1
1

Thanks! This one really helped me out – Johannes Nov 21 '18 at 12:14

score 4 · Answer 2 · answered May 24 '16 at 18:13

4

pkcs = OpenSSL::PKCS12.new(File.read("file.pfx"), "password")

pkcs.key.to_pem

pkcs.certificate.to_pem

answered May 24 '16 at 18:13

Stephen

3,341
1
22
21

Ruby - How to extract public, rsa private and CA keys from .pfx file on ruby

2 Answers2