Daniel and others,

My Cert problem is solved by removing the CA stuff from the certicate en
putting this in the ca.pem file. My converted Netscape certificate file
consists of four different parts:

1. My rsa private key
2. My CA public certificate
3 Another CA public certificate
4. My own certificate

I moved 2 and 3 (CA chain) from my file pem file en put it in a CA.pem file.

Now the command:
curl --cacert CA.pem -E william.pem https://etc etc return the correct
information.

I am impressed by the quality en possibilities of curl !

Thanks for your time.

Daniel Stenberg wrote:

> On Thu, 7 Jun 2001, Wiliam Geurts wrote:
>
> (sorry, replying a second time on the same mail)
>
> > $ /opt/curl/bin/curl --cert ./cert.pem https://www.somewhere.nl
> > Enter PEM pass phrase:
> > curl: (35) couldn't use certificate!
> > $
> >
> > My cert.pem veryfies ok (with openssl verify) !
> > $ openssl verify -CAfile CA.cert.pem cert.pem
> > cert.pem: OK
>
> *dang*
>
> Doesn't that "verify -CAfile" stuff for openssl imply that you should use
> curl's --cacert option?
>
> --
> Daniel Stenberg -- curl dude -- http://curl.haxx.se/

--
William Geurts                                  ASM-Lithography B.V.
2D1089                                          Run 1110,
+31-(0)40-2683692                               5503 LA VELDHOVEN
William.Geurts_at_asml.nl