cURL / Mailing Lists / curl-users / Single Mail

curl-users

Re: alert certificate expired

From: Dan Fandrich <dan_at_coneharvesters.com>
Date: Mon, 31 Oct 2011 19:25:27 -0700

On Mon, Oct 31, 2011 at 06:16:55PM -0400, Steven Shourds wrote:
> [Steve Shourds] Here is the output. I still don't get what the problem is?
> C:\TECH\curl>curl -I -v https://omsjms.asp.dupont.com/Comergent/jmsorders
> --insecure
> * About to connect() to omsjms.asp.dupont.com port 443 (#0)
> * Trying 52.124.17.140... connected
> * SSLv3, TLS handshake, Client hello (1):
> * SSLv3, TLS handshake, Server hello (2):
> * SSLv3, TLS handshake, CERT (11):
> * SSLv3, TLS handshake, Server key exchange (12):
> * SSLv3, TLS handshake, Request CERT (13):
> * SSLv3, TLS handshake, Server finished (14):
> * SSLv3, TLS handshake, CERT (11):
> * SSLv3, TLS handshake, Client key exchange (16):
> * SSLv3, TLS change cipher, Client hello (1):
> * SSLv3, TLS handshake, Finished (20):
> * SSLv3, TLS change cipher, Client hello (1):
> * SSLv3, TLS handshake, Finished (20):
> * SSL connection using DHE-RSA-AES256-SHA
> * Server certificate:
> * subject: serialNumber=Gj5XnCfnoH6SzZfJXkP4vACh3vr23qrm; C=US;
> O=omsjms.
> asp.dupont.com; OU=GT23791432; OU=See www.geotrust.com/resources/cps (c)10;
> OU=D
> omain Control Validated - QuickSSL(R) Premium; CN=omsjms.asp.dupont.com
> * start date: 2010-09-13 18:23:54 GMT
> * expire date: 2011-11-15 22:33:27 GMT
> * subjectAltName: omsjms.asp.dupont.com matched
> * issuer: C=US; O=GeoTrust Inc.; OU=Domain Validated SSL; CN=GeoTrust
> DV
> SSL CA
> * SSL certificate verify result: unable to get local issuer
> certificate (

Here's the problem.

> 20), continuing anyway.
> > HEAD /Comergent/jmsorders HTTP/1.1
> > User-Agent: curl/7.22.0 (i386-pc-win32) libcurl/7.22.0 OpenSSL/0.9.8r
> zlib/1.2
> .5
> > Host: omsjms.asp.dupont.com
> > Accept: */*

I see you're running this on Windows. That platform has no certificate bundle
installed by default that is usable by curl. Have you installed one yourself?
http://curl.haxx.se/docs/sslcerts.html

>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-users
FAQ: http://curl.haxx.se/docs/faq.html
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2011-11-01

This message: [ Message body ]
Next message: Steven Shourds: "RE: alert certificate expired"
Previous message: Alex Bligh: "RE: alert certificate expired"
Maybe in reply to: Ralph Mitchell: "Re: alert certificate expired"
Next in thread: Steven Shourds: "RE: alert certificate expired"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]