问题
Does anyone know if there exists a way to put comments in a pem certificate such that openssl will ignore the comments while parsing the certificate.
Thanks
回答1:
Anything outside -----BEGIN FOO----- and -----END FOO----- should be ignored by OpenSSL.
This behavior is commonly used to e.g. embed an entire human-readable detailed description of the cert in the PEM file itself, so that anyone reading it can see what it encodes without having to invoke openssl x509 ... on it.
来源:https://stackoverflow.com/questions/19578812/comments-in-a-pem-file