Availability::- use_module(library(ssl)).(can be autoloaded)
[det]load_certificate(+Stream,
-Certificate)Loads a certificate from a PEM- or DER-encoded stream, returning a term
which will unify with the same certificate if presented in
cert_verify_hook. A certificate is a list containing the following
terms: issuer_name/1, hash/1, signature/1,
signature_algorithm/1, version/1, notbefore/1, notafter/1,
serial/1, subject/1
and key/1. subject/1
and issuer_name/1 are both lists of =/2
terms representing the name. With OpenSSL 1.0.2 and greater, to_be_signed/1
is also available, yielding the hexadecimal representation of the TBS
(to-be-signed) portion of the certificate.
Note that the OpenSSL CA.pl utility creates certificates
that have a human readable textual representation in front of the PEM
representation. You can use the following to skip to the certificate if
you know it is a PEM certificate:
skip_to_pem_cert(In) :-
repeat,
( peek_char(In, '-')
-> !
; skip(In, 0'\n),
at_end_of_stream(In), !
).