Skip to main content
AI Assist is now on Stack Overflow. Start a chat to get instant answers from across the network. Sign up to save and share your chats.
Super User

Return to Answer

Added solution.
Source Link
Steffen Ullrich
Steffen Ullrich
  • 6.1k
  • 20
  • 24
    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN does not likecannot deal with an empty issuer.

To ensureThis is not unexpected since an empty issuer has some valuedoes not make much sense. Thus, fillwhoever created the valuesCA certificate should make sure that the subject of country code, state, city, common name, organization name, organization unit name & email asked during creationthe CA certificate (and thus the issuer of the issued certificate) has a subject which describes the issuer instead of just leaving all the fields (common name, ...) empty.

    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN does not like an empty issuer.

To ensure issuer has some value, fill the values of country code, state, city, common name, organization name, organization unit name & email asked during creation of the certificate.

    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN cannot deal with an empty issuer.

This is not unexpected since an empty issuer does not make much sense. Thus, whoever created the CA certificate should make sure that the subject of the CA certificate (and thus the issuer of the issued certificate) has a subject which describes the issuer instead of just leaving all the fields (common name, ...) empty.

Added solution.
Source Link
edit approved Aug 17, 2019 at 18:10
atb00ker
edit approved Aug 17, 2019 at 18:10
atb00ker
  • 157
  • 1
  • 3
  • 9
    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN does not like an empty issuer.

To ensure issuer has some value, fill the values of country code, state, city, common name, organization name, organization unit name & email asked during creation of the certificate.

    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN does not like an empty issuer.

    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN does not like an empty issuer.

To ensure issuer has some value, fill the values of country code, state, city, common name, organization name, organization unit name & email asked during creation of the certificate.

Source Link
Steffen Ullrich
Steffen Ullrich
  • 6.1k
  • 20
  • 24

    Issuer: 

    ...
    Subject: CN=08:00:27:6B:52:F3-08-00-27-25-34-89

The issuer is completely empty.

... VERIFY ERROR: depth=1, could not extract X509 subject string from certificate

It looks like OpenVPN does not like an empty issuer.