$NetBSD: X509_check_issued.3,v 1.5 2026/04/08 17:06:49 christos Exp $
-*- mode: troff; coding: utf-8 -*-
Automatically generated by Pod::Man v6.0.2 (Pod::Simple 3.45)
Standard preamble:
========================================================================
..
. ds C` "" . ds C' "" 'br\} . ds C` . ds C' 'br\}
Escape single quotes in literal strings from groff's Unicode transform.
If the F register is >0, we'll generate index entries on stderr for
titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index
entries marked with X<> in POD. Of course, you'll have to process the
output yourself in some meaningful fashion.
Avoid warning from groff about undefined register 'F'.
.. .nr rF 0 . if \nF \{\ . de IX . tm Index:\\$1\t\\n%\t"\\$2" .. . if !\nF==2 \{\ . nr % 0 . nr F 2 . \} . \} .\} .rr rF
Required to disable full justification in groff 1.23.0.
========================================================================
Title "X509_check_issued 3"
way too many mistakes in technical documents.
.nh
-*- mode: troff; coding: utf-8 -*-
Automatically generated by Pod::Man v6.0.2 (Pod::Simple 3.45)
Standard preamble:
========================================================================
..
.... \*(C` and \*(C' are quotes in nroff, nothing in troff, for use with C<>.
. ds C` "" . ds C' "" 'br\} . ds C` . ds C' 'br\}
Escape single quotes in literal strings from groff's Unicode transform.
If the F register is >0, we'll generate index entries on stderr for
titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index
entries marked with X<> in POD. Of course, you'll have to process the
output yourself in some meaningful fashion.
Avoid warning from groff about undefined register 'F'.
.. .nr rF 0 . if \nF \{\ . de IX . tm Index:\\$1\t\\n%\t"\\$2" .. . if !\nF==2 \{\ . nr % 0 . nr F 2 . \} . \} .\} .rr rF
Required to disable full justification in groff 1.23.0.
========================================================================
Title "X509_check_issued 3"
X509_check_issued 3 2026-04-07 3.5.6 OpenSSL
For nroff, turn off justification. Always turn off hyphenation; it makesway too many mistakes in technical documents.
.nh
NAME
X509_check_issued - checks if certificate is apparently issued by another
certificate
SYNOPSIS
Header "SYNOPSIS" .Vb 1
#include <openssl/x509v3.h>
\&
int X509_check_issued(X509 *issuer, X509 *subject);
.Ve
DESCRIPTION
Header "DESCRIPTION" \fBX509_check_issued() checks if certificate subject was apparently issued
using (CA) certificate issuer. This function takes into account not only
matching of the issuer field of subject with the subject field of issuer,
but also compares all sub-fields of the authorityKeyIdentifier extension of
\fIsubject, as far as present, with the respective subjectKeyIdentifier,
serial number, and issuer fields of issuer, as far as present. It also checks
if the keyUsage field (if present) of issuer allows certificate signing.
It does not actually check the certificate signature. An error is returned
if the issuer or the subject are incomplete certificates.
"RETURN VALUES"
Header "RETURN VALUES" \fBX509_check_issued() returns X509_V_OK if all checks are successful
or some X509_V_ERR* constant to indicate an error.
"SEE ALSO"
Header "SEE ALSO" \fBX509_verify_cert\|(3), X509_verify\|(3), X509_check_ca\|(3),
\fBopenssl-verify\|(1), X509_self_signed\|(3)
COPYRIGHT
Header "COPYRIGHT" Copyright 2015-2021 The OpenSSL Project Authors. All Rights Reserved.
Licensed under the Apache License 2.0 (the "License"). You may not use this file except in compliance with the License. You can obtain a copy in the file LICENSE in the source distribution or at <https://www.openssl.org/source/license.html>.
Indexes created Wed Apr 22 00:22:44 UTC 2026