4 O = Digital Signature Trust Co., CN = DST Root CA X3
9 *) echo >&2 "usage: $0 CERTLIST-FILE"; exit 2 ;;
15 while IFS
= read -r line
; do
17 "-----BEGIN CERTIFICATE-----",skip
)
21 "-----END CERTIFICATE-----",keep
)
25 case "$nl$nl$all$nl$nl" in
26 *"$nl$nl$buf$nl$nl"*) keep
=nil
;;
30 issuer
=$
(echo "$buf" | openssl x509
-noout
-issuer
)
31 case $bad_issuers in $
"$nl$issuer$nl"*) keep
=nil
;; esac
34 case $keep in t
) all
="${all:+$all$nl$nl}$buf" ;; esac
36 *,keep
) buf
="$buf$line$nl" ;;
40 case $all in "") echo >&2 "$0: no certificates found"; exit 127 ;; esac