NAME
SYNOPSIS
DESCRIPTION
OPTIONS
NOTES
EXAMPLES
SEE ALSO
HISTORY
COPYRIGHT

NAME

openssl-rsautl - RSA command

SYNOPSIS

openssl rsautl [-help] [-in file] [-passin arg] [-rev] [-out file] [-inkey file] [-keyform DER|PEM|ENGINE] [-pubin] [-certin] [-sign] [-verify] [-encrypt] [-decrypt] [-pkcs] [-x931] [-oaep] [-ssl] [-raw] [-pkcs] [-ssl] [-raw] [-hexdump] [-asn1parse] [-engine id] [-rand files] [-writerand file] [-provider name] [-provider_path path]

DESCRIPTION

This command has been deprecated. The OPTIONS

-help

Print out a usage message.

-in filename

This specifies the input filename to read data from or standard input if this option is not specified.

-passin arg

The passphrase used in the output file. See see -rev

Reverse the order of the input.

-out filename

Specifies the output filename to write to or standard output by default.

-inkey file

The input key file, by default it should be an RSA private key.

-keyform DER|PEM|ENGINE

The key format; the default is PEM. See -pubin

The input file is an RSA public key.

-certin

The input is a certificate containing an RSA public key.

-sign

Sign the input data and output the signed result. This requires an RSA private key.

-verify

Verify the input data and output the recovered data.

-encrypt

Encrypt the input data using an RSA public key.

-decrypt

Decrypt the input data using an RSA private key.

-pkcs, -oaep, -x931 -ssl, -raw

The padding to use: PKCS#1 v1.5 (the default), PKCS#1 OAEP, ANSI X9.31, special padding used in SSL v2 backwards compatible handshakes, or no padding, respectively. For signatures, only -pkcs and -raw can be used.

-hexdump

Hex dump the output data.

-asn1parse

Parse the ASN.1 output data, this is useful when combined with the -verify option.

-engine id

See -rand files, -writerand file

See -provider name

-provider_path path

See NOTES

Since this command uses the RSA algorithm directly, it can only be used to sign or verify small pieces of data.