Service Provider Certificate: error=format error in certificate's notAfter field

This forum is for general conversation and user-user networking.
Locked
BijanK
OpenVpn Newbie
Posts: 2
Joined: Mon Jan 07, 2019 3:34 pm

Service Provider Certificate: error=format error in certificate's notAfter field

Post by BijanK » Mon Jan 07, 2019 4:06 pm

Hello,

I am pretty much a rookie with OpenVPN and I'm seeing an issue I cannot resolve with the following certs (inline) when trying to connect to a remote server. :roll: I've tried with various clients/OSes but can't seem to pinpoint the problem. Clients give me this (personal data replaced) and will enter a connection loop:
2019-01-07 16:35:38: State changed to verbinde
2019-01-07 16:35:38: WARNING: No server certificate verification method has been enabled. See http://openvpn.net/howto.html#mitm for more info.
2019-01-07 16:35:38: TCP/UDP: Preserving recently used remote address: [AF_INET][IP-ADDRESS]:4443
2019-01-07 16:35:38: Attempting to establish TCP connection with [AF_INET][IP-ADDRESS]:4443 [nonblock]
2019-01-07 16:35:39: TCP connection established with [AF_INET][IP-ADDRESS]:4443
2019-01-07 16:35:39: TCP_CLIENT link local: (not bound)
2019-01-07 16:35:39: TCP_CLIENT link remote: [AF_INET][IP-ADDRESS]:4443
2019-01-07 16:35:39: State changed to authentifiziere
2019-01-07 16:35:40: VERIFY ERROR: depth=0, error=format error in certificate's notAfter field: C=de, L=[LOCATION], O=[ORG], CN=[CN], emailAddress=[EMAIL-ADDRESS]
2019-01-07 16:35:40: OpenSSL: error:14090086:SSL routines:ssl3_get_server_certificate:certificate verify failed
2019-01-07 16:35:40: TLS_ERROR: BIO read tls_read_plaintext error
2019-01-07 16:35:40: TLS Error: TLS object -> incoming plaintext read error
2019-01-07 16:35:40: TLS Error: TLS handshake failed
2019-01-07 16:35:40: Fatal TLS error (check_tls_errors_co), restarting
2019-01-07 16:35:40: SIGUSR1[soft,tls-error] received, process restarting
I've checked the certs' "NotAfter" field but can't see anything here either:
143:d=2 hl=2 l= 30 cons: SEQUENCE
145:d=3 hl=2 l= 13 prim: UTCTIME :100205142143Z
160:d=3 hl=2 l= 13 prim: UTCTIME :370622142143Z
175:d=2 hl=2 l= 102 cons: SEQUENCE
177:d=3 hl=2 l= 11 cons: SET
Running openssl verify on root and user certs also gives me "OKs".

Does anyone have an idea what might be causing this?

Thanks a lot! :)

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 5783
Joined: Fri Jun 03, 2016 1:17 pm

Re: Request: Help with cert config/errors when connecting

Post by TinCanTech » Mon Jan 07, 2019 7:18 pm

How did you create your certificates ?

viewtopic.php?f=30&t=22603

BijanK
OpenVpn Newbie
Posts: 2
Joined: Mon Jan 07, 2019 3:34 pm

Re: Request: Help with cert config/errors when connecting

Post by BijanK » Wed Jan 09, 2019 4:47 pm

I did not create them myself. They were provided to me by a service provider.

User avatar
TinCanTech
OpenVPN Protagonist
Posts: 5783
Joined: Fri Jun 03, 2016 1:17 pm

Re: Request: Help with cert config/errors when connecting

Post by TinCanTech » Wed Jan 09, 2019 4:54 pm

We cannot help you with that.

Locked