-
Since you are on Windows, make sure that your certificate in Windows “compatible”, most importantly that it doesn’t have
^M
in the end of each lineIf you open it it will look like this:
-----BEGIN CERTIFICATE-----^M MIIDITCCAoqgAwIBAgIQL9+89q6RUm0PmqPfQDQ+mjANBgkqhkiG9w0BAQUFADBM^M
To solve “this” open it with
Write
or Notepad++ and have it convert it to Windows “style” -
Try to run
openssl x509 -text -inform DER -in server_cert.pem
and see what the output is, it is unlikely that a private/secret key would be untrusted, trust only is needed if you exported the key from a keystore, did you?