README: rename and verify certificates

author: Christian Hesse <mail@eworm.de> 2018-09-14 10:31:11 +0200
committer: Christian Hesse <mail@eworm.de> 2018-09-14 10:39:46 +0200
commit: 8b1ed433ed903d555802d932ea09abc543a3a5cf (patch)
tree: eb883588d9afd29f39b7c16db4a67da8b3088369 /README.md
parent: 5fff04ed0e5f89c1577f891fe14e3640da8b4fdb (diff)
1 files changed, 11 insertions, 3 deletions
diff --git a/README.md b/README.md
index 005d02f..2af26e9 100644
--- a/README.md
+++ b/README.md
@@ -46,21 +46,29 @@ files to your MikroTik device.
 
 Then we import the certificates.
 
-    [admin@MikroTik] > /certificate import file-name=isrgrootx1.pem.txt passphrase=""
+    [admin@MikroTik] > / certificate import file-name=isrgrootx1.pem.txt passphrase=""
          certificates-imported: 1
          private-keys-imported: 0
                 files-imported: 1
            decryption-failures: 0
       keys-with-no-certificate: 0
 
-    [admin@MikroTik] > /certificate import file-name=letsencryptauthorityx3.pem.txt passphrase=""
+    [admin@MikroTik] > / certificate import file-name=letsencryptauthorityx3.pem.txt passphrase=""
          certificates-imported: 1
          private-keys-imported: 0
                 files-imported: 1
            decryption-failures: 0
       keys-with-no-certificate: 0
 
-Now let's download the main scripts, add them in configuration and remove the files.
+For basic verification we rename and print the certifiactes. Make sure two certificates are listed.
+
+    [admin@MikroTik] > / certificate set name="ISRG-Root-X1" [ find where fingerprint="96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6" ]
+    [admin@MikroTik] > / certificate set name="Let-s-Encrypt-Authority-X3" [ find where fingerprint="731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568" ]
+    [admin@MikroTik] > / certificate print terse where fingerprint="96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6" or fingerprint="731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568"
+     0        T name=ISRG-Root-X1 issuer=C=US,O=Internet Security Research Group,CN=ISRG Root X1 country=US organization=Internet Security Research Group common-name=ISRG Root X1 key-size=4096 days-valid=7305 trusted=yes key-usage=key-cert-sign,crl-sign serial-number=8210CFB0D240E3594463E0BB63828B00 fingerprint=96bcec06264976f37460779acf28c5a7cfe8a3c0aae11a8ffcee05c0bddf08c6 invalid-before=jun/04/2015 13:04:38 invalid-after=jun/04/2035 13:04:38 expires-after=872w3d7m34s
+     1   L    T name=Let-s-Encrypt-Authority-X3 issuer=C=US,O=Internet Security Research Group,CN=ISRG Root X1 country=US organization=Let's Encrypt common-name=Let's Encrypt Authority X3 key-size=2048 days-valid=1826 trusted=yes key-usage=digital-signature,key-cert-sign,crl-sign serial-number=D3B17226342332DCF40528512AEC9C6A fingerprint=731d3d9cfaa061487a1d71445a42f67df0afca2a6c2d2f98ff7b3ce112b1f568 invalid-before=oct/06/2016 17:43:55 invalid-after=oct/06/2021 17:43:55 expires-after=159w5d4h46m51s
+
+Now let's download the main scripts and add them in configuration on the fly.
 
     [admin@MikroTik] > / system script add name=global-config source=([ / tool fetch check-certificate=yes-without-crl "https://git.eworm.de/cgit.cgi/routeros-scripts/plain/global-config" output=user as-value]->"data")
     [admin@MikroTik] > / system script add name=script-updates source=([ / tool fetch check-certificate=yes-without-crl "https://git.eworm.de/cgit.cgi/routeros-scripts/plain/script-updates" output=user as-value]->"data")
author	Christian Hesse <mail@eworm.de>	2018-09-14 10:31:11 +0200
committer	Christian Hesse <mail@eworm.de>	2018-09-14 10:39:46 +0200
commit	8b1ed433ed903d555802d932ea09abc543a3a5cf (patch)
tree	eb883588d9afd29f39b7c16db4a67da8b3088369 /README.md
parent	5fff04ed0e5f89c1577f891fe14e3640da8b4fdb (diff)