Specifically this about Checking Authenticity: “This step verifies that the certificate was authored by the issuer. This is verified by ensuring the signing key for the blockchain transaction is indeed claimed by the issuer, and the key was valid at the time the transaction was issued.”
Probably my problem is that the signing key of the issuer doesn’t match.
To create the unsigned certificates, I was using the default configuration:
with only some changes on the images and on the roster.
Now, I have changed this line:
With something like
issuer_public_key= (the same address I’m using on the cert-issuer configuration).
*Note I’m not using any name before the address, unlike the default conf. Is this ok?
But it is still not working. Am I missing something here?
you are right, you had to change the issuer_public_key to the one you were using in the cert-issuer. But don’t miss the “ecdsa-koblitz-pubkey:”. The entry has to look like this, but replace “” with your public key:
I faced also these problems. In the event that you have not solve them already, this is what I did;
generate a JSON issuer identity file with “python create_v2_issuer.py -c conf-ini -o issuer.json”. The conf.ini is the same that you are using to generate the certificate template, and to instantiate the certificates. You will find this python module in cert-tools.
The previous step will generate a JSON file identifying the issuer, that has to be saved in the exact location that you are declaring in the conf.ini file used also in the previous step. Since I’m using Flask, the line inside the conf.ini looks like;
so, as I’m working in a WINDOWS environment, I saved the issuer.json file in “C:\Users\USER\Downloads\cert-viewer-master\cert_viewer\themes\default\static\issuer\issuer.json”,
The problem I had, also had to do with the date the date the address was created. In the “issuer,json” file created in the previous step, I went to the end and modified the creation data (setting it to dec 1st), long before the date I generated the certificates. Like that;
Finally, if you want, you may check that the address you are using in the certificates’ JSON files IS the same ecdsa-koblitz-pubkey address -it already should be like that; look at the end of the file-, that the address inside the issuer,json file (the one showed in the previous step).
The problem I had, also had to do with the date the date the address was created. In the “issuer,json” file created in the previous step, I went to the end and modified the creation data (setting it to dec 1st), long before the date I generated the certificates