https://carlossura.com/tags/key/ Recent content in Key on DevOps Engineer & Software Engineer Hugo en-US Tue, 26 May 2026 21:45:56 -0600 https://carlossura.com/blog/ssl-certificate-private-key-validation/ Tue, 26 May 2026 21:45:56 -0600 https://carlossura.com/blog/ssl-certificate-private-key-validation/ <p>I had an issue the other day with an SSL Certificate and Private Key that didn&rsquo;t match. Here is how I validated it.</p> <p>First, ensure you have the <code>cryptography</code> library installed.</p> <pre tabindex="0"><code>pip install cryptography </code></pre><p>Then, use the following script to validate the SSL Certificate and Private Key.</p> <pre tabindex="0"><code>from cryptography.hazmat.primitives.asymmetric import rsa from cryptography.hazmat.primitives import serialization from cryptography.x509 import load_pem_x509_certificate # Load private key with open(&#34;your-private.key&#34;, &#34;rb&#34;) as key_file: private_key = serialization.load_pem_private_key(key_file.read(), password=None) # Load certificate with open(&#34;your-certificate.pem&#34;, &#34;rb&#34;) as cert_file: cert = load_pem_x509_certificate(cert_file.read()) # Get the public key from the certificate public_key = cert.public_key() # Check if the public key matches the private key if isinstance(public_key, rsa.RSAPublicKey) and isinstance(private_key, rsa.RSAPrivateKey): if private_key.public_key().public_numbers() == public_key.public_numbers(): print(&#34;The private key belongs to the certificate.&#34;) else: print(&#34;The private key does NOT belong to the certificate.&#34;) </code></pre><p>I ran this script, and it told me that the private key did not belong to the certificate. So I knew I had the wrong private key. This saved me a lot of time troubleshooting.</p>