Why is my Certificate not working because it expects Trusted?

jackiegleason · November 28, 2022, 1:50am

I am using origin server to create a pem file I want to use for NGINX. But when I copy them both over (cert.pem and key.pem) and try running I get…

2022-11-27 20:46:14 nginx: [emerg] cannot load certificate "/usr/src/cert.pem": PEM_read_bio_X509_AUX() failed (SSL: error:0909006C:PEM routines:get_name:no start line:Expecting: TRUSTED CERTIFICATE)

What is up I see a <Can’t link to the SO post> that says it needs trusted in the header.

See <wiki-link> for all the above it has a good discussion/presentation of options.

Now in your case the error message was telling you it expected to have a content written as such:

-----BEGIN TRUSTED CERTIFICATE-----
...
-----END TRUSTED CERTIFICATE-----

But I am not sure how to do that. How do I get this to work with NGINX? Do I just change the header?

user10146 · November 28, 2022, 10:13am

Hi!

I can recommend you to check if you didn’t miss any critical step:

Take Care!

jackiegleason · November 29, 2022, 4:20am

Right I did all that but it says the File the is generated via the Origin needs the trusted thing.

sdayman · November 29, 2022, 4:30am

I’m not sure why it’s hung up on Trusted. NGINX server block usually just wants ssl_certificate and ssl_certificate_key.

This is basically what you’re doing with a Cloudflare Origin Certificate (pretty much the same as the @user10146’s recommendation):

See if you can track down the NGINX setting that’s insisting on TRUSTED CERTIFICATE.

system · December 14, 2022, 4:31am

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.