ssh_certificate_parser
is a small library for interacting with OpenSSH host/user certificates. Specifically, it supports RSA, DSA, and Ed25519 keys signed by an RSA certificate authority. It does not currently validate the CA signature, but merely parses out some fields.
This work is licensed under the ISC license, a copy of which can be found at LICENSE.txt
This module contains a single class, SSHCertificate
. You can construct it with the .from_bytes
or .from_file
classmethods.
from ssh_certificate_parser import SSHCertificate
cert = SSHCertificate.from_file('/etc/ssh/ssh_host_rsa_key-cert.pub')
remaining_seconds_of_validity = cert.remaining_validity
Full documentation is at https://ssh-certificate-parser.readthedocs.io/en/latest/.