This is a modified version of Kevin Decherf's
ssl_chain.sh
tool which adds support for loading certificate chains for verification from
STDIN.
I use this to inspect the certificate chain of TLS certificates stored in
Kubernetes in conjunction with the great YAML parsing tool
yq
, for example, on macOS:
kubectl get secret my-tls-secret | yq r - data[tls.crt] | base64 -D | ssl_chain.sh -