https://community.developer.cybersource.com/t5/Integration-and-Testing/CURL-error-60-server-certificate-verification-failed-CAfile/m-p/66145#M39725 <P>Hi,</P><P>&nbsp;</P><P>I'm trying to make a dummy transaction through CURL using Sandbox account &amp; the latest cacert.pem file as provided at this path -</P><P><A href="https://github.com/AuthorizeNet/sdk-php/blob/master/lib/ssl/cert.pem" target="_blank">https://github.com/AuthorizeNet/sdk-php/blob/master/lib/ssl/cert.pem</A></P><P>&nbsp;</P><P>The command I'm using is -</P><P>&nbsp;</P><P>&nbsp;sudo curl --cacert ./certificates/cacert.pem -d"x_login=&lt;API_ID&gt;&amp;x_tran_key=&lt;TRANSACTION_KEY&gt;&amp;x_delim_data=TRUE&amp;x_url=FALSE&amp;x_type=AUTH_CAPTURE&amp;x_method=CC&amp;x_relay_response=FALSE&amp;x_card_num=4111111111111111&amp;x_exp_date=05/2019&amp;x_amount=100.00&amp;x_address=&amp;x_zip=&amp;x_card_code=777" "<A href="https://test.authorize.net/gateway/transact.dll" target="_blank">https://test.authorize.net/gateway/transact.dll</A>"</P><P>&nbsp;</P><P>I get this error -</P><P>&nbsp;</P><P>curl: (60) server certificate verification failed. CAfile: ./certificates/cert.pem CRLfile: none<BR />More details here: <A href="http://curl.haxx.se/docs/sslcerts.html" target="_blank">http://curl.haxx.se/docs/sslcerts.html</A><BR /><BR />curl performs SSL certificate verification by default, using a "bundle"<BR />&nbsp;of Certificate Authority (CA) public keys (CA certs). If the default<BR />&nbsp;bundle file isn't adequate, you can specify an alternate file<BR />&nbsp;using the --cacert option.<BR />If this HTTPS server uses a certificate signed by a CA represented in<BR />&nbsp;the bundle, the certificate verification probably failed due to a<BR />&nbsp;problem with the certificate (it might be expired, or the name might<BR />&nbsp;not match the domain name in the URL).<BR />If you'd like to turn off curl's verification of the certificate, use<BR />&nbsp;the -k (or --insecure) option.</P><P>&nbsp;</P><P>&nbsp;</P><P>When I use the -k or --insecure option which skips the certificate validation, the transaction is approved as follows -</P><P>&nbsp;</P><P>sudo curl --insecure --cacert ./certificates/cert.pem -d"x_login=&lt;API_ID&gt;&amp;x_tran_key=&lt;TRANSACTION_KEY&gt;&amp;x_delim_data=TRUE&amp;x_url=FALSE&amp;x_type=AUTH_CAPTURE&amp;x_method=CC&amp;x_relay_response=FALSE&amp;x_card_num=4111111111111111&amp;x_exp_date=05/2019&amp;x_amount=100.00&amp;x_address=&amp;x_zip=&amp;x_card_code=777" "<A href="https://test.authorize.net/gateway/transact.dll" target="_blank">https://test.authorize.net/gateway/transact.dll</A>"<BR />1,1,1,This transaction has been approved.,4BSLRJ,Y,60115870054,,,100.00,CC,auth_capture,,,,,,,,,,,,,,,,,,,,,,,,,,560D4634C183897AFBA9AECCBB7D7A05,P,2,,,,,,,,,,,XXXX1111,Visa,,,,,,,,,,,,,,,,,FALSE,</P><P>&nbsp;</P><P>Can anyone help me regarding this? Why the certification validation is failing here? Also, is this the right way to test it?</P><P>&nbsp;</P><P>We want to integrate this certificate in our HPE MSM controller where we give the URL - <A href="https://test.authorize.net/gateway/transact.dll" target="_blank">https://test.authorize.net/gateway/transact.dll</A> and the API_ID &amp; Transaction_Key. In the code for the software of HPE MSM controller, we're using CURL to reach the URL for certificate validation.</P><P>&nbsp;</P><P>Thanks,</P><P>Simran</P> Tue, 29 Jan 2019 06:45:07 GMT sdsingh1989 2019-01-29T06:45:07Z https://community.developer.cybersource.com/t5/Integration-and-Testing/CURL-error-60-server-certificate-verification-failed-CAfile/m-p/66145#M39725 <P>Hi,</P><P>&nbsp;</P><P>I'm trying to make a dummy transaction through CURL using Sandbox account &amp; the latest cacert.pem file as provided at this path -</P><P><A href="https://github.com/AuthorizeNet/sdk-php/blob/master/lib/ssl/cert.pem" target="_blank">https://github.com/AuthorizeNet/sdk-php/blob/master/lib/ssl/cert.pem</A></P><P>&nbsp;</P><P>The command I'm using is -</P><P>&nbsp;</P><P>&nbsp;sudo curl --cacert ./certificates/cacert.pem -d"x_login=&lt;API_ID&gt;&amp;x_tran_key=&lt;TRANSACTION_KEY&gt;&amp;x_delim_data=TRUE&amp;x_url=FALSE&amp;x_type=AUTH_CAPTURE&amp;x_method=CC&amp;x_relay_response=FALSE&amp;x_card_num=4111111111111111&amp;x_exp_date=05/2019&amp;x_amount=100.00&amp;x_address=&amp;x_zip=&amp;x_card_code=777" "<A href="https://test.authorize.net/gateway/transact.dll" target="_blank">https://test.authorize.net/gateway/transact.dll</A>"</P><P>&nbsp;</P><P>I get this error -</P><P>&nbsp;</P><P>curl: (60) server certificate verification failed. CAfile: ./certificates/cert.pem CRLfile: none<BR />More details here: <A href="http://curl.haxx.se/docs/sslcerts.html" target="_blank">http://curl.haxx.se/docs/sslcerts.html</A><BR /><BR />curl performs SSL certificate verification by default, using a "bundle"<BR />&nbsp;of Certificate Authority (CA) public keys (CA certs). If the default<BR />&nbsp;bundle file isn't adequate, you can specify an alternate file<BR />&nbsp;using the --cacert option.<BR />If this HTTPS server uses a certificate signed by a CA represented in<BR />&nbsp;the bundle, the certificate verification probably failed due to a<BR />&nbsp;problem with the certificate (it might be expired, or the name might<BR />&nbsp;not match the domain name in the URL).<BR />If you'd like to turn off curl's verification of the certificate, use<BR />&nbsp;the -k (or --insecure) option.</P><P>&nbsp;</P><P>&nbsp;</P><P>When I use the -k or --insecure option which skips the certificate validation, the transaction is approved as follows -</P><P>&nbsp;</P><P>sudo curl --insecure --cacert ./certificates/cert.pem -d"x_login=&lt;API_ID&gt;&amp;x_tran_key=&lt;TRANSACTION_KEY&gt;&amp;x_delim_data=TRUE&amp;x_url=FALSE&amp;x_type=AUTH_CAPTURE&amp;x_method=CC&amp;x_relay_response=FALSE&amp;x_card_num=4111111111111111&amp;x_exp_date=05/2019&amp;x_amount=100.00&amp;x_address=&amp;x_zip=&amp;x_card_code=777" "<A href="https://test.authorize.net/gateway/transact.dll" target="_blank">https://test.authorize.net/gateway/transact.dll</A>"<BR />1,1,1,This transaction has been approved.,4BSLRJ,Y,60115870054,,,100.00,CC,auth_capture,,,,,,,,,,,,,,,,,,,,,,,,,,560D4634C183897AFBA9AECCBB7D7A05,P,2,,,,,,,,,,,XXXX1111,Visa,,,,,,,,,,,,,,,,,FALSE,</P><P>&nbsp;</P><P>Can anyone help me regarding this? Why the certification validation is failing here? Also, is this the right way to test it?</P><P>&nbsp;</P><P>We want to integrate this certificate in our HPE MSM controller where we give the URL - <A href="https://test.authorize.net/gateway/transact.dll" target="_blank">https://test.authorize.net/gateway/transact.dll</A> and the API_ID &amp; Transaction_Key. In the code for the software of HPE MSM controller, we're using CURL to reach the URL for certificate validation.</P><P>&nbsp;</P><P>Thanks,</P><P>Simran</P> Tue, 29 Jan 2019 06:45:07 GMT https://community.developer.cybersource.com/t5/Integration-and-Testing/CURL-error-60-server-certificate-verification-failed-CAfile/m-p/66145#M39725 sdsingh1989 2019-01-29T06:45:07Z