(Unicode C++) Get the Server Certificate, Certificate Chain, and Root CA Certificate

Demonstrates how to get the HTTP server certificate, its certificate chain, and the root CA certificate.

Note: This example requires Chilkat v11.0.0 or greater.

Chilkat C/C++ Library Downloads
MS Visual C/C++ C++ Builder Linux C/C++ Alpine Linux C/C++	MacOS C/C++ iOS C/C++ Android C/C++ MinGW C/C++

#include <CkHttpW.h>
#include <CkCertW.h>
#include <CkCertChainW.h>

void ChilkatSample(void)
    {
    bool success = false;

    // This example assumes the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    CkHttpW http;

    // We're getting the SSL/TLS certificate, so make sure to connect to the SSL/TLS port (443).
    CkCertW sslCert;
    success = http.GetServerCert(L"apple.com",443,sslCert);
    if (success == false) {
        wprintf(L"%s\n",http.lastErrorText());
        return;
    }

    CkCertChainW certChain;
    success = sslCert.BuildCertChain(certChain);
    if (success == false) {
        wprintf(L"%s\n",sslCert.lastErrorText());
        return;
    }

    CkCertW cert;
    int i = 0;
    int numCerts = certChain.get_NumCerts();
    while (i < numCerts) {
        certChain.CertAt(i,cert);
        wprintf(L"SubjectDN %d: %s\n",i,cert.subjectDN());
        wprintf(L"IssuerDN %d: %s\n",i,cert.issuerDN());
        i = i + 1;
    }

    // If the certificate chain reaches the root CA cert, then the last cert in the chain
    // is the root CA cert.
    if (certChain.get_ReachesRoot() == true) {
        CkCertW caCert;
        certChain.CertAt(numCerts - 1,caCert);
        wprintf(L"CA Root Cert: %s\n",caCert.subjectDN());
    }
    }