# show trusted root ca entries with empty/blank password
keytool -keystore "$JAVA_HOME/jre/lib/security/cacerts" -list
# show trusted certificate entries with store password
keytool -keystore "$HOME/.chorke/jks/chorke.jks" -list
# change proprietary jks format to pkcs12
keytool -importkeystore -srckeystore chorke_source.jks \
-destkeystore chorke_target.jks -deststoretype pkcs12
# debugging certificate handshacking
service='api.chorke.org:5443/soap/services';\
echo -e "GET / HTTP/1.0\r\n" | openssl s_client \
-connect $service -CAfile chorke_client.pem
# import certificate with alias in java security
keytool -import -keystore $JAVA_HOME/jre/lib/security/cacerts -alias samarootca -file samarootca.cer
keytool -import -keystore $JAVA_HOME/jre/lib/security/cacerts -alias samasubca -file samasubca.cer
keytool -import -keystore $JAVA_HOME/jre/lib/security/cacerts -alias billsoft -file billsoft.crt