keytool error: java.io.IOException: parseAlgParameters failed: ObjectIdentifier() -- data isn't an object ID (tag = 48)

Asked Dec 06 '21 at 10:30

Active Jan 20 '22 at 15:14

Viewed 5,509 times

I am trying to generate keystore using keytool and getting below error -

D:\Java\bin>keytool -importkeystore -srckeystore cert1.p12 -srcstoretype pkcs12 -destkeystore cert1.keystore -deststoretype JKS
Enter destination keystore password:
Re-enter new password:
Enter source keystore password:
keytool error: java.io.IOException: parseAlgParameters failed: ObjectIdentifier() -- data isn't an object ID (tag = 48)

edited Dec 06 '21 at 10:35

asked Dec 06 '21 at 10:30

Dupe https://stackoverflow.com/questions/51883324/why-can-encryptedprivatekeyinfo-not-read-my-pkcs8-encrypted-private-key-in-java https://stackoverflow.com/questions/67766268/ioexception-in-java-8-when-reading-pkcs12-keystore-created-with-keytool-from-ope https://stackoverflow.com/questions/69800951/java-kafka-client-pem-cert-key-invalidconfigurationexception-java-io-ioexcepti https://stackoverflow.com/questions/68829204/java-keystore-compatibility-java-8-11 https://stackoverflow.com/questions/68355241/java-load-encrypted-private-key – dave_thompson_085 Dec 06 '21 at 13:32
5

In short: your PKCS12 uses a PBES2 cipher and Java versions below 8u301 or 11.0.1 don't correctly handle PBES2. Either use a newer version of Java, or (re)create the PKCS12 so that is doesn't use PBES2. – dave_thompson_085 Dec 06 '21 at 13:33

keytool error: java.io.IOException: parseAlgParameters failed: ObjectIdentifier() -- data isn't an object ID (tag = 48)

0 Answers0

Linked