Comments in a pem file

Question

Does anyone know if there exists a way to put comments in a pem certificate such that openssl will ignore the comments while parsing the certificate.

Thanks

Answer 1

Anything outside -----BEGIN FOO----- and -----END FOO----- should be ignored by OpenSSL.

This behavior is commonly used to e.g. embed an entire human-readable detailed description of the cert in the PEM file itself, so that anyone reading it can see what it encodes without having to invoke openssl x509 ... on it.