cpopenssl pkcs12 -in $FWDIR/conf/InternalCA.p12 -nokeys -nomacver -passin pass: | cpopenssl x509 -noout -enddate
Internal CA certificate format is not supported by Java, or certificate is (almost) expired and needs to be renewed.