network={
   ssid="eduroam"
   key_mgmt=WPA-EAP
   eap=TLS
   identity="XXXX@student.put.poznan.pl"
   client_cert="/root/XXXX.crt"
   private_key="/root/XXXX.key"
   private_key_passwd="XXXXXXX"
}

juniorjpdj@Junior-x220 ~/root % sudo wpa_supplicant -iwlp3s0 -csupp.cfg
Successfully initialized wpa_supplicant
wlp3s0: SME: Trying to authenticate with 00:04:96:82:d8:80 (SSID='eduroam' freq=5260 MHz)
wlp3s0: Trying to associate with 00:04:96:82:d8:80 (SSID='eduroam' freq=5260 MHz)
wlp3s0: Associated with 00:04:96:82:d8:80
wlp3s0: CTRL-EVENT-SUBNET-STATUS-UPDATE status=0
wlp3s0: CTRL-EVENT-EAP-STARTED EAP authentication started
wlp3s0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25 -> NAK
wlp3s0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=13
wlp3s0: CTRL-EVENT-EAP-METHOD EAP vendor 0 method 13 (TLS) selected
wlp3s0: CTRL-EVENT-EAP-PEER-CERT depth=1 subject='/DC=pl/DC=edu/DC=put/DC=local/CN=ADENA-CA' hash=a4882294ffd8d3ff9cce3ba2cf3b224798c55d7997bed9bca560aeca3f76c0b8
wlp3s0: CTRL-EVENT-EAP-PEER-CERT depth=1 subject='/DC=pl/DC=edu/DC=put/DC=local/CN=ADENA-CA' hash=a4882294ffd8d3ff9cce3ba2cf3b224798c55d7997bed9bca560aeca3f76c0b8
wlp3s0: CTRL-EVENT-EAP-PEER-CERT depth=0 subject='/C=PL/ST=Wielkopolska/L=Poznan/O=Politechnika Poznanska/OU=DOiE/CN=nac.put.poznan.pl' hash=44314dad99255cc647e21db82810fe57c06484692a5393d60196639f6e39bdde
wlp3s0: CTRL-EVENT-EAP-SUCCESS EAP authentication completed successfully
wlp3s0: WPA: Key negotiation completed with 00:04:96:82:d8:80 [PTK=CCMP GTK=CCMP]
wlp3s0: CTRL-EVENT-CONNECTED - Connection to 00:04:96:82:d8:80 completed [id=0 id_str=]
^Cwlp3s0: CTRL-EVENT-DISCONNECTED bssid=00:04:96:82:d8:80 reason=3 locally_generated=1
nl80211: deinit ifname=wlp3s0 disabled_11b_rates=0
wlp3s0: CTRL-EVENT-TERMINATING

wlan0: SME: Trying to authenticate with 00:04:96:85:28:f0 (SSID='eduroam' freq=2442 MHz)
wlan0: Trying to associate with 00:04:96:85:28:f0 (SSID='eduroam' freq=2442 MHz)
wlan0: Associated with 00:04:96:85:28:f0
wlan0: CTRL-EVENT-DISCONNECTED bssid=00:04:96:85:28:f0 reason=4 locally_generated=1
wlan0: SME: Trying to authenticate with 00:04:96:85:5d:d0 (SSID='eduroam' freq=2412 MHz)
wlan0: Trying to associate with 00:04:96:85:5d:d0 (SSID='eduroam' freq=2412 MHz)
wlan0: Associated with 00:04:96:85:5d:d0
wlan0: CTRL-EVENT-DISCONNECTED bssid=00:04:96:85:5d:d0 reason=4 locally_generated=1
wlan0: SME: Trying to authenticate with 00:04:96:82:e5:00 (SSID='eduroam' freq=2442 MHz)
wlan0: Trying to associate with 00:04:96:82:e5:00 (SSID='eduroam' freq=2442 MHz)
wlan0: Associated with 00:04:96:82:e5:00
wlan0: CTRL-EVENT-EAP-STARTED EAP authentication started
wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=25 -> NAK
wlan0: CTRL-EVENT-EAP-PROPOSED-METHOD vendor=0 method=13
PKCS #5: unsupported encryption algorithm 1.2.840.113549.1.5.13
TLSv1: Failed to parse private key
TLS: Failed to load private key
TLS: Failed to set TLS connection parameters
EAP-TLS: Failed to initialize SSL.
wlan0: EAP: Failed to initialize EAP method: vendor 0 method 13 (TLS)
wlan0: CTRL-EVENT-EAP-FAILURE EAP authentication failed
wlan0: CTRL-EVENT-DISCONNECTED bssid=00:04:96:82:e5:00 reason=23
wlan0: CTRL-EVENT-SSID-TEMP-DISABLED id=0 ssid="eduroam" auth_failures=1 duration=10 reason=AUTH_FAILED
^Cnl80211: deinit ifname=wlan0 disabled_11b_rates=0
wlan0: CTRL-EVENT-TERMINATING 
root@OpenWrt:~#