• Home
  • Line#
  • Scopes#
  • Navigate#
  • Raw
  • Download
1[req]
2x509_extensions = v3_ca
3distinguished_name = req_dn
4
5[req_dn]
6countryName = NL
7organizationalUnitName = PolarSSL
8commonName = PolarSSL Test CA
9
10[v3_ca]
11subjectKeyIdentifier=hash
12authorityKeyIdentifier=keyid:always,issuer:always
13basicConstraints = CA:true
14
15[no_subj_auth_id]
16subjectKeyIdentifier=none
17authorityKeyIdentifier=none
18basicConstraints = CA:true
19
20[othername_san]
21subjectAltName=otherName:1.3.6.1.5.5.7.8.4;SEQ:hw_module_name
22
23[nonprintable_othername_san]
24subjectAltName=otherName:1.3.6.1.5.5.7.8.4;SEQ:nonprintable_hw_module_name
25
26[unsupported_othername_san]
27subjectAltName=otherName:1.2.3.4;UTF8:some other identifier
28
29[dns_alt_names]
30subjectAltName=DNS:example.com, DNS:example.net, DNS:*.example.org
31
32[alt_names]
33DNS.1=example.com
34otherName.1=1.3.6.1.5.5.7.8.4;SEQ:hw_module_name
35DNS.2=example.net
36DNS.3=*.example.org
37
38[multiple_san]
39subjectAltName=@alt_names
40
41[ext_multi_nocn]
42basicConstraints = CA:false
43keyUsage = digitalSignature, nonRepudiation, keyEncipherment
44subjectAltName = DNS:www.shotokan-braunschweig.de,DNS:www.massimo-abate.eu,IP:192.168.1.1,IP:192.168.69.144
45
46[hw_module_name]
47hwtype = OID:1.3.6.1.4.1.17.3
48hwserial = OCT:123456
49
50[nonprintable_hw_module_name]
51hwtype = OID:1.3.6.1.4.1.17.3
52hwserial = FORMAT:HEX, OCT:3132338081008180333231
53
54[v3_any_policy_ca]
55basicConstraints = CA:true
56certificatePolicies = 2.5.29.32.0
57
58[v3_any_policy_qualifier_ca]
59basicConstraints = CA:true
60certificatePolicies = @policy_info
61
62[v3_multi_policy_ca]
63basicConstraints = CA:true
64certificatePolicies = 1.2.3.4,2.5.29.32.0
65
66[v3_unsupported_policy_ca]
67basicConstraints = CA:true
68certificatePolicies = 1.2.3.4
69
70[policy_info]
71policyIdentifier = 2.5.29.32.0
72CPS.1 ="CPS uri string"
73
74[fan_cert]
75extendedKeyUsage = 1.3.6.1.4.1.45605.1
76
77[noext_ca]
78basicConstraints = CA:true
79
80[test_ca]
81database = /dev/null
82
83[crl_ext_idp]
84issuingDistributionPoint=critical, @idpdata
85
86[crl_ext_idp_nc]
87issuingDistributionPoint=@idpdata
88
89[idpdata]
90fullname=URI:http://pki.example.com/
91
92# these IPs are the ascii values for 'abcd' and 'abcd.example.com'
93[tricky_ip_san]
94subjectAltName=IP:97.98.99.100,IP:6162:6364:2e65:7861:6d70:6c65:2e63:6f6d
95