Symaptic: os/security/cryptoservices/certificateandkeymgmt/testcertificates/oldCA/openssl.config@bde4ae8d615e (annotated)

sl@0	1	# openssl.config
sl@0	2	#
sl@0	3	# Config file for OpenSSL CA
sl@0	4
sl@0	5	[ ca ]
sl@0	6
sl@0	7	default_ca = ca_default # The default ca section
sl@0	8
sl@0	9	[ Root1 ]
sl@0	10
sl@0	11	dir = Root1
sl@0	12	database = $dir\\index.txt # index file.
sl@0	13	new_certs_dir = $dir\\certs # new certs dir
sl@0	14
sl@0	15	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	16	serial = $dir\\serial # serial no file
sl@0	17	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	18	RANDFILE = $dir\\private\\.rand # random number file
sl@0	19
sl@0	20	default_days = 365 # how long to certify for
sl@0	21	default_crl_days= 30 # how long before next CRL
sl@0	22	default_md = md5 # md to use
sl@0	23
sl@0	24	policy = ca_policy # our policy
sl@0	25	email_in_dn = no # Don't add the email into cert DN
sl@0	26
sl@0	27	nameopt = default_ca # Subject name display option
sl@0	28	certopt = default_ca # Certificate display option
sl@0	29	copy_extensions = none # Don't copy extensions from request
sl@0	30
sl@0	31	distinguished_name = root_ca_distinguished_name
sl@0	32
sl@0	33
sl@0	34	[ Root2 ]
sl@0	35
sl@0	36	dir = Root2
sl@0	37	database = $dir\\index.txt # index file.
sl@0	38	new_certs_dir = $dir\\certs # new certs dir
sl@0	39
sl@0	40	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	41	serial = $dir\\serial # serial no file
sl@0	42	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	43	RANDFILE = $dir\\private\\.rand # random number file
sl@0	44
sl@0	45	default_days = 365 # how long to certify for
sl@0	46	default_crl_days= 30 # how long before next CRL
sl@0	47	default_md = sha1 # md to use
sl@0	48
sl@0	49	policy = ca_policy # our policy
sl@0	50	email_in_dn = no # Don't add the email into cert DN
sl@0	51
sl@0	52	nameopt = default_ca # Subject name display option
sl@0	53	certopt = default_ca # Certificate display option
sl@0	54	copy_extensions = none # Don't copy extensions from request
sl@0	55
sl@0	56
sl@0	57	[ Root5]
sl@0	58
sl@0	59	dir = Root5
sl@0	60	database = $dir\\index.txt # index file.
sl@0	61	new_certs_dir = $dir\\certs # new certs dir
sl@0	62
sl@0	63	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	64	serial = $dir\\serial # serial no file
sl@0	65	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	66	RANDFILE = $dir\\private\\.rand # random number file
sl@0	67
sl@0	68	default_days = 365 # how long to certify for
sl@0	69	default_crl_days= 30 # how long before next CRL
sl@0	70	default_md = md5 # md to use
sl@0	71
sl@0	72	policy = ca_policy # our policy
sl@0	73	email_in_dn = no # Don't add the email into cert DN
sl@0	74
sl@0	75	nameopt = default_ca # Subject name display option
sl@0	76	certopt = default_ca # Certificate display option
sl@0	77	copy_extensions = none # Don't copy extensions from request
sl@0	78
sl@0	79
sl@0	80	[ Root5-Mid ]
sl@0	81	dir = Root5-Mid
sl@0	82	database = $dir\\index.txt # index file.
sl@0	83	new_certs_dir = $dir\\certs # new certs dir
sl@0	84
sl@0	85	certificate = $dir\\certs\\Mid-R5.pem # The CA cert
sl@0	86	serial = $dir\\serial # serial no file
sl@0	87	private_key = $dir\\private\\Mid-R5.key.pem # CA private key
sl@0	88	RANDFILE = $dir\\private\\.rand # random number file
sl@0	89
sl@0	90	default_days = 365 # how long to certify for
sl@0	91	default_crl_days= 30 # how long before next CRL
sl@0	92	default_md = md5 # md to use
sl@0	93
sl@0	94	policy = ca_policy # our policy
sl@0	95	email_in_dn = no # Don't add the email into cert DN
sl@0	96
sl@0	97	nameopt = default_ca # Subject name display option
sl@0	98	certopt = default_ca # Certificate display option
sl@0	99	copy_extensions = none # Don't copy extensions from request
sl@0	100
sl@0	101
sl@0	102
sl@0	103	[ Root3-OCSP ]
sl@0	104
sl@0	105	dir = Root3-OCSP
sl@0	106	database = $dir\\index.txt # index file.
sl@0	107	new_certs_dir = $dir\\certs # new certs dir
sl@0	108
sl@0	109	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	110	serial = $dir\\serial # serial no file
sl@0	111	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	112	RANDFILE = $dir\\private\\.rand # random number file
sl@0	113
sl@0	114	default_days = 365 # how long to certify for
sl@0	115	default_crl_days= 30 # how long before next CRL
sl@0	116	default_md = md5 # md to use
sl@0	117
sl@0	118	policy = ca_policy # our policy
sl@0	119	email_in_dn = no # Don't add the email into cert DN
sl@0	120
sl@0	121	nameopt = default_ca # Subject name display option
sl@0	122	certopt = default_ca # Certificate display option
sl@0	123	copy_extensions = none # Don't copy extensions from request
sl@0	124
sl@0	125
sl@0	126	[ Root1-OCSP ]
sl@0	127
sl@0	128	dir = Root1-OCSP
sl@0	129	database = $dir\\index.txt # index file.
sl@0	130	new_certs_dir = $dir\\certs # new certs dir
sl@0	131
sl@0	132	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	133	serial = $dir\\serial # serial no file
sl@0	134	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	135	RANDFILE = $dir\\private\\.rand # random number file
sl@0	136
sl@0	137	default_days = 365 # how long to certify for
sl@0	138	default_crl_days= 30 # how long before next CRL
sl@0	139	default_md = md5 # md to use
sl@0	140
sl@0	141	policy = ca_policy # our policy
sl@0	142	email_in_dn = no # Don't add the email into cert DN
sl@0	143
sl@0	144	nameopt = default_ca # Subject name display option
sl@0	145	certopt = default_ca # Certificate display option
sl@0	146	copy_extensions = none
sl@0	147
sl@0	148
sl@0	149	[ Root2-OCSP ]
sl@0	150
sl@0	151	dir = Root2-OCSP
sl@0	152	database = $dir\\index.txt # index file.
sl@0	153	new_certs_dir = $dir\\certs # new certs dir
sl@0	154
sl@0	155	certificate = $dir\\certs\\ca.pem # The CA cert
sl@0	156	serial = $dir\\serial # serial no file
sl@0	157	private_key = $dir\\private\\ca.key.pem # CA private key
sl@0	158	RANDFILE = $dir\\private\\.rand # random number file
sl@0	159
sl@0	160	default_days = 365 # how long to certify for
sl@0	161	default_crl_days= 30 # how long before next CRL
sl@0	162	default_md = md5 # md to use
sl@0	163
sl@0	164	policy = ca_policy # our policy
sl@0	165	email_in_dn = no # Don't add the email into cert DN
sl@0	166
sl@0	167	nameopt = default_ca # Subject name display option
sl@0	168	certopt = default_ca # Certificate display option
sl@0	169	copy_extensions = none
sl@0	170
sl@0	171	[ Root5_Root_Ext ]
sl@0	172	keyUsage=critical,keyCertSign
sl@0	173	basicConstraints=critical,CA:TRUE, pathlen:5
sl@0	174	subjectKeyIdentifier=hash
sl@0	175
sl@0	176	[ Root5_Ext ]
sl@0	177	extendedKeyUsage=codeSigning
sl@0	178	certificatePolicies=1.2.826.0.1.1796587.1
sl@0	179
sl@0	180	[ Root5_Mid ]
sl@0	181	keyUsage=critical,keyCertSign
sl@0	182	basicConstraints=critical,CA:TRUE, pathlen:5
sl@0	183	subjectKeyIdentifier=hash
sl@0	184
sl@0	185	[ Root5_Mid_EE ]
sl@0	186	extendedKeyUsage=codeSigning
sl@0	187	certificatePolicies=1.2.826.0.1.1796587.1
sl@0	188	basicConstraints=critical,CA:FALSE
sl@0	189
sl@0	190
sl@0	191	[ NoOCSP_Ext ]
sl@0	192	1.3.6.1.5.5.7.48.1.5=DER:0500
sl@0	193
sl@0	194
sl@0	195	[ req ]
sl@0	196	distinguished_name = root_ca_distinguished_name
sl@0	197
sl@0	198	[ ca_policy ]
sl@0	199
sl@0	200	organizationName = supplied
sl@0	201	commonName = supplied
sl@0	202
sl@0	203
sl@0	204	[ root_ca_distinguished_name ]
sl@0	205	commonName = Symbian Software Ltd
sl@0	206	stateOrProvinceName = London
sl@0	207	countryName = UK
sl@0	208	emailAddress = Jeremy.Smithers@Symbian.com
sl@0	209	organizationName = Symbian Software Ltd

author	sl@SLION-WIN7.fritz.box
	Fri, 15 Jun 2012 03:10:57 +0200
changeset 0	bde4ae8d615e
permissions	-rw-r--r--