sl@0: [Root5CA]
sl@0: 
sl@0: database        = index.txt				# index file.
sl@0: new_certs_dir   = .						# new certs dir
sl@0:  
sl@0: certificate     = ../root5ca.pem		# The CA cert
sl@0: serial          = serial				# serial no file
sl@0: private_key     = ../root5ca_key.pem		# CA private key
sl@0: RANDFILE        = rand  	  			# random number file
sl@0:  
sl@0: default_days    = 365							# how long to certify for
sl@0: default_crl_days= 30					# how long before next CRL
sl@0: default_md      = md5					# md to use
sl@0: 
sl@0: policy          = policy_any			# default policy
sl@0: email_in_dn     = no					# Don't add the email into cert DN
sl@0: 
sl@0: name_opt        = ca_default			# Subject name display option
sl@0: cert_opt        = ca_default			# Certificate display option
sl@0: copy_extensions = none					# Don't copy extensions from request
sl@0: 
sl@0: [policy_any]
sl@0: countryName            = supplied
sl@0: stateOrProvinceName    = optional
sl@0: organizationName       = optional
sl@0: organizationalUnitName = optional
sl@0: commonName             = supplied
sl@0: emailAddress           = optional
sl@0: 
sl@0: [ca_policy]
sl@0: organizationName       = supplied
sl@0: commonName             = supplied
sl@0: 
sl@0: [Signing_Extensions] 
sl@0: extendedKeyUsage=codeSigning