WIP: PKI Lifecycle is in another state of re-org...but looking really good. I now am modifying the scripts
This commit is contained in:
JohnE
parent
eb275d847f
commit
22eae1703a
|
|
@ -4,7 +4,6 @@
|
|||
#
|
||||
|
||||
echo_block() {
|
||||
echo
|
||||
echo
|
||||
echo "***** ***** ***** *****"
|
||||
echo $1
|
||||
|
|
|
|||
|
|
@ -6,6 +6,10 @@
|
|||
# This function will generate a CA Intermediate
|
||||
# IN: UNIQ_ID_CA, SERIAL
|
||||
#
|
||||
|
||||
# source this file to include the functions
|
||||
. pki_funcs.sh
|
||||
|
||||
PARAM1=$1
|
||||
PARAM2=$2
|
||||
|
||||
|
|
@ -29,45 +33,10 @@ usage() {
|
|||
}
|
||||
|
||||
error_no_ca_file() {
|
||||
echo
|
||||
echo "ERROR: missing ca.pem"
|
||||
echo
|
||||
echo_block "ERROR: missing ca.pem"
|
||||
usage
|
||||
}
|
||||
|
||||
|
||||
generate_ca_i() {
|
||||
echo_block "Create CA Intermediate (${UNIQ_ID_CA})"
|
||||
# params
|
||||
UNIQ_ID_CA=$1
|
||||
SERIAL=$2
|
||||
|
||||
openssl genrsa -out "ca_i_${UNIQ_ID_CA}.keys.pem" 4096
|
||||
|
||||
# Create Cert Signing Request (CSR)
|
||||
openssl req -config $CA_CNF -new -sha256 \
|
||||
-subj "/C=OO/O=ACME/OU=ACME Intermediate/CN=${UNIQ_ID_CA}" \
|
||||
-key "ca_i_${UNIQ_ID_CA}.keys.pem" -out "ca_i_${UNIQ_ID_CA}.csr.pem"
|
||||
|
||||
# Create Certificate (valid for ~2 years, after the entire chain of trust expires)
|
||||
# CA signs Intermediate
|
||||
openssl x509 -req -days 750 -extfile $CA_CNF -extensions v3_ca_i \
|
||||
-CA $FQ_CA_CERT -CAkey $FQ_CA_KEYS -set_serial ${SERIAL} \
|
||||
-in "ca_i_${UNIQ_ID_CA}.csr.pem" -out "ca_i_${UNIQ_ID_CA}.crt.pem"
|
||||
|
||||
# Package the Certificate Authority Certificates for distro (windoze needs this)
|
||||
openssl pkcs12 -export -password "pass:password" -inkey "ca_i_${UNIQ_ID_CA}.keys.pem" \
|
||||
-name "CA Intermediate Mobile Provision" -certfile $FQ_CA_CERT \
|
||||
-in "ca_i_${UNIQ_ID_CA}.crt.pem" -out "ca_i_${UNIQ_ID_CA}.p12"
|
||||
|
||||
# verify certificate (output to text file for review)
|
||||
openssl x509 -noout -text -in "ca_i_${UNIQ_ID_CA}.crt.pem" > "ca_i_${UNIQ_ID_CA}_crt_info.txt"
|
||||
|
||||
# create certifiate chain
|
||||
cat $FQ_CA_CERT "ca_i_${UNIQ_ID_CA}.crt.pem" > "ca_cert-chain_${UNIQ_ID_CA}.crts.pem"
|
||||
}
|
||||
|
||||
|
||||
main() {
|
||||
if [[ ! -f ca-i.pem ]]; then
|
||||
error_no_ca_file
|
||||
|
|
|
|||
|
|
@ -30,29 +30,37 @@ usage() {
|
|||
exit 1
|
||||
}
|
||||
|
||||
|
||||
generate_client() {
|
||||
echo_block "Generate Client Certificates (${UNIQ_ID})"
|
||||
# params
|
||||
UNIQ_ID=$1
|
||||
UNIQ_ID_CA=$2
|
||||
SERIAL=$3
|
||||
|
||||
openssl genrsa -out "client_${UNIQ_ID}.keys.pem" 4096
|
||||
|
||||
openssl req -new -key "client_${UNIQ_ID}.keys.pem" \
|
||||
-subj "/C=OO/O=ACME/OU=ACME Standard/CN=client_${UNIQ_ID}" \
|
||||
-out "client_${UNIQ_ID}.csr.pem"
|
||||
# Intermediate signs Client
|
||||
openssl x509 -req -days 365 \
|
||||
-CA "ca_i_${UNIQ_ID_CA}.crt.pem" -CAkey "ca_i_${UNIQ_ID_CA}.keys.pem" -set_serial ${SERIAL} \
|
||||
-in "client_${UNIQ_ID}.csr.pem" -out "client_${UNIQ_ID}.crt.pem"
|
||||
|
||||
# Package the Certificates
|
||||
openssl pkcs12 -export -password "pass:password" -inkey "client_${UNIQ_ID}.keys.pem" \
|
||||
-name "Client ${UNIQ_ID} VPN Certificate" -certfile "ca_cert-chain_${UNIQ_ID_CA}.crts.pem" -caname "client_${UNIQ_ID}@acme.xyz" \
|
||||
-in "client_${UNIQ_ID}.crt.pem" -out "client_${UNIQ_ID}.p12"
|
||||
|
||||
# verify certificate (output to text file for review)
|
||||
openssl x509 -noout -text -in "client_${UNIQ_ID}.crt.pem" > "client_${UNIQ_ID}.info.txt"
|
||||
error_no_ca_file() {
|
||||
echo_block "ERROR: missing ca-i.pem"
|
||||
usage
|
||||
}
|
||||
|
||||
error_no_serial() {
|
||||
echo_block "ERROR: missing SERIAL file"
|
||||
usage
|
||||
}
|
||||
|
||||
get_serial() {
|
||||
filename="SERIAL"
|
||||
read -r line
|
||||
SERIAL=$line
|
||||
SERIAL=$((SERIAL+1))
|
||||
}
|
||||
|
||||
|
||||
main() {
|
||||
if [[ ! -f ca-i.pem ]]; then
|
||||
error_no_ca_file
|
||||
fi
|
||||
if [[ ! -f SERIAL ]]; then
|
||||
error_no_serial
|
||||
fi
|
||||
|
||||
if [[ -n $PARAM1 ]] || [[ -n $PARAM2 ]]; then
|
||||
generate_client $PARAM1 $PARAM2
|
||||
else
|
||||
usage
|
||||
fi
|
||||
}
|
||||
|
||||
main
|
||||
|
|
|
|||
|
|
@ -0,0 +1,8 @@
|
|||
|
||||
THIS was Generated by the CA generation application
|
||||
|
||||
Included in this package is a CA Intermediate generation application
|
||||
Running get_ca-i.sh will create a new PKI certificate chain to be distributed to organizations.
|
||||
|
||||
|
||||
|
||||
|
|
@ -0,0 +1,31 @@
|
|||
-----BEGIN CERTIFICATE-----
|
||||
MIIFZDCCA0ygAwIBAgIBZTANBgkqhkiG9w0BAQsFADBDMQswCQYDVQQGEwJPTzEN
|
||||
MAsGA1UECgwEQUNNRTElMCMGA1UEAwwccm9vdC4xMDEuc2t1bmt3b3Jrcy5hY21l
|
||||
Lnh5ejAeFw0xODA4MDYxODUzMTJaFw0yODA4MDMxODUzMTJaMEMxCzAJBgNVBAYT
|
||||
Ak9PMQ0wCwYDVQQKDARBQ01FMSUwIwYDVQQDDBxyb290LjEwMS5za3Vua3dvcmtz
|
||||
LmFjbWUueHl6MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsRRRuiMf
|
||||
+rpDWdJtBwmZVYCZFlAa/BSeC71Ku3bb7Gqi2j4siBi1Hz6DTKbd+ZMwPFTPY6Qk
|
||||
yLsgw3ICYWq19CheyHHsqX1utM66yr1OuZcn3ZbcpqzWaH3upbloSnn+gzEWy2hY
|
||||
+SG2fONa05MM5l3VCPl/fHMjJnt+fHSnr/KSk4NMaq5AE47v2CV7SnvLviuSUJAT
|
||||
ET183PG9xilEOfthlr63zk4RiUEmoG9ttuZmOCS3tlNAaUDXv5k/PrUy1qpdcp4D
|
||||
yJkPueTfsuAYFdGUpVuwvcLdIJHw6YrmQa3u/d6bc1cw3nF1TMyFFkNuf3XJAgtz
|
||||
z3aihDMH57LLMUE24HbdY+9Vt6HYsGninrWM4SMVAP62JQNS+aJfmBO1ozcyJ1/S
|
||||
aZm/Dxg2u8qblsJxBWi0hAkw/YSEP+Gevrdt0tf/xN8KypeC3lCWwm22l6gd3gXU
|
||||
KQYfav8eHTVOpw7QARaWJWDkEMqFRN4/KzTJF6/mOUz6KwEKm/NAvgVQeGBo6cMm
|
||||
qC8DTsRO/HpDFECoXcTFujj45yuYjlzzWEP7a4wuW8ouQ7E6xEAaWw0FWkEshLC6
|
||||
reThXAHA4cYhpQwZMQ+zP+W+5lXUGHDjlZrg1/RCS13nnOwOgUXmfEEth0HD8vCG
|
||||
pakCzlASneqvI0CkrrSjURcHKUInQ8kMuOkCAwEAAaNjMGEwDwYDVR0TAQH/BAUw
|
||||
AwEB/zAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0OBBYEFGs/8FQvy8NZHw8jMhvx9yxL
|
||||
9RfcMB8GA1UdIwQYMBaAFGs/8FQvy8NZHw8jMhvx9yxL9RfcMA0GCSqGSIb3DQEB
|
||||
CwUAA4ICAQAwNY1MdhiQQ9iwzZNrhzucxjtpxYnyfm962w6vbHSSpuvr9R/X1e5Q
|
||||
SnFdVBhano5NioH1j0RAmBDS4GEsI4GzvgkOI7VT+C5wrGkmNUxk+fhfh23wxiSJ
|
||||
mSsE9arpCjo1Cykg/hnpQx+sHYPyujd9+jhDSGVZH3yGGpL3Jj/toLPikocetq0E
|
||||
U2oeqHwOShYs8LXWgjeWipjZ3xvLsQxMR1NgbpWGiRKfMB+Yjmieptm+Rzvibpvq
|
||||
LoT2FLg5FfkpRAZPwRQ+KkLpS+O4q+ibes7MuIkCacam5slzKtPIXpCbpy5fEHte
|
||||
LeVOkr21jaYwQ5GRU0OcbVf1O6oOJo2T7XJ7RMLIAE2OdEkm4wIhhlR5TWKQ5xt7
|
||||
1vK4uSzW/2hgXFvkx8OqsI2VJWz2oE6ZqzcQYO12nVbqC8Kh6WiVNs/vP5kvb9H7
|
||||
YsI98Ts52YCzx1ztgSSHh/CFOXxDMpI7b6VkdQPYtoA4rdCDhT3xAlOfCNMHHeht
|
||||
U95rZ8LadDxamx3+1Lb8SjNJVrzrv9YC6nxOUTLn0N/K8ttx9XiOR19jisZIeF0Z
|
||||
34RKQX3PV1+0R+nUC/RpxsHxrl9/5Ne0SK3L72Djzrd8EXODGHEOMHy/wnyEKPtQ
|
||||
1aWlWYQjWCNX+r6C02MWRqwXMsusEy473xvdTiVj6lqfoAh27bVU5Q==
|
||||
-----END CERTIFICATE-----
|
||||
|
|
@ -0,0 +1,90 @@
|
|||
Certificate:
|
||||
Data:
|
||||
Version: 3 (0x2)
|
||||
Serial Number: 101 (0x65)
|
||||
Signature Algorithm: sha256WithRSAEncryption
|
||||
Issuer: C=OO, O=ACME, CN=root.101.skunkworks.acme.xyz
|
||||
Validity
|
||||
Not Before: Aug 6 18:53:12 2018 GMT
|
||||
Not After : Aug 3 18:53:12 2028 GMT
|
||||
Subject: C=OO, O=ACME, CN=root.101.skunkworks.acme.xyz
|
||||
Subject Public Key Info:
|
||||
Public Key Algorithm: rsaEncryption
|
||||
Public-Key: (4096 bit)
|
||||
Modulus:
|
||||
00:b1:14:51:ba:23:1f:fa:ba:43:59:d2:6d:07:09:
|
||||
99:55:80:99:16:50:1a:fc:14:9e:0b:bd:4a:bb:76:
|
||||
db:ec:6a:a2:da:3e:2c:88:18:b5:1f:3e:83:4c:a6:
|
||||
dd:f9:93:30:3c:54:cf:63:a4:24:c8:bb:20:c3:72:
|
||||
02:61:6a:b5:f4:28:5e:c8:71:ec:a9:7d:6e:b4:ce:
|
||||
ba:ca:bd:4e:b9:97:27:dd:96:dc:a6:ac:d6:68:7d:
|
||||
ee:a5:b9:68:4a:79:fe:83:31:16:cb:68:58:f9:21:
|
||||
b6:7c:e3:5a:d3:93:0c:e6:5d:d5:08:f9:7f:7c:73:
|
||||
23:26:7b:7e:7c:74:a7:af:f2:92:93:83:4c:6a:ae:
|
||||
40:13:8e:ef:d8:25:7b:4a:7b:cb:be:2b:92:50:90:
|
||||
13:11:3d:7c:dc:f1:bd:c6:29:44:39:fb:61:96:be:
|
||||
b7:ce:4e:11:89:41:26:a0:6f:6d:b6:e6:66:38:24:
|
||||
b7:b6:53:40:69:40:d7:bf:99:3f:3e:b5:32:d6:aa:
|
||||
5d:72:9e:03:c8:99:0f:b9:e4:df:b2:e0:18:15:d1:
|
||||
94:a5:5b:b0:bd:c2:dd:20:91:f0:e9:8a:e6:41:ad:
|
||||
ee:fd:de:9b:73:57:30:de:71:75:4c:cc:85:16:43:
|
||||
6e:7f:75:c9:02:0b:73:cf:76:a2:84:33:07:e7:b2:
|
||||
cb:31:41:36:e0:76:dd:63:ef:55:b7:a1:d8:b0:69:
|
||||
e2:9e:b5:8c:e1:23:15:00:fe:b6:25:03:52:f9:a2:
|
||||
5f:98:13:b5:a3:37:32:27:5f:d2:69:99:bf:0f:18:
|
||||
36:bb:ca:9b:96:c2:71:05:68:b4:84:09:30:fd:84:
|
||||
84:3f:e1:9e:be:b7:6d:d2:d7:ff:c4:df:0a:ca:97:
|
||||
82:de:50:96:c2:6d:b6:97:a8:1d:de:05:d4:29:06:
|
||||
1f:6a:ff:1e:1d:35:4e:a7:0e:d0:01:16:96:25:60:
|
||||
e4:10:ca:85:44:de:3f:2b:34:c9:17:af:e6:39:4c:
|
||||
fa:2b:01:0a:9b:f3:40:be:05:50:78:60:68:e9:c3:
|
||||
26:a8:2f:03:4e:c4:4e:fc:7a:43:14:40:a8:5d:c4:
|
||||
c5:ba:38:f8:e7:2b:98:8e:5c:f3:58:43:fb:6b:8c:
|
||||
2e:5b:ca:2e:43:b1:3a:c4:40:1a:5b:0d:05:5a:41:
|
||||
2c:84:b0:ba:ad:e4:e1:5c:01:c0:e1:c6:21:a5:0c:
|
||||
19:31:0f:b3:3f:e5:be:e6:55:d4:18:70:e3:95:9a:
|
||||
e0:d7:f4:42:4b:5d:e7:9c:ec:0e:81:45:e6:7c:41:
|
||||
2d:87:41:c3:f2:f0:86:a5:a9:02:ce:50:12:9d:ea:
|
||||
af:23:40:a4:ae:b4:a3:51:17:07:29:42:27:43:c9:
|
||||
0c:b8:e9
|
||||
Exponent: 65537 (0x10001)
|
||||
X509v3 extensions:
|
||||
X509v3 Basic Constraints: critical
|
||||
CA:TRUE
|
||||
X509v3 Key Usage: critical
|
||||
Digital Signature, Certificate Sign, CRL Sign
|
||||
X509v3 Subject Key Identifier:
|
||||
6B:3F:F0:54:2F:CB:C3:59:1F:0F:23:32:1B:F1:F7:2C:4B:F5:17:DC
|
||||
X509v3 Authority Key Identifier:
|
||||
keyid:6B:3F:F0:54:2F:CB:C3:59:1F:0F:23:32:1B:F1:F7:2C:4B:F5:17:DC
|
||||
|
||||
Signature Algorithm: sha256WithRSAEncryption
|
||||
30:35:8d:4c:76:18:90:43:d8:b0:cd:93:6b:87:3b:9c:c6:3b:
|
||||
69:c5:89:f2:7e:6f:7a:db:0e:af:6c:74:92:a6:eb:eb:f5:1f:
|
||||
d7:d5:ee:50:4a:71:5d:54:18:5a:9e:8e:4d:8a:81:f5:8f:44:
|
||||
40:98:10:d2:e0:61:2c:23:81:b3:be:09:0e:23:b5:53:f8:2e:
|
||||
70:ac:69:26:35:4c:64:f9:f8:5f:87:6d:f0:c6:24:89:99:2b:
|
||||
04:f5:aa:e9:0a:3a:35:0b:29:20:fe:19:e9:43:1f:ac:1d:83:
|
||||
f2:ba:37:7d:fa:38:43:48:65:59:1f:7c:86:1a:92:f7:26:3f:
|
||||
ed:a0:b3:e2:92:87:1e:b6:ad:04:53:6a:1e:a8:7c:0e:4a:16:
|
||||
2c:f0:b5:d6:82:37:96:8a:98:d9:df:1b:cb:b1:0c:4c:47:53:
|
||||
60:6e:95:86:89:12:9f:30:1f:98:8e:68:9e:a6:d9:be:47:3b:
|
||||
e2:6e:9b:ea:2e:84:f6:14:b8:39:15:f9:29:44:06:4f:c1:14:
|
||||
3e:2a:42:e9:4b:e3:b8:ab:e8:9b:7a:ce:cc:b8:89:02:69:c6:
|
||||
a6:e6:c9:73:2a:d3:c8:5e:90:9b:a7:2e:5f:10:7b:5e:2d:e5:
|
||||
4e:92:bd:b5:8d:a6:30:43:91:91:53:43:9c:6d:57:f5:3b:aa:
|
||||
0e:26:8d:93:ed:72:7b:44:c2:c8:00:4d:8e:74:49:26:e3:02:
|
||||
21:86:54:79:4d:62:90:e7:1b:7b:d6:f2:b8:b9:2c:d6:ff:68:
|
||||
60:5c:5b:e4:c7:c3:aa:b0:8d:95:25:6c:f6:a0:4e:99:ab:37:
|
||||
10:60:ed:76:9d:56:ea:0b:c2:a1:e9:68:95:36:cf:ef:3f:99:
|
||||
2f:6f:d1:fb:62:c2:3d:f1:3b:39:d9:80:b3:c7:5c:ed:81:24:
|
||||
87:87:f0:85:39:7c:43:32:92:3b:6f:a5:64:75:03:d8:b6:80:
|
||||
38:ad:d0:83:85:3d:f1:02:53:9f:08:d3:07:1d:e8:6d:53:de:
|
||||
6b:67:c2:da:74:3c:5a:9b:1d:fe:d4:b6:fc:4a:33:49:56:bc:
|
||||
eb:bf:d6:02:ea:7c:4e:51:32:e7:d0:df:ca:f2:db:71:f5:78:
|
||||
8e:47:5f:63:8a:c6:48:78:5d:19:df:84:4a:41:7d:cf:57:5f:
|
||||
b4:47:e9:d4:0b:f4:69:c6:c1:f1:ae:5f:7f:e4:d7:b4:48:ad:
|
||||
cb:ef:60:e3:ce:b7:7c:11:73:83:18:71:0e:30:7c:bf:c2:7c:
|
||||
84:28:fb:50:d5:a5:a5:59:84:23:58:23:57:fa:be:82:d3:63:
|
||||
16:46:ac:17:32:cb:ac:13:2e:3b:df:1b:dd:4e:25:63:ea:5a:
|
||||
9f:a0:08:76:ed:b5:54:e5
|
||||
|
|
@ -0,0 +1,31 @@
|
|||
-----BEGIN CERTIFICATE-----
|
||||
MIIFZDCCA0ygAwIBAgIBZTANBgkqhkiG9w0BAQsFADBDMQswCQYDVQQGEwJPTzEN
|
||||
MAsGA1UECgwEQUNNRTElMCMGA1UEAwwccm9vdC4xMDEuc2t1bmt3b3Jrcy5hY21l
|
||||
Lnh5ejAeFw0xODA4MDYxODUzMTJaFw0yODA4MDMxODUzMTJaMEMxCzAJBgNVBAYT
|
||||
Ak9PMQ0wCwYDVQQKDARBQ01FMSUwIwYDVQQDDBxyb290LjEwMS5za3Vua3dvcmtz
|
||||
LmFjbWUueHl6MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsRRRuiMf
|
||||
+rpDWdJtBwmZVYCZFlAa/BSeC71Ku3bb7Gqi2j4siBi1Hz6DTKbd+ZMwPFTPY6Qk
|
||||
yLsgw3ICYWq19CheyHHsqX1utM66yr1OuZcn3ZbcpqzWaH3upbloSnn+gzEWy2hY
|
||||
+SG2fONa05MM5l3VCPl/fHMjJnt+fHSnr/KSk4NMaq5AE47v2CV7SnvLviuSUJAT
|
||||
ET183PG9xilEOfthlr63zk4RiUEmoG9ttuZmOCS3tlNAaUDXv5k/PrUy1qpdcp4D
|
||||
yJkPueTfsuAYFdGUpVuwvcLdIJHw6YrmQa3u/d6bc1cw3nF1TMyFFkNuf3XJAgtz
|
||||
z3aihDMH57LLMUE24HbdY+9Vt6HYsGninrWM4SMVAP62JQNS+aJfmBO1ozcyJ1/S
|
||||
aZm/Dxg2u8qblsJxBWi0hAkw/YSEP+Gevrdt0tf/xN8KypeC3lCWwm22l6gd3gXU
|
||||
KQYfav8eHTVOpw7QARaWJWDkEMqFRN4/KzTJF6/mOUz6KwEKm/NAvgVQeGBo6cMm
|
||||
qC8DTsRO/HpDFECoXcTFujj45yuYjlzzWEP7a4wuW8ouQ7E6xEAaWw0FWkEshLC6
|
||||
reThXAHA4cYhpQwZMQ+zP+W+5lXUGHDjlZrg1/RCS13nnOwOgUXmfEEth0HD8vCG
|
||||
pakCzlASneqvI0CkrrSjURcHKUInQ8kMuOkCAwEAAaNjMGEwDwYDVR0TAQH/BAUw
|
||||
AwEB/zAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0OBBYEFGs/8FQvy8NZHw8jMhvx9yxL
|
||||
9RfcMB8GA1UdIwQYMBaAFGs/8FQvy8NZHw8jMhvx9yxL9RfcMA0GCSqGSIb3DQEB
|
||||
CwUAA4ICAQAwNY1MdhiQQ9iwzZNrhzucxjtpxYnyfm962w6vbHSSpuvr9R/X1e5Q
|
||||
SnFdVBhano5NioH1j0RAmBDS4GEsI4GzvgkOI7VT+C5wrGkmNUxk+fhfh23wxiSJ
|
||||
mSsE9arpCjo1Cykg/hnpQx+sHYPyujd9+jhDSGVZH3yGGpL3Jj/toLPikocetq0E
|
||||
U2oeqHwOShYs8LXWgjeWipjZ3xvLsQxMR1NgbpWGiRKfMB+Yjmieptm+Rzvibpvq
|
||||
LoT2FLg5FfkpRAZPwRQ+KkLpS+O4q+ibes7MuIkCacam5slzKtPIXpCbpy5fEHte
|
||||
LeVOkr21jaYwQ5GRU0OcbVf1O6oOJo2T7XJ7RMLIAE2OdEkm4wIhhlR5TWKQ5xt7
|
||||
1vK4uSzW/2hgXFvkx8OqsI2VJWz2oE6ZqzcQYO12nVbqC8Kh6WiVNs/vP5kvb9H7
|
||||
YsI98Ts52YCzx1ztgSSHh/CFOXxDMpI7b6VkdQPYtoA4rdCDhT3xAlOfCNMHHeht
|
||||
U95rZ8LadDxamx3+1Lb8SjNJVrzrv9YC6nxOUTLn0N/K8ttx9XiOR19jisZIeF0Z
|
||||
34RKQX3PV1+0R+nUC/RpxsHxrl9/5Ne0SK3L72Djzrd8EXODGHEOMHy/wnyEKPtQ
|
||||
1aWlWYQjWCNX+r6C02MWRqwXMsusEy473xvdTiVj6lqfoAh27bVU5Q==
|
||||
-----END CERTIFICATE-----
|
||||
|
|
@ -0,0 +1,51 @@
|
|||
-----BEGIN RSA PRIVATE KEY-----
|
||||
MIIJKwIBAAKCAgEAsRRRuiMf+rpDWdJtBwmZVYCZFlAa/BSeC71Ku3bb7Gqi2j4s
|
||||
iBi1Hz6DTKbd+ZMwPFTPY6QkyLsgw3ICYWq19CheyHHsqX1utM66yr1OuZcn3Zbc
|
||||
pqzWaH3upbloSnn+gzEWy2hY+SG2fONa05MM5l3VCPl/fHMjJnt+fHSnr/KSk4NM
|
||||
aq5AE47v2CV7SnvLviuSUJATET183PG9xilEOfthlr63zk4RiUEmoG9ttuZmOCS3
|
||||
tlNAaUDXv5k/PrUy1qpdcp4DyJkPueTfsuAYFdGUpVuwvcLdIJHw6YrmQa3u/d6b
|
||||
c1cw3nF1TMyFFkNuf3XJAgtzz3aihDMH57LLMUE24HbdY+9Vt6HYsGninrWM4SMV
|
||||
AP62JQNS+aJfmBO1ozcyJ1/SaZm/Dxg2u8qblsJxBWi0hAkw/YSEP+Gevrdt0tf/
|
||||
xN8KypeC3lCWwm22l6gd3gXUKQYfav8eHTVOpw7QARaWJWDkEMqFRN4/KzTJF6/m
|
||||
OUz6KwEKm/NAvgVQeGBo6cMmqC8DTsRO/HpDFECoXcTFujj45yuYjlzzWEP7a4wu
|
||||
W8ouQ7E6xEAaWw0FWkEshLC6reThXAHA4cYhpQwZMQ+zP+W+5lXUGHDjlZrg1/RC
|
||||
S13nnOwOgUXmfEEth0HD8vCGpakCzlASneqvI0CkrrSjURcHKUInQ8kMuOkCAwEA
|
||||
AQKCAgEAg5glEB3QQySuro6ZJXS1tXvGyHUpSJINzY2TfvLahrvMYEF6GH28BAcR
|
||||
ziHnrfP7Eaq5IEQ4bc/ajkQojrqdk1946J75EA+9+LH00HuUiIlTP/I/8cFZ6PdF
|
||||
JXU+krJMOLR/SxQ1opayJedTdQ2/tWafzXaUjiiGQ6/clKKghznOQb9+R31M8vvz
|
||||
M37PO8/53k5FAoe/E73ND+i6bgv2vtwYbs02jSMpFwYKrYmBUD2yUyC+QclmgZGF
|
||||
g8Zf4LsJl8utfGL/TtCohi4XK7grTfOc8rHMC4lHiU/LZ9MoQEEA7TrD7RgrofNR
|
||||
B4ypjpz3/dLLWTCnlNKF/ZZq1n3hT3AXqkAxzdiWgIjaHAn0Ad1O+37lKw4IBcSP
|
||||
lgK0XBE2NefjK25RhgSZd4YtQoorTNv7AqCHGBcAp58LylSAER9aE/wtnm5HFx3B
|
||||
ZnPH4Eynhdqz4ss/JYzfcFDOV5cJCPj3YUW+0WbBm6wqalYQJyHJHrc8UH8cFYM1
|
||||
4cnSPTND4pputf28iJy0K+EmU8Rn19wRs5nK08tzLBERaq0ZDFqgZ+qXPgimSAbb
|
||||
AMGUyOkgjpcM2xyItMS2NpudAHdn1bN/W51CfEVr2ByyuPODou5wzMbcCCYOFMAu
|
||||
4xLjDO5kPzvbR9CjEr3VcKieJjeENC/F/16dqC28MU8b/VX4Kr0CggEBAOvqB7jq
|
||||
nvI5MVCu3SVwhmhCsOheLSYx8W6r3ne/fJVPn+LR1MFG2zbzZL51xzyavBWZ/cKL
|
||||
URjaPri2eEdhWp3C4lhlpO4P693L6lLIlIoG+2g5CHE3rMmYM4xOZ8wM/7e/DoRF
|
||||
KpTNeeFGYTJ8PjnfKArYEUsGwvmD321FzpQe1BSjjk5vFB9wbWCQiBQSiFmHomNQ
|
||||
/Jp7zfsIFdxyB1mSfHFJHz65SGMk5IQeqoeOUyd7NRsDft3TNnHkcp4QTenZRNdM
|
||||
/D64G2EhwJVjgW1Zj7wbljQVjAl6nzjOPp55E3zoXtA/xC20cemG06mKd33ChY5x
|
||||
pNwsZYdghVSiBZMCggEBAMAn7fO8e1BL7QDTw3zLI3GXSMhLtBCYk37XoTZgbYww
|
||||
j4Fi0AR5/NpLzzBge1NDtE1lVkwIIh+Nf1Z4LD0x8H1qmu8qNsEiSQqLSZnDytNQ
|
||||
OdgiiTXW792SgZk4p6M1rf6gUuCy02s8FK5VAArN3k9bEjbBgnTndJXUU02l1GPt
|
||||
KwJhT5hiSXjT+i1IJoRqauIGuFL7qFhef5vBKWAcmMbk3Yh5Rz9LyhLFy6boWU2e
|
||||
eQ4JdYHhCdYxPIch4Buqmr089SMYT0+/3w78Cf/Gy5/BbpT8Dr8zFrPUYIfXHuz3
|
||||
Nbeb6QGMgSDFD//NGzhDV+LEejWbAteLXKanSaHx1RMCggEBAOak6qHeOEGmqtEv
|
||||
9KOq7K04Lo8vq8KA54ME4z595sZvj2iJLxE7PgzuTttqeLyGp0YTRKYT4NiEXvfl
|
||||
5Zgb1SUSKIq17VaWGErDFzeSRK7hfp/5yoguH28Er7kH2rEDMGsrjnzAxo2uie82
|
||||
CMb78zZPN23KqrWIScz6IdFKg1oK/dujv/hs3uaR202iYHgHWmj1k0y4HA7I5av8
|
||||
zqq0jP0Em0eCbtq6+Mt9gTCubpiTDDc4XMYpV7p1ye/1oh1o4VO0iHpaGO8Uvifr
|
||||
gMZM/3eyLTWCXwpS2pNV4B8AfPYgd24SHMhK33izxv7CQ2OpLYO1Ty/haYWcnjKJ
|
||||
qjEBKqMCggEBAI37sxZbGd7uCzSGRLcsPodLWqstTOLKaonZ+LP+MlPY+eCHy97S
|
||||
6GPAilpboCSZLVvW2hoaFGSuH/4bk8yv3tw87jh0P7sbg074Nq0YgAD+EY/DjREs
|
||||
PVbCT2KQ+0Vcf7Fac4K2gAOHhFyAUCSrk22dhGrTN3r8HygqmFcShkpDz3jVwIN/
|
||||
dHyEXSIiYtuK6mkSwBYI/440XSQQaWssFjM4nvydaGi7rpeKcX1lx77Tru0RTjNm
|
||||
veb3wJq1DCxFNktIBHYnG0t5Ie+nihflo0XrHrOVP6xFqqu77IvTB3XfAGEoIdZU
|
||||
JIG7OqQvwMIk+IaF2StM25+6yP4XNBAmaeMCggEBAMop3oQGdMYxS4VDCVK4cKsx
|
||||
cuMRubqNd9Oz8D0zFJw598xwF/2Go1GytEYxiHOMZQomX29GpxH/Wdzc+FCMajXL
|
||||
A/bml0P/rhga6mu4SDAbzDjex7d56dfi8oWL/pcKgGhS6ZQw0Cpu5aVyCHTmJUOc
|
||||
KXfDAJGBfAAWHn4YnnUBZQt/nVcWZyVy+rOCXela5lCRKSeagkVz9RAw7p5Hm6Aa
|
||||
+X/NunLif/piS2PipWQmubozNmtCMzKo/RgZqwx2mPMj1TbaaC7QrG1NQTbD7aoC
|
||||
DIPcWkOKKDeSwSBHqtI/ixdTBjBlK2Jvs+0OfV+zY7/ayFlag5AdKH3ertkh768=
|
||||
-----END RSA PRIVATE KEY-----
|
||||
|
|
@ -0,0 +1,90 @@
|
|||
Certificate:
|
||||
Data:
|
||||
Version: 3 (0x2)
|
||||
Serial Number: 101 (0x65)
|
||||
Signature Algorithm: sha256WithRSAEncryption
|
||||
Issuer: C=OO, O=ACME, CN=root.101.skunkworks.acme.xyz
|
||||
Validity
|
||||
Not Before: Aug 6 18:53:12 2018 GMT
|
||||
Not After : Aug 3 18:53:12 2028 GMT
|
||||
Subject: C=OO, O=ACME, CN=root.101.skunkworks.acme.xyz
|
||||
Subject Public Key Info:
|
||||
Public Key Algorithm: rsaEncryption
|
||||
Public-Key: (4096 bit)
|
||||
Modulus:
|
||||
00:b1:14:51:ba:23:1f:fa:ba:43:59:d2:6d:07:09:
|
||||
99:55:80:99:16:50:1a:fc:14:9e:0b:bd:4a:bb:76:
|
||||
db:ec:6a:a2:da:3e:2c:88:18:b5:1f:3e:83:4c:a6:
|
||||
dd:f9:93:30:3c:54:cf:63:a4:24:c8:bb:20:c3:72:
|
||||
02:61:6a:b5:f4:28:5e:c8:71:ec:a9:7d:6e:b4:ce:
|
||||
ba:ca:bd:4e:b9:97:27:dd:96:dc:a6:ac:d6:68:7d:
|
||||
ee:a5:b9:68:4a:79:fe:83:31:16:cb:68:58:f9:21:
|
||||
b6:7c:e3:5a:d3:93:0c:e6:5d:d5:08:f9:7f:7c:73:
|
||||
23:26:7b:7e:7c:74:a7:af:f2:92:93:83:4c:6a:ae:
|
||||
40:13:8e:ef:d8:25:7b:4a:7b:cb:be:2b:92:50:90:
|
||||
13:11:3d:7c:dc:f1:bd:c6:29:44:39:fb:61:96:be:
|
||||
b7:ce:4e:11:89:41:26:a0:6f:6d:b6:e6:66:38:24:
|
||||
b7:b6:53:40:69:40:d7:bf:99:3f:3e:b5:32:d6:aa:
|
||||
5d:72:9e:03:c8:99:0f:b9:e4:df:b2:e0:18:15:d1:
|
||||
94:a5:5b:b0:bd:c2:dd:20:91:f0:e9:8a:e6:41:ad:
|
||||
ee:fd:de:9b:73:57:30:de:71:75:4c:cc:85:16:43:
|
||||
6e:7f:75:c9:02:0b:73:cf:76:a2:84:33:07:e7:b2:
|
||||
cb:31:41:36:e0:76:dd:63:ef:55:b7:a1:d8:b0:69:
|
||||
e2:9e:b5:8c:e1:23:15:00:fe:b6:25:03:52:f9:a2:
|
||||
5f:98:13:b5:a3:37:32:27:5f:d2:69:99:bf:0f:18:
|
||||
36:bb:ca:9b:96:c2:71:05:68:b4:84:09:30:fd:84:
|
||||
84:3f:e1:9e:be:b7:6d:d2:d7:ff:c4:df:0a:ca:97:
|
||||
82:de:50:96:c2:6d:b6:97:a8:1d:de:05:d4:29:06:
|
||||
1f:6a:ff:1e:1d:35:4e:a7:0e:d0:01:16:96:25:60:
|
||||
e4:10:ca:85:44:de:3f:2b:34:c9:17:af:e6:39:4c:
|
||||
fa:2b:01:0a:9b:f3:40:be:05:50:78:60:68:e9:c3:
|
||||
26:a8:2f:03:4e:c4:4e:fc:7a:43:14:40:a8:5d:c4:
|
||||
c5:ba:38:f8:e7:2b:98:8e:5c:f3:58:43:fb:6b:8c:
|
||||
2e:5b:ca:2e:43:b1:3a:c4:40:1a:5b:0d:05:5a:41:
|
||||
2c:84:b0:ba:ad:e4:e1:5c:01:c0:e1:c6:21:a5:0c:
|
||||
19:31:0f:b3:3f:e5:be:e6:55:d4:18:70:e3:95:9a:
|
||||
e0:d7:f4:42:4b:5d:e7:9c:ec:0e:81:45:e6:7c:41:
|
||||
2d:87:41:c3:f2:f0:86:a5:a9:02:ce:50:12:9d:ea:
|
||||
af:23:40:a4:ae:b4:a3:51:17:07:29:42:27:43:c9:
|
||||
0c:b8:e9
|
||||
Exponent: 65537 (0x10001)
|
||||
X509v3 extensions:
|
||||
X509v3 Basic Constraints: critical
|
||||
CA:TRUE
|
||||
X509v3 Key Usage: critical
|
||||
Digital Signature, Certificate Sign, CRL Sign
|
||||
X509v3 Subject Key Identifier:
|
||||
6B:3F:F0:54:2F:CB:C3:59:1F:0F:23:32:1B:F1:F7:2C:4B:F5:17:DC
|
||||
X509v3 Authority Key Identifier:
|
||||
keyid:6B:3F:F0:54:2F:CB:C3:59:1F:0F:23:32:1B:F1:F7:2C:4B:F5:17:DC
|
||||
|
||||
Signature Algorithm: sha256WithRSAEncryption
|
||||
30:35:8d:4c:76:18:90:43:d8:b0:cd:93:6b:87:3b:9c:c6:3b:
|
||||
69:c5:89:f2:7e:6f:7a:db:0e:af:6c:74:92:a6:eb:eb:f5:1f:
|
||||
d7:d5:ee:50:4a:71:5d:54:18:5a:9e:8e:4d:8a:81:f5:8f:44:
|
||||
40:98:10:d2:e0:61:2c:23:81:b3:be:09:0e:23:b5:53:f8:2e:
|
||||
70:ac:69:26:35:4c:64:f9:f8:5f:87:6d:f0:c6:24:89:99:2b:
|
||||
04:f5:aa:e9:0a:3a:35:0b:29:20:fe:19:e9:43:1f:ac:1d:83:
|
||||
f2:ba:37:7d:fa:38:43:48:65:59:1f:7c:86:1a:92:f7:26:3f:
|
||||
ed:a0:b3:e2:92:87:1e:b6:ad:04:53:6a:1e:a8:7c:0e:4a:16:
|
||||
2c:f0:b5:d6:82:37:96:8a:98:d9:df:1b:cb:b1:0c:4c:47:53:
|
||||
60:6e:95:86:89:12:9f:30:1f:98:8e:68:9e:a6:d9:be:47:3b:
|
||||
e2:6e:9b:ea:2e:84:f6:14:b8:39:15:f9:29:44:06:4f:c1:14:
|
||||
3e:2a:42:e9:4b:e3:b8:ab:e8:9b:7a:ce:cc:b8:89:02:69:c6:
|
||||
a6:e6:c9:73:2a:d3:c8:5e:90:9b:a7:2e:5f:10:7b:5e:2d:e5:
|
||||
4e:92:bd:b5:8d:a6:30:43:91:91:53:43:9c:6d:57:f5:3b:aa:
|
||||
0e:26:8d:93:ed:72:7b:44:c2:c8:00:4d:8e:74:49:26:e3:02:
|
||||
21:86:54:79:4d:62:90:e7:1b:7b:d6:f2:b8:b9:2c:d6:ff:68:
|
||||
60:5c:5b:e4:c7:c3:aa:b0:8d:95:25:6c:f6:a0:4e:99:ab:37:
|
||||
10:60:ed:76:9d:56:ea:0b:c2:a1:e9:68:95:36:cf:ef:3f:99:
|
||||
2f:6f:d1:fb:62:c2:3d:f1:3b:39:d9:80:b3:c7:5c:ed:81:24:
|
||||
87:87:f0:85:39:7c:43:32:92:3b:6f:a5:64:75:03:d8:b6:80:
|
||||
38:ad:d0:83:85:3d:f1:02:53:9f:08:d3:07:1d:e8:6d:53:de:
|
||||
6b:67:c2:da:74:3c:5a:9b:1d:fe:d4:b6:fc:4a:33:49:56:bc:
|
||||
eb:bf:d6:02:ea:7c:4e:51:32:e7:d0:df:ca:f2:db:71:f5:78:
|
||||
8e:47:5f:63:8a:c6:48:78:5d:19:df:84:4a:41:7d:cf:57:5f:
|
||||
b4:47:e9:d4:0b:f4:69:c6:c1:f1:ae:5f:7f:e4:d7:b4:48:ad:
|
||||
cb:ef:60:e3:ce:b7:7c:11:73:83:18:71:0e:30:7c:bf:c2:7c:
|
||||
84:28:fb:50:d5:a5:a5:59:84:23:58:23:57:fa:be:82:d3:63:
|
||||
16:46:ac:17:32:cb:ac:13:2e:3b:df:1b:dd:4e:25:63:ea:5a:
|
||||
9f:a0:08:76:ed:b5:54:e5
|
||||
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue