fphammerle
/
template-x509-cert-signing


			
				
					
						
						
							1234567891011121314151617181920212223242526
							Key-Type: RSA
Key-Grip: {{keygrip}}
# X509v3 Key Usage: critical
#   Digital Signature, Non Repudiation, Key Encipherment, Data Encipherment
# Google Chrome 56.0.2924.87 on Linux Mint 18.2 reports
#   [...]:ERROR:cert_verify_proc_nss.cc(942)] CERT_PKIXVerifyCert for whatever.hammerle.me failed err=-810
# if flag 'encrypt' is not set.
Key-Usage: sign,encrypt
Serial: random
Name-DN: CN=example.hammerle.me,C=AT
Name-DNS: example.hammerle.me
Hash-Algo: SHA256
Issuer-DN: CN=Fabian Peter Hammerle,C=AT
Not-After: 2019-08-01 12:34:56
Subject-Key-Id: {{keygrip}}
Signing-Key: C2E04B00B3F087DB143B4BB6411813BA220ED4BA
Authority-Key-Id: C2E04B00B3F087DB143B4BB6411813BA220ED4BA
# X509v3 Basic Constraints: critical
#   CA:FALSE
Extension: 2.5.29.19 c 3003010100
# X509v3 Extended Key Usage:
#   TLS Web Server Authentication, TLS Web Client Authentication
Extension: 2.5.29.37 n 301406082B0601050507030106082B06010505070302
# Netscape Cert Type:
#   SSL Client, SSL Server
Extension: 2.16.840.1.113730.1.1 n 030206C0