From b4f2aeb69771ab34505a6370eb06bf8924532058 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Love=20H=C3=B6rnquist=20=C3=85strand?= Date: Sat, 1 Apr 2006 00:41:04 +0000 Subject: [PATCH] make ca use openssl ca command so we can add ocsp tests, and regen certs git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@16900 ec53bebd-3082-4978-b11e-865c3cabbd6b --- lib/hx509/data/ca.crt | 26 ++--- lib/hx509/data/ca.key | 26 ++--- lib/hx509/data/gen-req.sh | 102 +++++++++++++++--- lib/hx509/data/index.txt | 7 ++ lib/hx509/data/index.txt.attr | 1 + lib/hx509/data/ocsp-req1.der | Bin 0 -> 105 bytes lib/hx509/data/ocsp-req2.der | Bin 0 -> 105 bytes lib/hx509/data/ocsp-resp1-2.der | Bin 0 -> 999 bytes lib/hx509/data/ocsp-resp1-3.der | Bin 0 -> 363 bytes lib/hx509/data/ocsp-resp1-ca.der | Bin 0 -> 999 bytes lib/hx509/data/ocsp-resp1-ocsp-no-cert.der | Bin 0 -> 363 bytes lib/hx509/data/ocsp-resp1-ocsp.der | Bin 0 -> 918 bytes lib/hx509/data/ocsp-resp1.der | Bin 0 -> 918 bytes lib/hx509/data/ocsp-resp2.der | Bin 0 -> 935 bytes lib/hx509/data/ocsp-responder.crt | 56 ++++++++++ lib/hx509/data/ocsp-responder.key | 15 +++ lib/hx509/data/openssl.cnf | 60 ++++++++++- lib/hx509/data/serial | 1 + lib/hx509/data/sub-ca.crt | 71 +++++++++--- lib/hx509/data/sub-ca.key | 26 ++--- lib/hx509/data/sub-cert.crt | 61 +++++++++-- lib/hx509/data/sub-cert.key | 26 ++--- lib/hx509/data/sub-cert.p12 | Bin 2992 -> 3008 bytes lib/hx509/data/test-ds-only.crt | 62 +++++++++-- lib/hx509/data/test-ds-only.key | 26 ++--- lib/hx509/data/test-enveloped-aes-128 | Bin 3152 -> 3144 bytes lib/hx509/data/test-ke-only.crt | 62 +++++++++-- lib/hx509/data/test-ke-only.key | 26 ++--- lib/hx509/data/test-signed-data | Bin 3821 -> 3836 bytes lib/hx509/data/test-signed-data-noattr | Bin 3639 -> 3654 bytes .../data/test-signed-data-noattr-nocerts | Bin 3148 -> 3140 bytes lib/hx509/data/test.crt | 62 +++++++++-- lib/hx509/data/test.key | 26 ++--- lib/hx509/data/test.p12 | Bin 2296 -> 2320 bytes 34 files changed, 579 insertions(+), 163 deletions(-) create mode 100644 lib/hx509/data/index.txt create mode 100644 lib/hx509/data/index.txt.attr create mode 100644 lib/hx509/data/ocsp-req1.der create mode 100644 lib/hx509/data/ocsp-req2.der create mode 100644 lib/hx509/data/ocsp-resp1-2.der create mode 100644 lib/hx509/data/ocsp-resp1-3.der create mode 100644 lib/hx509/data/ocsp-resp1-ca.der create mode 100644 lib/hx509/data/ocsp-resp1-ocsp-no-cert.der create mode 100644 lib/hx509/data/ocsp-resp1-ocsp.der create mode 100644 lib/hx509/data/ocsp-resp1.der create mode 100644 lib/hx509/data/ocsp-resp2.der create mode 100644 lib/hx509/data/ocsp-responder.crt create mode 100644 lib/hx509/data/ocsp-responder.key create mode 100644 lib/hx509/data/serial diff --git a/lib/hx509/data/ca.crt b/lib/hx509/data/ca.crt index 7914d5810..a930ff7b5 100644 --- a/lib/hx509/data/ca.crt +++ b/lib/hx509/data/ca.crt @@ -1,15 +1,15 @@ -----BEGIN CERTIFICATE----- -MIICbDCCAdWgAwIBAgIJAOMz1JsD8LslMA0GCSqGSIb3DQEBBAUAMCoxGzAZBgNV -BAMMEmh4NTA5IFRlc3QgUm9vdCBDQTELMAkGA1UEBhMCU0UwHhcNMDUwNzI3MTg1 -MzMyWhcNMTUwNzI1MTg1MzMyWjAqMRswGQYDVQQDDBJoeDUwOSBUZXN0IFJvb3Qg -Q0ExCzAJBgNVBAYTAlNFMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPcVad -eB+0GfNoj8EVENZSPfMBNYbWtU9A+z662pmW7fBWEAaNtD3vod8nmanHvLSniVX0 -UX3HFgpPCha1sHkQ0c9ljycCS6Y/HFYhcandC5jPBfbTGSlwY8qfbSeKXcJbmAOu -XYkVbxMLGUWvgWtebA4tyxe4bIMnm0FTEJe0+wIDAQABo4GZMIGWMB0GA1UdDgQW -BBRsRocil3APjbqMz1V7uBdYezklFjBaBgNVHSMEUzBRgBRsRocil3APjbqMz1V7 -uBdYezklFqEupCwwKjEbMBkGA1UEAwwSaHg1MDkgVGVzdCBSb290IENBMQswCQYD -VQQGEwJTRYIJAOMz1JsD8LslMAwGA1UdEwQFMAMBAf8wCwYDVR0PBAQDAgEGMA0G -CSqGSIb3DQEBBAUAA4GBAG+X2RxED6rfXlH8pGq9P2w4bFxBbhyKm/m08PsgYQH7 -vtylbId+TO/hWRGjr6+s9HUlPJavfpcQHpcyT4zFPk/SOLrYbZAGEWIuMpddopq+ -e3mvChqyF5mYbCdOumyYBzxgB4FjhEvfB7sYa0WZMMU3rJsGdGnGPQlDk8+G8XhG +MIICbDCCAdWgAwIBAgIJANUKkFeDDjxTMA0GCSqGSIb3DQEBBAUAMCoxGzAZBgNV +BAMMEmh4NTA5IFRlc3QgUm9vdCBDQTELMAkGA1UEBhMCU0UwHhcNMDYwNDAxMDAz +OTE2WhcNMTYwMzI5MDAzOTE2WjAqMRswGQYDVQQDDBJoeDUwOSBUZXN0IFJvb3Qg +Q0ExCzAJBgNVBAYTAlNFMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDhzV/2 +18E3JhjrtUuy63CXQSuhLc/DPI63hieM1DADhnPtUeLrKkLll90WIEJoGgwRosZ3 +xKfXGQ3NcDGw9U9y19yO8tCdiOF2x7Pm5Xqyc4Ej5CuVBD+6dKoJCPq9Pbat+m5N +4cQKI4GklwsYVp6L3MkVD7/ycbYEh2VIoyWsywIDAQABo4GZMIGWMB0GA1UdDgQW +BBRlfDG/HHB55/+H/2mDtfnz7GBIRzBaBgNVHSMEUzBRgBRlfDG/HHB55/+H/2mD +tfnz7GBIR6EupCwwKjEbMBkGA1UEAwwSaHg1MDkgVGVzdCBSb290IENBMQswCQYD +VQQGEwJTRYIJANUKkFeDDjxTMAwGA1UdEwQFMAMBAf8wCwYDVR0PBAQDAgHmMA0G +CSqGSIb3DQEBBAUAA4GBAIcvbaLuHd8JddZlUpR5g/Yz4wbZt6ruwPkoRh4bR0yJ +R2Y1enc8/6j/RDlZyq1RAI2rA3wMWFDD/flvHS0ufacxI0pfQ65acgI/A7Q1b90D +6wrwuwzLp7kKYMrxZcVEGSG6TMIJ6uH+RpMgFH3T+Pz937UDKalHh6MMRzRzcIkH -----END CERTIFICATE----- diff --git a/lib/hx509/data/ca.key b/lib/hx509/data/ca.key index 22bf10f6b..47a3f0e8b 100644 --- a/lib/hx509/data/ca.key +++ b/lib/hx509/data/ca.key @@ -1,15 +1,15 @@ -----BEGIN RSA PRIVATE KEY----- -MIICXQIBAAKBgQDPcVadeB+0GfNoj8EVENZSPfMBNYbWtU9A+z662pmW7fBWEAaN -tD3vod8nmanHvLSniVX0UX3HFgpPCha1sHkQ0c9ljycCS6Y/HFYhcandC5jPBfbT -GSlwY8qfbSeKXcJbmAOuXYkVbxMLGUWvgWtebA4tyxe4bIMnm0FTEJe0+wIDAQAB -AoGBAJrZNte7KKdPS9R8opvwApxHpBL9+tZhZ3TRV4Ux0r7IhMQpmErFBgrQIX01 -BniT06LQMLp87k/jkvRnSoZ74hIkwSj0xyydFGqDuYbsmwYtaSPJx/Kn3s7JzYoR -s1fUHbxYg7xWyl9lQfRAH3cGspbw5GLuciiCCCKiDfxAcXC5AkEA8HOG2WeIAP/5 -6eui46I/d3fT0uRjKMwS3hMVLUyH42MDcFbWJ+taJLxzEz/dQxeYgVRXoqtLFLn5 -53o38j6ovwJBANzbYdeZXT9d/XE7WPdLqmhRLkHwrWfkjfXYrPP0eb6V/p+ft0af -6aqgpG+FIIr7LSObKtPZOEu1ytM6yeQMpsUCQQDLHqxxhvXq8lHpeza02OCISV9V -Lb1eP1ZI5xHinF3GhmPnSFPMkRIrKk6DmlWNUadwyRDmx5C7R4eGNUaBitD9AkAl -0+mRPPJsvROAxnJ5gNtCHM14e9mnlsz908vjyPblPtmqy3dfwFoMYJFpjHrDczwL -AjO2r1jmFtATl9kml0glAkAb/p57WPmzmVnDXPJJ3R3e2koYs1V4YEIOi81pX4E/ -epqrh4vqD71bHlIvARk6yWY9wB9OV13QEQex7gGENd4N +MIICXgIBAAKBgQDhzV/218E3JhjrtUuy63CXQSuhLc/DPI63hieM1DADhnPtUeLr +KkLll90WIEJoGgwRosZ3xKfXGQ3NcDGw9U9y19yO8tCdiOF2x7Pm5Xqyc4Ej5CuV +BD+6dKoJCPq9Pbat+m5N4cQKI4GklwsYVp6L3MkVD7/ycbYEh2VIoyWsywIDAQAB +AoGBAIGttz1Gb7rCcHF+LzlUKddUIEBy1O0lbDlOHIyul9yObSmQa6fvH3hIHTrF +0B2FSAUg3KaQFGxeASVJF+CvIa6YspzMMOwJMXexQnrF0LaDLcluSvTKT/JYStH3 +owVzBRAgkPmYodbWXQvA/MyVNmtxIyLGfp0ESmOLktrGCwxBAkEA9xt/9MrPrE6H +BSyJNc9m2hkMHsFtVUzU38sYHuUsQVWXkoPH3ChF04OHQtY5Mm8SqZcKn79k4iNl +sBoHmYLr+wJBAOntmV92/tUmY9hjWCJSLZPavLJaleNz0vv2T0pxb3sQI+cj2LuD +6Qo45L002Oyw3QKdP67oaRWVJtxBpdTwGXECQQDeRl9QC8rInI55ifkWbSyATH2J +gMZfL1Bgyig1SkIHtv0zrtRtZdCBlVNrPJWQlzb7U8EbtycA/4Qt5wwk+w5XAkEA +vNbibi9YbmcsSN2Bo0sloer9UxlPUKsKkf33akgCT5zq7seASXemI2tkM906lG/+ +KgMZCrBxTEv4b+vK3Afq8QJAVow5JodJ8500xVNKe3s6m73xkvDmRLj+/IDQc8PD +/nhQ3BTMkbw8rDAnYZpXJ2syazDBU4t1l8HroC86SLc5/w== -----END RSA PRIVATE KEY----- diff --git a/lib/hx509/data/gen-req.sh b/lib/hx509/data/gen-req.sh index 8a30a0c95..4bb81c32b 100644 --- a/lib/hx509/data/gen-req.sh +++ b/lib/hx509/data/gen-req.sh @@ -12,36 +12,59 @@ gen_cert() -sha1 \ -nodes \ -keyout out.key \ - -out cert.req + -out cert.req > /dev/null 2>/dev/null if [ "$3" = "ca" ] ; then - ca_arg="-signkey out.key" - else - ca_arg="-CA $2.crt -CAkey $2.key -CAcreateserial" - fi - - openssl x509 \ + openssl x509 \ -req \ -days 3650 \ -in cert.req \ -extfile openssl.cnf \ -extensions $4 \ - $ca_arg \ + -signkey out.key \ -out cert.crt - mv cert.crt $3.crt - mv out.key $3.key + ln -s ca.crt `openssl x509 -hash -noout -in cert.crt`.0 + else + + openssl ca \ + -name $4 \ + -days 3650 \ + -cert $2.crt \ + -keyfile $2.key \ + -in cert.req \ + -out cert.crt \ + -outdir . \ + -batch \ + -config openssl.cnf + fi + + mv cert.crt $3.crt + mv out.key $3.key } +echo "01" > serial +> index.txt +rm -f *.0 + gen_cert "hx509 Test Root CA" "root" "ca" "v3_ca" -gen_cert "Test cert" "ca" "test" "usr_cert" -gen_cert "Test cert KeyEncipherment" "ca" "test-ke-only" "usr_cert_ke" -gen_cert "Test cert DigitalSignature" "ca" "test-ds-only" "usr_cert_ds" -gen_cert "Sub CA" "ca" "sub-ca" "v3_ca" -gen_cert "Test sub cert" "sub-ca" "sub-cert" "usr_cert" +gen_cert "OCSP responder" "ca" "ocsp-responder" "ocsp" +gen_cert "Test cert" "ca" "test" "usr" +gen_cert "Revoke cert" "ca" "revoke" "usr" +gen_cert "Test cert KeyEncipherment" "ca" "test-ke-only" "usr_ke" +gen_cert "Test cert DigitalSignature" "ca" "test-ds-only" "usr_ds" +gen_cert "Sub CA" "ca" "sub-ca" "subca" +gen_cert "Test sub cert" "sub-ca" "sub-cert" "usr" cat sub-ca.crt ca.crt > sub-ca-combined.crt +openssl ca \ + -name usr \ + -cert ca.crt \ + -keyfile ca.key \ + -revoke revoke.crt \ + -config openssl.cnf + openssl pkcs12 \ -export \ -in test.crt \ @@ -105,3 +128,52 @@ openssl smime \ -out test-enveloped-aes-128 \ -aes128 \ test.crt + +echo ocsp requests + +openssl ocsp \ + -issuer ca.crt \ + -cert test.crt \ + -reqout ocsp-req1.der + +openssl ocsp \ + -index index.txt \ + -rsigner ocsp-responder.crt \ + -rkey ocsp-responder.key \ + -CA ca.crt \ + -reqin ocsp-req1.der \ + -noverify \ + -respout ocsp-resp1-ocsp.der + +openssl ocsp \ + -index index.txt \ + -rsigner ca.crt \ + -rkey ca.key \ + -CA ca.crt \ + -reqin ocsp-req1.der \ + -noverify \ + -respout ocsp-resp1-ca.der + +openssl ocsp \ + -index index.txt \ + -rsigner ocsp-responder.crt \ + -rkey ocsp-responder.key \ + -CA ca.crt \ + -resp_no_certs \ + -reqin ocsp-req1.der \ + -noverify \ + -respout ocsp-resp1-ocsp-no-cert.der + +openssl ocsp \ + -issuer ca.crt \ + -cert revoke.crt \ + -reqout ocsp-req2.der + +openssl ocsp \ + -index index.txt \ + -rsigner ocsp-responder.crt \ + -rkey ocsp-responder.key \ + -CA ca.crt \ + -reqin ocsp-req2.der \ + -noverify \ + -respout ocsp-resp2.der diff --git a/lib/hx509/data/index.txt b/lib/hx509/data/index.txt new file mode 100644 index 000000000..25e41cdcf --- /dev/null +++ b/lib/hx509/data/index.txt @@ -0,0 +1,7 @@ +V 160329003917Z 01 unknown /C=SE/CN=OCSP responder +V 160329003917Z 02 unknown /C=SE/CN=Test cert +R 160329003917Z 060401003919Z 03 unknown /C=SE/CN=Revoke cert +V 160329003918Z 04 unknown /C=SE/CN=Test cert KeyEncipherment +V 160329003918Z 05 unknown /C=SE/CN=Test cert DigitalSignature +V 160329003918Z 06 unknown /C=SE/CN=Sub CA +V 160329003919Z 07 unknown /C=SE/CN=Test sub cert diff --git a/lib/hx509/data/index.txt.attr b/lib/hx509/data/index.txt.attr new file mode 100644 index 000000000..8f7e63a34 --- /dev/null +++ b/lib/hx509/data/index.txt.attr @@ -0,0 +1 @@ +unique_subject = yes diff --git a/lib/hx509/data/ocsp-req1.der b/lib/hx509/data/ocsp-req1.der new file mode 100644 index 0000000000000000000000000000000000000000..8779656b018e5f9db32c43d9592286545336473e GIT binary patch literal 105 zcmXp=H%K+GGq5qRGT>xm)#hVnl450G5xLc?omQi(x>i!Md02XIprgjSGk?u LZB|VQyi^MSx|bqr literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-req2.der b/lib/hx509/data/ocsp-req2.der new file mode 100644 index 0000000000000000000000000000000000000000..7d000003d4f2bb126738a605a754805162881d88 GIT binary patch literal 105 zcmXp=H%K+GGq5qRGT>xm)#hVnl450G5xLc?omQi(x>i!MIfb5OIvj9Rx!)( KS*CT-)$akTVIgh+ literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-resp1-2.der b/lib/hx509/data/ocsp-resp1-2.der new file mode 100644 index 0000000000000000000000000000000000000000..98d88e4bf26561749325de4575e3462029d82e21 GIT binary patch literal 999 zcmXqLVt&lU$grS^`Hn#o^9?pmZ8k<$R(1nMMwTY#lLk%9M-3XcFVr#6GL$xuWMd9x zVdfFas4z9KR0v5eE>Q@|&o5DMb~NNR-~>ss2{Q$|O7I&Q7?>HD7#JED7#JCuMi~Se z_#0RmaI&##^D#3?u`;lT-0Ia%tI<{6EW2jM(Tig1bSs5-?Pd{)tM>_J|NSYaFhyEq zORibR8h*=#OpHto3>Zc(R5nmFkVm+diA9J-Aalna4yDw43f|2U*1^j@FEQX{6{N2aD}`f@|D4mtJwPeP9- zY-I>AwR=``>G|(Dd_wm(*!HYXT^!r3<~FI)^0;7X&bC)lm6oxo?8kg&cJ{wsWiZc3 z%*J#5Oxub&X{o22r5fpg63CLqIP;swtJc-o z(QUs@Zd&`Pi?7i1zP7)}A(_kUk5xV}X_+L3pAwo`(U2POkMWFRx1RZrC$VPUe72U3 z_RTVK<*Cu7zSYLt3KdtLntm@?!EwP$@$XWeN&M>BW?c&D8Qy0U4o<4l9bX$G=v%%QS;EMnNxjzJViTA3x-Ag}>z;##P;grub1gcMUeAhU&8SPhsN z8UGt_gLwQbEX+)d&ya(T1r&6R3~Dy4o{JM09<4i@b0}8xu*%E>iro|4Cq3FLyu1DP zgJllq&!0%^UlI6p52sX8`o}|7*{U-6{QZ}*KRjG1zCL!I&$h$s?W8U}j)qU}#`qU}|I$We{lKZ(wD> z$;PV9$IK+f%D^IWt5-X%Mpt#S?3x`%FN&?xtrXt1n?)q9-Y1y-_otk~6lswyxn><} z_$?PQF)}qUU>Lbj*+9`i9^q0Z79kda%pH3;lv3|0csEN}2QT})#DJHLQ>)FR?K>|c zBP%Ndb7LceYJSTb!*bK^$7gbOWuKQjR_r43^3j3|+HFy*HW!|h^UYr`F=J_QB-{L; zhYUvdEB4-B|6TN{v3x~Nw^#Xo?jZA$zY}l$n7(ASy#MnDCq+8y`xsVxo%dY&y47Qg r;S#}=xs`t}R94sOy6?Sz(ESJFre&v?i$e}6ep^=Bs=8_k`>8wtDeigE literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-resp1-ca.der b/lib/hx509/data/ocsp-resp1-ca.der new file mode 100644 index 0000000000000000000000000000000000000000..becd2e461578ae827f08b037af81c654a5188c1e GIT binary patch literal 999 zcmXqLVt&lU$grS^`Hn#o^9?pmZ8k<$R(1nMMwTY#lLk%9M-3XcFVr#6GL$xuWMd9x zVdfFas4z9KR0v5eE>Q@|&o5DMb~NNR-~>ss2{Q$|O7I&Q7?>HD7#JED7+V@zMi~Se z_#0RmaI&##^D#3?u`;lT-0Ia%tI<{6EW2jM(Tig1bSs5-?Pd{4tufp$Q&9Q*fBXN; z=B+Cn=yK`dd z{dIuz5$yI|#f^K)zG@b~^q{Umcy+3jMQ{Vl&}*;{M*ycaYvl^8TJ z6&N%zPSy&lJ33dZHabBcgH;WSIH8e9YHnIfA zf>{(vW;M=7b_pXW@Ol{x8atU98yOy+jsJH2pt+jF>#g3KUKdPv)Ly82{;*Bo_BQpN zD+bJM#cu;2z1DJiI{mJgf>VYRkKm$Xqw?x>y?mH(%`S*V++{V(L>akdL z&1oiPMh3>kjWZ1zry0nyF^9_Xv4~+$I|fl8X=RpRgTMx?iEE+W5|Wa36H-j^fXo(V zVKrc8Wc+Wy4dU^$urM<*K0^*V7EsVNGPLXGE_x?>pR@E@YS5I*=5NN2*=}xM_3pq= z4L3Pycb`u8G}EeboBu2RyI4k^S{umFyPCO%CnDhR-=F!ix_Y(C4VAs(o!3PbG1)V3 zG0nfr{F>{-Zl2T2cXB11`j~puMN)B>&mqoN5C6GMRuHMZ{NvBx`&*ecSGu<^=5aSE IF6d+j0Q>@6p#T5? literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-resp1-ocsp-no-cert.der b/lib/hx509/data/ocsp-resp1-ocsp-no-cert.der new file mode 100644 index 0000000000000000000000000000000000000000..3723f1042252c15afcdcec500bf4712d8c055b10 GIT binary patch literal 363 zcmXqLVoc{^WLVI|m|)Pv7{kV?&Bn;e%5K2O$kN2U}j)qU}#`qY-wm2We{lKZ(wD> z$;PV9$IK+f%D^IWt5-X%Mpt#S?3x`%FN&?xtrXt1n?)qG#&Ew(LFM!R?f)~IxBmS6 zCc(pVdcZJLR*@p@rah2p0w(%obXGszUqwSwv)G?7OX21`17`S zp^eP7g715_xJ11w4Q(h+Q8jj%>$BDHgPHB78TJ?X6ZvmG*qI%?ckVWo$31ygOXYih qPS0WtjV$X3^K#gEZ`Ov(4h<=1nPOaP_V~m$u3Gfztci4kB|89fD|GY# literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-resp1-ocsp.der b/lib/hx509/data/ocsp-resp1-ocsp.der new file mode 100644 index 0000000000000000000000000000000000000000..68ee9f27df4fadc64844646c433197c59e18186e GIT binary patch literal 918 zcmXqLVxGjs$grS^x!a(Lxt)zun~jl`mEC}mk)?^b!k~${#GrBWLJb2oLv903Hs(+k zHesep2$r!p&!petbg|;+H;}I=4J!#cjIpLRNebpJuZ6|L(Em&73@aJvu zLK~TD1>g5#1GulFl8SwVJ1_N$3=1^IF78YhE)&~Z1AdV^vC{e=G zFDn}dBq=j<8pwj=`B=nQL_TJEl{&Py<%lF^3R^@fhDDwWHAVJ0G^s58>!KhPv*HkE z-J}PLOCE7|u{zfrny&FTbIx54<0I4bH{X0^n%Z-RFU|AbsoSsDDyCh2@O8_AO38Oq z?k$mKWjvr^e8qi*uMJ!BF^P$nS=#!q#GSe?+)+5Mtng^qVfj1uNiIseXRJHFgyZh2 aEA5593xZxuV2gPA&hiAy{=~9uRv`ciaWOdn literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-resp1.der b/lib/hx509/data/ocsp-resp1.der new file mode 100644 index 0000000000000000000000000000000000000000..8546eba86f69b0e90f8c1c9238ea94eee4531d07 GIT binary patch literal 918 zcmXqLVxGjs$grS^x!a(Lxt)zun~jl`mEC}mk)?^b!k~${#GrBWLJb2oLv903Hs(+k zHese-nLGAyD5c(0@NSl{4qo+O-$+rO-#xLO-%9z zO^h82n3))vm>3z+oNAzDC~Y7K30cR67@DD^ZNd{WlI^<=1QD7B73^mWl!9@yAu;<@2p<2DaY*>pTBi< zU!Az+t-lfN&+Zp8F*7nSE{-$^2PZ&TVHPF>1_N$3=1^IF78YhE)&~Z1AdV^vC{e=G zFDn}dBq=j<8pwj=`B=nQMEYlV6nC9lk#%V8vG!XgmX_`Z7QRIGIW(y_dYjHtHy4xi zz38|>+Cn4QedjBSiB~hN9ya&8>??TQ_U)7FM|J&Z{eplBeEa5@u<5Q{)cpO&`h+O1-i-?L2XqO0E<@Un4gwRyCC z=VfGMWo2M)Y-Hf?`TKL%r{=1cccTlJwl-c(5cn&ff9&Fk#kn>sv-SW$2Ot6E<6vml3(86EUqw#QPOmY zJA3G?X(#{j{7cULmn=-kSl9A-6lo43@KjT@8F{q`(qVp2C~Vp29} zVv;v#V(eJJ%*4pV#K?%|R0AzTX#+_}a0_Krm>O6rgrpXiCo#UT9v7e;KXA#5+BTu|6=6194PY zK&cd-pjp{CAZeSK(?Av^&&MLhBJwfQtJI;rEk`6VQ`jO>F)Z?2s423~p-E-wUl#?b zm=%XO>n1%|T=Iy!i`BX2&~%NznRD)X7$2FYzxn1X)6||jd}*HdPThXJRx$1JgRff_ zR7$>^a&L(=E8_tT<16kfd~Mj0k4a3t%+l6>CGOOH;f}(2Wrat>4$I%MPjXS(J!9SZ fB^-BGU1=};T@dtQ0$aq>ca|qu_9vEQvkCzK|0qAj literal 0 HcmV?d00001 diff --git a/lib/hx509/data/ocsp-responder.crt b/lib/hx509/data/ocsp-responder.crt new file mode 100644 index 000000000..49ced83e7 --- /dev/null +++ b/lib/hx509/data/ocsp-responder.crt @@ -0,0 +1,56 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 1 (0x1) + Signature Algorithm: sha1WithRSAEncryption + Issuer: CN=hx509 Test Root CA, C=SE + Validity + Not Before: Apr 1 00:39:17 2006 GMT + Not After : Mar 29 00:39:17 2016 GMT + Subject: C=SE, CN=OCSP responder + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + RSA Public Key: (1024 bit) + Modulus (1024 bit): + 00:ae:c5:54:89:f0:1c:15:82:54:9e:59:ff:3b:d7: + f7:dd:1f:27:da:12:d1:43:27:06:dc:df:bb:1e:7b: + 6c:1a:7c:7e:0a:3e:5f:0d:87:f5:12:f5:54:e8:29: + d1:5f:e4:17:fc:8f:51:a4:e8:6d:be:0b:34:f5:ca: + ba:ee:62:ce:c5:9a:ab:0f:85:a0:0b:3a:a5:e1:6a: + 54:67:1d:3f:28:e9:51:7e:d1:cd:2f:5d:8c:4b:12: + d6:2f:1a:fa:f8:61:ae:d3:81:ad:83:50:19:d7:83: + 39:98:03:11:9f:96:cd:4a:b1:3b:3d:a6:28:e0:aa: + fc:bb:d5:e0:ea:90:02:e5:ef + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Basic Constraints: + CA:FALSE + X509v3 Key Usage: + Digital Signature, Non Repudiation, Key Encipherment + X509v3 Extended Key Usage: + OCSP No Check, OCSP Signing + X509v3 Subject Key Identifier: + F1:69:4A:75:40:87:86:6C:14:61:69:13:38:59:21:56:59:CE:55:35 + Signature Algorithm: sha1WithRSAEncryption + a5:fd:44:20:1a:5c:a8:c2:09:7e:92:e0:a3:74:e2:0b:8a:05: + 43:7c:c2:97:28:fd:69:9c:dd:48:33:c4:96:2f:b3:d9:ea:35: + 65:8c:dc:0e:66:49:de:ca:db:eb:ad:21:66:d3:e0:f5:b4:a0: + 79:19:ee:94:de:a4:1b:05:01:c0:28:33:d4:47:a8:4d:3c:06: + 63:c6:18:91:d3:04:86:8f:d4:5e:ca:df:13:88:71:9e:76:71: + c5:56:c3:1f:dc:3f:62:44:22:bb:98:ae:cf:a4:08:dd:aa:d4: + 87:71:fb:70:52:e8:90:06:58:e5:ee:39:c8:04:bf:61:76:6b: + 05:12 +-----BEGIN CERTIFICATE----- +MIICHzCCAYigAwIBAgIBATANBgkqhkiG9w0BAQUFADAqMRswGQYDVQQDDBJoeDUw +OSBUZXN0IFJvb3QgQ0ExCzAJBgNVBAYTAlNFMB4XDTA2MDQwMTAwMzkxN1oXDTE2 +MDMyOTAwMzkxN1owJjELMAkGA1UEBhMCU0UxFzAVBgNVBAMMDk9DU1AgcmVzcG9u +ZGVyMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCuxVSJ8BwVglSeWf871/fd +HyfaEtFDJwbc37see2wafH4KPl8Nh/US9VToKdFf5Bf8j1Gk6G2+CzT1yrruYs7F +mqsPhaALOqXhalRnHT8o6VF+0c0vXYxLEtYvGvr4Ya7Tga2DUBnXgzmYAxGfls1K +sTs9pijgqvy71eDqkALl7wIDAQABo1kwVzAJBgNVHRMEAjAAMAsGA1UdDwQEAwIF +4DAeBgNVHSUEFzAVBgkrBgEFBQcwAQUGCCsGAQUFBwMJMB0GA1UdDgQWBBTxaUp1 +QIeGbBRhaRM4WSFWWc5VNTANBgkqhkiG9w0BAQUFAAOBgQCl/UQgGlyowgl+kuCj +dOILigVDfMKXKP1pnN1IM8SWL7PZ6jVljNwOZkneytvrrSFm0+D1tKB5Ge6U3qQb +BQHAKDPUR6hNPAZjxhiR0wSGj9Reyt8TiHGednHFVsMf3D9iRCK7mK7PpAjdqtSH +cftwUuiQBljl7jnIBL9hdmsFEg== +-----END CERTIFICATE----- diff --git a/lib/hx509/data/ocsp-responder.key b/lib/hx509/data/ocsp-responder.key new file mode 100644 index 000000000..11918a0d6 --- /dev/null +++ b/lib/hx509/data/ocsp-responder.key @@ -0,0 +1,15 @@ +-----BEGIN RSA PRIVATE KEY----- +MIICXQIBAAKBgQCuxVSJ8BwVglSeWf871/fdHyfaEtFDJwbc37see2wafH4KPl8N +h/US9VToKdFf5Bf8j1Gk6G2+CzT1yrruYs7FmqsPhaALOqXhalRnHT8o6VF+0c0v +XYxLEtYvGvr4Ya7Tga2DUBnXgzmYAxGfls1KsTs9pijgqvy71eDqkALl7wIDAQAB +AoGBAJJsWw6R70WKAtEEf5UotM46ew32dAI54UMN4tx/9SsfoA1/Ae35OTdf+Xnl +Bzi6heogPPvXi5IMG5vN9N0iRS7gnfxr77Lum7G7mrQL9+bgz1N6unnuXZbbYjCD +IYihsobke4c3ddfyfHBJRV7ofUGRdi6y1U/K3iItvz6ZuaIhAkEA1IRLkeTC2MAe +EEw4cFoFEav6zk1X3ptdRd0fW622EEghzzo09CFTpp41Jq2ro0LB7a5m3WmVCXeO +ulNUlUvhvwJBANKH42jr0boQ16Qk1tiXc17qqa5h3Su4EJxJn8XbYV0v4T6WS1tR +V39IMNuSSr9trGxmtElqj+uzJvaOAi40p9ECQQCzxM1gNpEUZT+JLdC4SY3sKvzY +MtjXt7ko9iomlUVjdIEVGPneYaqvUTlI5LRCQKBnfJYLSdsGzRnxR7hPKodlAkBK +BfOEmZ3lQTTBBx7vitjK39GHeettCsv0V8Kwq8EhJcuZ2PhoBEKygyyCl35mrmY4 +uyfaxHgUFKq3eBj2LBdxAkAUOwyFB0iRAgs9M1z+LsdSsPfmwCHIhOnH2Z2P1q7k +Kl3r4R1pgsVc1QX1kjauNNuaKziBl7ZjVqg9ovSD84gr +-----END RSA PRIVATE KEY----- diff --git a/lib/hx509/data/openssl.cnf b/lib/hx509/data/openssl.cnf index 9ea8d261b..0bf6ed78c 100644 --- a/lib/hx509/data/openssl.cnf +++ b/lib/hx509/data/openssl.cnf @@ -1,3 +1,48 @@ +[ca] + +default_ca = user + +[usr] +database = index.txt +serial = serial +x509_extensions = usr_cert +default_md=sha1 +policy = policy_match +certs = . + +[ocsp] +database = index.txt +serial = serial +x509_extensions = ocsp_cert +default_md=sha1 +policy = policy_match +certs = . + +[usr_ke] +database = index.txt +serial = serial +x509_extensions = usr_cert_ke +default_md=sha1 +policy = policy_match +certs = . + +[usr_ds] +database = index.txt +serial = serial +x509_extensions = usr_cert_ds +default_md=sha1 +policy = policy_match +certs = . + +[subca] +database = index.txt +serial = serial +x509_extensions = v3_ca +default_md=sha1 +policy = policy_match +certs = . + + [ req ] distinguished_name = req_distinguished_name x509_extensions = v3_ca # The extentions to add to the self signed cert @@ -9,20 +54,29 @@ string_mask = utf8only subjectKeyIdentifier=hash authorityKeyIdentifier=keyid:always,issuer:always basicConstraints = CA:true -keyUsage = cRLSign, keyCertSign +keyUsage = cRLSign, keyCertSign, keyEncipherment, nonRepudiation, digitalSignature [ usr_cert ] basicConstraints=CA:FALSE keyUsage = nonRepudiation, digitalSignature, keyEncipherment +subjectKeyIdentifier = hash [ usr_cert_ke ] basicConstraints=CA:FALSE keyUsage = nonRepudiation, keyEncipherment +subjectKeyIdentifier = hash [ usr_cert_ds ] basicConstraints=CA:FALSE keyUsage = nonRepudiation, digitalSignature +subjectKeyIdentifier = hash +[ ocsp_cert ] +basicConstraints=CA:FALSE +keyUsage = nonRepudiation, digitalSignature, keyEncipherment +# ocsp-nocheck and kp-OCSPSigning +extendedKeyUsage = 1.3.6.1.5.5.7.48.1.5, 1.3.6.1.5.5.7.3.9 +subjectKeyIdentifier = hash [ req_distinguished_name ] countryName = Country Name (2 letter code) @@ -39,3 +93,7 @@ commonName_max = 64 #challengePassword = A challenge password #challengePassword_min = 4 #challengePassword_max = 20 + +[ policy_match ] +countryName = match +commonName = supplied diff --git a/lib/hx509/data/serial b/lib/hx509/data/serial new file mode 100644 index 000000000..adb9de8ee --- /dev/null +++ b/lib/hx509/data/serial @@ -0,0 +1 @@ +08 diff --git a/lib/hx509/data/sub-ca.crt b/lib/hx509/data/sub-ca.crt index 8fd6c51a4..b041516f8 100644 --- a/lib/hx509/data/sub-ca.crt +++ b/lib/hx509/data/sub-ca.crt @@ -1,15 +1,60 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 6 (0x6) + Signature Algorithm: sha1WithRSAEncryption + Issuer: CN=hx509 Test Root CA, C=SE + Validity + Not Before: Apr 1 00:39:18 2006 GMT + Not After : Mar 29 00:39:18 2016 GMT + Subject: C=SE, CN=Sub CA + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + RSA Public Key: (1024 bit) + Modulus (1024 bit): + 00:bd:40:1a:9c:18:ec:61:aa:bd:9f:b8:4a:b0:92: + ce:7f:b9:47:d3:87:62:c2:85:c1:2d:a0:78:ab:c7: + 61:cd:6b:80:14:3e:19:94:68:0b:95:43:33:b1:f3: + 2f:71:e1:3d:c7:a3:89:63:df:1f:3a:40:da:1d:64: + 78:76:81:08:35:37:f1:ca:01:f4:f0:ea:8c:40:56: + d2:18:30:df:23:d5:32:79:67:00:5e:27:bf:41:f6: + 52:69:ab:25:e5:26:42:31:8a:14:10:ed:f0:00:77: + 07:dd:08:9e:b0:06:13:7e:d2:05:91:c0:29:6d:d2: + 86:eb:3a:ce:e2:10:07:38:27 + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Subject Key Identifier: + 6A:9F:D0:FD:9B:6E:C9:14:4E:F7:8A:2A:C5:BD:87:2A:1A:35:47:26 + X509v3 Authority Key Identifier: + keyid:65:7C:31:BF:1C:70:79:E7:FF:87:FF:69:83:B5:F9:F3:EC:60:48:47 + DirName:/CN=hx509 Test Root CA/C=SE + serial:D5:0A:90:57:83:0E:3C:53 + + X509v3 Basic Constraints: + CA:TRUE + X509v3 Key Usage: + Digital Signature, Non Repudiation, Key Encipherment, Certificate Sign, CRL Sign + Signature Algorithm: sha1WithRSAEncryption + 25:e9:58:b4:5f:22:f1:24:aa:71:72:9f:f8:ec:94:57:5e:d9: + 0d:a4:d8:6c:a2:31:a1:86:9c:f4:1b:8d:e3:ef:9c:62:d0:30: + 2b:cf:70:e3:2d:61:78:ca:03:73:77:ea:cc:cb:60:71:be:8d: + 99:d2:70:a5:59:eb:f1:c3:0f:4c:eb:33:55:b9:21:dc:f4:0d: + ef:cb:99:ba:57:24:2a:7f:63:2f:be:6f:dd:28:01:4b:8e:9d: + 92:bd:75:50:de:9a:0a:b1:0b:e0:2c:f8:01:8a:39:99:e0:d9: + f7:ff:87:7e:f0:dc:53:2d:73:3d:b2:24:43:3b:83:9d:3c:81: + 72:a0 -----BEGIN CERTIFICATE----- -MIICYDCCAcmgAwIBAgIJALVp8kub/fs+MA0GCSqGSIb3DQEBBAUAMCoxGzAZBgNV -BAMMEmh4NTA5IFRlc3QgUm9vdCBDQTELMAkGA1UEBhMCU0UwHhcNMDUwNzI3MTg1 -MzM0WhcNMTUwNzI1MTg1MzM0WjAeMQ8wDQYDVQQDDAZTdWIgQ0ExCzAJBgNVBAYT -AlNFMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDibIa55bdhQsprtd7ehUo -QnevOIwG7GOCmcKleVezXssNkBXbbIiuLHaEUd3ioWRH3VqCvieggcONzobxz5xT -YIGIFtBIi0kuYspcjFKQAcFQKYlaWiHyplIkvrBJ82wV9bfDjOuz/SNtLLiQloTe -/EUFb0AKEIoJP4ttqBSg8QIDAQABo4GZMIGWMB0GA1UdDgQWBBSstZ+3+wf3ZpFf -ZsoHSEQCjczYUDBaBgNVHSMEUzBRgBRsRocil3APjbqMz1V7uBdYezklFqEupCww -KjEbMBkGA1UEAwwSaHg1MDkgVGVzdCBSb290IENBMQswCQYDVQQGEwJTRYIJAOMz -1JsD8LslMAwGA1UdEwQFMAMBAf8wCwYDVR0PBAQDAgEGMA0GCSqGSIb3DQEBBAUA -A4GBADEFo+RVb0CfiZW2TIq34HiWMMqRPW6SYaAn5mTx1Dk0LNRtP52aoyFaayCW -QXx3sP9o9P0BwirhbRnMdltt/N2RohzcAlL0zy9C6wcIEKmMziBpQB+svdnG8q26 -n6Bj8NLtOOqYeEeaupjt1rGKf63FUVhyz1wcxvqd8OSdmZQg +MIICWDCCAcGgAwIBAgIBBjANBgkqhkiG9w0BAQUFADAqMRswGQYDVQQDDBJoeDUw +OSBUZXN0IFJvb3QgQ0ExCzAJBgNVBAYTAlNFMB4XDTA2MDQwMTAwMzkxOFoXDTE2 +MDMyOTAwMzkxOFowHjELMAkGA1UEBhMCU0UxDzANBgNVBAMMBlN1YiBDQTCBnzAN +BgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAvUAanBjsYaq9n7hKsJLOf7lH04diwoXB +LaB4q8dhzWuAFD4ZlGgLlUMzsfMvceE9x6OJY98fOkDaHWR4doEINTfxygH08OqM +QFbSGDDfI9UyeWcAXie/QfZSaasl5SZCMYoUEO3wAHcH3QiesAYTftIFkcApbdKG +6zrO4hAHOCcCAwEAAaOBmTCBljAdBgNVHQ4EFgQUap/Q/ZtuyRRO94oqxb2HKho1 +RyYwWgYDVR0jBFMwUYAUZXwxvxxweef/h/9pg7X58+xgSEehLqQsMCoxGzAZBgNV +BAMMEmh4NTA5IFRlc3QgUm9vdCBDQTELMAkGA1UEBhMCU0WCCQDVCpBXgw48UzAM +BgNVHRMEBTADAQH/MAsGA1UdDwQEAwIB5jANBgkqhkiG9w0BAQUFAAOBgQAl6Vi0 +XyLxJKpxcp/47JRXXtkNpNhsojGhhpz0G43j75xi0DArz3DjLWF4ygNzd+rMy2Bx +vo2Z0nClWevxww9M6zNVuSHc9A3vy5m6VyQqf2Mvvm/dKAFLjp2SvXVQ3poKsQvg +LPgBijmZ4Nn3/4d+8NxTLXM9siRDO4OdPIFyoA== -----END CERTIFICATE----- diff --git a/lib/hx509/data/sub-ca.key b/lib/hx509/data/sub-ca.key index b13628057..69304ae01 100644 --- a/lib/hx509/data/sub-ca.key +++ b/lib/hx509/data/sub-ca.key @@ -1,15 +1,15 @@ -----BEGIN RSA PRIVATE KEY----- -MIICXAIBAAKBgQDDibIa55bdhQsprtd7ehUoQnevOIwG7GOCmcKleVezXssNkBXb -bIiuLHaEUd3ioWRH3VqCvieggcONzobxz5xTYIGIFtBIi0kuYspcjFKQAcFQKYla -WiHyplIkvrBJ82wV9bfDjOuz/SNtLLiQloTe/EUFb0AKEIoJP4ttqBSg8QIDAQAB -AoGBAK82om6zWJ9UySTns9TEF1NFBAPxsp+9kImFiEJIkgp7hY24r603+t2/n89/ -oEikf7xZn/IJvG55+KYICymA9Dy852JI75pbEUUraOWvFhG7AuAa9Qfyy8cVTiTC -f8yY2H3MH6uYI8ZfPU47BvvJt8U+AmViU3CAunOdtM4wazaxAkEA5SVEJhqJ9GKz -RaMPFYQvlASqD3UdPEDXf9I4Chuy7wv+HMkTpvMs9ICSslIxzSTHYlwfuz3Tv+c6 -ewK60kUBnQJBANp0JRM0oSF3ep5J8PJarV/VG74i7PaGVTULs3TMC06wIIu+mdLa -iaChBCAdCxJngNBdBeObzv1175aUq2+9lmUCQGKtH6HA//NrpYOxakd7uvlk4M7z -Qfm2epaisls3/mAOrAk9VecpBQztaT69QpDy66GhxlBdmZgkPPzH+ieea8kCQFKj -jULureXTJPesURHda6jNHWmYHLxFpQYkHwcYCU8DIcy7lcVGFrpFLyJW2lFkBj7M -ceXgkzUe4Du+kfv7ZGECQGG4fci9tf9/wBY4EcaCwKt275CQh3VKi2aJHssANnEF -VRzP03sVkPLBBriQB1+XanTpO6rQMDmRUVcaXwZ/Z44= +MIICWwIBAAKBgQC9QBqcGOxhqr2fuEqwks5/uUfTh2LChcEtoHirx2HNa4AUPhmU +aAuVQzOx8y9x4T3Ho4lj3x86QNodZHh2gQg1N/HKAfTw6oxAVtIYMN8j1TJ5ZwBe +J79B9lJpqyXlJkIxihQQ7fAAdwfdCJ6wBhN+0gWRwClt0obrOs7iEAc4JwIDAQAB +AoGALnRI095OT98Qct9S/irbI4EAf4zxEhyxAZktZcUoXbswkkd4EfTEOxxm2Rx/ +ne2TM6kR9YD0cmEu6R4bb8NWlwUxkMXetx0dQ2SO0MeIBDT4CeRFFtu03VonPv0O +lJfBDvRsOKfMSUD81aSBZh4VnF+fZpELI36ojHYHpRpBUskCQQDv6NEF9XBcaAy0 +Wl99nts/kp5BafFR7o1KtSJot8TaCINqO5b5hx4udFEDhgEXv6I6+YIpzssT5ZYv +x6+n0FXdAkEAyfF8Hs8X+YDr4ja1p7umH8PvIRWagpebdpC0V21Jz4hstl5KoLSt +z/uQMyIoaB4haX2NgOhJ82H2ffAGWCKP0wJAUnXVkpTAICLravo9JDJ77af5mUZO +2fiCvBDyWMgBc2fFs7fztqTIrPLx/aILshv+KQMlyDT5/EbHjni2WZn0SQJAAk1B +V+yOXmasyaBMA8RsyVHnaN4hK7nkqL5Pf+ub+sSYUJ/Ug+5rSMKaSyrpgP5O7S/k +LAL5zM9iCt9wgxKpxwJAeOfSRgtjo0CAhdYVTvjnRAy6ifamUsZDT0HWpAL1PfMb +eO++6YPvtMgynCkDdeu6XZ4UQaCFraOVvs2917Jtkw== -----END RSA PRIVATE KEY----- diff --git a/lib/hx509/data/sub-cert.crt b/lib/hx509/data/sub-cert.crt index c8f78e0b2..7a75d129e 100644 --- a/lib/hx509/data/sub-cert.crt +++ b/lib/hx509/data/sub-cert.crt @@ -1,12 +1,53 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 7 (0x7) + Signature Algorithm: sha1WithRSAEncryption + Issuer: C=SE, CN=Sub CA + Validity + Not Before: Apr 1 00:39:19 2006 GMT + Not After : Mar 29 00:39:19 2016 GMT + Subject: C=SE, CN=Test sub cert + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + RSA Public Key: (1024 bit) + Modulus (1024 bit): + 00:b7:4d:3c:eb:86:e4:f2:6d:68:25:e9:34:c3:53: + c8:c3:37:74:bb:3c:c8:78:30:95:37:55:3a:5b:2b: + c6:c5:32:bc:b1:f4:55:e3:f6:3f:7f:d7:1a:15:26: + 45:95:cb:3a:68:d0:76:1d:7f:17:48:0a:24:6d:91: + 4d:83:ab:49:dd:3a:69:04:54:1a:8b:59:28:0b:4c: + f7:3f:51:e6:28:cb:8e:e0:f0:20:57:84:3e:6f:97: + 2f:86:c4:b7:da:80:55:96:9b:6c:fa:06:d5:4c:92: + 52:d9:cd:f1:b7:9f:9f:2c:16:20:ea:95:3a:e4:d6: + b1:b6:53:06:2b:fc:21:df:31 + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Basic Constraints: + CA:FALSE + X509v3 Key Usage: + Digital Signature, Non Repudiation, Key Encipherment + X509v3 Subject Key Identifier: + 1E:04:E5:7C:72:55:BC:87:6B:F5:92:29:7C:4C:C3:25:CC:FD:71:CD + Signature Algorithm: sha1WithRSAEncryption + 4f:f2:81:50:c1:0a:e8:2d:ed:e7:0d:ac:57:e2:67:75:59:cf: + ea:48:ca:77:f3:57:e5:cc:47:7f:53:7a:f5:55:41:27:eb:ee: + 85:b3:62:95:10:4a:9b:8a:b1:12:84:ec:b3:a1:c0:d2:fc:3d: + 15:ab:67:02:62:48:1e:6d:02:02:44:81:72:62:96:30:16:4c: + f2:80:c0:04:55:1d:0d:65:f3:0c:cb:f8:78:98:66:98:85:fd: + d1:4e:ba:22:e8:dc:d2:10:89:b4:a4:15:c5:ca:c3:1d:d8:9c: + 74:e0:f8:c7:cf:25:11:8e:80:6a:a9:0e:95:4f:1a:b0:97:53: + b3:8c -----BEGIN CERTIFICATE----- -MIIB2zCCAUSgAwIBAgIJAOi6DZWGy39aMA0GCSqGSIb3DQEBBAUAMB4xDzANBgNV -BAMMBlN1YiBDQTELMAkGA1UEBhMCU0UwHhcNMDUwNzI3MTg1MzM0WhcNMTUwNzI1 -MTg1MzM0WjAlMRYwFAYDVQQDDA1UZXN0IHN1YiBjZXJ0MQswCQYDVQQGEwJTRTCB -nzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA0j19dTW/5ZqS3eEFxvYAV3n7ymz+ -iUVnQdrLyT9nFwJ2c6CX/OmDrd6rY8pT0ixvheEi6oDHyMExyEfzLnPfqamWYe2U -Wjr6TJynfw6cT6gmWnBCx692iTlKahdao/d91NIbhPiIFZswzWvpdo7yHALHI9DK -etkG8oaQEP/jIOUCAwEAAaMaMBgwCQYDVR0TBAIwADALBgNVHQ8EBAMCBeAwDQYJ -KoZIhvcNAQEEBQADgYEAkbAZsjzyAtOA9Mj8nF9vm3bYfxbtviid/AB6d84K4s+I -1yh6UOZ+cMr3zwScWcGWarx5eWMxRYn+3okudtrDm6CiLBIhNOYne8Cs/9S4glNv -Sc0jLvRn/PVcBtuPavUa2NgFxaFIm3kGv+8SqKROrkig30OZr3WlVb7UFSmXFfY= +MIIB8jCCAVugAwIBAgIBBzANBgkqhkiG9w0BAQUFADAeMQswCQYDVQQGEwJTRTEP +MA0GA1UEAwwGU3ViIENBMB4XDTA2MDQwMTAwMzkxOVoXDTE2MDMyOTAwMzkxOVow +JTELMAkGA1UEBhMCU0UxFjAUBgNVBAMMDVRlc3Qgc3ViIGNlcnQwgZ8wDQYJKoZI +hvcNAQEBBQADgY0AMIGJAoGBALdNPOuG5PJtaCXpNMNTyMM3dLs8yHgwlTdVOlsr +xsUyvLH0VeP2P3/XGhUmRZXLOmjQdh1/F0gKJG2RTYOrSd06aQRUGotZKAtM9z9R +5ijLjuDwIFeEPm+XL4bEt9qAVZabbPoG1UySUtnN8befnywWIOqVOuTWsbZTBiv8 +Id8xAgMBAAGjOTA3MAkGA1UdEwQCMAAwCwYDVR0PBAQDAgXgMB0GA1UdDgQWBBQe +BOV8clW8h2v1kil8TMMlzP1xzTANBgkqhkiG9w0BAQUFAAOBgQBP8oFQwQroLe3n +DaxX4md1Wc/qSMp381flzEd/U3r1VUEn6+6Fs2KVEEqbirEShOyzocDS/D0Vq2cC +YkgebQICRIFyYpYwFkzygMAEVR0NZfMMy/h4mGaYhf3RTroi6NzSEIm0pBXFysMd +2Jx04PjHzyURjoBqqQ6VTxqwl1OzjA== -----END CERTIFICATE----- diff --git a/lib/hx509/data/sub-cert.key b/lib/hx509/data/sub-cert.key index 70b507e17..92e8279da 100644 --- a/lib/hx509/data/sub-cert.key +++ b/lib/hx509/data/sub-cert.key @@ -1,15 +1,15 @@ -----BEGIN RSA PRIVATE KEY----- -MIICXQIBAAKBgQDSPX11Nb/lmpLd4QXG9gBXefvKbP6JRWdB2svJP2cXAnZzoJf8 -6YOt3qtjylPSLG+F4SLqgMfIwTHIR/Muc9+pqZZh7ZRaOvpMnKd/DpxPqCZacELH -r3aJOUpqF1qj933U0huE+IgVmzDNa+l2jvIcAscj0Mp62QbyhpAQ/+Mg5QIDAQAB -AoGBAICwyv7YK+Krv4K5nwOuyX7CWHIMTbJRHWeeOmexu7TF+SPGBcL2XXgseNTY -oH5iXNGigfDxa1ljiMmD4UNqAlmIDhZtPjgFdOzGk7GkzE9iHVA4OTLtkHYbT9Op -c3TGlmYlJ35RUwn1mUSxyKfxooBa9m/dWbOVv3+ZHIBvoCbxAkEA8SueerCpsODV -zPU8PDrT/KIs3+pfWF4hPnRsZvGJI7CLviTA3wHTrxYN6YmbpZO36YNBkVb3gfR3 -5t0Vk4u+MwJBAN8q+9cGEKWVvF9uGvJ0WHrO7b02AQTaw1a3khA9nq52cQDitLpU -VVFlf8BeUAKZKiU4Ep71nOuwtLeQt2VK3IcCQQDrRnFqIfS5sO4C8G+eFon+WTxM -CbqQW+w0oKGsYBA4+B+sFPDv3jlkArD51xw4EP8HWNxbbKszZYqfd6l38olPAkAx -Zkdm+o22yaVwDmRipQRs8t9HUev50h8JVAs+ExXMEqXDB2vwDvjv0qLrxzS4zoS4 -xmfAzieVOIFYXO1ru52DAkAamldM+vjbpljDPj4D0RAZCBWWfTzizIJHVx0ikQjD -DT1RK6/9PmR3ZvSLFJVJ7RkDvff74nQmsyAMlCF/9VkW +MIICXQIBAAKBgQC3TTzrhuTybWgl6TTDU8jDN3S7PMh4MJU3VTpbK8bFMryx9FXj +9j9/1xoVJkWVyzpo0HYdfxdICiRtkU2Dq0ndOmkEVBqLWSgLTPc/UeYoy47g8CBX +hD5vly+GxLfagFWWm2z6BtVMklLZzfG3n58sFiDqlTrk1rG2UwYr/CHfMQIDAQAB +AoGBALFMrXNn/EYd21JoO1f/z748AtYlGgdffsWR06tiMZaG2AwNOZMRmiQuzJTO +expEBFBj6wvm5X8SCGBO3rpQUVVeS6KDEMWoJNFB8bsG6eGHrmmiKpLA5xrI8EJB +mKmxu74k35WoC+1NLpXl4PsasyVr6HPNKuvWbz/XO3UMWJ4NAkEA6KPGCanHvMAq +BQyg39quzxqz4TUiRuj3gjICZRulfzgLNg/zdC1bsCvvH19Wfcbrz8CrySgE60cg +0ouQnFzz4wJBAMm1LuruNf7owbnBesV9whkcWNUetdqAggMnAtqFI2xpH8soN5CF +eLgzh0YtzWyHyO9ies9LIUWkfnLV/tRKlNsCQQCQ2O/EMn7XifpfvHYqCvnOn3yi +WzflWMZKvSJ6m5UWuelZFuNpUZiF/0TajrzGgWVvrDIJhC5T46yPCzDV+pYrAkAd +xKeP9GfzntY4W92Kl+y1WAGkMkwUWzLU1EUPiuaXcUxH5z+MDKasSK6GJOxUQBXf +fmExhpz6cjRXLk3VdsxRAkA2D2AbDmbawkO0/9dso5eUwVGmJqICOlJr+oTHUSGQ +DqtjRO48EsHIx2rVWZHB+jCvuXRwzxs1r393G+FZQ+a4 -----END RSA PRIVATE KEY----- diff --git a/lib/hx509/data/sub-cert.p12 b/lib/hx509/data/sub-cert.p12 index 6d3864554fa5bbabbc0cddffa2b633765add1210..e798d7ab19f8d230d65f727218e95e384f03ff03 100644 GIT binary patch delta 2873 zcmdlWen8y8pox1A6C<-h6L%9Er&gOs+jm|@cE$xw+{G+S-1!Dg+}Q?A9Qp_;wgpWb z3I}i@iR(No0N}e-p{{MNsuZ*79inp)7N?N?y_v-0oE1jtc zskNam*Q(StKmHq2|J|R}@5jNW!>{z6C9S=VyIZ~qGVSQoO!IGfoV&FkzoCBi+sE}+ zmVCSDv}em9)h&AMu7WW9y0=G$gtzwl`SQ!D4(KRHihThbmgxmVu> zmt9qJZ7N;Ty7A|oFr_=QZ{F5CXZ2lIcg=h=ldpL)j7lBF&o>BjPTjb+FK*+`GD(Y> z=iQ258zj%@N(fHQiVT0sG0k=H_vbz@=PJ)smPlz{p%jqX&0Vp@KysG6fpUUyQcE(Rm}7cp2EB{eoB#n%&}{6E4wCn8k>kTuiI-CaQneSMuEeRjgIWO(Jjc{ zbBR09;_A~g&-FbIMlQZNXE(o7<>|nc7B_>FZck_0&=5A!OVDG}M{j{c{b%y0SyVVA zcQ4gw-)7%!b}T43FtzZi;(ehldo*R8b~op-Zh!DY;d%WQT|3{K5xex?@C(}QYrC+k z_g%{@bw1C#7W0gvr&eY}5YLcNL~Dvu$^CHTZ2c|FYJ;nK@s34+?Gan|iL|8|RNt40UOHgEKyy zpR)eQlagouRtX0vx6fF5BU$>g?ERe97d_?&O`J`$Di*%mJ(oi<=k(oQVPDIa{dIc& z=&j?`3hNon9_te4Nlp@U2@LDgQ+?yi5_|n}YyatY5nCG$2CrGsKj&-x(^vhMZ53~( zd2cu|f#b`K|6aKdwr<~>ylY{5-&4283nV*!PMzmHXZOnLy@v&u_UV?%70l>1Yu0MG zcFgNQLEGk}g~gZapVdFAuAAP!Gii$<%dY4@vWW(NE*q>4Z3?YEsd}p_;zNDX1V8^p zMhAqi9yVUN;r>T~>lglCe)6a=@Y2`%(#cKC`D`vXLpHshZZhec?y?KAtJQ?UcQd=j zhKF%JEmAjLqi5dKwB<*~`@UbbH#Ki}EKk1j>?kv%!Mdkkiq~FH3zm2teO&0s(}vmE zrxO!Rq;Kx$ZG3U=HuuIu#_Y1rNiLf;Cb`e!vU%&FqxERX%=v}i6ITbWy(TcRK(*gh zWJCSznTap9cKb3imwexN>B*k-SmRmRP%kf&TVa1}H_b7GRjsD7nb5Z*~ zR~pUNe{68oF0R16d``}SSBZUob{|=$YD{_mOkhjY?~ppX-#M8RC4NqDi&MKV_FY|G zX|H*D*VVhC%U4MLjmnjr&USQWua<)MU!kdqb9XOwnt%3waYtm!>x7p->K7=Q%zq;r zC@5+zW}}}UIQO`&_i@S44V)jRltw3fI}ym)V_0%-pXwi(sjgQlWS8vKxNNv~rSQsy zxA-nuKg`{@A>~Vn!XmwwhgF2kd!s*X=vBU%b7A*uyA^hkZ>{HVUvtOuR&Z_KHXqG7 zvRP_BZGNe})yiAg+ZpXyn{x5SK}p8?RZMC7%~vRuXP*!?_?>&x^_if%;p(X$*Gn;Z zEot>V^=J408ug{FS6@HSS-I}r^r<%&DKE`&+|aJ*{H9{h2j&?Oo2T8(U{_0Jc30DO zl;q<{UBCR!HHAOI;&qvUI-lCL`@DElc`paw^L%0bLvHbhd4G8%Pg#e}yBah3{35Z8 zGmGn0(~o~-W?cIqF6>}K@@o0R^Ka@a9h{^cbSB{2ey?1i>b?(Ud&R0!HmAK0WSufC zGirxOOwLulI8ALW<$a512F~9XJN41k^?JOjN!&|a!nH0v4?h32=U;n*9iO<_>8d^R z?fb36&wRg@bWy)$k@x;PD#kNT=4<=vSfL3MELtfRM{oGxA9U;RGdhSW-?f2RfIXFixTMe5g{rk16h@A79xN#1r! zc(Jm>BcEe-!j-aBwf~QO(dpS+@k}mNdVcVPwK_xpz-C{>n^n_Y8ibu_D>Aq_}TysM73PK1afT z-VSQcG7wuoVOF0e7wfwEx)qAQbuBVZB}4^OJ-2JUv-Zq_A7|g|`p)LqcT#&|+4m;x z$*vr3^|uqU7dOwCVg_mqurx6>O!=krC2AhG=RSrGQ6mdEV^2x5BjQJm=HKb7_?Z!u zwfXQozlUGOL&qg&@51PI!pSS() z^i`=9uTJPCm)>UW$+(;|rF+#qYxU210mWNq*CtL{d!zo9gx;G?nyNF|(tckq-pD_@ zXHM3mWlyr6A3qd#qEmIt?MgK!G4-RlXE{E8+QdD{-tkg!ZgjTs`$av&X~we4L=-Sip}DRA^-(>)Za;my_pb2Wo;+(m&eI%o@+Q^To$2iT z_`k;WM#$Cp`7iqTl9l=UJs#LF+|28Ksa-oWV1m=0>od<68JE5JuAM4YP-|8EI{e3P z)rflL%P)IVBg|7Tii8O)kog>M?68OBp0n72!yBTu>DeUY$K@YT<|)`F;yQWnh2@hB zO5JTb>4LPAi%8VBEf1$HDJV^z!u7<0 zdy}xuA>PN6ow$9J_N_B?4OwHCaO7nP*Pdx++)~dK*RgPHead6fm;dA~C|Lsl)<}M3 delta 2864 zcmX>gzCql`7;N<@oOR66qklI^=Z?3&fZDClukL3WEnhEXkbXMdG)8iFK1$jROCvC^&ElEol7|5cxr(e=}NE`QLn zmbHoz+pKr`7t8M_4qS$-Jk^$+W^&0YFxqh7+{Pz@%YHOnIym`>&-dv)v8#7|I`$(g zul>{2?FxRGp2dr5cP7>cxVXyLy8BP6_es)^R=jF3+4rM7>$l~33!=2ngoY|MAKb)w z?$x#64<`dJY-v){yY?rm%%aiA=X_e|dOqv_K@U^sT|RGMdqAXi)tw%}bJ@(;V%(K#kTvL}u$lo~qO3nYl%Rg^8OSpJL5-%|8+2&`ctzp~yQA?zDN$1Jp z!X%cgJv;j@MRiFEO}$V!`BL+*@WR#iYW)59e%w3GtZ#hkag9|zr|y-Vzppm1g*_^9 zZLCf^l(UyLLaRl>uA*wak=oHe?ycL-J(&1wM?~wkdPb4I`h7Q*!WpRpjLTv-VGNQlVyA7 zT<=ml{Gzeo)&+;DE1mmR=XXUsGqZF{TDon+k?)t^@6OuLH!t!0;nz*Jjz(e*FPH8U zm02)9?DX1?2j(xUcT?D|_9wsa9E0zdKV>5Iyi?Yw?%sSnO<3!M*5fHL>i#w7{1aO5 zZsoXQt9|<06vv#u+fMx2x{JpmMYAS<$C~T6zW?u;lFoh8$VW}?Q_<5LvtaXxaIxx} zPbPR7by&Wyn2@f|Z^=B%zfk`El07>-^W7e#{`YSQyJ>U#{c`OWvA^pN$QONo9PU|g z{`K@Iu@Jk1iIOP??XPZ{lJ;};+pe zGo@(%S9itW{ny*rUScm2}s z|9x!NlTAnZ?r=G!o+|mO*Hvd6`a0xVcn{-Erl}e!{{KJCDVixgd5zz(W3PkXEKv`Z zK9jCc+oXHvXs^VfDu&j3i#EP<(@>URjXU+*a8=0RWg462+-Evc>vVd7*p))7DGZHl z2_f}MMA%g4=;`ZzTg|fGbjvR0$<9nwQQGdFN!A?mXXTbU>*Z|&ME zk)Qi~F2DKFG8Zcwjm2&buVm#+US<@m>UNy*_AKlFKQCWLb5B_Dqqe|HcnW`}mE@E2 zYLAT9o)-Dwd(+h5q)mgK|E=I>@~@19XU@1`VA5(`H)rL+&kB>?SUhV!$aLiOy1kcA zt$pq3_p@q&#-D;blX}i;T`QJF)N`(S(EG#UZ9`;H)P{R(n|7K+O%t`vR<7WvhsBB>$6KYJ8f!xeA@K$(|hc$H@YWU*Pos+@9L*qr-N#T&X;7$7X-5< zTGiXN8L!&rF!fVy=OSgx`>*H4&6Q-~++JDkz4y-f%`cq<{Z_ZlJY}Xj!!VegJ@B&s z`K4hGPjKd4TcbX|u;%MY^Cu=-jVA7!zf^sK`wN|omh3A&t=M~izC;U`^v{~t>nA#N zK9-hE3R!(rRBgWR9LFWlV6ZuQMz z@ukyz_g5#LTq~VipQ0YVG2H9xnyqu%^>0qu!*$n5BzDV{+q`sDYE<95nnK0f`S$vY zUp(l$(k5;EaH3m6NZ~nu@x8*0v2Cf+Tjf?o@R}bmYu$Fa@s@Q)#lyzE{8djF^jE6i zeo=6owKmjfkL}{1o6D6rcs_*e3OeZYMtP24YmV6#pU;K88|(JYs98oV?)=x z`YE?I78=jKFTK&ZY14!i;{VIvnneHW4_mcyMWn-&)m!v$hTS;iq7Z6mtT1_w$=*+F z1z$LHfA8-57`nS%p)@XuUBUEapYxW(8+%_c7aR4rTzeO9U3zjhhg9kJ$oQ|hF0pLC zUQDX1X})i|K=0oE=wojBUJG}$rup4E#2Zw=w1>A|>452mu*pq^otzpd zZLu-x`&sy7aWT;}+@VY$AKS%!dEZiMpwq8G{f&$1J4{d?G%JLSlo*Ono?+dR^K zJxVTT2+3ZVHD{$gr?G}2TLaJHfQy0`U!^BJkJnn1>wIypRsOorT|dv~?F;PZFPM7! z_$nUt-A0-GJL^Syn5M3NqkZr@cUzaU{}#{Lbt$T-e40wYk{?Micf*4kS`JtiuNu&pRc6X!1M0dJ`4aHbQLRzOkc)$G4q9e<<_|A9wRu_I!Ep>7bw~vzV lq$37)4>@Ke-fFyVpdMs;BSo@_g(FvRGk@?-*RP;t4FCzaVY&bS diff --git a/lib/hx509/data/test-ds-only.crt b/lib/hx509/data/test-ds-only.crt index cacdc5714..6ae5c0660 100644 --- a/lib/hx509/data/test-ds-only.crt +++ b/lib/hx509/data/test-ds-only.crt @@ -1,13 +1,53 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 5 (0x5) + Signature Algorithm: sha1WithRSAEncryption + Issuer: CN=hx509 Test Root CA, C=SE + Validity + Not Before: Apr 1 00:39:18 2006 GMT + Not After : Mar 29 00:39:18 2016 GMT + Subject: C=SE, CN=Test cert DigitalSignature + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + RSA Public Key: (1024 bit) + Modulus (1024 bit): + 00:db:ab:a5:49:21:4d:a9:cd:8f:d0:a7:16:f8:74: + a6:e0:34:d3:66:35:29:c9:33:b7:80:08:c4:02:3a: + 9b:8e:5a:70:2f:11:2a:f3:f7:ab:f4:11:e0:59:d5: + 41:87:69:83:5b:19:72:70:db:a9:fd:05:27:ba:62: + d4:0f:6f:bf:f9:a2:66:be:98:c6:35:61:16:a7:bd: + 81:43:05:c2:2a:55:ac:a0:78:a6:dd:b5:de:63:d7: + 75:83:c6:1c:ad:62:6c:c1:b8:e8:12:09:61:fc:6e: + d8:a4:3d:62:b2:26:5a:b0:25:4e:91:cd:ed:76:05: + 7c:a1:d7:7e:42:9f:64:47:83 + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Basic Constraints: + CA:FALSE + X509v3 Key Usage: + Digital Signature, Non Repudiation + X509v3 Subject Key Identifier: + 6B:B2:C3:8A:CF:7D:BE:89:32:C0:68:70:F5:45:9F:09:CE:56:89:24 + Signature Algorithm: sha1WithRSAEncryption + c2:73:cd:ba:5d:d0:a4:52:97:62:f0:69:42:88:c9:a8:10:01: + 29:3b:89:72:91:17:4d:56:f6:7c:b8:21:ea:8d:91:fa:6f:30: + b5:d7:c4:2c:94:fe:b6:f4:e2:e9:2f:85:f8:0e:b7:c9:cf:15: + f6:7c:e0:b0:6e:d7:a7:12:87:7b:6c:9f:0a:4b:a3:0e:56:fb: + 5d:41:6e:a0:07:f4:a4:ca:e6:70:ae:7d:42:1a:8a:16:13:72: + 96:14:1e:ad:85:eb:ba:bc:88:bb:45:dc:7f:b7:fd:96:75:21: + eb:de:1d:60:da:67:bf:64:68:c9:f2:d9:86:fe:a1:74:6f:a4: + e0:1f -----BEGIN CERTIFICATE----- -MIIB9DCCAV2gAwIBAgIJALVp8kub/fs9MA0GCSqGSIb3DQEBBAUAMCoxGzAZBgNV -BAMMEmh4NTA5IFRlc3QgUm9vdCBDQTELMAkGA1UEBhMCU0UwHhcNMDUwNzI3MTg1 -MzMzWhcNMTUwNzI1MTg1MzMzWjAyMSMwIQYDVQQDDBpUZXN0IGNlcnQgRGlnaXRh -bFNpZ25hdHVyZTELMAkGA1UEBhMCU0UwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJ -AoGBAMKVdReMNkZBL8wYWaUTKczT3470P8r7MXqqg6rv5q/612wbKWnTPe5Vny7X -qZ4p0rDpX2hZGfD5Gggr496L2GSQ6Eec1bOTJznlSg9BHc5PCfNL+RJ0bG/n4vmG -eJKJqFwrGI0pS6qjPIh9PhuoEINwY1J2qUjvlstxa8hj9QeBAgMBAAGjGjAYMAkG -A1UdEwQCMAAwCwYDVR0PBAQDAgbAMA0GCSqGSIb3DQEBBAUAA4GBAC9SHuwolAun -acsx2royYktE1EfBBvlA+j3hFrOki0nHyGBDIPxI90hwOVJ+3Nr7cG0Fge8TnZSX -aauFM307Nn0qYLHB6gwCAgrgJrKHU9hhOiq7IQGK9qxhxEwgZ/u/rPUi7IidlY4p -reYJuZ6rDbt5qkarTIEuAUiHLQv5qEks +MIICCzCCAXSgAwIBAgIBBTANBgkqhkiG9w0BAQUFADAqMRswGQYDVQQDDBJoeDUw +OSBUZXN0IFJvb3QgQ0ExCzAJBgNVBAYTAlNFMB4XDTA2MDQwMTAwMzkxOFoXDTE2 +MDMyOTAwMzkxOFowMjELMAkGA1UEBhMCU0UxIzAhBgNVBAMMGlRlc3QgY2VydCBE +aWdpdGFsU2lnbmF0dXJlMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbq6VJ +IU2pzY/Qpxb4dKbgNNNmNSnJM7eACMQCOpuOWnAvESrz96v0EeBZ1UGHaYNbGXJw +26n9BSe6YtQPb7/5oma+mMY1YRanvYFDBcIqVaygeKbdtd5j13WDxhytYmzBuOgS +CWH8btikPWKyJlqwJU6Rze12BXyh135Cn2RHgwIDAQABozkwNzAJBgNVHRMEAjAA +MAsGA1UdDwQEAwIGwDAdBgNVHQ4EFgQUa7LDis99vokywGhw9UWfCc5WiSQwDQYJ +KoZIhvcNAQEFBQADgYEAwnPNul3QpFKXYvBpQojJqBABKTuJcpEXTVb2fLgh6o2R ++m8wtdfELJT+tvTi6S+F+A63yc8V9nzgsG7XpxKHe2yfCkujDlb7XUFuoAf0pMrm +cK59QhqKFhNylhQerYXruryIu0Xcf7f9lnUh694dYNpnv2RoyfLZhv6hdG+k4B8= -----END CERTIFICATE----- diff --git a/lib/hx509/data/test-ds-only.key b/lib/hx509/data/test-ds-only.key index afb98a6a5..523c75715 100644 --- a/lib/hx509/data/test-ds-only.key +++ b/lib/hx509/data/test-ds-only.key @@ -1,15 +1,15 @@ -----BEGIN RSA PRIVATE KEY----- -MIICXAIBAAKBgQDClXUXjDZGQS/MGFmlEynM09+O9D/K+zF6qoOq7+av+tdsGylp -0z3uVZ8u16meKdKw6V9oWRnw+RoIK+Pei9hkkOhHnNWzkyc55UoPQR3OTwnzS/kS -dGxv5+L5hniSiahcKxiNKUuqozyIfT4bqBCDcGNSdqlI75bLcWvIY/UHgQIDAQAB -AoGAdXupm9MTPe3DvxWAopNkbIAL/ZLpJVPutuJW5xE7lkr8YBAyO+vH+6uEldKu -XYlg5WGyMh2B9SVhm0dsqISE3H14k384hLyITpnsaD6N52gDotkQoKbos111buVS -xqJ3nc2ithp3igDF8OsZCLvt6BD/FnBveXD35Fx1VC6sN7ECQQDpvWWXROhjc5ZV -AL6WLqr8fs7xl/QrzKk50AyNX0vjxUXMIvr5ukF/0S/+EDxqgjZZoxvdVj7yWNrG -qDZRpjLVAkEA1R1uvUDn7lGLVuteCnVdhkTCR9cvljGVCxcb+iEprniClOnPkBQ5 -p7ZbhjzqSnwTc2pezgb2ZWVLEOjljNkf/QJAE0uBMWWM0XjfNhEjqn4bu1A0gRkM -HPl+Frmn75uoRhso0dspYKgRdB2umoh4lEo/dlLSoAjYlWTkWnXUVhUkKQJAf+J0 -lG7BfrpCMjt1KDN7ltnl97RCYw+Hz6rjZ/rEh2Tbfz67BkuMuX5td6VQNrgz99tJ -3rpA22GoZRJMxXN5hQJBALFgvcFLvT+pUDGYuhyQB8f3aNmmDyDyMnQdUkHEX/j+ -g9vXCpWOvOn7IorE9eScuSHrOCwJbeW4zqdeAD3UElc= +MIICXgIBAAKBgQDbq6VJIU2pzY/Qpxb4dKbgNNNmNSnJM7eACMQCOpuOWnAvESrz +96v0EeBZ1UGHaYNbGXJw26n9BSe6YtQPb7/5oma+mMY1YRanvYFDBcIqVaygeKbd +td5j13WDxhytYmzBuOgSCWH8btikPWKyJlqwJU6Rze12BXyh135Cn2RHgwIDAQAB +AoGAS3r8TVeTLxCCJSj03KSAnrOoHAuScx9BI05fw4BN6SksORAGGVR2EmR+GYAM +hzH7P7dLunnQPC+kSgghY7h7VvG2AguGyOa8n44LEgWLoRF0YCcYCqopCbUOcXWP +hHnQV98I5TDDowAz2fI/Cvos5a5VI5aeJDr2/AORR67zlpECQQDxtT30CGuXkolK +i0K7NTr1kZSfHi/X3L4B+rKRod0rRbOKpxlWwO/wLL13Bw0iWS6Le/N1tzxWf3AK +djOcPfY7AkEA6KjR63+zpbwGOi5gDLv+ChbGvLxw9EezM6nUg1o4aZKOdHR3fa2X +MDuVCVnM53NQkTr9nNg2VCekv+jFQ6k3WQJBAM8MDQzcpaWKHdbgIgKRX3b6BNCk +oCEN8ylo4cwEVpt5somECB2bWi1ndcjfHm4c7NUJEYz1sFb8BTLA/AbLwP8CQQCg +KCZpUL0f57D5uBbSbU7RLyCbp7Sx0/GeLNhnm2Gd+w8pR0tCLo8W2s0bZL/Sy+S4 +NL2EjKnJgIi+usOgcgnxAkEAh/W1Bat+6adEa4QagHT7t0mlYVBfRMVd4ta5+3nw +6RX6B0wZYc0qWXImE4VoDv1n9fShBEcWKPpGVjPwZ2smhw== -----END RSA PRIVATE KEY----- diff --git a/lib/hx509/data/test-enveloped-aes-128 b/lib/hx509/data/test-enveloped-aes-128 index 8f4696c797bc662fe83d94cde2497511276e2016..5d922c8ff3bd85a691a190cc248629ae7a77c268 100644 GIT binary patch delta 3105 zcmca0aY91XpozzYjZ>@5qwPB{BRlhgCLU9RCLTj3Mh3&ilLn2)m>3xh^e3w7)-y60 z@WK@`GO{wTG&bm!z6_0?&Hs>7S@6y>Q}LQ<>3;KXuAIBg==?>GriULHrio@q7}@M! ztF)kf!o=L@*YCdCN_*8TU(BkKvES)?gv4#}h3wraO6iw>&*JzeHQQot-RAcx6Xtvi ztAD+1-{c0v{dN=X9lYT8Y}fvJ(XA?rJKjt2%wi1g?#R~mnV)0l@Je{%JGpxPsTm9I z`lWv2?^4Ltd*m6_(8O)9>)ZAx8XtuD-TpuJiSRz85gomP^Xkh4@qdfgf9Ktw-Mx=J z{m#tyoXc9W)2veB6W`a*ejgQUblhs?X@kJe?RT?3JeItYGS475KVrJc|E&!+OZ}H; z3q%N}>E5pYl$26+FUnJGTV(b0s(h`4C)iBjvG|S;BkKdXmA25|=&r0SDGe?UZ1@9jl>tu_TP0XB=p6*-Ru`lQulTwFI>FL|H+mPQr zT~z*m?Y@fOw__K?+v}WPn>gvdsmBr=Dt5a&OiG6bXljG&ONF7k?TJ9 zHay!TTpJSNDI#1DW|h`c7b*Acc(38NujNd+y*9$$T3R_9S_JLpiD#EQZ((MTu;1Pj zQdONK9UFUX%WA&2Pvy@&oUI}5y=lLIX)MpQ%zxI&?>%~-cjZkn?c7(NXsY0s=e6D4 zGpR-CjIGqwS#K6i@kt)eW|E0?H!Jkxyf_VN?S2M;azdYzGr z!Flp~Rke2MY}JA(Deo3aPmnO`T=>DW;vkRD$3xtX4?ch5oxsp=`u@>9KmSdOaF@R& z72PsF`f`|{$)EumhKd*$mXI;`eZ|7*>p__eA+do(-6IDNA&H#fFR%4{zU2>}6&(dU9#%%5BD{Rf?78 zyj)qQ5+!}(>ej4{@3W@YhdZs>SMDtNJ&;L#ZlGm7V}a3pn>Ulbzgg|v{VA4#(Kj;l zVw{oj3i()teW&#w{xcPN9>26cG(cfS^rK5_Rr}UXPn6pGN8yP75t$pZJD*JLKJk-_ zP4b`Rqk@Y~iW8sbhAjSUbX)kzx-GNreTY=rar1wiQtPJGzcvJzhvj@R2@9L7$$nMu zSn*Pg?wt!R7Q5HawGNq-v~X*}iiD68$8vc&t6p*(eCuvkUj1mpBdmg!6B^Tacotc|pD^cG|C{quGZ~NiE$d(YXWkgY;z1_aF`!lEN?M1IM^#bPB%t{XZ^5&6bS^$eazkA>0i~jXIX3LsSp3m&N z8?jY(Qm*6dmMPy7sGh?c3sz?AnvJ;NBx-6jYM*-uu0Q?z{oHP! zAhnb`QO&1vU*;?fP?)p#{G8&;VK-U5>&liLoo;T{%TRyu)D6aE#s5v(#ics#34EKd zc9!nW%fF{)EZ}bO3SOD8W=*P~+HJNP#pxLtTueWNHcm}Wx-KPq$lz(=l~}*uHH8<9 z#T~Q@SBX8Xy>+ZUXQjEe^`on-GnnT&dOGX9v^(qc=UwPRE4TKVqGPJxZcOp^&#PfA znC~i~yz=3aId#)n-f%1Yk$AAJ{hQbK#my0`7D{~VdEQiGnJ?BQo?0aS)7ZHoy3W%t zUBBV(OaNBvW=Lz^l;MxN`- z4AGnVmPgk4i~R97IkAeXMSV|y+cbS5%Qm;56oc%IM|ZOObxaBgc`^N7llo1irvKC2 zyz~7-tIHdg?wKC8^XvTh4!I5NyG6fw+;%(C`Eza9r#QpOKct_zb39pYA)=%wAzZk}LU4mm>R)I^dWukNIm8l9HsiDQf|I-qD zZthz3;RhpkS-$fYZ~olPCn~?xWgq_4xar)Pv)5Or@4CFmB+jnQlfSL`@>Q{x7S&*t zkd^m;@Xlm*E?xG0o{vs_h`MfUe_nbcc5HqYuCr z@a5OK!=z>~+fn0aWoR~M_?f7EOLu%TwO+69@|!E@rsm=4E$2<{?EPi9FzrWU$IVq9 zr=M(#+#$64fpPt}(+5|~(|m3?OUqoTJV{jQ>9+}2tY-K%rXHvbmU&aOyD6(OBKpG1 zr7u@ssC@It;_a4&Prq=g`~7d&U%pE>)9_C5MW3sc%h#J1mWJy5PIWl9;+Z7p#yx`B z*EFl1>YTdqt}U+pZnedmOY`jb*)RB)?N?xl_2x)blAb+ffr4yoe0}ck$trp}TREhh zYtA%HeWmow^{uy@)!lqc(IoMGh0^X9SjBmtxBokmyVfIc*WP1ue*|23fABAl3G2>p z_ZKgky7KY#d|#1}7r**%PrkL9f%nne%rzSfC8wpX*qNLA-eTL)(i6**GcQQEgqQ3L z`4D=j{mxIf07=b9jq?ucFW70zUThaX~`WpozzajZ>@5qwPB{BRlhgCLUXZCLT*BMh3&iiw2G7m>3xh%qObq)^jp! z&HUs&`|odS175fWMn+Z!mc|BCFD*Oq85(w<{+oQ(UMkblRy$p`VwUnd8}^NdbEkD! zn;D)6i!W<+ocL}b({&&1jJ)UnE4C{ItP7dp`c`K7QpaMs`nQeoe#y)+;rxBgoK|-v z?`$?dhdx$vq-sVBo}x>C%WsuLgP>^{nAIcvkMX)4Pnm2R5& zOs>A@@O@kNM?ntr`xT^P0vKx=nz#+vcI@sIuv2|@Ysvk-Pf0HGO!;?~ssz?J@XlAO z{rBSQ?B&tN9j2Z#FO^^4b4B8l)sGiHp1OG%wW*z(W4j_-qQgsjmu;x~?P+2sx0TpG zkv^?@eev9nU$ndru)7_ae)#W{&=8#ia@|`Uav#r~SHIWnzN7YHxdY$cy>4SVdUwN` z?EX@Xrz z{;R^x-f4F>z1_UjXXCUwj%(+7&+?Y<$xzS;nk~p*GrQ)x{(`6fqbB^G${6qBAzo#+XyLCX zKeJ{A*Z;g`VYtES{I$}HZ&S`{KAK=V&GGgOja>=CUw8{!7XOLxsLh&QU-KlrYCh+j z6^vInrNW*U8(SUv7O~{R9})9rNxiz==brI=TiJD(eftvQp6)%X8@ybP9~Bkpd!W9T z*}i!8i-Z1cJA zJZE}ha!uc3dS< z6VGjYlDKWEV!;hdJCVuXHWc~aw|2eQ|L5fF#zGlWsZWQ}XQrN78hUuQS&M;W;N?d; zcawA`%2%zcdNxTwLFKY&Nc1gHvG_L*@-NO^Y0tPNn4z^+L*=SRcV563QIpO)i&Bo8 z_trDm2ui3QJ^p03i~Rg4oRM=U9_KG$5qkU2{O_Mf?Xzb$#=ebvhT%OXdU=&*F_MW4RB%=2gKs1Ht_tu<40Vy(xE&-|tbelJ~C z&-nHF7vJZ5!-J)dsjsna*jBYIMtt*{n|E_}@JQD*mSz8$_gr9V;+-<3np$@m7cFO- zI+F(V-2IUUf4rLL*ZSaUv~S&oq=$tomI~Fr%1@aeJ?9eBjYOtDt_f?L^QLuP_>=g# zfi*$scCoT~+s}FRzn{mRsbvg4_*W^T>>cNh{jX1|T;2X`@)gY^TYl}A5o>tcubZV) z^EZ2ifz=zY`O7o@FZ*pcWnPh^Wyr0jDn5^WruVa!z0gv0U3=$wyt#1A*Bq()k%#;b zOgUXwI*r-(jK1oet7rE$U9@-cTP$#PG3z>0f=khn(e=pm3y6San zD&sem)()#3p`C9FkDflbQQmEA}QEFCO7gW*3{>{|H$ z*#8Y8dAgO_LSav`!fHIZHY%^}|M>R{*W{JVH7j2pclOu3o-sMT?d`$EUKKx1uaI9Y zW%&1{bJb?E)p>h5zu*4!VW!#K{=;=M?3_#kl>Z;uzjlM4kD1x|;sf^2eKy(pGYlKR3`TXg#kj02UABzwza1-V}Y2n9Hs=A=zMV*5A*2+#kxm z`C9bp^QPeIFP1A$iYb1xU&?Bu#M}Ny1u<26^DVbL)?#~h?WM~^G1*j&Ew0=OGiP7l z;}V&<>_cvR3;QyogY&i?e`CaQG56g=%R}!s&b#^e(4S|`oyI2~Xx6iLGHZHG+U;HX z;EB)!lh&0xUOiE{BKYybG=cq7yEiYmc|Gb_@{iZep~vTJ-|xukkT5a*%sY((84uQ- zxuWmq`1I%e^x%$^D~C+h&3e;#f8(2sdwVDH#J>pp#{N{tUj85Nxf1II#by#`^?1Mf z{904LYm<@kA*IH{mFlYc%MLvdpIx83TP|3CQbc0=qEimr4`e=cD-IF#x&G_bvR(1U zOAM|X+}530A$$AuVQ$Msy2~}@tmfbI%je&OeFp{Re_wCj>{^qw{ic*pW}Ibd*xiKL zg1I)~UuX3lXWQ^&msCZAp#7rcyN^>XTRPuf?a@^-3T5c}G*L=mic$8_n@{t0)W*J8 zRKGxt&vE5y2d9RO+iwOXwPzN|pWxxyQnKHF(x=ZQH@D8-n9Ou|>(!>qF7p$1Zg{2h zW9_tW|J|n_p8q z=2zbF=BJ(|?lzb+EkLw6-L66Wawu#5_5hCO1zr0Z>vtSgmvXbD4;Dh7@vHh>Fa8G3u&f~l}+cM#@ zX=>)2bj_DKQJQBN(`Ie{(j#D5zxE!B{4C$@cSkdmPv@q{G8n9Gx@yiDy61nlbpPdr zcK0MJ7wi-L6Zg12@14uL*?(PTEuPV|afi>n%?n@53J&u-=)M2Z%oTQw!QVF=Qtjt^ zTf<;oCamK1iYNB3&w}Sud-QwVtl7g^-e2ryykoGw^~+cHP3$$CwH{N&8Kg@z?Ef5n z7wqKqbUJg+!-CtLkt}a9?PXpMMpJ-ADMk?ZCIDK(_NMM?Q4aELcU;`=`frKOB7Lb7-@oD8ninU}lk>MwaB=Zp#oGP%+0XO% zSZ62vRb^W?ck=dp(<#TE@7?k7=|?r?eu>Sm9NvT~X{pOrzq)$x>kakEoAcKQ+)e5* z@jbCDi1AeG8bx+Vo|7*NoSK6UY>VdJbzr7d+Jy;we~F10hIsdc2=-l0`okH{86{ND zS$JpWEyg`g#Wg#B95<`rTHo5o&OfQoX61)T>%{WCR!p#4Hs8>Cf&X@v8SCd47{0&0 z#j0I)=Iqctd!LxvOWCp9sVy`$Vg4lfYtOb*o)5Fk-oNl&>7k;iW}LNfzL!qJ&F?Bji@t7o`9;S&_}0p$ zlSP-Lh}p$0-WFwdI(fT|#+T5l3-Ood$R1p8?tZ^&eeT1ZN?Lq#6Sv5!Mm$c^On1&L zi|_uXATJ_+eZBbRd>`rS>b;DQ=WpC(;rvge#Q1>pfqbRcU;fumG|B$5MZKd#AN85K^Ms}tJO?)p6n)se>6p!SV`)AO^_{*S)F?j(q6C)E7 zBa;CyTqz^#enVmTfW@BCgRem zZ8YS^>4%i|s(zXF{gMT1)x&2C{KDryJk5SO)3AxL)1Zm5m5GtjK!5TK zZXHl;O`gMR!wHKU%gGOUd+HmOa6Gvv*2*s?&swqf-A(N?uMWOVP|=<_bB@l!`x7So zZF_Nk=BDZEALvw-P8DG>FnRXmzF6kf?)Vjx*5~ip>fT;2@^#IZzwGkOzBM6R_%67V zpE>&JK(I!gc8<@Ai@lFEx1Kz4;laXUU%|BY*RRE5!*`yqt9|!>Q>kL$zw1ieDvV(O D0-pd#AN85K^Ms}tJO?KsYNA*+yhx`8Gq1yuUv{C#Vi^zpet)#_U-WVd3!AmAemf>EHiC>YeuzGDipj2%U)uWqi~QCp$BK%~<<100TYb&G_wa_0 z{#{2#w)$KqW=00a#Zm?mV3)}XvoIMj7;v*OhsyG^urM>RK0xs{D+6<5BZJ9ZtHA#@ zp&DoXziIyUyVJ%ev?bAsi}O{$=1G&+wq6uh=)YF-_0DsN%h8fY^}1Ti4JH}~bF9Ad zO?K)F&N3DiO%`d7k2b$lKJQd@_IVP$_>AdYW2S$K@-7$Je3f!sSO2KKZ5Xggz<}K< z@X_*G4*NrY16`g=Ez^%iL6i<^^^V)D4 z8d@4!7#NuvPyWE$Q@=Mgv~bq8#~T#xaW#p{1~WhSzwdFDTvur1Ls3if8-)zZKjk;4 zD({(IdR?RF`?Goad#%lTg-&%lZtl{WzPJ8&waZ3_7Nf#$m5`9Og_pEywccfk;gm9ek*&s`oUB%OCa<@5qwPB{BRkWACO%_>CO-X*;*s2P{|uTKe;G6}CNE%SVq{`s zWHR7|D`jMzJdNAf&dk8Xz|g?J*wWBEN}Siw%)r>l63R7DG~_nmWMd9xVH0Kwb~O|- z5CCzQc{oE-i%S%eQ;SL_v-8N-&$_?<@Z=?W6#}n>1Mf~axNE*&kLhk}BV~=_FB2AA zZc{%Wwqk}_Z$oy7|GFH_beCG5b-gbMLwDHV_pdQ{8wgL_a#B~@6HP@-`gI3Ir!_g>ng@0GW%yMv1-ZP;(g~kM@qP0 z_R@A&$h=~!ZG{{PQPskdh3k&>GmY*YRV zN~{d8wqOid)wnV~{gBdL)i2Y&U$S7WdiZRCU-mvt35qpo!0zjZ>@5qwPB{BRkWACO#E|CO(CY;*s2H&kdRw9~(3=`Yd2(Vq{|C zWZ0Vd$$R$S-_{1aa4n21ll!=h?Mw~Kjm!-#OpT3=qr`a)L0nTP*Fe!w$UuONIh2K& zhchI#xI`g2wW!39+kg`!#wN@Z>^k{Bw`~2HyL(#<8z**ixY5JySW%I=+?n8LtFPJj9^Mer zzw5}zR-enn%*epFSjs>G>@rzl7A6A*18z3vP+5K!7G@^a2PocVWngY>WH7mF75LvK zRO77wH_g9(ciQ-bwj^3{alQ)JJZbXU){Ei_{ntvq-gz!@Ia>0lURP_m!9?R=j@4Jb z$xeO2S;nHG$s+CX(dL)R=bfsKK2M?-pE12_%=AxD-sM7@uTqZd>L1m&4Ffg_7_eIf zK3ZPOVSngvpv!Z~rKb*G{I6t|vV5MsjbY;*gT|XojEn~6lP7TNa3jUiG=o0n+nszBewh#Ra&&}f&bJ`OBRUF_`l;~%7K>4&l2Q*@`id}o?H5OTJh6QYmM^) hW_jCry3K0!pRhjaYRDgpozzUjZ>@5qwPB{BRkWACLTkBCLZ05;t|}OR}302GBGk5=ufWT)@5R3 zn!KJ{w!VkabpeBL(5l=Sdk)=kC~#WS6dku()XGIZVOIaO%zoF&Q+ro4iUI&l!Aph! delta 191 zcmX>iaYjPipozzWjZ>@5qwPB{BRkWACLT+JCLYs`;t|}OcMKYDGBGk5m`|?Y*5%@4 z*qZstd-mVo){~cW%hntEJ-vDIue8WcFAKGI@ut03zk6*o49z#lRo`bfrE2S??&spV z%T6CIi(^~IRk^+_rRhWaVWsCE{B9~t50BXLPgH5qx(EJKKP_1xKI8w6izx?MEsNW6S{nGaOSj diff --git a/lib/hx509/data/test.crt b/lib/hx509/data/test.crt index 67d7765d6..9b8783305 100644 --- a/lib/hx509/data/test.crt +++ b/lib/hx509/data/test.crt @@ -1,13 +1,53 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 2 (0x2) + Signature Algorithm: sha1WithRSAEncryption + Issuer: CN=hx509 Test Root CA, C=SE + Validity + Not Before: Apr 1 00:39:17 2006 GMT + Not After : Mar 29 00:39:17 2016 GMT + Subject: C=SE, CN=Test cert + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + RSA Public Key: (1024 bit) + Modulus (1024 bit): + 00:9a:df:af:c3:93:a4:2e:78:10:ea:13:51:dd:90: + c1:ba:9f:4e:8c:35:bb:3b:32:23:28:c7:e9:60:a0: + d3:86:27:cf:56:a8:98:26:8d:80:6b:54:4f:ae:6c: + 29:67:44:7d:0c:ae:8d:b9:a1:05:48:7d:89:e0:35: + 84:af:5e:38:7d:ba:42:e3:06:ad:5f:22:a6:a7:a7: + 3f:7c:58:d2:ca:b6:6c:e8:d2:e9:cb:65:c6:9f:9f: + 96:37:7e:df:dd:fb:b4:ee:8c:2b:eb:f5:74:71:97: + 55:b6:d2:8d:7a:50:b0:92:fd:da:8f:74:0f:d6:ec: + 55:a1:0c:f7:a5:fd:f3:77:a3 + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Basic Constraints: + CA:FALSE + X509v3 Key Usage: + Digital Signature, Non Repudiation, Key Encipherment + X509v3 Subject Key Identifier: + B6:48:11:B3:C5:67:44:EE:DD:FE:B1:C6:D4:4F:BA:90:34:91:8E:FD + Signature Algorithm: sha1WithRSAEncryption + a2:4c:69:9f:5c:e8:11:4c:ff:23:02:ae:f4:60:25:fd:b9:d0: + 44:f7:86:e1:f4:c1:fa:db:45:aa:01:c4:1c:bf:9b:22:05:2a: + 1e:da:0d:ee:4d:9c:1a:13:70:9b:a5:d1:78:63:db:89:a3:27: + f1:73:66:d4:8f:9d:38:8c:bf:4d:fd:43:15:c2:fb:46:cc:7e: + 2f:ec:4a:c9:41:74:37:ff:fc:a9:1a:ed:36:77:59:19:b3:80: + 3d:64:ff:11:18:a9:57:7b:38:01:54:aa:81:a9:5f:67:c2:22: + bd:25:f4:96:f7:d2:38:05:7a:e1:e6:a0:4e:57:9f:e1:cb:07: + cb:69 -----BEGIN CERTIFICATE----- -MIIB4zCCAUygAwIBAgIJALVp8kub/fs7MA0GCSqGSIb3DQEBBAUAMCoxGzAZBgNV -BAMMEmh4NTA5IFRlc3QgUm9vdCBDQTELMAkGA1UEBhMCU0UwHhcNMDUwNzI3MTg1 -MzMzWhcNMTUwNzI1MTg1MzMzWjAhMRIwEAYDVQQDDAlUZXN0IGNlcnQxCzAJBgNV -BAYTAlNFMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDM3b2EMYGRiwhGPlqJ -fg/ZTcQyNqw4HBW0w9DVQvapgw1AxPo+VcZdAcL778WB/lunODg8rYVOuJGnNx3m -iIfv2qn8y8JWDtx4xzN7TOKhx0J10zJ/iz2Yfg5CNPgV4kJca34fpYXv9B+1lMZy -cjcezFNbOvVr3uHYEi/dQQEGbQIDAQABoxowGDAJBgNVHRMEAjAAMAsGA1UdDwQE -AwIF4DANBgkqhkiG9w0BAQQFAAOBgQA03TpR/zxVKM1P9in9TtyGDhK0YToKCepQ -s5KTrYXRFyCP1nT13OcY01sZxS6KhXcwkTNTCKvU9h2V6Al2BCQpBBtI8Tz6JPO5 -JUzkW6PMNd0zAv4hH0TQhk0ibEWr+HvbMVCyEDAHOlHip30IP8L9UUTnGaXKw9H/ -IjZkp54/PA== +MIIB+jCCAWOgAwIBAgIBAjANBgkqhkiG9w0BAQUFADAqMRswGQYDVQQDDBJoeDUw +OSBUZXN0IFJvb3QgQ0ExCzAJBgNVBAYTAlNFMB4XDTA2MDQwMTAwMzkxN1oXDTE2 +MDMyOTAwMzkxN1owITELMAkGA1UEBhMCU0UxEjAQBgNVBAMMCVRlc3QgY2VydDCB +nzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEAmt+vw5OkLngQ6hNR3ZDBup9OjDW7 +OzIjKMfpYKDThifPVqiYJo2Aa1RPrmwpZ0R9DK6NuaEFSH2J4DWEr144fbpC4wat +XyKmp6c/fFjSyrZs6NLpy2XGn5+WN37f3fu07owr6/V0cZdVttKNelCwkv3aj3QP +1uxVoQz3pf3zd6MCAwEAAaM5MDcwCQYDVR0TBAIwADALBgNVHQ8EBAMCBeAwHQYD +VR0OBBYEFLZIEbPFZ0Tu3f6xxtRPupA0kY79MA0GCSqGSIb3DQEBBQUAA4GBAKJM +aZ9c6BFM/yMCrvRgJf250ET3huH0wfrbRaoBxBy/myIFKh7aDe5NnBoTcJul0Xhj +24mjJ/FzZtSPnTiMv039QxXC+0bMfi/sSslBdDf//Kka7TZ3WRmzgD1k/xEYqVd7 +OAFUqoGpX2fCIr0l9Jb30jgFeuHmoE5Xn+HLB8tp -----END CERTIFICATE----- diff --git a/lib/hx509/data/test.key b/lib/hx509/data/test.key index e7619db9a..7311d0986 100644 --- a/lib/hx509/data/test.key +++ b/lib/hx509/data/test.key @@ -1,15 +1,15 @@ -----BEGIN RSA PRIVATE KEY----- -MIICXAIBAAKBgQDM3b2EMYGRiwhGPlqJfg/ZTcQyNqw4HBW0w9DVQvapgw1AxPo+ -VcZdAcL778WB/lunODg8rYVOuJGnNx3miIfv2qn8y8JWDtx4xzN7TOKhx0J10zJ/ -iz2Yfg5CNPgV4kJca34fpYXv9B+1lMZycjcezFNbOvVr3uHYEi/dQQEGbQIDAQAB -AoGARg/reWMo6ap/uO4oLm9jYjC7UWTrPwEz1y9EozqUeuJrzOPQpTLWdQZeNaUJ -ieyAUc7jRLUfKw3qGiK6YhX9TshkO1DhvSjpalEMyK8Fg9s+GzqvgdM6L7pLKxIZ -elI9suRUKi0qS4cEr6O88CRHeDsuaQ1bynuPvBm1rPcOow0CQQDsYX/NhZu74gOW -WrIB4WypkCRow5DsaQZIH+NS0VnqtY+lTqimonTbEJEuPF7t5pH+ACfm2oPnP8wt -c/VZzd0XAkEA3d6iDldujhGkRzW34HJ4B0xtzTmHWKRzdRKkf0D9DWw8AxwB6r8P -TjEL4luoqX9c3FIre/sb96dCO+ipJ24TGwJAP1FinZfjfnFtSpIiypQqukTtK87u -/BSp5Rn9l4qSjmdyAfLPBEvSB3gpm3v6Zbl0c9hw18rCuGgDdk1wdEzLowJBANyG -kSUYGjbzqglth1p77Hm0qd62M6UTr/7JjN8/RUa2MeAVUoJ1bU0Wyu0ulbIDedUz -hy0wJlg900OguaELc8kCQAp3eP5b7NmvEOZaRi+U0M60ENK9SKCGDGBHv40sS7Zw -gW/rcbCSkdTLYiLeA+xeiImtRYQDh0BX0XFYdiG7NAw= +MIICXQIBAAKBgQCa36/Dk6QueBDqE1HdkMG6n06MNbs7MiMox+lgoNOGJ89WqJgm +jYBrVE+ubClnRH0Mro25oQVIfYngNYSvXjh9ukLjBq1fIqanpz98WNLKtmzo0unL +Zcafn5Y3ft/d+7TujCvr9XRxl1W20o16ULCS/dqPdA/W7FWhDPel/fN3owIDAQAB +AoGAVP2eWijit7GiLqKtkXbIKd8U3vL5rdGk49NZanK3we6E5RyeasHKkJvzIlgv +HIHEUjpUgmMwIAjsqgMUrpx5SQNUb2e3ZQx83+u9jBOKCih0CqA3Z/syGNVONwzX +lcNqR8+XzxWLyjw2xrGmY6kKiMFSWNcF/ipSv+i/ipEcx9kCQQDNAne7b3afAIUC +SZILCUAwecZAi8JlOeYcx9ilyX/ebUVVzfuc7cCmi6/3amkWLbu2M00kXcX7MTRj +++XNoqXXAkEAwWTt7EZEOUtn7xzovL4IjTVujDs6AWkR+mVVlHU5ry2LFvqoqinq +k0Po1EDVK7Ch94SQiSzD9UzA6aXDPq1rFQJAVfvF+gAq8U9HegkfTq+nk21PoDy9 +4LTi9YlALXCQx9purSlCcbQqC/AkcpHX12yBAU8M+Ma3xb4Cajj5TkD8awJBAI9b +xva/u7EREbFxp6DJ6cLrWdA/0ybagUYxOfg70Y/m3dUh6EeDnOyfiYdVq++gFuBJ +d28ILRa4V8SbaRkcKmUCQQCENcBGVpgLkGa6GwdtrQ+62+WbzKiz5kJ4N01M2SZC +5+pspQ/3ocPiRMmDUmNQgsUs7fVe17b1RMSzAZ3t4a/9 -----END RSA PRIVATE KEY----- diff --git a/lib/hx509/data/test.p12 b/lib/hx509/data/test.p12 index b360d7fa60e80fa9b4b02f6ee6dbbc1c0819c877..4d8a2b91d2fd503bcfda774b947259fcbab50b09 100644 GIT binary patch delta 2187 zcmew%I6=t4pox=*iILf$iQ^I*r&gOs+jm|@cE$xw9EVw&IQAPfaqKo|Vr@rAu`Os~ ztuSa}En#A0Flb`Uo#-H2FXlN}aiNu71rrkoLqij*gVqIWRTTlJNpo#9y$$yn=WW|C zH)E#*=R@t8EP|X>n)mYCxMv(pzWaBIuJnpK+)2GBPsOkOkXx}Ydkp z6+z#3{6CssJIw3fT<7$*srcZ8nNr`1{w=PLp7`0+$4GQ96K{Wlwr^wWhTRLc%Rb)V zwPkr~^@**b{h2FPE&uge{Lq6(dq4jydzqr&Gf`LK1CL~vQ8Pd@+UW#YjH zKG)kOl|4Ms;8C)~pIyhP#4WloNp4+I>2rx0IkWj4GFLf%4S5*$BY(ngFB#c;>KyHs z)(b9(->WY=!`kaD+~+mr4sXocolC5~TwD^68X4{&e)9O;lM5CtIeGo<{)Fdur7y2b zlzr)F_a&mw#eUVRS4rELHCe8F-MIC`Jhyv2yR~~Ki%F-fQTGa*o|w9PyK1+z_tEFe za*q5^{K(%sebL!tlWs_MKA6I=Z~p95r45TE3#Uom(5e-Fzq9`2E|(d#e-|+yTFF%P zW93Ud-WyX+x;cO=s&RZkCfBn=VaC4I? z`=LEKU4rMmW>4Ho?v%y}@?Ep2y4z zx6gV!PI1iOIAGgrvTNUzM?#8!ZaGIe7wMJE`?ZHTVr~B%hm|_gs}i(K7%JrUy?FAK zBmdNVx64Kk8XHn?7#b~e`%{u8 zmvsLw&FSLeyzddY3yUt>Y*-=o`I*h$oYu&{ zXZgQ;+P+PHl5{|V$u6OF58vHBK5yQNo~cK7hL#yk(Wsn%@AXZMNKaLrE%)O36V&$3 zWO=>wWrl2jqEoemQOAD!f2McJ)@vCC+)K`#@yz4erp^d{rYHMut!sby@}SCuZ|A=0 zgx~z1CHkYDPxam81}DCr@2jfAw@JNf{n)`~Wa2f0!{G6?87Vij9(}AosVLTvYxp>C z`^v}j`sC~LZ^WDzyri`{v2)*#hk?tMtXH`#_-jUv*YYoVO~s5~J}=96Z8qh4<0#+7 zxp3;PvkLx^G3U&;u?SwdJ;mv{-_bM2rsle26tQ1lAhhQ7|D^hj?kd8c7FnI+KH0oE zt0BhfRa}c7TYjb3&%bd+{@+)n{n?@svtB2~K!B%RV$u_ytJ|h%g!)7++;v>Rd2ec? zf2Zzoi$d)g--KLczs(ZfJF(uyvBvt*q;zkCoR-BNBD2nLP7;r8`)?&Bu-f{Fyg zdM?@3W?rej|DC6cduOLbEm;(s9rE*4(OQeetc}MK-S4k4?C3lZk_UeD3Le@pe;yq7QRc3ral=Gw2PxrtRUsVMP! z+oxp{d^4pcPi1whuY3N4?acS|R8aBC(!|v8U|Q?l+v{R{CW8gzSfC%3QFc?E_qdLb7jS;h5II*JHBpn48z;J`VUVIM1_f7VxI8T=8qRw z^nT$R|2vXvmr3kW<9gHdCSKCHe*fmwf-Sv$PmC9Cykf?B|0kP*dc=(NdwQ2wFvL_( z+v%oSRsUR*?`(98%~Y!kQysaz5?JnVCjZD?r#!VTmRnGMc0r8r?uezaoBv5m^86@E z>CRho+W3jR?t@AHlhxN8xDs;V#Pmpmt7=8_)+@b!@k5=x;OyDOOBY!MS#Yr@?|)GL zDLiqD{hqBK8wCH)GoMyJY1dm3`IAx=26tBfdMz!Y*nP}aCAi$+y<9~)r|Qbx*)ysZ zwQ)$!7i{LL_&oI)^J>%o*4@1S1OHlUp5ZhtVZGM;aqHg;UWac={u6Y~tEq81vxaN+ z)|wU1tiIb_PI%}0ck;S^p{{K^`yO9kHmzu#&;R|xIC&C>i&9~P`}GNH_FYyl3){D+z|%>wKRt$pV`iS=K@Q*flR?QE E0RJf|=>Px# delta 2163 zcmbOr^h40Wpo!xP6C<-h6UQz#POUbNw(q=*?2HSVI99VXaV$4z;#h3Z#F~$gVq4I} znqbhx8pFiMV9>-GI?+M4e&GqZVmlx4OeQ7{hK43qjepx0L~l5=StMpBZ}8iu-i)A& zrk@ngu}8j~x~XQOZQwz!l064qoE;TKj{0n1@lD!SryOp>P~dxnLE`T&+1#_ol20u= z&s%N8{9}tvP}BFsRW7HpB$=;e-AsOW#cTI)6&WJ|C-kW7x0>%JJx;%d2WWovA|*sWe4KC}4C7njM@*-p*ye_SnD zb+LQe%jvK5H>Yqcnz@pxZRzX@?Sj&UpO4MDZC*NWOViI~zh-O_b9!7i*(2)uZutt~ z$g1Eg-((g8} z618K8(xq*mWV@JOEkD6Ef5|SM$5vORAI06^`TAvMiE!`MLg)1Bvzgaae(1QPSk7q9 zu`D@lOZ}O=9kZ4i&W`9Qp3EwCFKK^v;BG;6=cONJoqn>YaK)c4_k(lg8)Os24@z8B zF?^$BWB2vKTMZevgd>|C>BM$j+`E)%m*lfrzDM?kOm5G$lzLyX|I)md{^9mM-lG4u zU!=W+KQi!sySJeI`V!;gEYn>}4K8!JMhP=*x+{32Y4x%{^>TU54@zq030FS&d@WP= z53?Bm=}F!Bwbzx4KOf2Rzh7`deBPYXUvJ*3`D*<=S@z|ug}hO0H@s@57H|HUdj5

e5I{*{&&;sf1RzU*v6sI@id3IXJYt{ru)*75!a`DOyW7S%_HcZr;m$9 zIA5;Me1TcOKvhg7-%aiu(!TYea%|? zJPVH1kyq!>dZimrZm6Fv?Jy`|{(3$=~>z?3$mp z_o~bY_pM@+l~k#8TYqqyrl3o{`h1%Q^_dp2s}rWq`(NY#vSLkRg5bL!d^ZZR9Hd_K zJ?-aWH<~y{^mpU(sbw9T4D1tmSDs0&I<-`5&xFO?>3bx%w^gW4xzKy}=G}dAbw*JI zy*A-i?C)Q@;M|^|dk3v++8ZRz-c0zD zJSjT%x^r<(EC2gVvX+lU0_#sa-N@*(;Xze6>mGfzHHRe~ z)!u2pYkJMb$1Msaz93xbws79nl`Ba z4A^}mJb;7Y#EPjt%Pu`Gc*md=vEo$L{p*>P?yl(hInB?+M^N#5_Tt0s$#)hQu5%UF?QvCjb}ut7%b(R( zK6=U2vu0nn1pF~mds*H1c#+l{rj*jB2bwzD3$z<%$G!P^RfBb7!;C}*B&+S6vlr7%sf^zI9fWg7K24^0s<%`Dn)GokQe^gS_l4#m4dMfINDY)6_B zS^o%6&ZrelSZ=Ug>g^<(h|aU?ehV3&`|LU8Zoou-|8vawZ7b?O)h`tiddIqS!Od37 z138h~k8rP)?+O1UYk1>APn?U2Ysb{3Y`^|qdE=Eb!?P}6zOBsvg;Omd zV~y_2bG$Q}bd!$QIf;ZvdQa7y5+Glu^Idhusg});Y?^NfeoL0SVBl{&N3^~q#{T(p z(F+RF{%zm{=ST=U`aryX9UXxdGxG3>tCDc}$l|JX1 d$Fhax%DDq6Gh-*RaQryIakPKy)tR7V4FD2-4~hT)