123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 |
- [ default ]
- ca_name = _CA_NAME_
- home = .
- default_ca = ca
- name_opt = utf8,esc_ctrl,multiline,lname,align
- [ req ]
- default_bits = 2048
- encrypt_key = yes
- default_md = sha256
- utf8 = yes
- string_mask = utf8only
- prompt = no
- distinguished_name = ca_dn
- req_extensions = ca_ext
- [ ca_dn ]
- countryName = "US"
- stateOrProvinceName = "Wahington"
- organizationName = "Seattle"
- localityName = "WOLFSSL"
- organizationalUnitName = "_CA_DEPART_"
- commonName = "www.wolfssl.com"
- [ ca_ext ]
- keyUsage = critical,keyCertSign,cRLSign,digitalSignature
- basicConstraints = critical,CA:true
- subjectKeyIdentifier = hash
- [ ca ]
- default_ca = _CA_NAME_
- [ _CA_NAME_ ]
- certificate = $home/$ca_name.crt
- private_key = $home/private/$ca_name.key
- new_certs_dir = $home/certs
- database = $home/db/index
- serial = $home/db/serial
- RANDFILE = $home/ca/private/random
- unique_subject = no
- default_days = 3650
- default_md = sha256
- policy = match_pol
- email_in_dn = no
- copy_extensions = copy
- x509_extensions = server_ext
- [ match_pol ]
- countryName = match
- stateOrProvinceName = match
- organizationName = match
- organizationalUnitName = optional
- commonName = supplied
- emailAddress = optional
- [ _CERT_NAME_ ]
- basicConstraints = critical,CA:false
- nsCertType = server
- subjectKeyIdentifier = hash
- keyUsage = critical,digitalSignature,keyEncipherment
- extendedKeyUsage = clientAuth,serverAuth
|