OpenForum RSS: openssl ��

openssl �� (��)

Thu, 28 Mar 2013 07:56:31 GMT

>[�� ]
> �� root_ca.key
> openssl x509 -req -days 1825 -in ca.csr -key root_ca.key -out ca.crt #��
> �� root_ca.key
> #��
> openssl genrsa -des3 -out client.key 4096 #��
> openssl req -new -key ca.key -out client.csr #��
> ��
> openssl x509 -req -days 548 -in pos.csr -key ca.key -out client.crt #��
> �� CA
> �� 1,5 ��

��

openssl �� (��)

Thu, 28 Mar 2013 07:55:49 GMT

�� ?

#�� RootCA

openssl genrsa -des3 -out root_ca.key 4096 #��
openssl req -new -key root_ca.key –out root_ca.csr #��
openssl x509 -req -days 3650 -in root_ca.csr -signkey root_ca.key -out root_ca crt #�� 10 ��

#�� CA

openssl genrsa -des3 -out ca.key 4096 #�� CA
openssl req -new -key root_ca.key -out ca.csr # �� root_ca.key
openssl x509 -req -days 1825 -in ca.csr -key root_ca.key -out ca.crt #�� root_ca.key

#��

openssl genrsa -des3 -out client.key 4096 #��
openssl req -new -key ca.key -out client.csr #��
ope

openssl �� (dmitry_smr)

Tue, 17 Nov 2009 07:53:35 GMT

�� . �� .
�� "openssl ca -extensions v3_ca -policy policy_anything -out certs/casub1.pem -in ../CASub1/requests/casub1req.pem". �� .

openssl �� (mclroy)

Fri, 13 Nov 2009 01:07:29 GMT

��.
�� CA � CASub1

�� Root CA.

[CA]$ openssl req -x509 -new -keyout private/cakey.pem -out cacert.pem
[CA]$ openssl x509 -in cacert.pem -noout -text
Issuer: C=..., CN=ca/...
Subject: C=..., CN=ca/...
X509v3 extensions:
X509v3 Subject Key Identifier:
46:73:83:89:B3:C3:01:15:0D:B6:DF:C4:80:31:91:DF:ED:06:6E:67
X509v3 Authority Key Identifier:
keyid:46:73:83:89:B3:C3:01:15:0D:B6:DF:C4:80:31:91:DF:ED:06:6E:67
X509v3 Basic Constraints:
CA:TRUE

�� CASub1.

[CASub1]$ openssl req -x509 -new -keyout private/cakey.pem -out cacert.pem
[CASub1]$ openssl x509 -in cacert.pem -noout -text
Issuer: C=..., CN=casub1/...
Subject: C=..., CN=casub1/...
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5D:3F:7A:24:62:97:2F:3E:CC:A4:04:D7:CD:C4:45:D2:6B:CD:54
X509v3 Authority Key Identifier:

openssl �� (mclroy)

Thu, 12 Nov 2009 18:38:41 GMT

>�� , �� CASub1 � CASub2, ��
>�� . ��
>�� (CASub1 � CASub2) ��, � �� CA:TRUE

�� CA.
�� CASub1 � CASub2.
�� CA.
�� selfsign � CASub1 � CASub2 ��.
� �� ?

OpenForum RSS: openssl �������� ����������� ������������

openssl �������� ����������� ������������ (�������)

openssl �������� ����������� ������������ (�������)

openssl �������� ����������� ������������ (dmitry_smr)

openssl �������� ����������� ������������ (mclroy)

openssl �������� ����������� ������������ (mclroy)

OpenForum RSS: openssl ��

openssl �� (��)

openssl �� (��)

openssl �� (dmitry_smr)

openssl �� (mclroy)

openssl �� (mclroy)