aboutsummaryrefslogtreecommitdiff
path: root/scripts/resource-cert-samples/ISP2.cnf
diff options
context:
space:
mode:
Diffstat (limited to 'scripts/resource-cert-samples/ISP2.cnf')
-rw-r--r--scripts/resource-cert-samples/ISP2.cnf19
1 files changed, 16 insertions, 3 deletions
diff --git a/scripts/resource-cert-samples/ISP2.cnf b/scripts/resource-cert-samples/ISP2.cnf
index ffc02166..befdf77b 100644
--- a/scripts/resource-cert-samples/ISP2.cnf
+++ b/scripts/resource-cert-samples/ISP2.cnf
@@ -13,11 +13,13 @@ name_opt = ca_default
cert_opt = ca_default
default_days = 365
default_crl_days = 30
-default_md = sha1
+default_md = sha256
preserve = no
copy_extensions = copy
policy = ca_policy_anything
unique_subject = no
+x509_extensions = ca_x509_ext
+crl_extensions = crl_x509_ext
[ ca_policy_anything ]
countryName = optional
@@ -34,7 +36,7 @@ surname = optional
default_bits = 2048
encrypt_key = no
distinguished_name = req_dn
-x509_extensions = req_x509_ext
+req_extensions = req_x509_ext
prompt = no
[ req_dn ]
@@ -43,9 +45,20 @@ CN = TEST ENTITY ISP2
[ req_x509_ext ]
basicConstraints = critical,CA:true
subjectKeyIdentifier = hash
-authorityKeyIdentifier = keyid
keyUsage = critical,keyCertSign,cRLSign
subjectInfoAccess = 1.3.6.1.5.5.7.48.5;URI:rsync://wombats-r-us.hactrn.net/ISP2/
authorityInfoAccess = caIssuers;URI:rsync://wombats-r-us.hactrn.net/LIR1.cer
#sbgp-autonomousSysNum = critical,???
sbgp-ipAddrBlock = critical,IPv4:192.0.2.44-192.0.2.100
+
+[ ca_x509_ext ]
+basicConstraints = critical,CA:true
+authorityKeyIdentifier = keyid:always
+keyUsage = critical,keyCertSign,cRLSign
+subjectInfoAccess = 1.3.6.1.5.5.7.48.5;URI:rsync://wombats-r-us.hactrn.net/ISP2/
+authorityInfoAccess = caIssuers;URI:rsync://wombats-r-us.hactrn.net/LIR1.cer
+#sbgp-autonomousSysNum = critical,???
+sbgp-ipAddrBlock = critical,IPv4:192.0.2.44-192.0.2.100
+
+[ crl_x509_ext ]
+authorityKeyIdentifier = keyid:always
generated by cgit v1.2.3 (git 2.25.1) at 2025-05-13 21:34:23 +0000