forked from chromium/chromium
-
Notifications
You must be signed in to change notification settings - Fork 0
/
ocsp_sign_direct.pem
142 lines (137 loc) · 6.71 KB
/
ocsp_sign_direct.pem
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
Signed directly by the issuer
$ openssl ocsp -resp_text -respin <([OCSP RESPONSE])
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: CN = Test CA
Produced At: Mar 2 00:00:00 2017 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 02FF75DA24DE8ADD150FAB689DCCE6E6636D0901
Issuer Key Hash: 84E1BA52A25C543CA972491224BC8B1ECA8B9FF4
Serial Number: 03
Cert Status: good
This Update: Mar 1 00:00:00 2017 GMT
Signature Algorithm: sha1WithRSAEncryption
0e:82:91:8d:92:af:45:cb:98:e8:0e:08:04:15:97:9a:3a:cf:
cc:72:ee:cd:b7:3e:b0:40:b5:fd:8d:7d:6c:2f:4a:a6:32:9e:
37:3b:7f:d3:ef:89:9e:8d:34:c2:45:1b:9b:99:4d:ed:e3:9a:
94:62:17:59:4b:3a:be:f8:c0:a7:98:bd:e0:69:8f:98:47:e9:
76:25:d3:1f:94:53:d7:c2:db:56:a2:aa:e3:6b:19:38:97:33:
a7:b6:45:6e:52:69:2c:62:6e:98:b6:d8:75:00:0c:16:c9:8b:
84:41:f4:99:3e:a9:0c:a7:d4:98:51:45:89:4c:e2:c2:8e:5b:
e8:26
-----BEGIN OCSP RESPONSE-----
MIIBKwoBAKCCASQwggEgBgkrBgEFBQcwAQEEggERMIIBDTB4oRQwEjEQMA4GA1UEAxMHVGVzdCB
DQRgPMjAxNzAzMDIwMDAwMDBaME8wTTA4MAcGBSsOAwIaBBQC/3XaJN6K3RUPq2idzObmY20JAQ
QUhOG6UqJcVDypckkSJLyLHsqLn/QCAQOAABgPMjAxNzAzMDEwMDAwMDBaMA0GCSqGSIb3DQEBB
QUAA4GBAA6CkY2Sr0XLmOgOCAQVl5o6z8xy7s23PrBAtf2NfWwvSqYynjc7f9PviZ6NNMJFG5uZ
Te3jmpRiF1lLOr74wKeYveBpj5hH6XYl0x+UU9fC21aiquNrGTiXM6e2RW5SaSxibpi22HUADBb
Ji4RB9Jk+qQyn1JhRRYlM4sKOW+gm
-----END OCSP RESPONSE-----
$ openssl x509 -text < [CA CERTIFICATE]
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 0 (0x0)
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=Test CA
Validity
Not Before: Jan 1 00:00:00 2017 GMT
Not After : Jan 1 00:00:00 2018 GMT
Subject: CN=Test CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:b8:25:2b:ee:59:9a:9d:bc:b4:48:ae:09:ce:0d:
ba:c5:83:57:03:92:fd:52:32:55:f5:e4:2e:a6:cf:
9e:4b:c4:10:af:24:da:d5:dd:44:a8:d6:28:38:9c:
a5:11:c9:0b:70:a1:b5:71:cf:a4:35:c2:6a:17:b1:
b5:c7:cf:74:83:ac:7a:d5:3b:12:66:74:f2:4b:15:
b0:c2:59:af:0c:78:2c:42:3c:3f:8b:83:b3:1d:9a:
c8:bc:ce:b0:c8:f2:1a:a8:0a:1c:bb:6e:6e:d4:c6:
10:66:3c:a8:ec:e3:c4:63:40:f6:79:ec:8b:14:ff:
85:9e:2d:1a:e7:e8:31:56:81
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
35:fe:ee:96:31:c7:3d:91:eb:22:53:1f:bf:cc:20:cc:aa:f4:
04:92:3c:8b:50:06:ea:a1:cc:b7:c2:4a:d6:02:af:53:a7:a4:
71:81:78:bc:95:f3:2d:46:c4:83:4c:d5:92:11:7c:c7:67:d3:
47:f6:06:9f:1c:46:da:d6:20:72:47:c2:57:d7:fb:66:d3:35:
82:07:61:13:4e:4d:e6:0c:93:e6:f3:be:98:ff:e8:de:60:a7:
06:94:cd:bb:f5:6e:b3:4e:0b:d6:e9:2b:72:bd:6e:ae:86:23:
2d:44:33:c4:3b:a7:52:12:46:d2:76:95:06:3e:69:0f:72:60:
16:d6
-----BEGIN CA CERTIFICATE-----
MIIBnDCCAQWgAwIBAgIBADANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMCIYDzI
wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMBIxEDAOBgNVBAMTB1Rlc3QgQ0EwgZ8wDQ
YJKoZIhvcNAQEBBQADgY0AMIGJAoGBALglK+5Zmp28tEiuCc4NusWDVwOS/VIyVfXkLqbPnkvEE
K8k2tXdRKjWKDicpRHJC3ChtXHPpDXCahextcfPdIOsetU7EmZ08ksVsMJZrwx4LEI8P4uDsx2a
yLzOsMjyGqgKHLtubtTGEGY8qOzjxGNA9nnsixT/hZ4tGufoMVaBAgMBAAEwDQYJKoZIhvcNAQE
FBQADgYEANf7uljHHPZHrIlMfv8wgzKr0BJI8i1AG6qHMt8JK1gKvU6ekcYF4vJXzLUbEg0zVkh
F8x2fTR/YGnxxG2tYgckfCV9f7ZtM1ggdhE05N5gyT5vO+mP/o3mCnBpTNu/Vus04L1ukrcr1ur
oYjLUQzxDunUhJG0naVBj5pD3JgFtY=
-----END CA CERTIFICATE-----
$ openssl x509 -text < [CERTIFICATE]
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=Test CA
Validity
Not Before: Jan 1 00:00:00 2017 GMT
Not After : Jan 1 00:00:00 2018 GMT
Subject: CN=Test Cert
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (1024 bit)
Modulus:
00:d5:12:3f:22:6f:b0:e1:43:c5:93:b3:c3:5b:70:
52:b2:8b:10:ec:11:c4:c4:aa:aa:43:92:c8:d0:f3:
35:23:e3:76:2d:b4:ea:93:26:6f:6a:79:1c:64:51:
d3:4d:21:4a:73:83:35:dc:a0:16:74:db:f0:b9:a5:
46:35:8d:53:e8:7d:37:5b:4d:ad:a3:df:d6:ae:01:
38:ad:16:09:6e:fd:65:ad:1c:4b:48:12:1e:48:a7:
ff:5b:47:c4:c9:3b:74:85:63:1a:0a:06:b2:9f:b9:
cb:ad:dc:3f:24:8b:a4:a7:8a:13:15:45:89:24:c1:
a7:3b:c2:a2:c8:74:f1:3f:6f
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
04:21:70:de:14:92:27:13:e8:d2:b0:51:f0:af:34:75:0b:a7:
ff:84:cb:c6:96:30:80:01:f5:c1:3a:c6:81:ee:ba:89:60:33:
c3:e5:0f:43:cc:ac:81:8d:09:fb:25:e1:67:40:64:a3:ca:fd:
bd:9c:c4:73:e4:bc:4d:8e:e2:70:f1:17:ce:b4:ab:a0:b2:63:
72:25:27:ae:d5:8e:18:73:0d:dc:12:5a:32:1c:b7:da:cd:23:
5b:c8:87:58:08:3e:95:0c:fd:c8:48:a2:75:6e:79:f2:00:82:
6e:b5:cc:71:e3:79:ca:68:85:9b:1b:5c:52:bf:a2:5a:71:e3:
05:b5
-----BEGIN CERTIFICATE-----
MIIBnjCCAQegAwIBAgIBAzANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMCIYDzI
wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMBQxEjAQBgNVBAMTCVRlc3QgQ2VydDCBnz
ANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA1RI/Im+w4UPFk7PDW3BSsosQ7BHExKqqQ5LI0PM1I
+N2LbTqkyZvankcZFHTTSFKc4M13KAWdNvwuaVGNY1T6H03W02to9/WrgE4rRYJbv1lrRxLSBIe
SKf/W0fEyTt0hWMaCgayn7nLrdw/JIukp4oTFUWJJMGnO8KiyHTxP28CAwEAATANBgkqhkiG9w0
BAQUFAAOBgQAEIXDeFJInE+jSsFHwrzR1C6f/hMvGljCAAfXBOsaB7rqJYDPD5Q9DzKyBjQn7Je
FnQGSjyv29nMRz5LxNjuJw8RfOtKugsmNyJSeu1Y4Ycw3cEloyHLfazSNbyIdYCD6VDP3ISKJ1b
nnyAIJutcxx43nKaIWbG1xSv6JaceMFtQ==
-----END CERTIFICATE-----
$ openssl asn1parse -i < [OCSP REQUEST]
0:d=0 hl=2 l= 66 cons: SEQUENCE
2:d=1 hl=2 l= 64 cons: SEQUENCE
4:d=2 hl=2 l= 62 cons: SEQUENCE
6:d=3 hl=2 l= 60 cons: SEQUENCE
8:d=4 hl=2 l= 58 cons: SEQUENCE
10:d=5 hl=2 l= 9 cons: SEQUENCE
12:d=6 hl=2 l= 5 prim: OBJECT :sha1
19:d=6 hl=2 l= 0 prim: NULL
21:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:02FF75DA24DE8ADD150FAB689DCCE6E6636D0901
43:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:84E1BA52A25C543CA972491224BC8B1ECA8B9FF4
65:d=5 hl=2 l= 1 prim: INTEGER :03
-----BEGIN OCSP REQUEST-----
MEIwQDA+MDwwOjAJBgUrDgMCGgUABBQC/3XaJN6K3RUPq2idzObmY20JAQQUhOG6UqJcVDypckk
SJLyLHsqLn/QCAQM=
-----END OCSP REQUEST-----