File: README

package info (click to toggle)
qtbase-opensource-src-gles 5.15.15%2Bdfsg-2
  • links: PTS, VCS
  • area: main
  • in suites: forky, trixie
  • size: 349,396 kB
  • sloc: cpp: 2,089,897; ansic: 336,851; xml: 115,491; python: 9,447; java: 7,499; asm: 4,023; perl: 2,047; sh: 2,033; yacc: 1,687; lex: 1,333; javascript: 878; makefile: 260; objc: 70
file content (9 lines) | stat: -rw-r--r-- 724 bytes parent folder | download | duplicates (12) 
1
2
3
4
5
6
7
8
9
 
openssl verify -CAfile cacert.pem -untrusted test-intermediate-ca-cert.pem test-intermediate-is-ca-cert.pem
openssl verify -CAfile cacert.pem -untrusted test-ocsp-good-cert.pem test-intermediate-not-ca-cert.pem

1. cacert.pem is, obviously, a root CA certificate.
2. test-intermediate-ca-cert.pem is a certificate, signed by the root CA, an intermediate CA.
3. test-intermediate-is-ca-cert.pem is a certificate, signed by test-intermediate-ca-cert.pem.
4. test-ocsp-good-cert.pem is signed by root CA, it has CA:FALSE but keyUsage allowing to sign
   CSRs - this is how OpenSSL would report us 'invalid CA certificate' instead of 'No issuer found'.
5. test-intermediate-not-ca-cert.pem is signed by test-ocsp-good-cert.pem.