1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
[ ca ]
default_ca = CA_default
[ CA_default ]
dir = ${ENV::CA_DIR}
database = $dir/index.txt
new_certs_dir = $dir/new_certs
certificate = $dir/test-root-CA.pem
serial = $dir/serial
private_key = $dir/test-root-CA-key.pem
default_days = 365
default_crl_days = 30
default_md = sha256
policy = policy_any
name_opt = ca_default
cert_opt = ca_default
copy_extensions = copy
[ usr_cert ]
authorityKeyIdentifier = keyid, issuer
[ v3_ca ]
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid:always,issuer:always
basicConstraints = CA:true
keyUsage = critical, digitalSignature, keyCertSign
[ policy_any ]
[ req ]
distinguished_name = req_distinguished_name
prompt = no
[ req_distinguished_name ]
CN = Root CA
|
