File: ephemeral_ca.conf

package info (click to toggle)
voms-api-java 3.3.7-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 1,356 kB
  • sloc: java: 7,554; sh: 667; xml: 368; makefile: 5
file content (37 lines) | stat: -rw-r--r-- 1,045 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
 
# SPDX-FileCopyrightText: 2024 Istituto Nazionale di Fisica Nucleare
#
# SPDX-License-Identifier: EUPL-1.2

[ ephemeral_ca ]

dir                    = ${ENV::CA_NAME}
certs                  = $dir/certs
database               = $dir/index.txt
serial                 = $dir/serial
certificate            = $dir/ca.crt
private_key            = $dir/private/ca.key
default_crl_days       = 30
default_md             = sha512

[ ephemeral_ca_cert ]

default_bits           = 2048
default_keyfile        = ${ENV::CA_NAME}/private/ca.key
distinguished_name     = ${ENV::CA_NAME}_dn
prompt                 = no
encrypt_key            = no
default_md             = sha512
x509_extensions        = ${ENV::CA_NAME}_extensions

[ ephemeral_ca_dn ]

C                      = IT
O                      = IGI
CN                     = Ephemeral CA

[ ephemeral_ca_extensions ]

subjectKeyIdentifier   = hash
authorityKeyIdentifier = keyid:always, issuer:always
basicConstraints       = critical, CA:true
keyUsage               = critical, cRLSign, keyCertSign