##================================================================ | |
##============== Example OpenSSL configuration file ============== | |
##================================================================ | |
# References: | |
# | |
# /etc/ssl/openssl.conf | |
# http://www.openssl.org/docs/apps/config.html | |
# http://www.openssl.org/docs/apps/x509v3_config.html | |
[ ca ] | |
default_ca = my_ca | |
[ my_ca ] | |
certificate = test-ca.crt | |
private_key = test-ca.key | |
database = index | |
serial = serial | |
new_certs_dir = newcerts | |
default_crl_days = 5 | |
default_days = 3653 | |
default_md = sha1 | |
policy = my_policy | |
x509_extensions = v3_usr | |
[ my_policy ] | |
countryName = supplied | |
organizationName = match | |
commonName = supplied | |
[ req ] | |
distinguished_name = my_req_dn | |
x509_extensions = v3_ca | |
prompt = no | |
[ v3_ca ] | |
basicConstraints = CA:TRUE | |
subjectKeyIdentifier = hash | |
authorityKeyIdentifier = keyid:always,issuer:always | |
[ v3_usr ] | |
basicConstraints = CA:FALSE | |
subjectKeyIdentifier = hash | |
authorityKeyIdentifier = keyid,issuer | |
[ my_req_dn ] | |
C=NL | |
O=PolarSSL |