CoCalc -- alltests.txt

GitHub Repository: freebsd/freebsd-src
Path: blob/main/contrib/bearssl/test/x509/alltests.txt
³⁹⁵⁶⁶ views
1
; Most/all of these test chains use the same structure:
2
;    root -> ica1 -> ica2 -> ee
3
; "ica1" is "Intermediate CA 1"
4
; "ee" is "end-entity", i.e. the client or server certificate itself
5
;
6
; In SSL/TLS order, the EE comes first. The root may or may not be included
7
; as a self-signed certificate.
8

9
[key]
10
name = root-rsa2048
11
type = RSA
12
n = B6D934D450FDB3AF7A73F1CE38BF5D6F45E1FD4EB198C6608326D217D1C5B79AA3C1DE6339979CF05E5CC81C17B988196DF0B62E3050A1546E93C0DBCF30CB9F1E2779F1C3995235AA3DB6DFB0AD7CCB49CDC0EDE766102AE9CE281F2150FA774C2DDAEF3C58EB4EBFCEE9FB1ADAA383A3CDA3CA9380DCDAF317CC7AAB33809CB2D47F463FC53CDC6194B727296E2ABC5B0936D4C63B0DEBBECEDB1D1CBC106A7171B3F2CA289A77F28AEC42EFB14A8EE2F21A322ACDC0A6462C9AC28537917F46A19381A17466DFBAB339209193FA1DA1A885E7E4F907F610F6A82701B67F12C340C3C9E2B0AB49183A64B659B795B59636DF2269AA726A544E2729A30E9715
13
e = 010001
14

15
[key]
16
name = root-p256
17
type = EC
18
curve = P-256
19
q = 047174BAABB9302E81D5E557F9F320680C9CF964DBB4200D6DEA40D04A6E42FDB69A682544F6DF7BC4FCDEDD7BBBC5DB7C763F4166406EDBA787C2E5D8C5F37F8D
20

21
[key]
22
name = root-p384
23
type = EC
24
curve = P-384
25
q = 040ED28B3F7F0A38A6DB72CB4DAC8198C3D595BFABEE2E4A3CC6797F1A272C57AD715F96B5FDA29C4DD87B75B1438B6A92C4FD0282A3080A857F28AB31FF8B49F805470A01EE551F7F27C914E7E780AE474558D6F5539BAE806626514FE560478B
26

27
[key]
28
name = root-p521
29
type = EC
30
curve = P-521
31
q = 040168E669615D1B20F2E753D2C86312F51094D3E5C6CF49E8D73418278CD769FE40A84AD4F34865D59D94D5685B389E0CFD0450754CAE81ED1D4A91D0773F7A002ED701DEF2DBDEFC7554E74CD600693DBDE1A7E09CD9044774C744C7CE575BF8B645FF79FCCE06116F61D44FDAE62D3046F4EB41DECB8219B279A5B8CE2A47F3DF0D463B
32

33
[key]
34
name = root-new
35
type = EC
36
curve = P-256
37
q = 0465D02336D3ACEB9A000B33A6EECA9745EFD72A0F7C0B138FAAA564E705A3269A479BB5A041DC1D244EA1D2BB9639C79187D3D63CEF79EDD1DC65E80027E75997
38

39
[key]
40
name = ica1-rsa2048
41
type = RSA
42
n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
43
e = 010001
44

45
[key]
46
name = ica2-rsa2048
47
type = RSA
48
n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
49
e = 010001
50

51
[key]
52
name = ee-rsa2048
53
type = RSA
54
n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
55
e = 010001
56

57
[key]
58
name = ee-p256
59
type = EC
60
curve = P-256
61
q = 045F389DA7FF4D8AAFF63439461AFC3ADFF423AAA9EAFBC508DE008EBE79A537584C6DDD01CAAB47DF89B6C7171F38FC1D2014DD45C0E08F934E380BFCE999A149
62

63
[key]
64
name = ee-p384
65
type = EC
66
curve = P-384
67
q = 0415A488877F3D14830E29A1C2F2C0745CE8CF5E684304D1668972389BA615B34E9648D5A7861E49DFFFBFFFEAD7FC6AF11BC4516C3557332DD86DDFDE2A236CCEA844EBD594CCD3ED5B7AE0061BD6595737B59FE754BCDAB6FE38D34D93DBBF30
68

69
[key]
70
name = ee-p521
71
type = EC
72
curve = P-521
73
q = 040060547ACA9D520FB3272833236CBF8E71AC286A3001FBB1E2C3FD8BAB0817DDE4E4FA53550F120D678F4D55AE4FF36C7C8EAE9E32A08A44FC66F45331E08946077A0139B87FE54B986012A94838C8006034941CD0512E596436D2E8E61CA93585D5C06EAD5094585B5B2A3E013803B3E6AAA1D4156EF09E8352029BB70AC6BF338F918B
74

75
; Trust anchor: the root.
76
[anchor]
77
name = root
78
DN_file = dn-root.der
79
key = root-rsa2048
80
type = CA
81

82
; Trust anchor: root with an ECDSA key (in P-256 curve)
83
[anchor]
84
name = root-p256
85
DN_file = dn-root.der
86
key = root-p256
87
type = CA
88

89
; Trust anchor: root with an ECDSA key (in P-384 curve)
90
[anchor]
91
name = root-p384
92
DN_file = dn-root.der
93
key = root-p384
94
type = CA
95

96
; Trust anchor: root with an ECDSA key (in P-521 curve)
97
[anchor]
98
name = root-p521
99
DN_file = dn-root.der
100
key = root-p521
101
type = CA
102

103
; Trust anchor: another root with an ECDSA key (in P-256 curve)
104
[anchor]
105
name = root-new
106
DN_file = dn-root-new.der
107
key = root-new
108
type = CA
109

110
; Intermediate CA 1 as trust anchor.
111
[anchor]
112
name = ica1
113
DN_file = dn-ica1.der
114
key = ica1-rsa2048
115
type = CA
116

117
; Intermediate CA 2 as trust anchor.
118
[anchor]
119
name = ica2
120
DN_file = dn-ica2.der
121
key = ica2-rsa2048
122
type = CA
123

124
; EE certificate as trust anchor (direct trust only).
125
[anchor]
126
name = ee
127
DN_file = dn-ee.der
128
key = ee-rsa2048
129
type = EE
130

131
; Base valid chain.
132
[chain]
133
name = base
134
anchors = root
135
chain = ee.crt ica2.crt ica1.crt
136
servername = www.example.com
137
keytype = RSA
138
keyusage = KEYX
139
eekey = ee-rsa2048
140
status = 0
141

142
; Valid chain except that no trust anchor is provided; this should fail
143
; with BR_ERR_X509_NOT_TRUSTED.
144
[chain]
145
name = noTA
146
anchors = 
147
chain = ee.crt ica2.crt ica1.crt
148
servername = www.example.com
149
keytype = RSA
150
keyusage = KEYX
151
status = 62
152

153
; Use of intermediate CA 1 as anchor (extra certificates are ignored).
154
[chain]
155
name = anchorICA1
156
anchors = ica1
157
chain = ee.crt ica2.crt junk.crt junk.crt
158
servername = www.example.com
159
keytype = RSA
160
keyusage = KEYX
161
eekey = ee-rsa2048
162
status = 0
163

164
; Use of intermediate CA 2 as anchor (extra certificates are ignored).
165
[chain]
166
name = anchorICA2
167
anchors = ica2
168
chain = ee.crt junk.crt junk.crt
169
servername = www.example.com
170
keytype = RSA
171
keyusage = KEYX
172
eekey = ee-rsa2048
173
status = 0
174

175
; Direct trust of EE.
176
[chain]
177
name = directTrust
178
anchors = ee
179
chain = ee.crt junk.crt junk.crt
180
servername = www.example.com
181
keytype = RSA
182
keyusage = KEYX
183
eekey = ee-rsa2048
184
status = 0
185

186
; Server name check: name does not match the SAN nor the CN.
187
[chain]
188
name = wrongName1
189
anchors = root
190
chain = ee.crt ica2.crt ica1.crt
191
servername = foo.example.com
192
keytype = RSA
193
keyusage = KEYX
194
status = 56
195

196
; Server name check: name matches the CN but not the SAN, and there is
197
; a SAN so the CN is ignored.
198
[chain]
199
name = wrongName2
200
anchors = root
201
chain = ee-names.crt ica2.crt ica1.crt
202
servername = www.example.com
203
keytype = RSA
204
keyusage = KEYX
205
status = 56
206

207
; Server name check: name does not match CN, but matches the first SAN
208
; name.
209
[chain]
210
name = goodName1
211
anchors = root
212
chain = ee-names.crt ica2.crt ica1.crt
213
servername = foo.example.com
214
keytype = RSA
215
keyusage = KEYX
216
eekey = ee-rsa2048
217
status = 0
218

219
; Server name check: name does not match CN, but matches the second SAN
220
; name.
221
[chain]
222
name = goodName2
223
anchors = root
224
chain = ee-names.crt ica2.crt ica1.crt
225
servername = barqux.example.com
226
keytype = RSA
227
keyusage = KEYX
228
eekey = ee-rsa2048
229
status = 0
230

231
; Server name check: no SAN, but the CN matches the server name.
232
[chain]
233
name = goodName3
234
anchors = root
235
chain = ee-names2.crt ica2.crt ica1.crt
236
servername = www.example.com
237
keytype = RSA
238
keyusage = KEYX
239
eekey = ee-rsa2048
240
status = 0
241

242
; Server name check: no SAN, and the CN does not match the server name.
243
[chain]
244
name = wrongName3
245
anchors = root
246
chain = ee-names2.crt ica2.crt ica1.crt
247
servername = foo.example.com
248
keytype = RSA
249
keyusage = KEYX
250
status = 56
251

252
; Server name check: no SAN, and the CN does not match the server name,
253
; although its byte contents seem to match (but with BMPString encoding).
254
[chain]
255
name = wrongName4
256
anchors = root
257
chain = ee-names3.crt ica2.crt ica1.crt
258
servername = www1.example.com
259
keytype = RSA
260
keyusage = KEYX
261
status = 56
262

263
; Server name check: no SAN, and the CN uses BMPString encoding, but we
264
; do not actually request a server name check, so this should pass.
265
[chain]
266
name = ignoreName1
267
anchors = root
268
chain = ee-names3.crt ica2.crt ica1.crt
269
keytype = RSA
270
keyusage = KEYX
271
eekey = ee-rsa2048
272
status = 0
273

274
; Wildcard processing: the name 'localhost' should not match because
275
; the engine recognises the wildcard only in a '*.' starting sequence,
276
; so the lone '*' in a SAN will not be accepted.
277
[chain]
278
name = wildcard1
279
anchors = root
280
chain = ee-names4.crt ica2.crt ica1.crt
281
servername = localhost
282
keytype = RSA
283
keyusage = KEYX
284
status = 56
285

286
; Wildcard processing: the name 'example.com' will be matched by '*.com'.
287
[chain]
288
name = wildcard2
289
anchors = root
290
chain = ee-names4.crt ica2.crt ica1.crt
291
servername = example.com
292
keytype = RSA
293
keyusage = KEYX
294
eekey = ee-rsa2048
295
status = 0
296

297
; Wildcard processing: the name 'www.example.com' will be matched by
298
; '*.example.com'.
299
[chain]
300
name = wildcard3
301
anchors = root
302
chain = ee-names4.crt ica2.crt ica1.crt
303
servername = www.example.com
304
keytype = RSA
305
keyusage = KEYX
306
eekey = ee-rsa2048
307
status = 0
308

309
; Wildcard processing: the name 'foo.foo.example.com' will not be matched by
310
; 'foo.*.example.com' because we accept the wildcard only in the first name
311
; component.
312
[chain]
313
name = wildcard4
314
anchors = root
315
chain = ee-names4.crt ica2.crt ica1.crt
316
servername = foo.foo.example.com
317
keytype = RSA
318
keyusage = KEYX
319
status = 56
320

321
; Wildcard processing: the name 'foo.bar.example.com' will not be matched by
322
; 'foo.*.example.com', but '*.bar.example.com' will fit.
323
[chain]
324
name = wildcard5
325
anchors = root
326
chain = ee-names4.crt ica2.crt ica1.crt
327
servername = foo.bar.example.com
328
keytype = RSA
329
keyusage = KEYX
330
eekey = ee-rsa2048
331
status = 0
332

333
; Wildcard processing: the name 'foo.bar.example.foobar' will not be matched by
334
; '*.*.example.foobar' because we support only a single level of wildcard.
335
[chain]
336
name = wildcard6
337
anchors = root
338
chain = ee-names4.crt ica2.crt ica1.crt
339
servername = foo.bar.example.foobar
340
keytype = RSA
341
keyusage = KEYX
342
status = 56
343

344
; Wildcard processing: the name 'foo.*.example.foobar' will be matched
345
; by '*.*.example.foobar' because the '*' in the provided server name matches
346
; the second '*' in '*.*.example.foobar'. This is a corner case with no
347
; practical impact because expected server names are usually extracted from
348
; URL and cannot have embedded '*' in them.
349
[chain]
350
name = wildcard7
351
anchors = root
352
chain = ee-names4.crt ica2.crt ica1.crt
353
servername = foo.*.example.com
354
keytype = RSA
355
keyusage = KEYX
356
eekey = ee-rsa2048
357
status = 0
358

359
; Hash function support: the chain uses only SHA-256.
360
[chain]
361
name = hashSHA256Only
362
anchors = root
363
chain = ee.crt ica2.crt ica1.crt
364
servername = www.example.com
365
keytype = RSA
366
keyusage = KEYX
367
hashes = sha256
368
eekey = ee-rsa2048
369
status = 0
370

371
; Hash function support: the chain uses only SHA-256.
372
[chain]
373
name = hashSHA256Unsupported
374
anchors = root
375
chain = ee.crt ica2.crt ica1.crt
376
servername = www.example.com
377
keytype = RSA
378
keyusage = KEYX
379
hashes = md5 sha1 sha224 sha384 sha512
380
status = 49
381

382
; Hash function support: signature on EE uses SHA-1.
383
[chain]
384
name = hashSHA1
385
anchors = root
386
chain = ee-sha1.crt ica2.crt ica1.crt
387
servername = www.example.com
388
keytype = RSA
389
keyusage = KEYX
390
eekey = ee-rsa2048
391
status = 0
392

393
; Hash function support: signature on EE uses SHA-224.
394
[chain]
395
name = hashSHA224
396
anchors = root
397
chain = ee-sha224.crt ica2.crt ica1.crt
398
servername = www.example.com
399
keytype = RSA
400
keyusage = KEYX
401
eekey = ee-rsa2048
402
status = 0
403

404
; Hash function support: signature on EE uses SHA-384.
405
[chain]
406
name = hashSHA384
407
anchors = root
408
chain = ee-sha384.crt ica2.crt ica1.crt
409
servername = www.example.com
410
keytype = RSA
411
keyusage = KEYX
412
eekey = ee-rsa2048
413
status = 0
414

415
; Hash function support: signature on EE uses SHA-512.
416
[chain]
417
name = hashSHA512
418
anchors = root
419
chain = ee-sha512.crt ica2.crt ica1.crt
420
servername = www.example.com
421
keytype = RSA
422
keyusage = KEYX
423
eekey = ee-rsa2048
424
status = 0
425

426
; Hash function support: signature on EE uses MD5. This is rejected by
427
; the engine (even though MD5 is supported as a hash function).
428
[chain]
429
name = hashMD5
430
anchors = root
431
chain = ee-md5.crt ica2.crt ica1.crt
432
servername = www.example.com
433
keytype = RSA
434
keyusage = KEYX
435
status = 49
436

437
; EE certificate has trailing garbage (an extra byte), which should be
438
; rejected.
439
[chain]
440
name = trailingGarbage
441
anchors = root
442
chain = ee-trailing.crt ica2.crt ica1.crt
443
servername = www.example.com
444
keytype = RSA
445
keyusage = KEYX
446
status = 40
447

448
; Signature on EE certificate is incorrect (one byte modified in signature).
449
[chain]
450
name = badSignature1
451
anchors = root
452
chain = ee-badsig1.crt ica2.crt ica1.crt
453
servername = www.example.com
454
keytype = RSA
455
keyusage = KEYX
456
status = 52
457

458
; Signature on EE certificate is incorrect (one byte modified in serial
459
; number).
460
[chain]
461
name = badSignature2
462
anchors = root
463
chain = ee-badsig2.crt ica2.crt ica1.crt
464
servername = www.example.com
465
keytype = RSA
466
keyusage = KEYX
467
status = 52
468

469
; Signature on EE certificate is incorrect but this is ignored because we
470
; use a direct trust model here.
471
[chain]
472
name = ignoredSignature1
473
anchors = ee
474
chain = ee-badsig1.crt ica2.crt ica1.crt
475
servername = www.example.com
476
keytype = RSA
477
keyusage = KEYX
478
eekey = ee-rsa2048
479
status = 0
480

481
; Signature on EE certificate is incorrect but this is ignored because we
482
; use a direct trust model here.
483
[chain]
484
name = ignoredSignature2
485
anchors = ee
486
chain = ee-badsig2.crt ica2.crt ica1.crt
487
servername = www.example.com
488
keytype = RSA
489
keyusage = KEYX
490
eekey = ee-rsa2048
491
status = 0
492

493
; Intermediate CA 1 has a 1016-bit RSA key, which should be rejected
494
; with BR_ERR_X509_WEAK_PUBLIC_KEY.
495
[chain]
496
name = rsa1016
497
anchors = root
498
chain = ee.crt ica2-1016.crt ica1-1016.crt
499
servername = www.example.com
500
keytype = RSA
501
keyusage = KEYX
502
status = 60
503

504
; Intermediate CA 1 has a 1017-bit RSA key, which should be accepted
505
; (because that's 128 bytes, which is the lower limit).
506
[chain]
507
name = rsa1017
508
anchors = root
509
chain = ee.crt ica2-1017.crt ica1-1017.crt
510
servername = www.example.com
511
keytype = RSA
512
keyusage = KEYX
513
eekey = ee-rsa2048
514
status = 0
515

516
; Intermediate CA 1 has a 4096-bit RSA key, which should be supported.
517
[chain]
518
name = rsa4096
519
anchors = root
520
chain = ee.crt ica2-4096.crt ica1-4096.crt
521
servername = www.example.com
522
keytype = RSA
523
keyusage = KEYX
524
eekey = ee-rsa2048
525
status = 0
526

527
; EE is valid from 2010/02/17 11:40:35 to 2098/07/20 15:11:08. The
528
; start date is in UTCTime, the end date is in GeneralizedTime.
529
[chain]
530
name = date1
531
anchors = ica2
532
chain = ee-dates.crt ica2.crt ica1.crt
533
time = 2010-02-17 11:40:34Z
534
servername = www.example.com
535
keytype = RSA
536
keyusage = KEYX
537
status = 54
538

539
; EE is valid from 2010/02/17 11:40:35 to 2098/07/20 15:11:08. The
540
; start date is in UTCTime, the end date is in GeneralizedTime.
541
[chain]
542
name = date2
543
anchors = ica2
544
chain = ee-dates.crt ica2.crt ica1.crt
545
time = 2010-02-17 11:40:36Z
546
servername = www.example.com
547
keytype = RSA
548
keyusage = KEYX
549
eekey = ee-rsa2048
550
status = 0
551

552
; EE is valid from 2010/02/17 11:40:35 to 2098/07/20 15:11:08. The
553
; start date is in UTCTime, the end date is in GeneralizedTime.
554
[chain]
555
name = date3
556
anchors = ica2
557
chain = ee-dates.crt ica2.crt ica1.crt
558
time = 2098-07-20 15:11:07Z
559
servername = www.example.com
560
keytype = RSA
561
keyusage = KEYX
562
eekey = ee-rsa2048
563
status = 0
564

565
; EE is valid from 2010/02/17 11:40:35 to 2098/07/20 15:11:08. The
566
; start date is in UTCTime, the end date is in GeneralizedTime.
567
[chain]
568
name = date4
569
anchors = ica2
570
chain = ee-dates.crt ica2.crt ica1.crt
571
time = 2098-07-20 15:11:09Z
572
servername = www.example.com
573
keytype = RSA
574
keyusage = KEYX
575
status = 54
576

577
; Intermediate CA 2 certificate is not a CA.
578
[chain]
579
name = notCA
580
anchors = root
581
chain = ee-dates.crt ica2-notCA.crt ica1.crt
582
servername = www.example.com
583
keytype = RSA
584
keyusage = KEYX
585
status = 58
586

587
; A chain using ECDSA with P-256.
588
[chain]
589
name = secp256r1
590
anchors = root-p256
591
chain = ee-p256.crt ica2-p256.crt ica1-p256.crt
592
servername = www.example.com
593
keytype = EC
594
keyusage = SIGN
595
eekey = ee-p256
596
status = 0
597

598
; A chain using ECDSA with P-384.
599
[chain]
600
name = secp384r1
601
anchors = root-p384
602
chain = ee-p384.crt ica2-p384.crt ica1-p384.crt
603
servername = www.example.com
604
keytype = EC
605
keyusage = SIGN
606
eekey = ee-p384
607
status = 0
608

609
; A chain using ECDSA with P-521.
610
[chain]
611
name = secp521r1
612
anchors = root-p521
613
chain = ee-p521.crt ica2-p521.crt ica1-p521.crt
614
servername = www.example.com
615
keytype = EC
616
keyusage = SIGN
617
eekey = ee-p521
618
status = 0
619

620
; A chain using ECDSA with P-256, signature on EE uses SHA-1.
621
[chain]
622
name = secp256r1-sha1
623
anchors = root-p256
624
chain = ee-p256-sha1.crt ica2-p256.crt ica1-p256.crt
625
servername = www.example.com
626
keytype = EC
627
keyusage = SIGN
628
eekey = ee-p256
629
status = 0
630

631
; A chain using ECDSA with P-256, signature on EE uses SHA-224.
632
[chain]
633
name = secp256r1-sha224
634
anchors = root-p256
635
chain = ee-p256-sha224.crt ica2-p256.crt ica1-p256.crt
636
servername = www.example.com
637
keytype = EC
638
keyusage = SIGN
639
eekey = ee-p256
640
status = 0
641

642
; A chain using ECDSA with P-256, signature on EE uses SHA-256.
643
[chain]
644
name = secp256r1-sha256
645
anchors = root-p256
646
chain = ee-p256-sha256.crt ica2-p256.crt ica1-p256.crt
647
servername = www.example.com
648
keytype = EC
649
keyusage = SIGN
650
eekey = ee-p256
651
status = 0
652

653
; A chain using ECDSA with P-256, signature on EE uses SHA-384.
654
[chain]
655
name = secp256r1-sha384
656
anchors = root-p256
657
chain = ee-p256-sha384.crt ica2-p256.crt ica1-p256.crt
658
servername = www.example.com
659
keytype = EC
660
keyusage = SIGN
661
eekey = ee-p256
662
status = 0
663

664
; A chain using ECDSA with P-256, signature on EE uses SHA-512.
665
[chain]
666
name = secp256r1-sha512
667
anchors = root-p256
668
chain = ee-p256-sha512.crt ica2-p256.crt ica1-p256.crt
669
servername = www.example.com
670
keytype = EC
671
keyusage = SIGN
672
eekey = ee-p256
673
status = 0
674

675
; EE certificate has a Certificate Policies extension, but it is not
676
; critical.
677
[chain]
678
name = certpol-noncrit
679
anchors = root-new
680
chain = ee-cp1.crt
681
servername = www.example.com
682
keytype = RSA
683
keyusage = KEYX
684
eekey = ee-rsa2048
685
status = 0
686

687
; EE certificate has a critical Certificate Policies extension, but it
688
; contains no policy qualifier.
689
[chain]
690
name = certpol-noqual
691
anchors = root-new
692
chain = ee-cp2.crt
693
servername = www.example.com
694
keytype = RSA
695
keyusage = KEYX
696
eekey = ee-rsa2048
697
status = 0
698

699
; EE certificate has a critical Certificate Policies extension, and it
700
; contains some qualifiers, but they are all id-qt-cps.
701
[chain]
702
name = certpol-qualcps
703
anchors = root-new
704
chain = ee-cp3.crt
705
servername = www.example.com
706
keytype = RSA
707
keyusage = KEYX
708
eekey = ee-rsa2048
709
status = 0
710

711
; EE certificate has a critical Certificate Policies extension, and it
712
; contains a qualifier distinct from id-qt-cps. This implies rejection
713
; of the path.
714
[chain]
715
name = certpol-qualother
716
anchors = root-new
717
chain = ee-cp4.crt
718
servername = www.example.com
719
keytype = RSA
720
keyusage = KEYX
721
eekey = ee-rsa2048
722
status = 57
723

724
Product

Resources

Company
