Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (70)
EC Keys (871)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (3115)
Revoked Certificates (16)
Root CA (85)
RSA Keys (2509)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
OpenSSL CSR File Structure and Components
What is the OpenSSL CSR file structure and components?
✍: FYIcenter.com
By default, CSR (Certificate Signing Request) files generated by the
OpenSSL "req" command follow these rules:
1. CSR files are stored in PEM (Privacy-enhanced mail) format, which uses DER (Distinguished Encoding Rules) standard to serialize data elements into a binary string, then uses Base64 to encode the binary string into a printable character string.
2. CSR data elements follow the "RFC5967 - PKCS #10: Certification Request Syntax Specification, Version 1.7" specification.
The RFC5867, or PKCS#10, specifies that a CSR should have 3 parts:
1. "certificationRequestInfo" - Provides information of the certification request, which contains:
2. "signatureAlgorithm" - Provides what algorithm was used to generate the digital signature of the "certificationRequestInfo".
3. "signature" - Provides the digital signature of the "certificationRequestInfo", signed by the private key of the subject. The signature can be verified by the public key included in the "certificationRequestInfo".
⇒ OpenSSL "req -text" Output and CSR Components
2018-01-19, 3611👍, 1💬
Popular Posts:
How to view certificate details, like who is the subject and who is the issuer, with getacert.com? V...
How to view general information of a root CA certificate in Google Chrome? I want to know when is th...
Certificate Summary: Subject: GeoTrust Primary Certification Authority - G3 Issuer: GeoTrust Primary...
How to use additional DN fields to create CSR for personal certificates? You can set additional DN f...
Certificate Summary: Subject: Entrust Root Certification Authority Issuer: Entrust Root Certificatio...