Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (71)
EC Keys (2095)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (6025)
Revoked Certificates (16)
Root CA (85)
RSA Keys (4920)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
OpenSSL "ans1parse -genconf" - Configuration File
How to generate a DER file with a configuration file using the OpenSSL "ans1parse" command?
✍: FYIcenter.com
You can use the OpenSSL configuration file to define an ASN.1 structure and
call OpenSSL "ans1parse -genconf config_file" command to generate a DER file
by respecting the following rules:
1. Use "ans1parse -genconf config_file" option in the command line to specify which configuration file to use.
2. Use "ans1" option in the global section in the configuration file to define the ASN.1 structure. For example, the following configuration file will generate a single primitive field DER file:
default_md = md5 asn1 = INTEGER:255 ... [...]
3. Use a dedicate section in the configuration file to define the content of a SEQUENCE field and assign the section to the "asn1" option. The child field of the SEQUENCE is defined using the "name = type:value" format. For example, the following configuration file will generate a DER file of a SEQUENCE ASN.1 structure:
default_md = md5 asn1 = SEQUENCE:questionSection ... [questionSection] trackingNumber = INTEGER:5 questionText = IA5STRING:"Anybody there?" [...]
4. Use multiple sections to define nested SEQUENCE ASN.1 structures For example, the following configuration file will generate a DER file of a nested SEQUENCE ASN.1 structure:
default_md = md5 asn1 = SEQUENCE:questionSection ... [questionSection] trackingNumber = INTEGER:5 questionText = IA5STRING:"In asymmetric encryption, which key can be given out?" answerOption = SEQUENCE:optionSection [optionSection] optionA = IA5STRING:"A) Private key" optionB = IA5STRING:"B) Public key" optionC = IA5STRING:"C) Both keys" [...]
⇒ OpenSSL "ans1parse -genconf" - Nested SEQUENCE ASN.1 Structure
2016-10-15, 8186👍, 0💬
Popular Posts:
Certificate Summary: Subject: DigiCert SHA2 Secure Server CA Issuer: DigiCert Global Root CA Expirat...
Certificate summary - Owner: *.soundcloud.com, Domain Control Validated Issuer: GlobalSign Domain Va...
Certificate Summary: Subject: TC TrustCenter Class 4 CA II Issuer: TC TrustCenter Class 4 CA II Expi...
Certificate summary - Owner: www.paypal.com, Hosting Support, "PayPal, Inc.", STREET=2211 N 1st St, ...
After signing for the Root and Intermediate CA. when i try to sign a server_cert the following error...