| Server IP : 79.136.114.73 / Your IP : 18.189.186.244 Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64 User : www-data ( 33) PHP Version : 5.5.9-1ubuntu4.29 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /usr/share/doc/libssl-doc/demos/certs/apps/ |
Upload File : |
#!/bin/sh # Recreate the demo certificates in the apps directory. OPENSSL=openssl # Root CA: create certificate directly CN="OpenSSL Test Root CA" $OPENSSL req -config apps.cnf -x509 -nodes \ -keyout root.pem -out root.pem -key rootkey.pem -new -days 3650 # Intermediate CA: request first CN="OpenSSL Test Intermediate CA" $OPENSSL req -config apps.cnf -nodes \ -key intkey.pem -out intreq.pem -new # Sign request: CA extensions $OPENSSL x509 -req -in intreq.pem -CA root.pem -CAkey rootkey.pem -days 3630 \ -extfile apps.cnf -extensions v3_ca -CAcreateserial -out intca.pem # Client certificate: request first CN="Test Client Cert" $OPENSSL req -config apps.cnf -nodes \ -key ckey.pem -out creq.pem -new # Sign using intermediate CA $OPENSSL x509 -req -in creq.pem -CA intca.pem -CAkey intkey.pem -days 3600 \ -extfile apps.cnf -extensions usr_cert -CAcreateserial | \ $OPENSSL x509 -nameopt oneline -subject -issuer >client.pem # Server certificate: request first CN="Test Server Cert" $OPENSSL req -config apps.cnf -nodes \ -key skey.pem -out sreq.pem -new # Sign using intermediate CA $OPENSSL x509 -req -in sreq.pem -CA intca.pem -CAkey intkey.pem -days 3600 \ -extfile apps.cnf -extensions usr_cert -CAcreateserial | \ $OPENSSL x509 -nameopt oneline -subject -issuer >server.pem # Server certificate #2: request first CN="Test Server Cert #2" $OPENSSL req -config apps.cnf -nodes \ -key skey2.pem -out sreq2.pem -new # Sign using intermediate CA $OPENSSL x509 -req -in sreq2.pem -CA intca.pem -CAkey intkey.pem -days 3600 \ -extfile apps.cnf -extensions usr_cert -CAcreateserial | \ $OPENSSL x509 -nameopt oneline -subject -issuer >server2.pem # Append keys to file. cat skey.pem >>server.pem cat skey2.pem >>server2.pem cat ckey.pem >>client.pem $OPENSSL verify -CAfile root.pem -untrusted intca.pem \ server2.pem server.pem client.pem