[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Example certs (Qualified Certificates)
All,
Petra Glöckner has prepared an example certificate implementing the
Qualified Certificate profile <draft-ietf-pkix-qc-00.txt>
Since some object identifiers are yet to be defined, some OID:s are just
temporary.
I you wish I can provide you with the text in word 97 or rtf format. Just
give me a reply and i return the document.
/Stefan
----------------------------------
EXAMPLES
Qualified user certificate
This section contains the ASN.1 structure and an hex dump of a 833 byte
version 3 qualified certificate. The certificate contains the following
information:
1. The serial number is 1
2. The certificate is signed with RSA and the SHA-1 hash algorithm
3. The issuer's distinguished name is O=GMD - Forschungszentrum
Informationstechnik GmbH, C=DE
4. The subject's distinguished name is CN=Petra M. Gloeckner, O=GMD -
Forschungszentrum Informationstechnik GmbH, C=DE
5. The certificate was issued on February 5, 1999 and will expire on
February 5, 2000
6. The certificate contains a 1024 bit RSA key
7. The certificate includes a critical key usage extension exclusively
indicating non-repudiation
8. The certificate includes a certificate policy identifier indicating the
practices and procedures undertaken by the issuing CA (temp. OID 1.3.36.8.9.1)
9. The certificate includes one subject alternative name - a PersonalData
structure (temp. OID 1.3.36.8.8) in the
OtherName subfield containing the following attributes:
Registered by: municipality@seeheim.de
surname: Gloeckner
given name: Petra
date of birth: October, 14th 1971 (temp. OID 1.3.36.8.8.1)
place of birth: Darmstadt (temp. OID 1.3.36.8.8.2)
country of citizenship: DE (temp. OID 1.3.36.8.8.3)
gender: female (temp. OID 1.3.36.8.8.4)
Registered by: gmd-ra@gmd.de, using the attribute semantics defined by the
temp. OID 1.3.36.8.9.2
organization: GMD
role: project manager QC (temp. OID 1.3.36.8.8.5)
ASN.1 Structure:
SEQUENCE length = 829 {
SEQUENCE length = 682 {
[0] (constructed) length = 3 {
INTEGER 2
}
INTEGER 1
SEQUENCE length = 9 {
OBJECT IDENTIFIER 1.3.14.3.2.RSASignatureWithSHA1(29)
NULL
}
SEQUENCE length = 72 {
SET length = 11 {
SEQUENCE length = 9 {
OBJECT IDENTIFIER 2.5.4.countryName(6)
PrintableString "DE"
}
}
SET length = 57 {
SEQUENCE length = 55 {
OBJECT IDENTIFIER 2.5.4.organizationName(10)
PrintableString "GMD - Forschungszentrum
Informationstechnik GmbH"
}
}
}
SEQUENCE length = 30 {
UTCTime "990205172517Z"
UTCTime "000205172517Z"
}
SEQUENCE length = 101 {
SET length = 11 {
SEQUENCE length = 9 {
OBJECT IDENTIFIER 2.5.4.countryName(6)
PrintableString "DE"
}
}
SET length = 57 {
SEQUENCE length = 55 {
OBJECT IDENTIFIER 2.5.4.organizationName(10)
PrintableString "GMD - Forschungszentrum
Informationstechnik GmbH"
}
}
SET length = 27 {
SEQUENCE length = 25 {
OBJECT IDENTIFIER 2.5.4.commonName(3)
PrintableString "Petra M. Gloeckner"
}
}
}
SEQUENCE length = 159 {
SEQUENCE length = 13 {
OBJECT IDENTIFIER 1.2.840.113549.1.1.rsaEncryption(1)
NULL
}
BIT STRING number of bits = 1120 content:
30818902818100ff11a1fb756ea56c94e0a6043b5c123b6aea85b5b4d656c8d85df2791cb4a5
077eb123b1c2d5f070187902d03168739362a59a745154ee909501c7bf2149332d61df5e4fbd
0eed3c6e7df09b9d712a409ed323560dc15954cc83564d440564f11a3b6dff88a5a3aa683681
3982f395564ac80d3dac013febf6bde21fd3e5b19b0203010001
}
[3] (constructed) length = 288 {
SEQUENCE length = 284 {
SEQUENCE length = 14 {
OBJECT IDENTIFIER 2.5.29.keyUsage(15)
BOOLEAN TRUE
OCTET STRING length = 4 content: 03020640
}
SEQUENCE length = 18 {
OBJECT IDENTIFIER 2.5.29.certificatePolicies(32)
OCTET STRING length = 11 content: 3009300706052b24080901
}
SEQUENCE length = 245 {
OBJECT IDENTIFIER 2.5.29.subjectAltName(17)
OCTET STRING length = 237 content:
3081eaa081e706042b240808a081de3081db3081d830818e16176d756e69636970616c697479
407365656865696d2e6465307330120603550404310b1309676c6f65636b6e6572300e060355
042a310713055065747261301a06052b240808013111180f3139373131303134303030303030
5a301406052b24080802310b13094461726d7374616474300d06052b24080803310413024445
300c06052b2408080431031301463045160d676d642d726140676d642e646506052b24080902
302d300c060355040a31051303474d44301d06052b240808053114131270726f6a656374206d
616e61676572205143
}
}
}
}
SEQUENCE length = 9 {
OBJECT IDENTIFIER 1.3.14.3.2.RSASignatureWithSHA1(29)
NULL
}
BIT STRING number of bits = 1024 content:
3fac2aa9f2ef4dc8e09d8be0c4cad287e0cf770e9ed2eb2e7c8fdced7d0dea99670b4895d5c5
d9459b776674c9dd970e8a7c630f64173d04701a2642539599acf40b0f36aa18ae53fc2246de
71460845bbdcdf555d1a28502260a56973f91fbec4f1f486b29ca6ceb0fae0b83d0b4e3b76fd
d8c857dcf2c5e7aa5bbfe4fab23f
}
Structured hexdump:
0x00000000 T: 30 L: 82 03 3d{
0x00000004 T: 30 L: 82 02 aa{
0x00000008 T: a0 L: 03{
0x0000000a T: 02 L: 01 C: 02
}
0x0000000d T: 02 L: 01 C: 01
0x00000010 T: 30 L: 09{
0x00000012 T: 06 L: 05 C: 2b 0e 03 02 1d
0x00000019 T: 05 L: 00 C:
}
0x0000001b T: 30 L: 48{
0x0000001d T: 31 L: 0b{
0x0000001f T: 30 L: 09{
0x00000021 T: 06 L: 03 C: 55 04 06
0x00000026 T: 13 L: 02 C: 44 45
}
}
0x0000002a T: 31 L: 39{
0x0000002c T: 30 L: 37{
0x0000002e T: 06 L: 03 C: 55 04 0a
0x00000033 T: 13 L: 30 C: 47 4d 44 20 2d 20 46 6f 72
73 63 68 75 6e 67 73 7a 65 6e 74 72 75 6d 20 49 6e 66 6f 72 6d 61 74 69 6f
6e 73 74 65 63 68 6e 69 6b 20 47 6d 62 48
}
}
}
0x00000065 T: 30 L: 1e{
0x00000067 T: 17 L: 0d C: 39 39 30 32 30 35 31 37 32 35 31 37 5a
0x00000076 T: 17 L: 0d C: 30 30 30 32 30 35 31 37 32 35 31 37 5a
}
0x00000085 T: 30 L: 65{
0x00000087 T: 31 L: 0b{
0x00000089 T: 30 L: 09{
0x0000008b T: 06 L: 03 C: 55 04 06
0x00000090 T: 13 L: 02 C: 44 45
}
}
0x00000094 T: 31 L: 39{
0x00000096 T: 30 L: 37{
0x00000098 T: 06 L: 03 C: 55 04 0a
0x0000009d T: 13 L: 30 C: 47 4d 44 20 2d 20 46 6f 72
73 63 68 75 6e 67 73 7a 65 6e 74 72 75 6d 20 49 6e 66 6f 72 6d 61 74 69 6f
6e 73 74 65 63 68 6e 69 6b 20 47 6d 62 48
}
}
0x000000cf T: 31 L: 1b{
0x000000d1 T: 30 L: 19{
0x000000d3 T: 06 L: 03 C: 55 04 03
0x000000d8 T: 13 L: 12 C: 50 65 74 72 61 20 4d 2e 20
47 6c 6f 65 63 6b 6e 65 72
}
}
}
0x000000ec T: 30 L: 81 9f{
0x000000ef T: 30 L: 0d{
0x000000f1 T: 06 L: 09 C: 2a 86 48 86 f7 0d 01 01 01
0x000000fc T: 05 L: 00 C:
}
0x000000fe T: 03 L: 81 8d C: 00 30 81 89 02 81 81 00 ff 11 a1
fb 75 6e a5 6c 94 e0 a6 04 3b 5c 12 3b 6a ea 85 b5 b4 d6 56 c8 d8 5d f2 79
1c b4 a5 07 7e b1 23 b1 c2 d5 f0 70 18 79 02 d0 31 68 73 93 62 a5 9a 74 51
54 ee 90 95 01 c7 bf 21 49 33 2d 61 df 5e 4f bd 0e ed 3c 6e 7d f0 9b 9d 71
2a 40 9e d3 23 56 0d c1 59 54 cc 83 56 4d 44 05 64 f1 1a 3b 6d ff 88 a5 a3
aa 68 36 81 39 82 f3 95 56 4a c8 0d 3d ac 01 3f eb f6 bd e2 1f d3 e5 b1 9b
02 03 01 00 01
}
0x0000018e T: a3 L: 82 01 20{
0x00000192 T: 30 L: 82 01 1c{
0x00000196 T: 30 L: 0e{
0x00000198 T: 06 L: 03 C: 55 1d 0f
0x0000019d T: 01 L: 01 C: ff
0x000001a0 T: 04 L: 04 C: 03 02 06 40
}
0x000001a6 T: 30 L: 12{
0x000001a8 T: 06 L: 03 C: 55 1d 20
0x000001ad T: 04 L: 0b C: 30 09 30 07 06 05 2b 24 08
09 01
}
0x000001ba T: 30 L: 81 f5{
0x000001bd T: 06 L: 03 C: 55 1d 11
0x000001c2 T: 04 L: 81 ed C: 30 81 ea a0 81 e7 06 04
2b 24 08 08 a0 81 de 30 81 db 30 81 d8 30 81 8e 16 17 6d 75 6e 69 63 69 70
61 6c 69 74 79 40 73 65 65 68 65 69 6d 2e 64 65 30 73 30 12 06 03 55 04 04
31 0b 13 09 67 6c 6f 65 63 6b 6e 65 72 30 0e 06 03 55 04 2a 31 07 13 05 50
65 74 72 61 30 1a 06 05 2b 24 08 08 01 31 11 18 0f 31 39 37 31 31 30 31 34
30 30 30 30 30 30 5a 30 14 06 05 2b 24 08 08 02 31 0b 13 09 44 61 72 6d 73
74 61 64 74 30 0d 06 05 2b 24 08 08 03 31 04 13 02 44 45 30 0c 06 05 2b 24
08 08 04 31 03 13 01 46 30 45 16 0d 67 6d 64 2d 72 61 40 67 6d 64 2e 64 65
06 05 2b 24 08 09 02 30 2d 30 0c 06 03 55 04 0a 31 05 13 03 47 4d 44 30 1d
06 05 2b 24 08 08 05 31 14 13 12 70 72 6f 6a 65 63 74 20 6d 61 6e 61 67 65
72 20 51 43
}
}
}
}
0x000002b2 T: 30 L: 09{
0x000002b4 T: 06 L: 05 C: 2b 0e 03 02 1d
0x000002bb T: 05 L: 00 C:
}
0x000002bd T: 03 L: 81 81 C: 00 3f ac 2a a9 f2 ef 4d c8 e0 9d 8b e0 c4
ca d2 87 e0 cf 77 0e 9e d2 eb 2e 7c 8f dc ed 7d 0d ea 99 67 0b 48 95 d5 c5
d9 45 9b 77 66 74 c9 dd 97 0e 8a 7c 63 0f 64 17 3d 04 70 1a 26 42 53 95 99
ac f4 0b 0f 36 aa 18 ae 53 fc 22 46 de 71 46 08 45 bb dc df 55 5d 1a 28 50
22 60 a5 69 73 f9 1f be c4 f1 f4 86 b2 9c a6 ce b0 fa e0 b8 3d 0b 4e 3b 76
fd d8 c8 57 dc f2 c5 e7 aa 5b bf e4 fa b2 3f
0x00000341 }
hex dump:
0 3082033D 308202AA A0030201 02020101 |0..=0...........|
10 30090605 2B0E0302 1D050030 48310B30 |0...+......0H1.0|
20 09060355 04061302 44453139 30370603 |...U....DE1907..|
30 55040A13 30474D44 202D2046 6F727363 |U...0GMD - Forsc|
40 68756E67 737A656E 7472756D 20496E66 |hungszentrum Inf|
50 6F726D61 74696F6E 73746563 686E696B |ormationstechnik|
60 20476D62 48301E17 0D393930 32303531 | GmbH0...9902051|
70 37323531 375A170D 30303032 30353137 |72517Z..00020517|
80 32353137 5A306531 0B300906 03550406 |2517Z0e1.0...U..|
90 13024445 31393037 06035504 0A133047 |..DE1907..U...0G|
A0 4D44202D 20466F72 73636875 6E67737A |MD - Forschungsz|
B0 656E7472 756D2049 6E666F72 6D617469 |entrum Informati|
C0 6F6E7374 6563686E 696B2047 6D624831 |onstechnik GmbH1|
D0 1B301906 03550403 13125065 74726120 |.0...U....Petra |
E0 4D2E2047 6C6F6563 6B6E6572 30819F30 |M. Gloeckner0..0|
F0 0D06092A 864886F7 0D010101 05000381 |...*.H..........|
100 8D003081 89028181 00FF11A1 FB756EA5 |..0..........un.|
110 6C94E0A6 043B5C12 3B6AEA85 B5B4D656 |l....;\.;j.....V|
120 C8D85DF2 791CB4A5 077EB123 B1C2D5F0 |..].y....~.#....|
130 70187902 D0316873 9362A59A 745154EE |p.y..1hs.b..tQT.|
140 909501C7 BF214933 2D61DF5E 4FBD0EED |.....!I3-a.^O...|
150 3C6E7DF0 9B9D712A 409ED323 560DC159 |<n}...q*@..#V..Y|
160 54CC8356 4D440564 F11A3B6D FF88A5A3 |T..VMD.d..;m....|
170 AA683681 3982F395 564AC80D 3DAC013F |.h6.9...VJ..=..?|
180 EBF6BDE2 1FD3E5B1 9B020301 0001A382 |................|
190 01203082 011C300E 0603551D 0F0101FF |. 0...0...U.....|
1A0 04040302 06403012 0603551D 20040B30 |.....@0...U. ..0|
1B0 09300706 052B2408 09013081 F5060355 |.0...+$...0....U|
1C0 1D110481 ED3081EA A081E706 042B2408 |.....0.......+$.|
1D0 08A081DE 3081DB30 81D83081 8E16176D |....0..0..0....m|
1E0 756E6963 6970616C 69747940 73656568 |unicipality@seeh|
1F0 65696D2E 64653073 30120603 55040431 |eim.de0s0...U..1|
200 0B130967 6C6F6563 6B6E6572 300E0603 |...gloeckner0...|
210 55042A31 07130550 65747261 301A0605 |U.*1...Petra0...|
220 2B240808 01311118 0F313937 31313031 |+$...1...1971101|
230 34303030 3030305A 30140605 2B240808 |4000000Z0...+$..|
240 02310B13 09446172 6D737461 6474300D |.1...Darmstadt0.|
250 06052B24 08080331 04130244 45300C06 |..+$...1...DE0..|
260 052B2408 08043103 13014630 45160D67 |.+$...1...F0E..g|
270 6D642D72 6140676D 642E6465 06052B24 |md-ra@gmd.de..+$|
280 08090230 2D300C06 0355040A 31051303 |...0-0...U..1...|
290 474D4430 1D06052B 24080805 31141312 |GMD0...+$...1...|
2A0 70726F6A 65637420 6D616E61 67657220 |project manager |
2B0 51433009 06052B0E 03021D05 00038181 |QC0...+.........|
2C0 003FAC2A A9F2EF4D C8E09D8B E0C4CAD2 |.?.*...M........|
2D0 87E0CF77 0E9ED2EB 2E7C8FDC ED7D0DEA |...w.....|...}..|
2E0 99670B48 95D5C5D9 459B7766 74C9DD97 |.g.H....E.wft...|
2F0 0E8A7C63 0F64173D 04701A26 42539599 |..|c.d.=.p.&BS..|
300 ACF40B0F 36AA18AE 53FC2246 DE714608 |....6...S."F.qF.|
310 45BBDCDF 555D1A28 502260A5 6973F91F |E...U].(P"`.is..|
320 BEC4F1F4 86B29CA6 CEB0FAE0 B83D0B4E |.............=.N|
330 3B76FDD8 C857DCF2 C5E7AA5B BFE4FAB2 |;v...W.....[....|
340 3F |? |
-------------------------------------------------------------------
Stefan Santesson <stefan@accurata.se>
Accurata Systemsäkerhet AB
Lotsgatan 27 D Tel. +46-40 152211
216 42 Malmö Fax. +46-40 150790
Sweden Mobile +46-70 5247799
PGP fingerprint: 89BC 6C79 5B3D 591B 8547 1512 7D11 DBF4 528F 29A0
-------------------------------------------------------------------