Hi,
I would like to create a self signed certificate with X509 version 2.
I know that we need to configure "Issuer and subject unique identifiers" for X509 v2 format certificate, but not able to find the configuration required (in openssl.conf) to enable it.
Please let me know how to enable the above mentioned extensions for creating X509v2 format certificate?
Following below steps to create the certificate:
mkdir newcerts
touch index.txt
echo '01' > serial
cp ~/TLS_Cert/X509v2/ca.key .
cp ~/TLS_Cert/X509v2/ca.crt .
cp ~/TLS_Cert/X509v2/ca.cnf .
read answer
openssl ca -config ca.cnf -out example.org.crt -infiles request.csr
cat example.org.crt
touch index.txt
echo '01' > serial
cp ~/TLS_Cert/X509v2/ca.key .
cp ~/TLS_Cert/X509v2/ca.crt .
cp ~/TLS_Cert/X509v2/ca.cnf .
read answer
openssl ca -config ca.cnf -out example.org.crt -infiles request.csr
cat example.org.crt
Attached ca.cnf file.
Thanks in advance.
Varun Rapelly
Attachment:
ca.cnf
Description: Binary data
