W3C home > Mailing lists > Public > public-xg-webid@w3.org > April 2011

Re: self-signed

From: Joe Presbrey <presbrey@gmail.com>
Date: Wed, 13 Apr 2011 20:53:59 -0400
Message-ID: <BANLkTin13LyK6U70oEyS4O8oDW7x6x+UMw@mail.gmail.com>
To: Joerg Anders <jan@informatik.tu-chemnitz.de>
Cc: WebID XG <public-xg-webid@w3.org>
Attached is a working certificate for Hans' WebID.

FYI, I resigned without the critical extensions using the following procedure:

# decode
openssl pkcs12 -in HannesElmert.p12 -nodes > HannesElmert.pem
# extract key
openssl rsa -in HannesElmert.pem > hans.key
# setup extensions
echo -e 'basicConstraints=CA:FALSE\nsubjectAltName="URI:http://foaf.me/Hans#me"'
> hans.ext
# resign
openssl x509 -signkey hans.key -in HannesElmert.pem -clrext -extfile
hans.ext > hans.cer
# pack
cat hans.key hans.cer > hans.pem
# export
openssl pkcs12 -export -in hans.pem -nodes > hans.p12

--
Joe Presbrey



Received on Friday, 15 April 2011 10:13:33 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:06:24 UTC