Google Git
Sign in
fuchsia / third_party / boringssl / 1f3d638076e49407b972c73aac1c095b20a53765 / . / src / pki / testdata / verify_certificate_chain_unittest / policies-ok / chain.pem
blob: 494a59de6f32becb80319ebefab42fc583ceb4e0 [file] [log] [blame]
[Created by: ./generate-chains.py]
Certificate chain with policies and requireExplicitPolicy.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:08:4d:78:c1:3f:07:cd:a3:c6:78:9f:04:0f:8d:7f:53:59:b2:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Intermediate
Validity
Not Before: Oct 5 12:00:00 2021 GMT
Not After : Oct 5 12:00:00 2022 GMT
Subject: CN=Target
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:c1:4e:54:b8:f3:a9:51:97:5a:ab:40:dd:8f:a8:
4d:1c:3e:e2:4a:bc:ea:eb:f4:11:44:51:30:8c:9c:
b0:60:16:37:98:47:4a:c3:b8:b1:2e:b3:bd:c8:05:
3f:70:4c:b8:2d:57:43:3b:6f:da:9b:72:57:f6:45:
db:8d:e1:c8:08:80:d6:10:94:c9:2a:58:92:e9:a4:
2d:ce:a7:5b:64:bd:99:fc:16:ee:8e:87:fb:fc:05:
e8:06:13:b0:01:b7:c7:53:6f:20:34:40:c5:d4:0b:
e9:72:54:88:f8:38:2c:dc:6c:21:e0:9b:c5:d1:95:
79:f3:f2:3a:38:8e:54:0b:af:d6:74:98:37:28:86:
96:33:7c:63:e5:38:03:f2:7d:16:fe:fb:16:57:5b:
59:81:f1:83:86:11:4f:4a:96:17:80:e1:22:00:e4:
e0:7f:6c:b6:4e:ad:22:10:90:fb:2c:61:9c:4e:25:
23:c3:04:69:69:45:66:6a:e6:fc:0a:31:98:59:0f:
df:e5:45:37:68:d4:2d:b8:c4:20:16:f2:c0:db:c2:
7e:93:5b:0b:e2:26:46:ba:78:e5:fa:b7:e1:b3:86:
7a:72:85:26:ae:1c:c6:a6:e9:57:fd:c1:c7:6d:4e:
5f:59:3a:7a:76:f8:d9:f6:1b:e5:e9:c6:96:c4:14:
ce:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:54:44:D9:08:0D:47:C0:7F:78:3F:FE:2A:09:5F:9A:11:8F:B3:5D
X509v3 Authority Key Identifier:
3D:93:4F:05:1D:3B:34:80:2F:A2:A7:1F:CA:9C:28:DC:C1:55:E2:67
Authority Information Access:
CA Issuers - URI:http://url-for-aia/Intermediate.cer
X509v3 CRL Distribution Points:
Full Name:
URI:http://url-for-crl/Intermediate.crl
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Certificate Policies: critical
Policy: 1.2.3.4
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
63:69:e9:e2:b0:09:40:6b:26:74:bb:fa:01:d5:fb:c7:b7:aa:
d1:bd:69:0d:ac:f0:94:56:21:8b:32:7e:4b:12:e9:a5:eb:ce:
14:41:2a:23:17:eb:5f:df:dd:e0:e7:1a:9d:1e:cf:17:9f:26:
81:9b:b4:b0:c3:28:67:5b:65:c9:d7:9f:21:9b:9c:01:97:a8:
ec:44:8d:04:7d:fc:72:01:93:aa:92:84:59:42:d2:da:49:08:
35:8e:d6:7d:89:a0:c3:70:6d:05:f7:eb:30:08:6e:66:2c:90:
7c:33:e7:b8:81:d9:04:cb:12:db:a2:34:1a:c9:fa:d6:ef:af:
98:84:bc:c9:a9:af:4a:d6:23:ff:b3:6d:d4:3c:0f:d8:f8:bc:
10:1e:c6:29:06:6c:7c:5b:b2:f3:4f:96:95:79:69:7b:00:c0:
65:04:84:0f:2e:28:e9:b2:a2:98:2d:b8:35:8c:09:c3:d4:f1:
69:f6:31:d7:37:85:5a:72:46:07:11:56:fc:48:79:b7:02:ed:
ba:a8:bd:4b:38:95:71:e8:e0:e0:99:2c:f9:19:bc:1e:61:f8:
a3:26:61:31:c8:af:07:d2:1b:58:96:82:42:b0:f3:f0:6c:4f:
54:0a:bb:fa:44:a2:92:89:90:c5:fc:1d:31:e3:08:4d:fe:97:
b0:8e:b0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:e0:57:1a:f3:9a:80:02:b6:c9:bd:be:0c:a5:21:0f:8b:78:67:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Root
Validity
Not Before: Oct 5 12:00:00 2021 GMT
Not After : Oct 5 12:00:00 2022 GMT
Subject: CN=Intermediate
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:d4:36:ce:68:1f:c4:5f:a3:21:5a:43:7d:5e:54:
8e:a7:77:c3:5e:48:80:e7:05:4a:05:a2:c4:36:30:
2c:e2:0b:d9:8e:0c:df:98:4f:f0:6d:2b:12:ae:6c:
ae:3c:d9:d7:a8:c1:3c:0e:40:14:81:90:f9:ed:cf:
3f:e4:93:f4:5a:dc:89:57:f4:4f:ca:0d:c7:8c:32:
a0:b0:7b:d1:d0:b1:45:e6:5a:2a:32:c9:dc:db:7f:
af:46:e6:5b:1a:02:72:46:be:66:3b:98:67:e2:33:
c8:05:60:05:2a:7b:03:42:14:ba:62:f0:62:c0:7b:
75:58:06:c0:b4:b8:81:ad:23:e7:60:33:53:55:7e:
7c:78:7c:97:a5:09:fc:97:2c:49:51:77:48:49:39:
5f:fb:6f:b1:3f:eb:b0:6d:c4:d6:a5:9f:97:ba:8e:
19:5f:fe:d9:71:ee:8a:6a:0d:08:6e:5c:09:54:6f:
8c:f3:a1:74:08:6f:dc:36:69:00:e8:6a:40:82:6f:
de:ba:87:dd:32:f2:c8:60:f0:3f:5f:87:a3:e5:4c:
76:7f:77:75:46:47:c0:fa:c0:03:ce:3f:57:dc:9a:
ee:0c:3e:27:65:39:4b:5c:fc:dd:09:c9:80:d8:6c:
9c:ee:6c:8b:e7:99:43:b3:21:b5:10:9f:4a:aa:8e:
0b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:93:4F:05:1D:3B:34:80:2F:A2:A7:1F:CA:9C:28:DC:C1:55:E2:67
X509v3 Authority Key Identifier:
B2:69:86:08:36:14:3E:66:79:B7:98:70:BE:30:9D:0B:73:00:6F:0E
Authority Information Access:
CA Issuers - URI:http://url-for-aia/Root.cer
X509v3 CRL Distribution Points:
Full Name:
URI:http://url-for-crl/Root.crl
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Certificate Policies: critical
Policy: 1.2.3.4
X509v3 Policy Constraints: critical
Require Explicit Policy:0
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
28:a1:4e:4e:d5:82:36:24:6f:69:b8:2d:ab:a2:a6:64:32:48:
7d:cd:18:0d:6a:d8:43:79:c1:6b:b9:f1:6b:70:ab:64:e3:b3:
46:1f:06:61:99:92:21:ef:9e:18:38:4a:c0:3d:a2:b6:32:79:
5d:c9:68:04:84:ba:a6:1a:a6:8c:f1:51:3e:ab:01:83:57:78:
f8:38:80:e9:38:d8:db:40:ac:9e:94:e1:da:13:d9:33:4c:20:
98:3d:da:6b:95:d0:64:6f:fd:6c:37:f1:fe:1c:ea:a5:71:49:
9e:b1:24:94:0a:84:ff:60:b0:b0:8d:2a:54:2c:25:74:0d:18:
1c:7e:9a:67:d8:82:ec:af:fc:88:2a:fb:9c:29:ba:a6:a9:1a:
cc:cd:c0:71:b3:02:f3:d8:58:f2:d3:4f:0f:5a:19:da:28:3b:
f3:5a:38:b5:5a:40:1a:05:13:16:9c:0c:d7:df:ef:0b:2f:2b:
81:7b:01:30:d7:88:2d:8d:e5:b6:89:b8:98:4b:40:aa:0f:46:
65:15:09:40:49:8f:93:0c:10:5e:b2:34:1a:e0:8f:7b:7d:90:
35:df:64:1c:ce:08:0e:38:fa:cb:cf:f0:e4:62:a6:e7:15:dd:
07:a5:b5:42:3b:d8:77:e7:8b:d1:1c:2a:3c:6f:c2:33:2c:f2:
7c:14:59:5f
-----BEGIN CERTIFICATE-----
MIIDpjCCAo6gAwIBAgIUbeBXGvOagAK2yb2+DKUhD4t4Z3AwDQYJKoZIhvcNAQEL
BQAwDzENMAsGA1UEAwwEUm9vdDAeFw0yMTEwMDUxMjAwMDBaFw0yMjEwMDUxMjAw
MDBaMBcxFTATBgNVBAMMDEludGVybWVkaWF0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANQ2zmgfxF+jIVpDfV5Ujqd3w15IgOcFSgWixDYwLOIL2Y4M
35hP8G0rEq5srjzZ16jBPA5AFIGQ+e3PP+ST9FrciVf0T8oNx4wyoLB70dCxReZa
KjLJ3Nt/r0bmWxoCcka+ZjuYZ+IzyAVgBSp7A0IUumLwYsB7dVgGwLS4ga0j52Az
U1V+fHh8l6UJ/JcsSVF3SEk5X/tvsT/rsG3E1qWfl7qOGV/+2XHuimoNCG5cCVRv
jPOhdAhv3DZpAOhqQIJv3rqH3TLyyGDwP1+Ho+VMdn93dUZHwPrAA84/V9ya7gw+
J2U5S1z83QnJgNhsnO5si+eZQ7MhtRCfSqqOC5cCAwEAAaOB8TCB7jAdBgNVHQ4E
FgQUPZNPBR07NIAvoqcfypwo3MFV4mcwHwYDVR0jBBgwFoAUsmmGCDYUPmZ5t5hw
vjCdC3MAbw4wNwYIKwYBBQUHAQEEKzApMCcGCCsGAQUFBzAChhtodHRwOi8vdXJs
LWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUwIzAhoB+gHYYbaHR0cDovL3VybC1m
b3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/
MBMGA1UdIAEB/wQJMAcwBQYDKgMEMA8GA1UdJAEB/wQFMAOAAQAwDQYJKoZIhvcN
AQELBQADggEBACihTk7VgjYkb2m4LauipmQySH3NGA1q2EN5wWu58Wtwq2Tjs0Yf
BmGZkiHvnhg4SsA9orYyeV3JaASEuqYapozxUT6rAYNXePg4gOk42NtArJ6U4doT
2TNMIJg92muV0GRv/Ww38f4c6qVxSZ6xJJQKhP9gsLCNKlQsJXQNGBx+mmfYguyv
/Igq+5wpuqapGszNwHGzAvPYWPLTTw9aGdooO/NaOLVaQBoFExacDNff7wsvK4F7
ATDXiC2N5baJuJhLQKoPRmUVCUBJj5MMEF6yNBrgj3t9kDXfZBzOCA44+svP8ORi
pucV3QeltUI72Hfni9EcKjxvwjMs8nwUWV8=
-----END CERTIFICATE-----
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:e0:57:1a:f3:9a:80:02:b6:c9:bd:be:0c:a5:21:0f:8b:78:67:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Root
Validity
Not Before: Oct 5 12:00:00 2021 GMT
Not After : Oct 5 12:00:00 2022 GMT
Subject: CN=Root
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (2048 bit)
Modulus:
00:b7:3b:ea:17:07:2b:f0:3b:dd:d2:24:53:f6:fa:
9f:47:c2:a7:6e:fa:04:f1:b2:fe:74:ef:ec:24:75:
07:fd:f3:7b:29:9c:17:1c:e5:41:df:34:4a:1c:2b:
4a:5f:8d:36:44:1a:5f:67:92:7a:2a:a8:85:7b:49:
b7:83:1d:c7:7f:44:c3:a7:09:3a:75:5e:00:43:db:
dd:91:41:28:a1:cd:13:11:35:3b:7a:92:fc:ad:98:
3c:ac:cb:85:77:a4:d0:3f:57:ed:67:69:9c:40:3b:
c4:0c:a3:32:3a:01:73:0c:ed:55:21:a8:be:b4:41:
ee:f3:6e:e9:04:10:9b:2c:7b:c5:2a:d2:87:52:ef:
12:84:87:82:5e:40:e3:bf:6a:47:33:60:22:1a:42:
63:45:ac:28:be:79:59:37:48:45:65:6b:13:89:bb:
58:6e:d8:4e:8d:b3:26:30:d2:c0:3e:d6:16:f2:08:
31:bf:2c:b1:c9:b7:c4:58:09:89:ee:52:21:fb:ab:
7a:f1:4e:b3:7f:a1:20:c3:99:9b:74:0d:d3:c4:c3:
3d:53:aa:cb:32:48:0e:8a:66:2b:07:09:8c:73:38:
ff:81:15:30:c9:12:39:d5:ec:44:32:81:df:ec:85:
c1:d3:45:d1:eb:82:61:f2:86:ad:1a:e1:a3:ee:a1:
a0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:69:86:08:36:14:3E:66:79:B7:98:70:BE:30:9D:0B:73:00:6F:0E
X509v3 Authority Key Identifier:
B2:69:86:08:36:14:3E:66:79:B7:98:70:BE:30:9D:0B:73:00:6F:0E
Authority Information Access:
CA Issuers - URI:http://url-for-aia/Root.cer
X509v3 CRL Distribution Points:
Full Name:
URI:http://url-for-crl/Root.crl
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
Signature Value:
55:ce:69:0a:bf:08:3a:d2:a3:2d:00:b0:5f:b4:f9:e1:26:3b:
3b:28:e5:45:c5:e4:8f:46:f0:1a:a2:ae:d4:e7:a9:dd:39:08:
dd:d4:80:52:75:4d:35:95:50:b6:44:49:c0:48:c1:3f:c4:19:
1b:b1:71:73:65:9b:78:a1:1d:79:01:09:d8:46:e8:b0:6b:e3:
77:b3:a0:4e:6b:ff:1a:e1:63:12:56:b7:df:4d:d9:f4:ab:fc:
5f:a5:e7:e1:38:28:80:a6:cb:fd:b1:ba:32:34:2e:c9:90:9f:
9a:8f:c2:40:ab:04:42:8c:ea:b4:55:79:e3:e5:7d:73:e6:0f:
63:95:76:49:94:44:16:57:7f:4f:2b:6a:28:16:ff:01:e4:1c:
ad:b8:14:10:d2:10:17:df:65:36:f7:08:98:c3:c3:f2:6c:c4:
70:dc:8f:e1:67:f0:62:eb:19:21:8c:c0:a6:53:20:ff:4d:b8:
80:a8:3d:6d:15:6b:23:5d:06:70:fa:2a:87:ec:ff:20:96:f8:
31:1c:23:93:f5:a4:03:e9:11:c5:0b:da:cf:7e:60:86:a8:da:
c5:fe:5c:eb:dd:b8:67:72:5c:d9:16:c4:af:a8:41:aa:38:c4:
40:0a:17:fd:06:89:b5:c4:7a:2a:1b:0d:49:23:9e:ed:55:e3:
c5:ec:48:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----