| OLD | NEW |
|---|
| (Empty) | |
| 1 [Created by: generate-target-signed-by-512bit-rsa.py] |
| 2 |
| 3 Certificate chain with 1 intermediary and a trusted root. The target |
| 4 certificate is signed using a weak RSA key (512-bit modulus), and so |
| 5 verification is expected to fail. |
| 6 |
| 7 Certificate: |
| 8 Data: |
| 9 Version: 3 (0x2) |
| 10 Serial Number: 1 (0x1) |
| 11 Signature Algorithm: sha256WithRSAEncryption |
| 12 Issuer: CN=Intermediary |
| 13 Validity |
| 14 Not Before: Jan 1 12:00:00 2015 GMT |
| 15 Not After : Jan 1 12:00:00 2016 GMT |
| 16 Subject: CN=Target |
| 17 Subject Public Key Info: |
| 18 Public Key Algorithm: rsaEncryption |
| 19 Public-Key: (2048 bit) |
| 20 Modulus: |
| 21 00:a0:09:f8:e1:95:28:53:9e:e3:c1:a5:c0:76:05: |
| 22 74:88:fb:fb:d0:c9:c2:3e:61:e3:a1:e3:b0:c8:81: |
| 23 a3:d1:bf:0c:f4:d8:06:3d:8f:58:45:e1:f0:00:8e: |
| 24 b1:8c:ab:bc:83:ae:d1:39:3d:6c:52:ef:76:f1:6f: |
| 25 93:b0:b2:26:b7:b4:ab:fd:25:44:94:85:4a:c1:ad: |
| 26 2a:6c:59:11:3c:33:63:39:e9:f1:c6:96:05:7a:a4: |
| 27 8b:3c:74:10:cb:ae:19:eb:cd:df:eb:b0:68:91:cd: |
| 28 5c:56:8d:41:d4:b4:4f:db:45:50:4d:01:01:10:09: |
| 29 be:84:a3:3a:98:55:a2:a6:ea:6b:fc:c7:4f:ae:cd: |
| 30 31:60:80:2b:86:27:cf:64:f8:4f:35:32:83:02:57: |
| 31 ab:85:9e:ae:e0:39:06:03:d8:8e:c5:6f:01:5f:f6: |
| 32 08:1f:ae:c9:a1:32:65:35:c5:9b:d7:2c:e1:6f:93: |
| 33 41:f7:40:ff:b1:36:08:5e:35:9e:42:2b:a4:d8:0a: |
| 34 c2:ce:e4:94:cf:51:7c:76:18:d0:0a:4e:e8:37:b3: |
| 35 44:f4:0b:31:fa:49:96:94:c8:c0:ef:3a:10:ca:4d: |
| 36 eb:ed:24:a7:d4:ec:bf:d5:5d:80:ed:d7:3a:b1:7c: |
| 37 3f:0f:b7:cb:48:59:73:fb:af:43:5e:3e:6b:e7:a5: |
| 38 ed:01 |
| 39 Exponent: 65537 (0x10001) |
| 40 X509v3 extensions: |
| 41 X509v3 Subject Key Identifier: |
| 42 01:E0:D2:38:1C:28:DC:51:7E:F9:E6:25:7A:C5:47:ED:81:6C:FC:5F |
| 43 X509v3 Authority Key Identifier: |
| 44 keyid:B8:D0:79:3D:EA:8A:56:E5:90:68:D6:6C:E9:91:14:0C:AE:5A:48:1
0 |
| 45 |
| 46 Authority Information Access: |
| 47 CA Issuers - URI:http://url-for-aia/Intermediary.cer |
| 48 |
| 49 X509v3 CRL Distribution Points: |
| 50 |
| 51 Full Name: |
| 52 URI:http://url-for-crl/Intermediary.crl |
| 53 |
| 54 X509v3 Key Usage: critical |
| 55 Digital Signature, Key Encipherment |
| 56 X509v3 Extended Key Usage: |
| 57 TLS Web Server Authentication, TLS Web Client Authentication |
| 58 Signature Algorithm: sha256WithRSAEncryption |
| 59 be:ba:eb:82:1f:02:6b:d0:9e:c9:55:09:b1:e9:e1:82:8c:50: |
| 60 39:7e:f5:ff:0f:4f:ef:d8:7d:52:10:07:5e:c1:c4:0e:d5:94: |
| 61 67:d2:0e:2e:22:e6:5a:91:b5:f7:05:e3:a4:be:bc:6c:fb:38: |
| 62 2c:df:47:55:61:bc:4c:39:14:68 |
| 63 -----BEGIN CERTIFICATE----- |
| 64 MIICyzCCAnWgAwIBAgIBATANBgkqhkiG9w0BAQsFADAXMRUwEwYDVQQDDAxJbnRl |
| 65 cm1lZGlhcnkwHhcNMTUwMTAxMTIwMDAwWhcNMTYwMTAxMTIwMDAwWjARMQ8wDQYD |
| 66 VQQDDAZUYXJnZXQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgCfjh |
| 67 lShTnuPBpcB2BXSI+/vQycI+YeOh47DIgaPRvwz02AY9j1hF4fAAjrGMq7yDrtE5 |
| 68 PWxS73bxb5Owsia3tKv9JUSUhUrBrSpsWRE8M2M56fHGlgV6pIs8dBDLrhnrzd/r |
| 69 sGiRzVxWjUHUtE/bRVBNAQEQCb6EozqYVaKm6mv8x0+uzTFggCuGJ89k+E81MoMC |
| 70 V6uFnq7gOQYD2I7FbwFf9ggfrsmhMmU1xZvXLOFvk0H3QP+xNgheNZ5CK6TYCsLO |
| 71 5JTPUXx2GNAKTug3s0T0CzH6SZaUyMDvOhDKTevtJKfU7L/VXYDt1zqxfD8Pt8tI |
| 72 WXP7r0NePmvnpe0BAgMBAAGjgekwgeYwHQYDVR0OBBYEFAHg0jgcKNxRfvnmJXrF |
| 73 R+2BbPxfMB8GA1UdIwQYMBaAFLjQeT3qilblkGjWbOmRFAyuWkgQMD8GCCsGAQUF |
| 74 BwEBBDMwMTAvBggrBgEFBQcwAoYjaHR0cDovL3VybC1mb3ItYWlhL0ludGVybWVk |
| 75 aWFyeS5jZXIwNAYDVR0fBC0wKzApoCegJYYjaHR0cDovL3VybC1mb3ItY3JsL0lu |
| 76 dGVybWVkaWFyeS5jcmwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF |
| 77 BwMBBggrBgEFBQcDAjANBgkqhkiG9w0BAQsFAANBAL6664IfAmvQnslVCbHp4YKM |
| 78 UDl+9f8PT+/YfVIQB17BxA7VlGfSDi4i5lqRtfcF46S+vGz7OCzfR1VhvEw5FGg= |
| 79 -----END CERTIFICATE----- |
| 80 |
| 81 Certificate: |
| 82 Data: |
| 83 Version: 3 (0x2) |
| 84 Serial Number: 2 (0x2) |
| 85 Signature Algorithm: sha256WithRSAEncryption |
| 86 Issuer: CN=Root |
| 87 Validity |
| 88 Not Before: Jan 1 12:00:00 2015 GMT |
| 89 Not After : Jan 1 12:00:00 2016 GMT |
| 90 Subject: CN=Intermediary |
| 91 Subject Public Key Info: |
| 92 Public Key Algorithm: rsaEncryption |
| 93 Public-Key: (512 bit) |
| 94 Modulus: |
| 95 00:da:fa:51:64:db:d4:40:cf:aa:60:3f:0b:9a:0e: |
| 96 26:21:59:0e:f1:8b:e2:75:11:de:2d:1c:e5:dc:9b: |
| 97 e2:16:ce:cf:50:a1:aa:c9:e0:19:9f:5c:e5:44:69: |
| 98 0d:f9:0c:d7:c5:1e:cf:11:65:77:cd:37:5f:d8:fe: |
| 99 6f:e0:99:b3:f7 |
| 100 Exponent: 65537 (0x10001) |
| 101 X509v3 extensions: |
| 102 X509v3 Subject Key Identifier: |
| 103 B8:D0:79:3D:EA:8A:56:E5:90:68:D6:6C:E9:91:14:0C:AE:5A:48:10 |
| 104 X509v3 Authority Key Identifier: |
| 105 keyid:68:06:12:0B:9D:1F:3A:7C:E5:87:20:3C:ED:A3:49:5D:3E:74:28:6
9 |
| 106 |
| 107 Authority Information Access: |
| 108 CA Issuers - URI:http://url-for-aia/Root.cer |
| 109 |
| 110 X509v3 CRL Distribution Points: |
| 111 |
| 112 Full Name: |
| 113 URI:http://url-for-crl/Root.crl |
| 114 |
| 115 X509v3 Key Usage: critical |
| 116 Certificate Sign, CRL Sign |
| 117 X509v3 Basic Constraints: critical |
| 118 CA:TRUE |
| 119 Signature Algorithm: sha256WithRSAEncryption |
| 120 8c:35:af:f3:d9:62:41:91:93:ed:8b:f6:42:3e:94:80:cf:31: |
| 121 ed:0f:a5:52:2e:51:3f:f3:3f:56:38:c5:f0:25:c5:f1:13:8c: |
| 122 6a:80:28:58:79:e1:eb:39:25:5a:af:31:07:24:da:8c:ae:17: |
| 123 c7:56:fd:c1:d4:3a:2c:7e:7e:a4:ff:eb:66:74:96:66:e8:26: |
| 124 52:1d:c5:d6:0a:64:ea:cd:b7:df:b8:49:b1:c4:44:c6:d0:e3: |
| 125 94:0f:b2:b2:cb:75:5a:bf:48:c6:ad:82:46:74:a7:53:bd:55: |
| 126 00:67:6e:ba:2c:b8:15:43:30:64:d8:10:3a:67:b0:31:df:f6: |
| 127 9e:7e:7c:0b:63:d6:6d:b0:5d:9a:61:96:51:03:71:d3:fb:da: |
| 128 30:b8:d1:a6:8a:4a:a2:36:58:84:34:c0:30:5a:d8:51:30:d0: |
| 129 89:8c:1e:c3:45:32:85:17:ba:01:4d:60:04:91:23:ee:df:71: |
| 130 0d:82:90:67:2f:04:4e:e2:64:a9:48:55:03:e7:0b:a1:b4:e3: |
| 131 e7:e9:54:3b:bc:83:f0:b3:bb:3f:1a:fd:03:95:28:0e:d2:3b: |
| 132 8b:62:fe:bb:b7:9a:1d:15:d3:96:47:be:c9:4e:21:77:63:60: |
| 133 3b:27:b3:3d:7e:8b:fd:3b:55:17:cf:8b:99:81:6d:92:66:5b: |
| 134 35:62:4a:96 |
| 135 -----BEGIN CERTIFICATE----- |
| 136 MIICpTCCAY2gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDARSb290 |
| 137 MB4XDTE1MDEwMTEyMDAwMFoXDTE2MDEwMTEyMDAwMFowFzEVMBMGA1UEAwwMSW50 |
| 138 ZXJtZWRpYXJ5MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBANr6UWTb1EDPqmA/C5oO |
| 139 JiFZDvGL4nUR3i0c5dyb4hbOz1ChqsngGZ9c5URpDfkM18UezxFld803X9j+b+CZ |
| 140 s/cCAwEAAaOByzCByDAdBgNVHQ4EFgQUuNB5PeqKVuWQaNZs6ZEUDK5aSBAwHwYD |
| 141 VR0jBBgwFoAUaAYSC50fOnzlhyA87aNJXT50KGkwNwYIKwYBBQUHAQEEKzApMCcG |
| 142 CCsGAQUFBzAChhtodHRwOi8vdXJsLWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUw |
| 143 IzAhoB+gHYYbaHR0cDovL3VybC1mb3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQE |
| 144 AwIBBjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQCMNa/z2WJB |
| 145 kZPti/ZCPpSAzzHtD6VSLlE/8z9WOMXwJcXxE4xqgChYeeHrOSVarzEHJNqMrhfH |
| 146 Vv3B1Dosfn6k/+tmdJZm6CZSHcXWCmTqzbffuEmxxETG0OOUD7Kyy3Vav0jGrYJG |
| 147 dKdTvVUAZ266LLgVQzBk2BA6Z7Ax3/aefnwLY9ZtsF2aYZZRA3HT+9owuNGmikqi |
| 148 NliENMAwWthRMNCJjB7DRTKFF7oBTWAEkSPu33ENgpBnLwRO4mSpSFUD5wuhtOPn |
| 149 6VQ7vIPws7s/Gv0DlSgO0juLYv67t5odFdOWR77JTiF3Y2A7J7M9fov9O1UXz4uZ |
| 150 gW2SZls1YkqW |
| 151 -----END CERTIFICATE----- |
| 152 |
| 153 Certificate: |
| 154 Data: |
| 155 Version: 3 (0x2) |
| 156 Serial Number: 1 (0x1) |
| 157 Signature Algorithm: sha256WithRSAEncryption |
| 158 Issuer: CN=Root |
| 159 Validity |
| 160 Not Before: Jan 1 12:00:00 2015 GMT |
| 161 Not After : Jan 1 12:00:00 2016 GMT |
| 162 Subject: CN=Root |
| 163 Subject Public Key Info: |
| 164 Public Key Algorithm: rsaEncryption |
| 165 Public-Key: (2048 bit) |
| 166 Modulus: |
| 167 00:cc:43:57:ce:f5:69:b5:17:2d:24:1e:10:48:61: |
| 168 1e:6e:27:06:10:ae:6d:cd:70:97:4c:39:7b:0d:68: |
| 169 76:49:5b:2a:56:cf:24:d3:35:e4:f9:44:b0:60:c2: |
| 170 db:ee:58:f0:2c:3f:25:53:95:bf:fc:3b:cf:1a:5c: |
| 171 de:94:67:30:7f:6b:7b:c1:9c:d9:55:91:8b:34:57: |
| 172 a7:4f:d0:d7:38:8c:e6:57:ae:f6:61:66:bb:fb:4e: |
| 173 d3:b0:d0:c0:74:83:e3:43:7a:15:ab:29:fa:3f:65: |
| 174 b5:58:3b:0b:76:cf:b9:85:d9:2a:5b:bf:81:4d:d7: |
| 175 bb:72:cf:30:91:1a:0a:4f:6c:64:48:13:fe:cc:14: |
| 176 21:f0:74:b8:90:73:f7:d5:fe:5b:dd:b2:7a:71:1a: |
| 177 e3:c3:22:5a:37:38:db:d0:39:62:b3:87:0e:7d:a8: |
| 178 93:68:82:01:29:36:eb:30:20:66:d9:2a:f8:e9:7d: |
| 179 53:ac:93:c1:68:c1:21:66:26:9e:4d:34:8a:14:c2: |
| 180 38:c0:6e:57:9a:c8:93:c1:7d:7d:d8:22:6e:bb:5e: |
| 181 ff:dd:e0:af:e4:af:32:6d:f2:e7:57:d4:53:8d:ea: |
| 182 f9:ca:72:d3:3a:4e:19:e3:b8:b7:4f:fb:d8:5b:41: |
| 183 da:0e:17:59:e2:88:cd:c2:b7:6b:d4:64:50:f0:1e: |
| 184 36:9d |
| 185 Exponent: 65537 (0x10001) |
| 186 X509v3 extensions: |
| 187 X509v3 Subject Key Identifier: |
| 188 68:06:12:0B:9D:1F:3A:7C:E5:87:20:3C:ED:A3:49:5D:3E:74:28:69 |
| 189 X509v3 Authority Key Identifier: |
| 190 keyid:68:06:12:0B:9D:1F:3A:7C:E5:87:20:3C:ED:A3:49:5D:3E:74:28:6
9 |
| 191 |
| 192 Authority Information Access: |
| 193 CA Issuers - URI:http://url-for-aia/Root.cer |
| 194 |
| 195 X509v3 CRL Distribution Points: |
| 196 |
| 197 Full Name: |
| 198 URI:http://url-for-crl/Root.crl |
| 199 |
| 200 X509v3 Key Usage: critical |
| 201 Certificate Sign, CRL Sign |
| 202 X509v3 Basic Constraints: critical |
| 203 CA:TRUE |
| 204 Signature Algorithm: sha256WithRSAEncryption |
| 205 2a:56:07:28:0a:b2:16:a5:3e:e3:cc:7e:10:47:8d:88:04:be: |
| 206 92:d6:ef:fa:c2:e3:5f:5f:57:3a:75:5a:8e:8e:62:e0:94:26: |
| 207 32:d2:ab:d3:d7:88:7e:d0:14:b1:1b:1a:5d:15:87:15:45:ae: |
| 208 47:50:0b:50:dd:52:55:03:0b:cb:91:13:b0:96:20:24:c5:aa: |
| 209 13:f5:4f:60:20:b6:46:6a:a6:cf:9d:4e:88:09:77:ad:4d:6f: |
| 210 ea:d6:18:81:ac:7c:ad:59:9c:bb:f5:c5:62:e5:e4:b3:61:b2: |
| 211 fb:f4:22:4e:38:a4:42:3a:e1:00:54:78:dd:24:90:20:47:d2: |
| 212 74:2b:89:44:64:04:02:3b:f9:8b:fa:35:aa:90:c1:73:82:95: |
| 213 94:fa:5f:85:e9:af:e1:3e:33:2b:1b:91:31:1d:94:ee:1c:0c: |
| 214 e5:22:de:48:d4:2d:f7:3a:16:7e:f2:40:dc:ce:ec:3e:41:0d: |
| 215 12:3e:9c:ff:15:2b:9b:b3:80:87:02:50:76:ae:e1:05:dd:89: |
| 216 72:fc:49:e5:81:1f:91:cc:c8:27:b7:2c:b2:ef:71:a0:97:76: |
| 217 49:da:71:75:24:5e:45:2d:5b:2b:79:d2:b0:a3:b8:85:13:d5: |
| 218 68:d7:53:f0:d1:b8:87:d1:84:7c:9e:e1:18:23:f4:cc:2a:8d: |
| 219 f3:93:51:5e |
| 220 -----BEGIN TRUSTED_CERTIFICATE----- |
| 221 MIIDZTCCAk2gAwIBAgIBATANBgkqhkiG9w0BAQsFADAPMQ0wCwYDVQQDDARSb290 |
| 222 MB4XDTE1MDEwMTEyMDAwMFoXDTE2MDEwMTEyMDAwMFowDzENMAsGA1UEAwwEUm9v |
| 223 dDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMxDV871abUXLSQeEEhh |
| 224 Hm4nBhCubc1wl0w5ew1odklbKlbPJNM15PlEsGDC2+5Y8Cw/JVOVv/w7zxpc3pRn |
| 225 MH9re8Gc2VWRizRXp0/Q1ziM5leu9mFmu/tO07DQwHSD40N6Fasp+j9ltVg7C3bP |
| 226 uYXZKlu/gU3Xu3LPMJEaCk9sZEgT/swUIfB0uJBz99X+W92yenEa48MiWjc429A5 |
| 227 YrOHDn2ok2iCASk26zAgZtkq+Ol9U6yTwWjBIWYmnk00ihTCOMBuV5rIk8F9fdgi |
| 228 brte/93gr+SvMm3y51fUU43q+cpy0zpOGeO4t0/72FtB2g4XWeKIzcK3a9RkUPAe |
| 229 Np0CAwEAAaOByzCByDAdBgNVHQ4EFgQUaAYSC50fOnzlhyA87aNJXT50KGkwHwYD |
| 230 VR0jBBgwFoAUaAYSC50fOnzlhyA87aNJXT50KGkwNwYIKwYBBQUHAQEEKzApMCcG |
| 231 CCsGAQUFBzAChhtodHRwOi8vdXJsLWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUw |
| 232 IzAhoB+gHYYbaHR0cDovL3VybC1mb3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQE |
| 233 AwIBBjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQAqVgcoCrIW |
| 234 pT7jzH4QR42IBL6S1u/6wuNfX1c6dVqOjmLglCYy0qvT14h+0BSxGxpdFYcVRa5H |
| 235 UAtQ3VJVAwvLkROwliAkxaoT9U9gILZGaqbPnU6ICXetTW/q1hiBrHytWZy79cVi |
| 236 5eSzYbL79CJOOKRCOuEAVHjdJJAgR9J0K4lEZAQCO/mL+jWqkMFzgpWU+l+F6a/h |
| 237 PjMrG5ExHZTuHAzlIt5I1C33OhZ+8kDczuw+QQ0SPpz/FSubs4CHAlB2ruEF3Yly |
| 238 /EnlgR+RzMgntyyy73Ggl3ZJ2nF1JF5FLVsredKwo7iFE9Vo11Pw0biH0YR8nuEY |
| 239 I/TMKo3zk1Fe |
| 240 -----END TRUSTED_CERTIFICATE----- |
| 241 |
| 242 -----BEGIN TIME----- |
| 243 MTUwMzAyMTIwMDAwWg== |
| 244 -----END TIME----- |
| 245 |
| 246 -----BEGIN VERIFY_RESULT----- |
| 247 RkFJTA== |
| 248 -----END VERIFY_RESULT----- |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1414393008:
Add scripts to generate simple test data for certificate verification. (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@key_usages