63 Alias name: dummydsa
64 --------------------
65 Creation date: Mar 29, 2018
66 Entry type: PrivateKeyEntry
67 Certificate chain length: 1
68 Certificate[1]:
69 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
70 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
71 Serial number: 324d85f0
72 Valid from: Thu Mar 29 16:06:34 PDT 2018 until: Tue Mar 28 16:06:34 PDT 2028
73 Signature algorithm name: SHA256withDSA
74 Version: 3
75
76 This can be generated using hacked (update the keytool source code so that
77 it can be used for version 1 X.509 certificate) keytool command:
78 % keytool -genkeypair -alias dummydsa -keyalg DSA -keysize 1024 \
79 -sigalg SHA256withDSA \
80 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \
81 -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase
82
83
84 truststore entries
85 ==================
86 This key store contains only trusted certificate entries. The same
87 certificates are used in both keystore and truststore.
88
89
90 unknown_keystore
91 ================
92 A keystore you can use when you don't want things to be verified.
93 Use this with keystore/truststore, and you'll never get a match.
|
63 Alias name: dummydsa
64 --------------------
65 Creation date: Mar 29, 2018
66 Entry type: PrivateKeyEntry
67 Certificate chain length: 1
68 Certificate[1]:
69 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
70 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
71 Serial number: 324d85f0
72 Valid from: Thu Mar 29 16:06:34 PDT 2018 until: Tue Mar 28 16:06:34 PDT 2028
73 Signature algorithm name: SHA256withDSA
74 Version: 3
75
76 This can be generated using hacked (update the keytool source code so that
77 it can be used for version 1 X.509 certificate) keytool command:
78 % keytool -genkeypair -alias dummydsa -keyalg DSA -keysize 1024 \
79 -sigalg SHA256withDSA \
80 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US" \
81 -validity 3652 -keypass passphrase -keystore keystore -storepass passphrase
82
83 Alias name: dummyecrsa
84 --------------------
85 Creation date: Apr 13, 2018
86 Entry type: PrivateKeyEntry
87 Certificate chain length: 2
88 Certificate[1]:
89 Owner: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
90 Issuer: CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US
91 Serial number: 6f2d1faa
92 Valid from: Fri Apr 13 16:20:55 CST 2018 until: Wed Apr 12 16:20:55 CST 2028
93 Version: 3
94
95 This can be generated by using keytool command:
96 % keytool -genkeypair -alias dummyecrsa -keyalg EC -keysize 256 \
97 -keypass passphrase -storepass passphrase -keystore keystore \
98 -dname "CN=dummy.example.com, OU=Dummy, O=Dummy, L=Cupertino, ST=CA, C=US"
99 % keytool -certreq -alias dummyecrsa -storepass passphrase -keystore keystore \
100 -file ecrsa.csr
101 % keytool -gencert -alias dummy -storepass passphrase -keystore keystore \
102 -validity 3652 -infile ecrsa.csr -outfile ecrsa.cer
103 % keytool -importcert -alias dummyecrsa -storepass passphrase -keystore keystore \
104 -file ecrsa.cer
105
106
107 truststore entries
108 ==================
109 This key store contains only trusted certificate entries. The same
110 certificates, except dummyecrsa, are used in both keystore and truststore.
111
112
113 unknown_keystore
114 ================
115 A keystore you can use when you don't want things to be verified.
116 Use this with keystore/truststore, and you'll never get a match.
|