1oid_section = new_oids 2 3[ new_oids ] 4# Example policies to test their 5tsa_policy1 = 1.2.3.4.1 6tsa_policy2 = 1.2.3.4.5.6 7 8[ req ] 9default_bits = 1024 10default_keyfile = privkey.pem 11distinguished_name = req_distinguished_name 12attributes = req_attributes 13x509_extensions = v3_ca # The extensions to add to the self signed cert 14string_mask = MASK:4294967295 15 16 17[ req_distinguished_name ] 18countryName = Country Name (2 letter code) 19countryName_default = AU 20countryName_min = 2 21countryName_max = 2 22stateOrProvinceName = State or Province Name (full name) 23stateOrProvinceName_default = Some-State 24localityName = Locality Name (eg, city) 250.organizationName = Organization Name (eg, company) 260.organizationName_default = Internet Widgits Pty Ltd 27organizationalUnitName = Organizational Unit Name (eg, section) 28commonName = Common Name (eg, YOUR name) 29commonName_max = 64 30emailAddress = Email Address 31emailAddress_max = 64 32 33[ req_attributes ] 34challengePassword = A challenge password 35challengePassword_min = 4 36challengePassword_max = 20 37unstructuredName = An optional company name 38 39[ v3_req ] 40basicConstraints = CA:FALSE 41keyUsage = nonRepudiation, digitalSignature, keyEncipherment 42 43[ v3_ca ] 44subjectKeyIdentifier=hash 45authorityKeyIdentifier=keyid:always,issuer:always 46basicConstraints = CA:true 47 48[ usr_cert ] 49basicConstraints=CA:FALSE 50 51
