1oid_section = new_oids 2 3[ new_oids ] 4# Example policies to test their 5tsa_policy1 = 1.2.3.4.1 6tsa_policy2 = 1.2.3.4.5.6 7 8[ req ] 9default_bits = 1024 10default_md = sha256 11default_keyfile = privkey.pem 12distinguished_name = req_distinguished_name 13attributes = req_attributes 14x509_extensions = v3_ca # The extensions to add to the self signed cert 15string_mask = MASK:4294967295 16 17 18[ req_distinguished_name ] 19countryName = Country Name (2 letter code) 20countryName_default = AU 21countryName_min = 2 22countryName_max = 2 23stateOrProvinceName = State or Province Name (full name) 24stateOrProvinceName_default = Some-State 25localityName = Locality Name (eg, city) 260.organizationName = Organization Name (eg, company) 270.organizationName_default = Internet Widgits Pty Ltd 28organizationalUnitName = Organizational Unit Name (eg, section) 29commonName = Common Name (eg, YOUR name) 30commonName_max = 64 31emailAddress = Email Address 32emailAddress_max = 64 33 34[ req_attributes ] 35challengePassword = A challenge password 36challengePassword_min = 4 37challengePassword_max = 20 38unstructuredName = An optional company name 39 40[ v3_req ] 41basicConstraints = CA:FALSE 42keyUsage = nonRepudiation, digitalSignature, keyEncipherment 43 44[ v3_ca ] 45subjectKeyIdentifier=hash 46authorityKeyIdentifier=keyid:always,issuer:always 47basicConstraints = CA:true 48 49[ usr_cert ] 50basicConstraints=CA:FALSE 51 52
