#.................................. [ ca ] default_ca = CA_default [ CA_default ] dir = /usr/local/ca serial = $dir/serial database = $dir/index.txt new_certs_dir = $dir/certs certificate = $dir/certs/cacert.pem private_key = $dir/private/cakey.pem default_days = 365 default_md = md5 preserve = no email_in_dn = no nameopt = default_ca certopt = default_ca policy = policy_match [ policy_match ] countryName = match stateOrProvinceName = match organizationName = match organizationalUnitName = optional commonName = supplied emailAddress = optional [ req ] default_bits = 1024 # para tamano llave default_keyfile = key.pem # nombre de las llaves default_md = md5 # algoritmo de menssage digest string_mask = nombstr # caracteres permitidos distinguished_name = req_distinguished_name req_extensions = v3_req [ req_distinguished_name ] # Como es el prompt #------------------------- ---------------------------------- 0.organizationName = Nombre de la Organizacion (empresa) organizationalUnitName = Unidad organizacional (departamento, division) emailAddress = Direccion de e-mail emailAddress_max = 40 localityName = Localidad (ciudad) stateOrProvinceName = Departamento (provincia) countryName = Pais (codigo 2 letras) countryName_min = 2 countryName_max = 2 commonName = Nombre Comun (dominio, IP, hostname) commonName_max = 64 # Valores por defecto, para escribir menos cada vez #------------------------ ------------------------------ 0.organizationName_default = Febril S.A. localityName_default = MONTEVIDEO stateOrProvinceName_default = MONTEVIDEO countryName_default = UY emailAddress_default = info@febril.com.uy [ v3_ca ] basicConstraints = CA:TRUE subjectKeyIdentifier = hash authorityKeyIdentifier = keyid:always,issuer:always [ v3_req ] basicConstraints = CA:FALSE subjectKeyIdentifier = hash