From 92f9db17466c4e28998a5cf849c7a861093eff23 Mon Sep 17 00:00:00 2001 From: Yiming Jing Date: Mon, 10 Sep 2018 11:32:23 -0700 Subject: tests/certs: rebuild certs with 2048-bit RSA keys The previous test certificates contained RSA keys of only 1024 bits. However, RSA claims that 1024-bit RSA keys are likely to become crackable some time before 2010. The NIST recommends at least 2048-bit keys for RSA for now. Better use full 2048 also for testing. Closes #2973 --- tests/certs/Server-localhost-sv.pem | 138 +++++++++++++++++++++--------------- 1 file changed, 81 insertions(+), 57 deletions(-) (limited to 'tests/certs/Server-localhost-sv.pem') diff --git a/tests/certs/Server-localhost-sv.pem b/tests/certs/Server-localhost-sv.pem index a6d9b0350..9af05206c 100644 --- a/tests/certs/Server-localhost-sv.pem +++ b/tests/certs/Server-localhost-sv.pem @@ -24,49 +24,70 @@ commonName_value = localhost # the certificate # some dhparam -----BEGIN RSA PRIVATE KEY----- -MIICXgIBAAKBgQC6X0tpdDGZTfS0typluLcxwTjPNje7XhjjUh9SqlolLwxmiDKw -77IskDhebm8O5Ds/8C7xej1ew2SGP2i3zwuz6grKlBbUK2oC46Gzx9HQBrj/39zg -Mirn3WLMccToz53eXHVpnbbO4kLYp71QVHgtVWd/AHuPnBHRns6+Hv7PNwIDAQAB -AoGBAJdWRGVIPfJP1BJe3eWl3dRgI2JXk1/pY+pLSDYXMIYbM0Wa+RamPRdksPE1 -WadM+zPLNENP0L+/iERe/wiq7sNxKQLwH5eE3tUxC+iC8GO6gQ2zHaWVNu3R79CM -t8YZhlmG2o+xC4CGYzuITgPE16m24CYauLZHO/YVDzG6yNApAkEA6K0db5bZmIaU -TJW/jEnPJSubDx8kE1YncTOAKaAeoJwaaSfFphVKNGNrZHu3jBhKFgVNBNxGUWrW -0pIkDrb3hQJBAM0N7+ghZ/7vaOoKqYHQI2z8SgPsUjQjmubCBALe/Ys3kg9PPpyz -umJSAOYjC4X1dSlkAkciJqRS0Y6uKgSH4osCQQCVIWftft1GsnNYxt43t5MKOvGu -doIz1pN/LcgmZddbj9IptfErqxedjl9lzxnstCDADnO3+ssjIfxAiKSNvd3VAkA3 -3yFMTbXpZ9BdXPRc05qjeoasVPr9C+qMD7dKFPpesZCRrVTxG6OgYJmwG0JriLsY -wRBB05NV2N8SknAOdfwLAkEAw5Hqxc/Xlh6xhy9tBdJXDtuptV10mg6EbO98x9/7 -gyuAArSguhXna+aRqjLRelCwVB9f9aZ1XVoDKWVCsnfCbQ== +MIIEowIBAAKCAQEA3aHFV3a/X1RriGAyzANuMser5W788vDOOGS2VKuCkQPLtmat +yD1DPEctY6gaQhj03vZjKzeDqGo1arWm1cTS+NLc+KKguaMccrYAwHYyaTOI81Ni +IOtKFKHAMKOxak+h5NbbuwAbdQrTzw3660m9jwK5u+1hyPLA1Z90X45F95CNOU5a +Z04VE/d5HTBco0ft5KOU/WnPZuVR242goOPqYtNb1XBSunr2ERjkF9Obe8loCErz +zVYf1jlDSDU/A2bVi5rKpY3lvYw9UHOeAA5lpHZEYgpR/qoveyKniGIyzJnkLIGY +G8k6fY9zQcalChoWMiB3bTKyAg2b/RGsxfQX5wIDAQABAoIBAGSVmYlDVEEAgDkJ +Z6RdXjLfmazrvRLIpN7FHla46+3Caj6ixPXej9gYeYoD7b7XsrJJ4eHoNPFHGm0O +eeQEirbwg+a3b/gwBaYt4ZN3UROblujPi/ZismFAs4efktIrx86ikGCDAPMSceRD +dQA5nDT+SKr4Zeub+FY7IsaHPEvIz2D7N7M/73r3lqsbrjs5veSnDnBX5Pkg/2Qc +g090yIRXkDLCcjgMmyLnOSZc/ZUud/IZF3n3XgNeMOHB1vGngeDfKPr0TNrdYUY8 +cS/c1r385UQTATKH7xPJ13LfX3SewVSPt6CHPTLMhxdUDoF+TcYocHKwxPRI4Ze7 +4JC5kCkCgYEA94nG79nZh3ylJVjmnnfwxg01cVa0pPGFyiVBpSz4NqP55bs9+S8c +8uF38lurAf2mkF4rRZ/WZlEZdo1ZLrndwh06fY42m85LTEBN1KoAgJHg3j76MNT3 +Q/G18RqZNLapx657q/X5SKYuB+HhC8u14YXJJsSUk7Jpg23AtmkE3W0CgYEA5TVJ +SNfgCCgVUJoaELzaDQbxEbXsDxrjJ02rjS3o9x7cUHGR8KeH8/19SxjdNfNUWWTc +w5vcLpZGvpst7ZIZBka7UEQlnnr6ka7QDnLCNSmwJcYJFiz37SGqyxjM7FId4lTj +uZZyDXPVZFo7bgF0fO8ltROBx0Rx0rd/pP7H2iMCgYBiTlI2MPMlzoebhGnaJ1H0 +pYxC3adSFiUG+bLPUUOmF4sIBEuBaYd6obZMBsGsQbrjfLJ8rRStf6m4Hjx7xQ7f +p1HySQdA6zWWK7d9LKKUbNq8CJC90eX9EsIp5WFQwPY+OfodecstYenH8Zm5YIZz +8PjIr6s92M30hyLQjnaDJQKBgBnwqueUjuU9bBQgLJ0CUocw5u2DMkEPYO/cyXKD +5J67HmH4SHT88NT7Nkfee4KUlFI9qQJ2TDf1h/Iga9U8OJrOPHq8C6ng7yS3rRJF +iJctraLIw9R/qFts+QBdQSvpqzonM1KYpTXCiz79O0aa4Y0WH6VbnM9pfpxDai3J +K+MTAoGBAPdKqXYnjsethIhW21tN/2leOt7y5E/bK8JZMmuoOkyniHgGXH7WjC/e +eS2kENBmZmX+QuOsj5ZIi/UAMS2vme8yCalVHkx+e3cYWK60AyY2A7JiYJAt3cAD +c++jjklGm+eeN4VlqSo+ic0AuInGw+3YfLMkbCPRoKFRiPL+wih6 -----END RSA PRIVATE KEY----- Certificate: Data: Version: 3 (0x2) - Serial Number: 14269504311627 (0xcfa60bc514b) + Serial Number: 15361883045110 (0xdf8b794fcf6) Signature Algorithm: sha1WithRSAEncryption Issuer: countryName = NN organizationName = Edel Curl Arctic Illudium Research Cloud commonName = Northern Nowhere Trust Anchor Validity - Not Before: Mar 21 15:07:11 2015 GMT - Not After : Jun 7 15:07:11 2023 GMT + Not Before: Sep 5 22:58:24 2018 GMT + Not After : Nov 22 22:58:24 2026 GMT Subject: countryName = NN organizationName = Edel Curl Arctic Illudium Research Cloud commonName = localhost Subject Public Key Info: Public Key Algorithm: rsaEncryption - Public-Key: (1024 bit) + Public-Key: (2048 bit) Modulus: - 00:ba:5f:4b:69:74:31:99:4d:f4:b4:b7:2a:65:b8: - b7:31:c1:38:cf:36:37:bb:5e:18:e3:52:1f:52:aa: - 5a:25:2f:0c:66:88:32:b0:ef:b2:2c:90:38:5e:6e: - 6f:0e:e4:3b:3f:f0:2e:f1:7a:3d:5e:c3:64:86:3f: - 68:b7:cf:0b:b3:ea:0a:ca:94:16:d4:2b:6a:02:e3: - a1:b3:c7:d1:d0:06:b8:ff:df:dc:e0:32:2a:e7:dd: - 62:cc:71:c4:e8:cf:9d:de:5c:75:69:9d:b6:ce:e2: - 42:d8:a7:bd:50:54:78:2d:55:67:7f:00:7b:8f:9c: - 11:d1:9e:ce:be:1e:fe:cf:37 + 00:dd:a1:c5:57:76:bf:5f:54:6b:88:60:32:cc:03: + 6e:32:c7:ab:e5:6e:fc:f2:f0:ce:38:64:b6:54:ab: + 82:91:03:cb:b6:66:ad:c8:3d:43:3c:47:2d:63:a8: + 1a:42:18:f4:de:f6:63:2b:37:83:a8:6a:35:6a:b5: + a6:d5:c4:d2:f8:d2:dc:f8:a2:a0:b9:a3:1c:72:b6: + 00:c0:76:32:69:33:88:f3:53:62:20:eb:4a:14:a1: + c0:30:a3:b1:6a:4f:a1:e4:d6:db:bb:00:1b:75:0a: + d3:cf:0d:fa:eb:49:bd:8f:02:b9:bb:ed:61:c8:f2: + c0:d5:9f:74:5f:8e:45:f7:90:8d:39:4e:5a:67:4e: + 15:13:f7:79:1d:30:5c:a3:47:ed:e4:a3:94:fd:69: + cf:66:e5:51:db:8d:a0:a0:e3:ea:62:d3:5b:d5:70: + 52:ba:7a:f6:11:18:e4:17:d3:9b:7b:c9:68:08:4a: + f3:cd:56:1f:d6:39:43:48:35:3f:03:66:d5:8b:9a: + ca:a5:8d:e5:bd:8c:3d:50:73:9e:00:0e:65:a4:76: + 44:62:0a:51:fe:aa:2f:7b:22:a7:88:62:32:cc:99: + e4:2c:81:98:1b:c9:3a:7d:8f:73:41:c6:a5:0a:1a: + 16:32:20:77:6d:32:b2:02:0d:9b:fd:11:ac:c5:f4: + 17:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Alternative Name: @@ -76,45 +97,48 @@ Certificate: X509v3 Extended Key Usage: TLS Web Server Authentication X509v3 Subject Key Identifier: - 7E:42:8D:AC:2E:93:AD:4C:E0:09:AC:C6:08:F1:82:E0:B7:B7:C6:7F + D5:C8:A5:DF:AB:B4:EE:19:CB:CF:D1:D5:74:C4:28:66:B5:1C:CC:39 X509v3 Authority Key Identifier: keyid:12:CA:BA:4B:46:04:A7:75:8A:2C:E8:0E:54:94:BC:12:65:A6:7B:CE X509v3 Basic Constraints: CA:FALSE Signature Algorithm: sha1WithRSAEncryption - 00:fe:c4:fc:4b:28:b8:bc:39:8c:6f:f1:72:d3:76:da:28:27: - e2:97:94:bb:ad:2f:91:c4:db:df:33:4b:48:4e:97:5b:4c:4c: - be:fc:e4:b7:19:5c:b8:83:6e:ef:2c:b0:d5:7c:fc:0d:cb:7e: - 29:ed:fd:4d:ef:05:1c:89:15:31:78:9b:18:29:d3:37:83:c7: - 39:f4:78:27:b7:00:75:d1:fb:f0:29:88:79:e4:e9:a7:d4:65: - 04:bf:d5:a1:dc:05:b2:17:c4:a9:da:61:10:22:5f:8f:50:fc: - 1f:ab:f6:39:dd:ab:35:a6:94:54:63:5c:6d:25:f0:dc:3a:0a: - 70:4e:49:ef:be:fa:2c:0a:cd:ce:a6:2d:26:cd:f8:24:89:77: - 2c:ea:6e:19:b6:5c:8c:1a:08:ea:a8:9f:2c:1b:c7:fc:13:6c: - fe:a7:90:08:e5:98:83:30:52:86:ac:83:0b:cb:25:92:21:94: - 80:13:d7:e8:d0:42:56:83:55:d3:09:9b:e8:c5:96:82:15:64: - 6b:83:77:eb:99:e5:52:dc:1b:36:29:a0:c9:da:8b:d3:0d:77: - 24:f2:c3:df:2e:c4:93:e0:34:47:a9:9b:54:d3:75:d5:c7:de: - 88:a1:ef:7b:40:2f:dc:e9:28:8c:69:be:eb:71:4a:c2:30:50: - 99:36:52:69 + 96:24:85:57:fe:fd:0d:e8:58:ce:c0:af:6e:7c:ac:cf:e0:00: + 31:78:22:6a:82:fe:db:1f:8f:92:0c:39:d1:74:bf:27:22:f4: + f2:19:8f:96:5a:8e:ce:a1:58:6b:4a:6f:07:30:b6:fb:91:9f: + fd:8a:1c:a3:fb:13:6d:b0:0c:6c:3f:1e:99:fd:c9:10:fa:47: + 21:20:dd:c3:06:dc:b6:f7:a2:bc:6d:2d:7b:3e:a6:c9:1a:4d: + 69:5b:13:77:2d:c4:54:3c:35:75:69:1a:d8:d8:6c:2b:92:5a: + 8b:bc:2e:37:48:80:40:78:60:3f:b4:79:21:b4:5f:70:d6:0a: + 14:00:1d:e0:88:7a:7e:f5:c5:13:c2:aa:4c:59:d0:05:3a:83: + 1e:3f:16:68:c2:3e:04:fc:1b:7f:11:26:2e:1c:c7:58:c7:5a: + fd:00:73:a2:09:a1:06:98:3e:23:f0:83:65:45:8a:e1:2f:2f: + 1f:e5:c8:ed:8a:6e:1b:c8:79:50:ad:c7:bf:92:9d:4d:e5:f9: + d8:24:a7:7d:8b:34:40:79:9a:59:a3:53:0f:22:91:2a:fb:a7: + 38:f8:e7:58:f8:e8:a2:3a:1f:74:42:81:65:5d:7d:4f:cb:04: + 1b:d6:ce:1d:59:2d:3f:f8:8b:05:97:24:df:3c:1f:b4:43:59: + 8b:8c:4d:7f -----BEGIN CERTIFICATE----- -MIIDPzCCAiegAwIBAgIGDPpgvFFLMA0GCSqGSIb3DQEBBQUAMGgxCzAJBgNVBAYT +MIIDwzCCAqugAwIBAgIGDfi3lPz2MA0GCSqGSIb3DQEBBQUAMGgxCzAJBgNVBAYT Ak5OMTEwLwYDVQQKDChFZGVsIEN1cmwgQXJjdGljIElsbHVkaXVtIFJlc2VhcmNo IENsb3VkMSYwJAYDVQQDDB1Ob3J0aGVybiBOb3doZXJlIFRydXN0IEFuY2hvcjAe -Fw0xNTAzMjExNTA3MTFaFw0yMzA2MDcxNTA3MTFaMFQxCzAJBgNVBAYTAk5OMTEw +Fw0xODA5MDUyMjU4MjRaFw0yNjExMjIyMjU4MjRaMFQxCzAJBgNVBAYTAk5OMTEw LwYDVQQKDChFZGVsIEN1cmwgQXJjdGljIElsbHVkaXVtIFJlc2VhcmNoIENsb3Vk -MRIwEAYDVQQDDAlsb2NhbGhvc3QwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGB -ALpfS2l0MZlN9LS3KmW4tzHBOM82N7teGONSH1KqWiUvDGaIMrDvsiyQOF5ubw7k -Oz/wLvF6PV7DZIY/aLfPC7PqCsqUFtQragLjobPH0dAGuP/f3OAyKufdYsxxxOjP -nd5cdWmdts7iQtinvVBUeC1VZ38Ae4+cEdGezr4e/s83AgMBAAGjgYYwgYMwFAYD -VR0RBA0wC4IJbG9jYWxob3N0MAsGA1UdDwQEAwIDqDATBgNVHSUEDDAKBggrBgEF -BQcDATAdBgNVHQ4EFgQUfkKNrC6TrUzgCazGCPGC4Le3xn8wHwYDVR0jBBgwFoAU -Esq6S0YEp3WKLOgOVJS8EmWme84wCQYDVR0TBAIwADANBgkqhkiG9w0BAQUFAAOC -AQEAAP7E/EsouLw5jG/xctN22ign4peUu60vkcTb3zNLSE6XW0xMvvzktxlcuINu -7yyw1Xz8Dct+Ke39Te8FHIkVMXibGCnTN4PHOfR4J7cAddH78CmIeeTpp9RlBL/V -odwFshfEqdphECJfj1D8H6v2Od2rNaaUVGNcbSXw3DoKcE5J7776LArNzqYtJs34 -JIl3LOpuGbZcjBoI6qifLBvH/BNs/qeQCOWYgzBShqyDC8slkiGUgBPX6NBCVoNV -0wmb6MWWghVka4N365nlUtwbNimgydqL0w13JPLD3y7Ek+A0R6mbVNN11cfeiKHv -e0Av3OkojGm+63FKwjBQmTZSaQ== +MRIwEAYDVQQDDAlsb2NhbGhvc3QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK +AoIBAQDdocVXdr9fVGuIYDLMA24yx6vlbvzy8M44ZLZUq4KRA8u2Zq3IPUM8Ry1j +qBpCGPTe9mMrN4OoajVqtabVxNL40tz4oqC5oxxytgDAdjJpM4jzU2Ig60oUocAw +o7FqT6Hk1tu7ABt1CtPPDfrrSb2PArm77WHI8sDVn3RfjkX3kI05TlpnThUT93kd +MFyjR+3ko5T9ac9m5VHbjaCg4+pi01vVcFK6evYRGOQX05t7yWgISvPNVh/WOUNI +NT8DZtWLmsqljeW9jD1Qc54ADmWkdkRiClH+qi97IqeIYjLMmeQsgZgbyTp9j3NB +xqUKGhYyIHdtMrICDZv9EazF9BfnAgMBAAGjgYYwgYMwFAYDVR0RBA0wC4IJbG9j +YWxob3N0MAsGA1UdDwQEAwIDqDATBgNVHSUEDDAKBggrBgEFBQcDATAdBgNVHQ4E +FgQU1cil36u07hnLz9HVdMQoZrUczDkwHwYDVR0jBBgwFoAUEsq6S0YEp3WKLOgO +VJS8EmWme84wCQYDVR0TBAIwADANBgkqhkiG9w0BAQUFAAOCAQEAliSFV/79DehY +zsCvbnysz+AAMXgiaoL+2x+Pkgw50XS/JyL08hmPllqOzqFYa0pvBzC2+5Gf/Yoc +o/sTbbAMbD8emf3JEPpHISDdwwbctveivG0tez6myRpNaVsTdy3EVDw1dWka2Nhs +K5Jai7wuN0iAQHhgP7R5IbRfcNYKFAAd4Ih6fvXFE8KqTFnQBTqDHj8WaMI+BPwb +fxEmLhzHWMda/QBzogmhBpg+I/CDZUWK4S8vH+XI7YpuG8h5UK3Hv5KdTeX52CSn +fYs0QHmaWaNTDyKRKvunOPjnWPjoojofdEKBZV19T8sEG9bOHVktP/iLBZck3zwf +tENZi4xNfw== -----END CERTIFICATE----- -- cgit v1.2.3