Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password
An optional company name []:
+ openssl ca -policy policy_anything -out newcert.pem -passin '
Using configuration from /usr/local/openssl/ssl/openssl.cnf
DEBUG[load_index]: unique_subject = "yes"
Check that the request matches the signature
Signature ok
Certificate Details:
Serial Number:
a1:cc:f7:86:19:ea:57:48
Validity
Not Before: Aug 30 22:25:40 2006 GMT
Not After : Aug 30 22:25:40 2007 GMT
Subject:
countryName = US
stateOrProvinceName =
localityName =
organizationName =
organizationalUnitName =
commonName =
X509v3 extensions:
X509v3 Extended Key Usage:
TLS Web Server Authentication
Certificate is to be certified until Aug 30 22:25:40 2007 GMT (365 days)
Sign the certificate? [y/n]:y
failed to update database
TXT_DB error number 2
+ openssl pkcs12 -export -in newcert.pem -inkey newreq.pem -out cert-srv.p12 -clcerts -passin 'pass:
No certificate matches private key
+ openssl pkcs12 -in cert-srv.p12 -out cert-srv.pem -passin 'pass:
22665:error:0D07207B:asn1 encoding routines:ASN1_get_object:header too long:asn1_lib.c:140:
+ openssl x509 -inform PEM -outform DER -in cert-srv.pem -out cert-srv.der
unable to load certificate
22666:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:642:Expecting: TRUSTED CERTIFICATE
+ echo -e '\n\t\t##################\n'
##################
thanks in advance.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
