How to do a PKCS#10 in embedded systems

[Giordano Bruno]

Hi people, I have a problem in in certifications in low level issue,
but I think it is the best place to solve,

I need to generate a PKCS#10 with a very limited device, a MSP430F5438
from Texas Instruments plus a co-processor that implement the RSA and
SHA-1 algorithms.

The coprocessor generate the key pair, as shown below. I used the
private key generate to sign the part in the of the CSR message. I
used RSA 1024 with SHA-1 algorithms to do this. As result we got the
file example.der. I used the site
<http://www.motobit.com/util/base64-decoder-encoder.asp> to transform
the DER file in the example.pem. To validate this information, I use
the site <http://www.redkestrel.co.uk/cgi/decodeCSR.cgi>, achieving as
result the warning "The CSR has an invalid signature".

Did I do something wrong?

Thank you
Giordano Bruno Wolaniuk



/////////////////////////////////////////////////////////
//CSR (PKCS#10)
30 82 01 BE

The sign is from here...
30 82 01 27 02 01 00 30 2D 31 0B 30
09 06 03 55 04 06 13 02 62 72 31 0F 30 0D 06 03
55 04 0A 13 06 6C 61 63 74 65 63 31 0D 30 0B 06
03 55 04 0B 13 04 64 76 65 6C 30 81 9F 30 0D 06
09 2A 86 48 86 F7 0D 01 01 01 05 00 03 81 8D 00
30 81 89 02 81 81 00

//PUBLIC KEY
A1 E1 EE 29 3C 36 67 92 5F 58 D9 78 94 D0 B8 27
A0 33 1B 52 6C 69 6E 44 37 B7 F4 4C FA 9C B7 38
01 FF AA CE 75 F8 7D C3 34 F1 30 B0 28 DE 05 80
F8 C2 D5 65 D7 05 44 C5 D9 8D 3D 50 71 7B 3A C4
ED 8B 93 5E B7 1B A5 0E AB 87 E6 EF AA B0 8E 4A
B5 59 10 96 32 D1 EF 24 6C 2C DD 04 A5 BD D8 4A
F6 12 DF 5D 63 59 40 B0 2E E8 62 A5 4E BE AF 71
04 8F 3A 58 87 DA 37 C8 7C B8 A8 AC EB E7 0E 17

02 03 01 00 01 A0 51 30 4F
06 09 2A 86 48 86 F7 0D 01 09 0E 31 42 30 40 30
0B 06 03 55 1D 0F 04 04 03 02 01 06 30 11 06 09
60 86 48 01 86 F8 42 01 01 04 04 03 02 00 07 30
1E 06 09 60 86 48 01 86 F8 42 01 0D 04 11 16 0F
78 63 61 20 63 65 72 74 69 66 69 63 61 74 65
...up to here!

30
0D 06 09 2A 86 48 86 F7 0D 01 01 05 05 00 03 81
81 00

//SIGN PACKET
8F 2C 23 95 D5 70 B6 19 DF 20 FB 59 A6 E8 9F 5D
59 0B B5 33 69 6B EE 8B 4F 4E F8 1A 4D BE 12 30
5B 8B 1C BF 3B 09 9B 62 9C 00 A9 47 91 0D 06 A4
3F 6E E7 A4 77 32 F4 CA 09 C7 1A B2 2F E8 62 C7
43 B1 0E A4 FE D6 61 FA 6C 43 81 3E AF DE A9 79
2D 72 B5 3A BC 00 01 59 D3 86 59 45 7A 28 54 55
C6 B7 45 C0 22 96 6C 7A B1 A3 B7 F5 3F E2 5F C9
96 B0 B8 2C 3C DC B8 9B 0B C0 E5 77 41 5A AE 61

/////////////////////////////////////////////////////////


//KEY PAIR GENERATED BY VAULTIC

//PUBLIC KEY
A1 E1 EE 29 3C 36 67 92 5F 58 D9 78 94 D0 B8 27
A0 33 1B 52 6C 69 6E 44 37 B7 F4 4C FA 9C B7 38
01 FF AA CE 75 F8 7D C3 34 F1 30 B0 28 DE 05 80
F8 C2 D5 65 D7 05 44 C5 D9 8D 3D 50 71 7B 3A C4
ED 8B 93 5E B7 1B A5 0E AB 87 E6 EF AA B0 8E 4A
B5 59 10 96 32 D1 EF 24 6C 2C DD 04 A5 BD D8 4A
F6 12 DF 5D 63 59 40 B0 2E E8 62 A5 4E BE AF 71
04 8F 3A 58 87 DA 37 C8 7C B8 A8 AC EB E7 0E 17



//PRIVATE KEY - MODULUS
A1 E1 EE 29 3C 36 67 92 5F 58 D9 78 94 D0 B8 27
A0 33 1B 52 6C 69 6E 44 37 B7 F4 4C FA 9C B7 38
01 FF AA CE 75 F8 7D C3 34 F1 30 B0 28 DE 05 80
F8 C2 D5 65 D7 05 44 C5 D9 8D 3D 50 71 7B 3A C4
ED 8B 93 5E B7 1B A5 0E AB 87 E6 EF AA B0 8E 4A
B5 59 10 96 32 D1 EF 24 6C 2C DD 04 A5 BD D8 4A
F6 12 DF 5D 63 59 40 B0 2E E8 62 A5 4E BE AF 71
04 8F 3A 58 87 DA 37 C8 7C B8 A8 AC EB E7 0E 17

//PRIVATE KEY - EXPONENT VALUE
41 78 47 42 C4 08 58 C0 F8 F0 CD 1B 18 4C 85 7D
F9 2B 52 2C 76 8D F9 3B 7B B1 59 0B 5C FB CE 99
C7 2D 28 5E 51 95 CA FF 0C C5 52 E4 9B D2 97 35
3E E6 45 39 E7 C9 48 B4 1F B5 20 8C 0D 29 42 6D
C7 1E 82 4E 49 2C 41 3B 7B C5 4E 8F DC 55 7F 26
4A 02 5D EC 24 9A 8E CB D4 9C B9 7F 5F F3 D9 2D
EE 9A D2 5C BA 7D F2 7C 10 2C 39 17 6B CE 9D 41
CC 03 A5 84 27 1D E3 77 73 E9 C3 A7 3D DC C1 39

example.der
Description: application/x509-ca-cert

example.pem
Description: application/x509-ca-cert