Skip to content
/ ca-private Public

Certificate authority based on CloudFlare's PKI/TLS toolkit.

5 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

balena-io/ca-private

BranchesTags

Repository files navigation

ca-private

private certificate authority based on CloudFlare's PKI/TLS toolkit

Generates the following private trust chain:

depth=2 C = {{country}}, ST = {{state}}, L = {{locality_name}}, O = {{org}}, OU = {{org_unit}}, CN = {{org}} Root CA {{root_ca_gen}}
verify error:num=19:self signed certificate in certificate chain
verify return:1

depth=2 C = {{country}}, ST = {{state}}, L = {{locality_name}}, O = {{org}}, OU = {{org_unit}}, CN = {{org}} Root CA {{root_ca_gen}}
verify return:1

depth=1 C = {{country}}, ST = {{state}}, L = {{locality_name}}, O = {{org}}, OU = {{org_unit}}, CN = {{org}} Server CA {{server_ca_gen}}
verify return:1

depth=0 C = {{country}}, ST = {{state}}, L = {{locality_name}}, O = {{org}}, OU = {{org_unit}}, CN = {{cn}}.{{tld}}
verify return:1

The resulting volume will have the following structure:

/pki
├── balena.db
├── ca-{{root_ca_gen}}-key.pem
├── ca-{{root_ca_gen}}.csr
├── ca-{{root_ca_gen}}.pem
├── config.json
├── ocsp-key.pem
├── ocsp.csr
├── ocsp.json
├── ocsp.pem
├── ocsp_responses
├── server-ca-{{server_ca_gen}}-key.pem
├── server-ca-{{server_ca_gen}}.csr
└── server-ca-{{server_ca_gen}}.pem

About

Certificate authority based on CloudFlare's PKI/TLS toolkit.

Resources

Readme
Activity
Custom properties

Stars

5 stars

Watchers

14 watching

Forks

2 forks
Report repository

Packages

 
 
 

Contributors 5

Languages