Google Git
Sign in
boringssl / boringssl / c638ed8a1bc33c3f08113d9dcf165820764728a2 / . / src / pki / testdata / verify_certificate_chain_unittest / target-wrong-signature-no-authority-key-identifier / chain.pem
blob: eb29d0800afc83502c2add7cf0d889c76471d507 [file] [log] [blame]
[Created by: generate-chains.py]
Certificate chain where the target was signed by a different
certificate with a different key. The target lacks an
authorityKeyIdentifier extension as some verifiers will not try verifying with
the bogus intermediate if the authorityKeyIdentifier does not match the
intermediate's subjectKeyIdentifier.
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:6b:f0:a5:aa:60:49:5e:d6:8b:7f:f5:b2:89:be:f7:78:1d:89:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Intermediate
Validity
Not Before: Oct 5 12:00:00 2021 GMT
Not After : Oct 5 12:00:00 2022 GMT
Subject: CN=Target
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:34:1b:30:e4:7d:b9:40:ec:8c:d8:b7:d5:4d:
a0:0c:85:66:25:a7:bf:16:c2:d8:4e:6a:b5:d1:3c:
c1:63:a8:ff:96:24:87:59:14:9b:e0:00:8b:75:7a:
52:5d:7d:a5:1d:fc:1d:f8:4b:eb:e3:74:b5:8d:e8:
43:8d:dc:b9:3d:d5:47:86:fb:c7:d8:56:b6:91:03:
76:56:ba:f9:35:6b:b6:71:44:51:a2:7c:24:02:e5:
f0:7c:67:34:21:e0:10:31:54:f9:6d:96:43:33:a6:
bb:ca:4c:f8:31:a4:16:93:6d:15:50:0a:5e:43:77:
ab:2d:4b:ce:79:80:ec:95:0c:a2:9b:7a:72:7d:f5:
a6:4a:28:14:a3:b8:eb:8f:88:84:08:e5:00:86:30:
aa:53:6f:b2:9e:5f:85:85:29:dd:94:aa:94:28:8a:
ca:50:13:f9:ac:08:64:8c:b9:80:65:ff:65:c1:a6:
48:75:df:b0:9a:8c:0b:c8:d0:07:a9:8b:9f:16:69:
51:81:c9:8a:33:81:3f:04:57:2c:06:53:c6:2e:c7:
4c:99:6d:65:2b:a4:c0:b6:6a:ca:37:05:38:2a:64:
b0:7f:e5:ad:3b:90:77:bd:86:53:34:18:00:46:6a:
37:0f:85:39:c5:95:96:ab:bd:a3:81:09:69:40:22:
09:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:1C:A0:65:5A:CD:B7:F6:57:2D:AA:6C:C2:A7:B0:AE:60:FE:61:02
Authority Information Access:
CA Issuers - URI:http://url-for-aia/Intermediate.cer
X509v3 CRL Distribution Points:
Full Name:
URI:http://url-for-crl/Intermediate.crl
X509v3 Key Usage: critical
Digital Signature, Key Encipherment
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
X509v3 Subject Alternative Name:
DNS:test.example
Signature Algorithm: sha256WithRSAEncryption
42:20:d3:44:c7:c2:bf:44:3f:d3:c7:df:6f:15:17:34:04:40:
4d:c6:d4:a9:2c:06:b1:41:78:4a:57:00:f3:65:22:17:ed:42:
5a:e9:5d:a6:22:25:c0:9a:e0:1d:0b:5c:c6:fd:0e:05:6c:11:
b8:ae:cd:ad:91:bf:b9:4e:bb:81:28:a7:7e:47:01:0b:e4:73:
29:4b:9a:6e:cd:01:0e:e6:3e:f0:19:49:24:1d:8e:04:5e:4d:
1f:64:ad:5a:90:d8:22:18:7a:66:10:cd:4d:6a:2c:f4:31:82:
f0:31:e4:c5:2e:a5:1e:3c:52:77:de:c5:02:fc:0f:68:ee:8c:
1c:24:4a:da:41:ba:ed:bc:4d:c0:f7:f0:27:7b:44:8f:ac:be:
e0:d5:49:89:c1:98:53:6c:7e:f3:27:82:70:a5:03:01:0e:39:
82:b0:53:6e:26:5d:5e:a7:e6:8a:bf:8c:4e:00:38:1c:65:42:
c0:ff:8c:36:4f:fe:2f:1a:fd:3c:6a:75:3d:05:19:88:23:f3:
84:eb:fd:53:2c:f4:98:c1:38:bb:a5:fb:a8:f7:b5:9d:1d:d1:
20:33:2d:b1:68:f8:55:8b:63:df:20:f4:3b:88:0d:03:e0:4a:
75:b4:b3:0b:c5:03:49:1d:18:78:65:93:bc:b0:66:61:e5:64:
b4:0a:e0:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:8c:81:7c:3f:7c:cd:c0:85:4b:99:ee:b9:df:b6:b1:07:4e:88:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Root
Validity
Not Before: Oct 5 12:00:00 2021 GMT
Not After : Oct 5 12:00:00 2022 GMT
Subject: CN=Intermediate
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:56:b9:b0:39:df:ba:72:ab:22:55:10:91:
0b:ac:73:32:70:19:51:96:6b:17:ba:78:a2:c8:77:
cc:d2:b2:0e:9d:de:b5:3f:6b:8a:49:80:b9:a6:23:
9e:96:82:ff:41:65:bd:86:e3:bd:a4:bf:b9:19:85:
f2:0a:c8:3a:b7:87:d5:d6:6f:2e:c3:72:35:36:46:
98:ec:d9:fd:0e:61:cb:0a:d4:65:c5:5d:a7:e0:cd:
6f:ed:92:40:03:62:1b:00:c6:c2:02:1a:de:f1:67:
d5:f6:0b:82:aa:7f:dc:72:08:5e:be:81:57:1d:66:
9a:82:bb:d5:b1:78:de:f7:6f:b2:d7:26:5c:b5:47:
65:32:91:41:70:0f:3e:23:89:70:e3:0a:be:aa:a9:
dd:0e:e2:6e:8d:49:30:af:bb:ad:bb:3e:4d:0f:6d:
43:c2:3c:41:20:26:68:af:a7:ec:83:6c:2e:2d:43:
7e:16:5b:93:8e:b4:6c:ba:e7:26:8c:d1:60:93:4b:
78:10:e6:a6:cb:97:b9:4f:fb:fc:3f:f0:68:a1:22:
f0:20:bf:5f:21:89:a8:5b:8b:fb:7d:a9:b2:ed:13:
a3:3c:d1:4c:c7:e5:ba:8c:ca:8c:76:f6:89:aa:8f:
6d:44:0a:a4:d1:18:66:65:e5:04:25:b1:86:84:e4:
2a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:9D:BA:B2:87:A5:E9:E6:E3:E1:DB:F3:1B:0C:67:CB:6C:D1:C5:A8
X509v3 Authority Key Identifier:
keyid:FA:79:49:F6:69:64:80:41:9B:1E:E6:2C:39:F8:36:2C:0F:F4:82:66
Authority Information Access:
CA Issuers - URI:http://url-for-aia/Root.cer
X509v3 CRL Distribution Points:
Full Name:
URI:http://url-for-crl/Root.crl
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
99:68:59:0b:1e:31:c3:e6:9a:27:95:89:cc:0a:79:cf:95:39:
77:83:21:22:e3:65:77:26:19:ab:f2:5f:14:7d:50:cb:82:1c:
92:06:d0:6d:c2:dd:34:17:69:fe:a4:34:8a:fe:b4:5d:e5:29:
6f:f4:88:82:4f:2c:3d:97:a7:b6:7a:2d:df:23:89:50:a8:21:
da:70:78:d7:c3:c3:3e:c0:1e:29:53:97:d0:5e:cd:c5:9e:7d:
05:20:be:7a:29:8d:5e:31:84:4c:de:57:6b:55:91:30:06:60:
b2:73:94:99:98:8c:cb:6f:aa:81:00:49:99:48:a5:04:cb:cf:
bf:af:9f:0c:d8:43:16:7d:d9:a0:42:37:b8:3d:ec:f9:81:2d:
4a:09:ce:69:14:99:95:92:69:ba:4f:9f:04:05:af:a7:7c:4b:
93:44:90:fb:00:73:1f:0e:87:1c:53:1f:db:48:c7:b3:8f:94:
a2:06:e2:66:8d:35:16:3f:6f:53:f9:4d:3f:43:ac:0b:7f:d9:
41:85:b3:7c:6e:33:b6:31:99:fc:ce:dd:c4:22:2d:65:dc:97:
e8:56:20:a8:80:d2:1e:b6:2a:19:e7:cb:fb:ff:26:f6:53:37:
2f:23:52:eb:d7:89:e7:78:22:f7:e6:8e:fb:cb:15:25:4f:4e:
79:81:72:6c
-----BEGIN CERTIFICATE-----
MIIDgDCCAmigAwIBAgIUfYyBfD98zcCFS5nuud+2sQdOiEYwDQYJKoZIhvcNAQEL
BQAwDzENMAsGA1UEAwwEUm9vdDAeFw0yMTEwMDUxMjAwMDBaFw0yMjEwMDUxMjAw
MDBaMBcxFTATBgNVBAMMDEludGVybWVkaWF0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTjVrmwOd+6cqsiVRCRC6xzMnAZUZZrF7p4osh3zNKyDp3e
tT9rikmAuaYjnpaC/0FlvYbjvaS/uRmF8grIOreH1dZvLsNyNTZGmOzZ/Q5hywrU
ZcVdp+DNb+2SQANiGwDGwgIa3vFn1fYLgqp/3HIIXr6BVx1mmoK71bF43vdvstcm
XLVHZTKRQXAPPiOJcOMKvqqp3Q7ibo1JMK+7rbs+TQ9tQ8I8QSAmaK+n7INsLi1D
fhZbk460bLrnJozRYJNLeBDmpsuXuU/7/D/waKEi8CC/XyGJqFuL+32psu0TozzR
TMfluozKjHb2iaqPbUQKpNEYZmXlBCWxhoTkKnMCAwEAAaOByzCByDAdBgNVHQ4E
FgQUUZ26soel6ebj4dvzGwxny2zRxagwHwYDVR0jBBgwFoAU+nlJ9mlkgEGbHuYs
Ofg2LA/0gmYwNwYIKwYBBQUHAQEEKzApMCcGCCsGAQUFBzAChhtodHRwOi8vdXJs
LWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUwIzAhoB+gHYYbaHR0cDovL3VybC1m
b3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/
MA0GCSqGSIb3DQEBCwUAA4IBAQCZaFkLHjHD5ponlYnMCnnPlTl3gyEi42V3Jhmr
8l8UfVDLghySBtBtwt00F2n+pDSK/rRd5Slv9IiCTyw9l6e2ei3fI4lQqCHacHjX
w8M+wB4pU5fQXs3Fnn0FIL56KY1eMYRM3ldrVZEwBmCyc5SZmIzLb6qBAEmZSKUE
y8+/r58M2EMWfdmgQje4Pez5gS1KCc5pFJmVkmm6T58EBa+nfEuTRJD7AHMfDocc
Ux/bSMezj5SiBuJmjTUWP29T+U0/Q6wLf9lBhbN8bjO2MZn8zt3EIi1l3JfoViCo
gNIetioZ58v7/yb2UzcvI1Lr14nneCL35o77yxUlT055gXJs
-----END CERTIFICATE-----
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:8c:81:7c:3f:7c:cd:c0:85:4b:99:ee:b9:df:b6:b1:07:4e:88:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=Root
Validity
Not Before: Oct 5 12:00:00 2021 GMT
Not After : Oct 5 12:00:00 2022 GMT
Subject: CN=Root
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f9:00:80:eb:0d:65:6c:30:78:a7:66:72:14:
df:06:ab:f7:a6:30:bc:62:50:81:94:e1:45:f7:47:
38:1f:35:99:9a:b9:26:e5:7b:32:a3:71:df:02:84:
22:a0:09:32:13:6b:05:5a:8c:3b:2a:59:1a:89:0e:
08:58:d0:a5:74:bf:96:7a:16:67:00:22:23:7c:07:
37:f8:da:e3:7c:8e:a2:d6:81:18:fb:51:b1:f5:e5:
0d:c5:28:4f:17:59:25:42:08:e8:f0:14:1d:8d:03:
d7:1c:48:94:f3:2f:70:2d:c4:03:7c:06:c5:ca:dd:
15:d3:1b:d4:c8:e4:af:e7:c0:a9:90:f9:a4:c6:d3:
e6:28:0f:b0:34:a4:aa:7b:a6:df:45:2e:8f:cc:ba:
e1:86:e6:98:74:22:07:cd:33:a3:8e:d3:79:5a:28:
a1:d4:a1:e6:b2:7d:c3:6d:9c:61:67:ce:ca:74:b6:
6f:d7:32:4c:c9:f8:d8:f2:f0:60:97:3d:2b:e2:b4:
67:6c:69:08:23:bd:8a:71:65:a9:3e:62:7f:15:76:
08:0e:cb:a9:b2:68:51:5e:5c:19:b0:83:8f:41:98:
d8:b1:0e:ef:26:ac:c5:f7:e6:34:8d:71:5f:1e:bd:
d4:db:c5:69:47:47:7c:91:88:d0:8b:c4:e1:7a:61:
a4:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:79:49:F6:69:64:80:41:9B:1E:E6:2C:39:F8:36:2C:0F:F4:82:66
X509v3 Authority Key Identifier:
keyid:FA:79:49:F6:69:64:80:41:9B:1E:E6:2C:39:F8:36:2C:0F:F4:82:66
Authority Information Access:
CA Issuers - URI:http://url-for-aia/Root.cer
X509v3 CRL Distribution Points:
Full Name:
URI:http://url-for-crl/Root.crl
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
Signature Algorithm: sha256WithRSAEncryption
56:35:08:8f:8b:5e:ea:62:f3:6f:49:49:c3:45:54:12:cd:de:
ba:f2:66:12:99:c3:1f:01:bd:ac:08:3a:5e:12:3e:63:c5:b9:
1f:05:81:3a:05:90:9b:d1:52:4a:bc:d2:61:2b:88:03:9b:03:
5b:4c:da:04:c2:57:6a:e9:d9:ef:a4:50:d0:ae:af:99:0b:4a:
98:e9:91:9a:4b:0c:3f:34:bb:c6:dd:c0:31:ba:28:1b:32:e9:
12:48:90:3a:ec:cf:e1:82:95:34:93:02:69:c1:75:ba:57:3f:
22:e2:76:f1:fa:8d:dd:d1:e2:ed:74:f4:69:c4:2c:79:ba:a7:
86:e2:5c:fb:ab:2f:e6:67:b8:46:01:ab:23:d3:77:3b:1f:47:
7b:a1:e0:66:7a:1f:c8:d8:b8:f1:91:94:70:4d:9a:c7:f6:ec:
a8:c5:b5:87:f6:df:5e:b0:6f:8f:6c:c8:18:6c:62:13:8a:ee:
81:ff:7b:02:54:ab:e4:19:58:f5:57:e7:74:00:9b:e1:45:ac:
1b:ef:89:c2:f9:e2:73:20:ba:ab:48:36:a3:d5:a4:a1:9e:1a:
22:82:08:b0:9e:0d:46:dc:d2:4c:06:e2:80:b5:40:ef:c1:23:
99:f7:79:62:5f:19:5b:1c:01:3c:70:0a:5f:d3:c4:43:ee:21:
8a:dc:d3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----