| [Created by: generate-chains.py] |
| |
| Certificate chain where the intermediate has a policies extension (not |
| marked as critical) which contains an unknown policy qualifer (1.2.3.4). |
| |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: |
| 31:6a:f9:bd:60:f3:6d:85:80:16:84:85:c0:6e:f2:0e:9a:01:52:0b |
| Signature Algorithm: sha256WithRSAEncryption |
| Issuer: CN=Intermediate |
| Validity |
| Not Before: Oct 5 12:00:00 2021 GMT |
| Not After : Oct 5 12:00:00 2022 GMT |
| Subject: CN=Target |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| RSA Public-Key: (2048 bit) |
| Modulus: |
| 00:be:d9:c3:94:6a:c2:d7:1b:b4:33:1a:29:0d:ca: |
| 48:e2:f1:94:93:27:36:71:c1:a2:dc:67:0e:5d:67: |
| b0:a9:08:9c:67:08:ba:d9:74:5f:01:62:5d:7f:2a: |
| bb:32:ed:0c:af:c8:5a:b5:02:24:45:6f:90:4c:83: |
| ab:0e:30:19:c2:df:bc:d5:25:99:b0:f3:5e:e1:27: |
| 5b:06:2f:ca:3e:d6:49:fb:87:8d:d3:fd:b9:b9:27: |
| 80:be:b5:88:72:3b:1b:20:3f:04:69:04:89:66:ee: |
| 20:f7:c2:90:c1:27:aa:29:fa:88:ff:2f:10:3b:81: |
| cf:d0:b9:e9:a7:84:dc:f1:a7:d0:49:e0:6e:17:b2: |
| ba:09:ed:be:9c:a3:f2:66:37:dd:20:98:43:31:bd: |
| 02:d1:55:63:88:f6:55:13:20:b7:b9:0b:c9:c9:fb: |
| a3:5b:0f:90:56:e8:8a:dc:a5:7a:92:bc:46:5d:82: |
| a4:e1:42:2c:7c:76:65:63:87:f4:e0:5a:cf:15:22: |
| 13:49:1d:aa:0d:ea:25:08:7c:63:19:39:2f:1d:15: |
| 2e:7c:9a:e7:d5:03:21:76:6c:22:1a:be:12:8b:72: |
| c5:cb:0f:41:ef:0f:d3:be:78:1d:12:e0:c2:29:eb: |
| d7:36:28:54:ad:8d:ce:c8:79:2f:4f:13:c1:2b:3b: |
| e4:ff |
| Exponent: 65537 (0x10001) |
| X509v3 extensions: |
| X509v3 Subject Key Identifier: |
| FE:3D:1B:76:A0:3D:EE:69:00:5B:D4:61:90:68:18:E3:29:EC:66:A3 |
| X509v3 Authority Key Identifier: |
| keyid:49:F0:C4:09:BE:16:68:CF:0A:C1:E0:EF:8F:A6:34:1F:94:63:6F:E6 |
| |
| Authority Information Access: |
| CA Issuers - URI:http://url-for-aia/Intermediate.cer |
| |
| X509v3 CRL Distribution Points: |
| |
| Full Name: |
| URI:http://url-for-crl/Intermediate.crl |
| |
| X509v3 Key Usage: critical |
| Digital Signature, Key Encipherment |
| X509v3 Extended Key Usage: |
| TLS Web Server Authentication, TLS Web Client Authentication |
| Signature Algorithm: sha256WithRSAEncryption |
| cd:09:85:57:ee:4d:de:bf:78:64:b7:93:a6:41:f5:00:d0:b6: |
| 99:be:21:2d:55:f6:07:84:26:25:32:9e:82:b6:07:90:3e:b5: |
| b2:a2:1a:c1:8a:ed:59:18:be:75:ca:90:ae:df:ad:aa:fc:70: |
| af:7b:31:ff:cb:20:0a:4d:27:a2:77:90:53:e1:5f:ba:4c:c0: |
| 25:79:a4:78:b2:7a:52:62:02:d1:09:ee:78:1f:14:65:a7:f4: |
| ec:aa:49:bb:fd:a2:e5:97:b2:6d:fe:d8:50:81:38:74:5a:e4: |
| 3e:37:eb:41:58:7c:88:35:78:05:3c:76:82:c4:4d:09:f5:50: |
| b3:66:ca:8f:38:14:d9:c3:19:8a:8e:dd:08:c2:23:45:92:5f: |
| 17:35:57:b9:02:90:6c:2e:e5:c4:7c:c4:56:ad:1f:7c:20:46: |
| 20:df:f4:4b:01:d2:3a:1a:d1:82:26:e7:8c:49:d9:15:49:65: |
| 13:db:91:2b:90:75:62:57:a0:ee:45:29:96:d2:86:55:2e:f1: |
| 4d:04:3c:90:c5:cf:f7:43:7d:f3:d8:74:cf:0f:d7:d9:b9:3c: |
| 07:93:d0:1c:da:cd:ae:18:ce:c3:59:c0:8f:9d:a1:30:9d:b0: |
| 7a:21:3d:44:9e:0c:c9:8d:97:99:44:51:89:b0:77:0a:16:b1: |
| a3:cd:bf:7f |
| -----BEGIN CERTIFICATE----- |
| MIIDoDCCAoigAwIBAgIUMWr5vWDzbYWAFoSFwG7yDpoBUgswDQYJKoZIhvcNAQEL |
| BQAwFzEVMBMGA1UEAwwMSW50ZXJtZWRpYXRlMB4XDTIxMTAwNTEyMDAwMFoXDTIy |
| MTAwNTEyMDAwMFowETEPMA0GA1UEAwwGVGFyZ2V0MIIBIjANBgkqhkiG9w0BAQEF |
| AAOCAQ8AMIIBCgKCAQEAvtnDlGrC1xu0MxopDcpI4vGUkyc2ccGi3GcOXWewqQic |
| Zwi62XRfAWJdfyq7Mu0Mr8hatQIkRW+QTIOrDjAZwt+81SWZsPNe4SdbBi/KPtZJ |
| +4eN0/25uSeAvrWIcjsbID8EaQSJZu4g98KQwSeqKfqI/y8QO4HP0Lnpp4Tc8afQ |
| SeBuF7K6Ce2+nKPyZjfdIJhDMb0C0VVjiPZVEyC3uQvJyfujWw+QVuiK3KV6krxG |
| XYKk4UIsfHZlY4f04FrPFSITSR2qDeolCHxjGTkvHRUufJrn1QMhdmwiGr4Si3LF |
| yw9B7w/TvngdEuDCKevXNihUrY3OyHkvTxPBKzvk/wIDAQABo4HpMIHmMB0GA1Ud |
| DgQWBBT+PRt2oD3uaQBb1GGQaBjjKexmozAfBgNVHSMEGDAWgBRJ8MQJvhZozwrB |
| 4O+PpjQflGNv5jA/BggrBgEFBQcBAQQzMDEwLwYIKwYBBQUHMAKGI2h0dHA6Ly91 |
| cmwtZm9yLWFpYS9JbnRlcm1lZGlhdGUuY2VyMDQGA1UdHwQtMCswKaAnoCWGI2h0 |
| dHA6Ly91cmwtZm9yLWNybC9JbnRlcm1lZGlhdGUuY3JsMA4GA1UdDwEB/wQEAwIF |
| oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDQYJKoZIhvcNAQELBQAD |
| ggEBAM0JhVfuTd6/eGS3k6ZB9QDQtpm+IS1V9geEJiUynoK2B5A+tbKiGsGK7VkY |
| vnXKkK7frar8cK97Mf/LIApNJ6J3kFPhX7pMwCV5pHiyelJiAtEJ7ngfFGWn9Oyq |
| Sbv9ouWXsm3+2FCBOHRa5D4360FYfIg1eAU8doLETQn1ULNmyo84FNnDGYqO3QjC |
| I0WSXxc1V7kCkGwu5cR8xFatH3wgRiDf9EsB0joa0YIm54xJ2RVJZRPbkSuQdWJX |
| oO5FKZbShlUu8U0EPJDFz/dDffPYdM8P19m5PAeT0Bzaza4YzsNZwI+doTCdsHoh |
| PUSeDMmNl5lEUYmwdwoWsaPNv38= |
| -----END CERTIFICATE----- |
| |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: |
| 1a:97:5a:9c:80:bc:38:51:fe:e9:06:6c:9c:24:16:bd:7b:49:b2:42 |
| Signature Algorithm: sha256WithRSAEncryption |
| Issuer: CN=Root |
| Validity |
| Not Before: Oct 5 12:00:00 2021 GMT |
| Not After : Oct 5 12:00:00 2022 GMT |
| Subject: CN=Intermediate |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| RSA Public-Key: (2048 bit) |
| Modulus: |
| 00:d9:74:6c:03:22:ab:05:1b:af:d1:34:43:ac:2a: |
| a3:bd:5d:dc:13:39:5f:df:ff:f4:bd:3c:bd:56:1e: |
| b5:e9:b2:19:1d:49:ff:9c:5a:31:9c:20:74:87:27: |
| 81:22:50:a3:c2:90:da:48:da:c2:cd:4a:4d:dd:ec: |
| 75:d7:61:5b:32:57:1e:1d:63:82:54:69:49:f1:ff: |
| 3e:a5:67:46:b2:77:73:61:ce:30:9c:d5:f7:36:1f: |
| 83:0e:12:f8:37:48:a9:36:e6:38:61:13:5a:1d:a7: |
| 70:17:d2:0d:81:87:f0:cf:02:3c:13:56:fc:e9:79: |
| 96:c0:6d:8a:5d:a7:ad:e7:c5:3f:09:28:aa:e9:a8: |
| 6b:23:a3:78:fe:34:11:ba:d0:12:59:cf:b3:8a:68: |
| df:96:2f:44:b0:b9:72:54:cf:ba:1b:2c:8c:56:a4: |
| 9d:db:b8:55:72:42:04:13:77:cc:75:04:3d:e9:b1: |
| fa:a4:19:1b:3d:6f:0a:c2:7a:48:37:8b:35:c6:e1: |
| cc:c6:50:b5:45:c0:f2:30:ca:ff:df:75:af:4b:c3: |
| c7:63:11:da:fb:54:bf:53:57:a0:ce:75:18:53:8e: |
| c7:49:c3:4a:79:88:a4:1d:34:a4:e0:d2:f4:63:ca: |
| 5a:02:89:c3:94:a3:38:32:f6:3b:e1:06:e4:02:e4: |
| d0:25 |
| Exponent: 65537 (0x10001) |
| X509v3 extensions: |
| X509v3 Subject Key Identifier: |
| 49:F0:C4:09:BE:16:68:CF:0A:C1:E0:EF:8F:A6:34:1F:94:63:6F:E6 |
| X509v3 Authority Key Identifier: |
| keyid:27:0D:D0:55:88:5D:DE:1C:37:96:A0:62:14:C2:19:3C:C6:A4:1F:D1 |
| |
| Authority Information Access: |
| CA Issuers - URI:http://url-for-aia/Root.cer |
| |
| X509v3 CRL Distribution Points: |
| |
| Full Name: |
| URI:http://url-for-crl/Root.crl |
| |
| X509v3 Key Usage: critical |
| Certificate Sign, CRL Sign |
| X509v3 Basic Constraints: critical |
| CA:TRUE |
| X509v3 Certificate Policies: |
| Policy: 1.2.3 |
| Unknown Qualifier: 1.2.3.4 |
| |
| Signature Algorithm: sha256WithRSAEncryption |
| 08:cc:26:16:ce:4f:8d:4c:1c:de:1b:3e:9b:04:f9:a9:73:a1: |
| 3b:c8:36:df:48:ac:09:26:82:fa:61:11:8f:56:c8:db:5e:2c: |
| e4:3a:16:18:bf:59:5f:04:43:5f:6d:ba:c2:2e:94:af:34:a6: |
| 7e:c5:fa:87:18:dc:fa:a5:dc:a5:a6:ea:39:5e:63:c5:7f:99: |
| 2f:ce:89:ea:bc:d7:03:05:9f:81:48:f2:7a:53:98:13:8c:75: |
| 44:e3:18:16:ba:07:1f:e6:24:4a:3b:bf:b1:6c:83:bd:35:66: |
| 84:a3:c1:ec:04:ff:53:b7:20:85:00:f6:65:aa:e5:ff:13:0e: |
| 34:9e:b0:c8:ee:34:21:ea:0f:1c:65:f1:ed:fb:b9:03:75:d5: |
| d4:7e:51:1b:23:60:79:cd:f5:9d:14:58:38:2f:e9:22:75:70: |
| d6:33:41:94:a6:87:29:61:e0:92:59:2b:f1:e5:46:2c:3c:4f: |
| a8:51:0b:a8:77:0f:39:66:75:a6:0a:10:14:f6:41:28:0b:91: |
| 5b:17:c9:c1:86:f6:08:0c:ef:ad:66:30:0b:b3:87:2c:b1:2b: |
| 15:cd:76:da:00:f0:1c:1a:db:fc:1a:7d:3b:86:b4:21:c0:9a: |
| 13:c2:e3:b6:b8:13:64:21:fc:73:37:a5:d6:92:d7:42:ea:f3: |
| d9:cc:f4:9c |
| -----BEGIN CERTIFICATE----- |
| MIIDnjCCAoagAwIBAgIUGpdanIC8OFH+6QZsnCQWvXtJskIwDQYJKoZIhvcNAQEL |
| BQAwDzENMAsGA1UEAwwEUm9vdDAeFw0yMTEwMDUxMjAwMDBaFw0yMjEwMDUxMjAw |
| MDBaMBcxFTATBgNVBAMMDEludGVybWVkaWF0ZTCCASIwDQYJKoZIhvcNAQEBBQAD |
| ggEPADCCAQoCggEBANl0bAMiqwUbr9E0Q6wqo71d3BM5X9//9L08vVYetemyGR1J |
| /5xaMZwgdIcngSJQo8KQ2kjaws1KTd3sdddhWzJXHh1jglRpSfH/PqVnRrJ3c2HO |
| MJzV9zYfgw4S+DdIqTbmOGETWh2ncBfSDYGH8M8CPBNW/Ol5lsBtil2nrefFPwko |
| qumoayOjeP40EbrQElnPs4po35YvRLC5clTPuhssjFakndu4VXJCBBN3zHUEPemx |
| +qQZGz1vCsJ6SDeLNcbhzMZQtUXA8jDK/991r0vDx2MR2vtUv1NXoM51GFOOx0nD |
| SnmIpB00pODS9GPKWgKJw5SjODL2O+EG5ALk0CUCAwEAAaOB6TCB5jAdBgNVHQ4E |
| FgQUSfDECb4WaM8KweDvj6Y0H5Rjb+YwHwYDVR0jBBgwFoAUJw3QVYhd3hw3lqBi |
| FMIZPMakH9EwNwYIKwYBBQUHAQEEKzApMCcGCCsGAQUFBzAChhtodHRwOi8vdXJs |
| LWZvci1haWEvUm9vdC5jZXIwLAYDVR0fBCUwIzAhoB+gHYYbaHR0cDovL3VybC1m |
| b3ItY3JsL1Jvb3QuY3JsMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/ |
| MBwGA1UdIAQVMBMwEQYCKgMwCzAJBgMqAwQMAmhpMA0GCSqGSIb3DQEBCwUAA4IB |
| AQAIzCYWzk+NTBzeGz6bBPmpc6E7yDbfSKwJJoL6YRGPVsjbXizkOhYYv1lfBENf |
| bbrCLpSvNKZ+xfqHGNz6pdylpuo5XmPFf5kvzonqvNcDBZ+BSPJ6U5gTjHVE4xgW |
| ugcf5iRKO7+xbIO9NWaEo8HsBP9TtyCFAPZlquX/Ew40nrDI7jQh6g8cZfHt+7kD |
| ddXUflEbI2B5zfWdFFg4L+kidXDWM0GUpocpYeCSWSvx5UYsPE+oUQuodw85ZnWm |
| ChAU9kEoC5FbF8nBhvYIDO+tZjALs4cssSsVzXbaAPAcGtv8Gn07hrQhwJoTwuO2 |
| uBNkIfxzN6XWktdC6vPZzPSc |
| -----END CERTIFICATE----- |
| |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: |
| 1a:97:5a:9c:80:bc:38:51:fe:e9:06:6c:9c:24:16:bd:7b:49:b2:41 |
| Signature Algorithm: sha256WithRSAEncryption |
| Issuer: CN=Root |
| Validity |
| Not Before: Oct 5 12:00:00 2021 GMT |
| Not After : Oct 5 12:00:00 2022 GMT |
| Subject: CN=Root |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| RSA Public-Key: (2048 bit) |
| Modulus: |
| 00:a0:f9:c1:fa:93:42:7b:bf:e5:1e:21:e2:f5:cd: |
| db:f7:61:04:6e:ea:06:4c:fc:d5:2e:9f:5e:6e:97: |
| b2:d4:c3:f1:4c:18:01:5e:3e:85:e2:c0:73:ce:56: |
| fb:cc:4c:4e:f0:37:b5:e0:c6:31:5c:c0:06:5a:90: |
| 24:d8:5d:88:ab:e3:53:2b:12:90:0b:16:c6:db:19: |
| 74:e7:29:63:53:d9:5b:f3:e7:80:8c:5e:86:ff:e8: |
| e3:72:6b:09:6c:64:6b:92:34:f2:9c:bd:f4:b7:c1: |
| 31:6f:74:00:31:3a:45:70:9f:5d:a5:d3:9c:91:7f: |
| fb:87:95:ef:07:f3:8d:8e:c9:a5:cb:ed:cc:2d:23: |
| bf:e4:98:93:88:8d:be:bc:50:02:2c:3a:0d:52:53: |
| 7e:9a:20:04:da:52:db:a4:e5:72:bc:d6:40:40:7f: |
| 51:86:29:d7:f5:f7:db:85:b3:a0:7d:7a:c5:04:3e: |
| e9:73:ca:65:3c:13:91:46:a1:b4:fb:6b:8b:a0:5e: |
| 7c:c9:9d:3c:5e:c5:f6:2a:99:df:2e:13:1e:7d:d8: |
| db:30:02:52:d7:94:16:93:b8:20:5d:77:4d:26:6e: |
| 9c:c8:5e:0a:56:ad:ba:d9:26:c0:80:dd:66:aa:09: |
| 09:18:41:fa:f2:5c:7f:ae:10:45:25:ba:cc:0d:5d: |
| d8:3b |
| Exponent: 65537 (0x10001) |
| X509v3 extensions: |
| X509v3 Subject Key Identifier: |
| 27:0D:D0:55:88:5D:DE:1C:37:96:A0:62:14:C2:19:3C:C6:A4:1F:D1 |
| X509v3 Authority Key Identifier: |
| keyid:27:0D:D0:55:88:5D:DE:1C:37:96:A0:62:14:C2:19:3C:C6:A4:1F:D1 |
| |
| Authority Information Access: |
| CA Issuers - URI:http://url-for-aia/Root.cer |
| |
| X509v3 CRL Distribution Points: |
| |
| Full Name: |
| URI:http://url-for-crl/Root.crl |
| |
| X509v3 Key Usage: critical |
| Certificate Sign, CRL Sign |
| X509v3 Basic Constraints: critical |
| CA:TRUE |
| Signature Algorithm: sha256WithRSAEncryption |
| 55:3d:3d:02:2c:1e:b3:e2:47:78:ae:81:b1:b2:f5:a4:a0:37: |
| 30:32:52:5e:c6:b4:d0:c2:6d:22:19:53:94:7c:e5:89:28:84: |
| ff:ad:fe:8e:af:c4:3a:a1:91:6d:0f:48:15:66:83:98:65:7c: |
| 6c:69:f4:c4:ea:ab:29:9a:d0:a7:6e:a9:c7:67:9b:26:bc:94: |
| e9:df:4a:79:02:48:65:28:b4:59:0b:57:93:66:55:b5:87:9b: |
| de:40:48:2e:3c:24:e1:63:08:05:66:f9:8d:95:9c:95:1a:46: |
| 0d:60:5f:9a:c3:53:10:ee:18:36:b5:b8:90:74:89:8b:0d:fb: |
| a2:d5:ee:4c:b8:02:bc:f7:4e:3f:9c:d5:17:bd:4f:37:33:39: |
| b4:ba:34:db:bf:53:37:d6:da:43:94:59:1e:ea:30:04:99:30: |
| 7d:c0:5f:04:3b:97:0e:ad:d9:3c:e4:10:6b:82:fd:12:9d:2c: |
| f0:89:a5:22:3c:9e:7d:fb:d7:cc:10:8e:af:c2:6d:22:e0:5e: |
| 76:56:e1:de:cd:01:85:96:12:4c:f0:8d:f2:4b:b5:bd:2e:51: |
| d8:9c:13:02:0c:0b:ff:47:c2:61:d3:8e:eb:55:af:b7:10:ff: |
| fa:d7:80:ba:a4:99:d9:10:8c:89:3c:ac:ec:46:d7:c5:62:e3: |
| a7:ed:d4:de |
| -----BEGIN CERTIFICATE----- |
| MIIDeDCCAmCgAwIBAgIUGpdanIC8OFH+6QZsnCQWvXtJskEwDQYJKoZIhvcNAQEL |
| BQAwDzENMAsGA1UEAwwEUm9vdDAeFw0yMTEwMDUxMjAwMDBaFw0yMjEwMDUxMjAw |
| MDBaMA8xDTALBgNVBAMMBFJvb3QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK |
| AoIBAQCg+cH6k0J7v+UeIeL1zdv3YQRu6gZM/NUun15ul7LUw/FMGAFePoXiwHPO |
| VvvMTE7wN7XgxjFcwAZakCTYXYir41MrEpALFsbbGXTnKWNT2Vvz54CMXob/6ONy |
| awlsZGuSNPKcvfS3wTFvdAAxOkVwn12l05yRf/uHle8H842OyaXL7cwtI7/kmJOI |
| jb68UAIsOg1SU36aIATaUtuk5XK81kBAf1GGKdf199uFs6B9esUEPulzymU8E5FG |
| obT7a4ugXnzJnTxexfYqmd8uEx592NswAlLXlBaTuCBdd00mbpzIXgpWrbrZJsCA |
| 3WaqCQkYQfryXH+uEEUluswNXdg7AgMBAAGjgcswgcgwHQYDVR0OBBYEFCcN0FWI |
| Xd4cN5agYhTCGTzGpB/RMB8GA1UdIwQYMBaAFCcN0FWIXd4cN5agYhTCGTzGpB/R |
| MDcGCCsGAQUFBwEBBCswKTAnBggrBgEFBQcwAoYbaHR0cDovL3VybC1mb3ItYWlh |
| L1Jvb3QuY2VyMCwGA1UdHwQlMCMwIaAfoB2GG2h0dHA6Ly91cmwtZm9yLWNybC9S |
| b290LmNybDAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zANBgkqhkiG |
| 9w0BAQsFAAOCAQEAVT09Aiwes+JHeK6BsbL1pKA3MDJSXsa00MJtIhlTlHzliSiE |
| /63+jq/EOqGRbQ9IFWaDmGV8bGn0xOqrKZrQp26px2ebJryU6d9KeQJIZSi0WQtX |
| k2ZVtYeb3kBILjwk4WMIBWb5jZWclRpGDWBfmsNTEO4YNrW4kHSJiw37otXuTLgC |
| vPdOP5zVF71PNzM5tLo0279TN9baQ5RZHuowBJkwfcBfBDuXDq3ZPOQQa4L9Ep0s |
| 8ImlIjyeffvXzBCOr8JtIuBedlbh3s0BhZYSTPCN8ku1vS5R2JwTAgwL/0fCYdOO |
| 61WvtxD/+teAuqSZ2RCMiTys7EbXxWLjp+3U3g== |
| -----END CERTIFICATE----- |
