1[req]
2distinguished_name = req_distinguished_name
3attributes = req_attributes
4
5[req_distinguished_name]
6
7[req_attributes]
8
9[test_ca]
10basicConstraints = critical,CA:TRUE
11subjectKeyIdentifier = hash
12authorityKeyIdentifier = keyid:always,issuer:always
13keyUsage = critical,keyCertSign
14
15[test_server]
16basicConstraints = critical,CA:FALSE
17subjectKeyIdentifier = hash
18keyUsage = critical,digitalSignature,keyEncipherment,keyAgreement
19subjectAltName = @server_alt_names
20
21[server_alt_names]
22DNS.1 = *.test.example.com
23
24[test_client]
25basicConstraints = critical,CA:FALSE
26subjectKeyIdentifier = hash
27keyUsage = critical,nonRepudiation,digitalSignature,keyEncipherment
28extendedKeyUsage = critical,clientAuth
View as plain text