Common
This section contains common X509 information.
Key usage
Key usage is a list of (9) flags turning on (true ) or off (false) a specific usage.
Flags:
- digitalSignature
- nonRepudiation
- keyEncipherment
- dataEncipherment
- keyAgreement
- keyCertSign
- cRLSign
- encipherOnly
- decipherOnly
If length of list is shorter than 9, false will be added to the end until length is 9.
Examples
# Turn on digitalSignature
true
# Turn on keyCertSign
false,false,false,false,false,trueExtended key usage
Extended key usage is a list of key purpose aliases. Only the one defined below are valid in the current version.
Key purpose aliases:
- OCSPSigning
- serverAuth
- clientAuth
- codeSigning