| Is a valid response for the cert with a SHA256 signature |
| |
| $ openssl ocsp -resp_text -respin <([OCSP RESPONSE]) |
| OCSP Response Data: |
| OCSP Response Status: successful (0x0) |
| Response Type: Basic OCSP Response |
| Version: 1 (0x0) |
| Responder Id: CN = Test CA |
| Produced At: Mar 2 00:00:00 2017 GMT |
| Responses: |
| Certificate ID: |
| Hash Algorithm: sha1 |
| Issuer Name Hash: 02FF75DA24DE8ADD150FAB689DCCE6E6636D0901 |
| Issuer Key Hash: 84E1BA52A25C543CA972491224BC8B1ECA8B9FF4 |
| Serial Number: 03 |
| Cert Status: good |
| This Update: Mar 1 00:00:00 2017 GMT |
| |
| Signature Algorithm: sha256WithRSAEncryption |
| 29:ee:e5:8b:dd:01:0f:ed:15:42:9d:58:2f:0e:3a:50:f0:0d: |
| 65:5a:0e:f0:92:3f:40:00:4f:bb:9c:36:ee:30:74:7e:c7:8b: |
| f1:8e:83:e2:08:7a:ba:31:e2:bb:e0:a9:a8:11:ee:5a:e7:2e: |
| c8:0d:95:aa:2a:a0:d2:f0:dd:d2:d6:24:c9:57:03:b7:09:17: |
| f9:9f:78:6e:ee:e0:41:35:21:94:36:a1:03:66:d8:ec:76:de: |
| 42:bb:cc:04:66:f7:ae:15:7f:c9:07:cc:75:6f:c3:7f:fb:af: |
| e4:6e:6c:c6:f6:82:ae:05:4c:33:60:b3:c4:dc:0b:4c:ce:e1: |
| 09:f0 |
| -----BEGIN OCSP RESPONSE----- |
| MIIBKwoBAKCCASQwggEgBgkrBgEFBQcwAQEEggERMIIBDTB4oRQwEjEQMA4GA1UEAxMHVGVzdCB |
| DQRgPMjAxNzAzMDIwMDAwMDBaME8wTTA4MAcGBSsOAwIaBBQC/3XaJN6K3RUPq2idzObmY20JAQ |
| QUhOG6UqJcVDypckkSJLyLHsqLn/QCAQOAABgPMjAxNzAzMDEwMDAwMDBaMA0GCSqGSIb3DQEBC |
| wUAA4GBACnu5YvdAQ/tFUKdWC8OOlDwDWVaDvCSP0AAT7ucNu4wdH7Hi/GOg+IIerox4rvgqagR |
| 7lrnLsgNlaoqoNLw3dLWJMlXA7cJF/mfeG7u4EE1IZQ2oQNm2Ox23kK7zARm964Vf8kHzHVvw3/ |
| 7r+RubMb2gq4FTDNgs8TcC0zO4Qnw |
| -----END OCSP RESPONSE----- |
| |
| $ openssl x509 -text < [CA CERTIFICATE] |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: 0 (0x0) |
| Signature Algorithm: sha1WithRSAEncryption |
| Issuer: CN=Test CA |
| Validity |
| Not Before: Jan 1 00:00:00 2017 GMT |
| Not After : Jan 1 00:00:00 2018 GMT |
| Subject: CN=Test CA |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| Public-Key: (1024 bit) |
| Modulus: |
| 00:b8:25:2b:ee:59:9a:9d:bc:b4:48:ae:09:ce:0d: |
| ba:c5:83:57:03:92:fd:52:32:55:f5:e4:2e:a6:cf: |
| 9e:4b:c4:10:af:24:da:d5:dd:44:a8:d6:28:38:9c: |
| a5:11:c9:0b:70:a1:b5:71:cf:a4:35:c2:6a:17:b1: |
| b5:c7:cf:74:83:ac:7a:d5:3b:12:66:74:f2:4b:15: |
| b0:c2:59:af:0c:78:2c:42:3c:3f:8b:83:b3:1d:9a: |
| c8:bc:ce:b0:c8:f2:1a:a8:0a:1c:bb:6e:6e:d4:c6: |
| 10:66:3c:a8:ec:e3:c4:63:40:f6:79:ec:8b:14:ff: |
| 85:9e:2d:1a:e7:e8:31:56:81 |
| Exponent: 65537 (0x10001) |
| Signature Algorithm: sha1WithRSAEncryption |
| 35:fe:ee:96:31:c7:3d:91:eb:22:53:1f:bf:cc:20:cc:aa:f4: |
| 04:92:3c:8b:50:06:ea:a1:cc:b7:c2:4a:d6:02:af:53:a7:a4: |
| 71:81:78:bc:95:f3:2d:46:c4:83:4c:d5:92:11:7c:c7:67:d3: |
| 47:f6:06:9f:1c:46:da:d6:20:72:47:c2:57:d7:fb:66:d3:35: |
| 82:07:61:13:4e:4d:e6:0c:93:e6:f3:be:98:ff:e8:de:60:a7: |
| 06:94:cd:bb:f5:6e:b3:4e:0b:d6:e9:2b:72:bd:6e:ae:86:23: |
| 2d:44:33:c4:3b:a7:52:12:46:d2:76:95:06:3e:69:0f:72:60: |
| 16:d6 |
| -----BEGIN CA CERTIFICATE----- |
| MIIBnDCCAQWgAwIBAgIBADANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMCIYDzI |
| wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMBIxEDAOBgNVBAMTB1Rlc3QgQ0EwgZ8wDQ |
| YJKoZIhvcNAQEBBQADgY0AMIGJAoGBALglK+5Zmp28tEiuCc4NusWDVwOS/VIyVfXkLqbPnkvEE |
| K8k2tXdRKjWKDicpRHJC3ChtXHPpDXCahextcfPdIOsetU7EmZ08ksVsMJZrwx4LEI8P4uDsx2a |
| yLzOsMjyGqgKHLtubtTGEGY8qOzjxGNA9nnsixT/hZ4tGufoMVaBAgMBAAEwDQYJKoZIhvcNAQE |
| FBQADgYEANf7uljHHPZHrIlMfv8wgzKr0BJI8i1AG6qHMt8JK1gKvU6ekcYF4vJXzLUbEg0zVkh |
| F8x2fTR/YGnxxG2tYgckfCV9f7ZtM1ggdhE05N5gyT5vO+mP/o3mCnBpTNu/Vus04L1ukrcr1ur |
| oYjLUQzxDunUhJG0naVBj5pD3JgFtY= |
| -----END CA CERTIFICATE----- |
| |
| $ openssl x509 -text < [CERTIFICATE] |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: 3 (0x3) |
| Signature Algorithm: sha1WithRSAEncryption |
| Issuer: CN=Test CA |
| Validity |
| Not Before: Jan 1 00:00:00 2017 GMT |
| Not After : Jan 1 00:00:00 2018 GMT |
| Subject: CN=Test Cert |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| Public-Key: (1024 bit) |
| Modulus: |
| 00:d5:12:3f:22:6f:b0:e1:43:c5:93:b3:c3:5b:70: |
| 52:b2:8b:10:ec:11:c4:c4:aa:aa:43:92:c8:d0:f3: |
| 35:23:e3:76:2d:b4:ea:93:26:6f:6a:79:1c:64:51: |
| d3:4d:21:4a:73:83:35:dc:a0:16:74:db:f0:b9:a5: |
| 46:35:8d:53:e8:7d:37:5b:4d:ad:a3:df:d6:ae:01: |
| 38:ad:16:09:6e:fd:65:ad:1c:4b:48:12:1e:48:a7: |
| ff:5b:47:c4:c9:3b:74:85:63:1a:0a:06:b2:9f:b9: |
| cb:ad:dc:3f:24:8b:a4:a7:8a:13:15:45:89:24:c1: |
| a7:3b:c2:a2:c8:74:f1:3f:6f |
| Exponent: 65537 (0x10001) |
| Signature Algorithm: sha1WithRSAEncryption |
| 04:21:70:de:14:92:27:13:e8:d2:b0:51:f0:af:34:75:0b:a7: |
| ff:84:cb:c6:96:30:80:01:f5:c1:3a:c6:81:ee:ba:89:60:33: |
| c3:e5:0f:43:cc:ac:81:8d:09:fb:25:e1:67:40:64:a3:ca:fd: |
| bd:9c:c4:73:e4:bc:4d:8e:e2:70:f1:17:ce:b4:ab:a0:b2:63: |
| 72:25:27:ae:d5:8e:18:73:0d:dc:12:5a:32:1c:b7:da:cd:23: |
| 5b:c8:87:58:08:3e:95:0c:fd:c8:48:a2:75:6e:79:f2:00:82: |
| 6e:b5:cc:71:e3:79:ca:68:85:9b:1b:5c:52:bf:a2:5a:71:e3: |
| 05:b5 |
| -----BEGIN CERTIFICATE----- |
| MIIBnjCCAQegAwIBAgIBAzANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMCIYDzI |
| wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMBQxEjAQBgNVBAMTCVRlc3QgQ2VydDCBnz |
| ANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA1RI/Im+w4UPFk7PDW3BSsosQ7BHExKqqQ5LI0PM1I |
| +N2LbTqkyZvankcZFHTTSFKc4M13KAWdNvwuaVGNY1T6H03W02to9/WrgE4rRYJbv1lrRxLSBIe |
| SKf/W0fEyTt0hWMaCgayn7nLrdw/JIukp4oTFUWJJMGnO8KiyHTxP28CAwEAATANBgkqhkiG9w0 |
| BAQUFAAOBgQAEIXDeFJInE+jSsFHwrzR1C6f/hMvGljCAAfXBOsaB7rqJYDPD5Q9DzKyBjQn7Je |
| FnQGSjyv29nMRz5LxNjuJw8RfOtKugsmNyJSeu1Y4Ycw3cEloyHLfazSNbyIdYCD6VDP3ISKJ1b |
| nnyAIJutcxx43nKaIWbG1xSv6JaceMFtQ== |
| -----END CERTIFICATE----- |
| |
| $ openssl asn1parse -i < [OCSP REQUEST] |
| 0:d=0 hl=2 l= 66 cons: SEQUENCE |
| 2:d=1 hl=2 l= 64 cons: SEQUENCE |
| 4:d=2 hl=2 l= 62 cons: SEQUENCE |
| 6:d=3 hl=2 l= 60 cons: SEQUENCE |
| 8:d=4 hl=2 l= 58 cons: SEQUENCE |
| 10:d=5 hl=2 l= 9 cons: SEQUENCE |
| 12:d=6 hl=2 l= 5 prim: OBJECT :sha1 |
| 19:d=6 hl=2 l= 0 prim: NULL |
| 21:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:02FF75DA24DE8ADD150FAB689DCCE6E6636D0901 |
| 43:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:84E1BA52A25C543CA972491224BC8B1ECA8B9FF4 |
| 65:d=5 hl=2 l= 1 prim: INTEGER :03 |
| -----BEGIN OCSP REQUEST----- |
| MEIwQDA+MDwwOjAJBgUrDgMCGgUABBQC/3XaJN6K3RUPq2idzObmY20JAQQUhOG6UqJcVDypckk |
| SJLyLHsqLn/QCAQM= |
| -----END OCSP REQUEST----- |