Skip to content

SSL Server Certificate Extensions

Jump to bottom
Endi S. Dewata edited this page Jul 2, 2021 · 3 revisions

By default the SSL server certificate will have the following extensions:

        Signed Extensions:
            Name: Certificate Authority Key Identifier
            Key ID:
                4f:0c:ac:66:25:1c:e4:38:ef:54:64:1b:e8:48:67:43:
                27:19:84:d3

            Name: Authority Information Access
            Method: PKIX Online Certificate Status Protocol
            Location:
                URI: "http://pki.example.com:80/ca/ocsp"

            Name: Certificate Key Usage
            Critical: True
            Usages: Digital Signature
                    Non-Repudiation
                    Key Encipherment
                    Data Encipherment

            Name: Extended Key Usage
                TLS Web Server Authentication Certificate
                TLS Web Client Authentication Certificate

            Name: Certificate Subject Key ID
            Data:
                26:07:1b:5b:8b:b0:1b:b7:83:da:5d:bf:cb:8d:4f:76:
                a8:57:ac:0e
Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
Clone this wiki locally