Certificate: Data: Version: 3 (0x2) Serial Number: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef Signature Algorithm: sha1WithRSAEncryption Issuer: O=Sun Microsystems Inc, OU=VeriSign Trust Network, OU=Class 2 OnSite Subscriber CA, CN=Object Signing CA Validity Not Before: Apr 4 00:00:00 2006 GMT Not After : Apr 3 23:59:59 2009 GMT Subject: O=Sun Microsystems Inc, OU=Partner Object Signing, OU=Solaris Cryptographic Framework, OU=<...partner company...>, (1) OU=UsageLimited, (2) CN=<...product/purpose...> (3) Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public Key: (1024 bit) Modulus (1024 bit): 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd: 01:23:45:67:89:ab:cd:ef:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: CA:FALSE X509v3 CRL Distribution Points: URI:http://onsitecrl.verisign.com/SunMicrosystemsIncPartnerObjectSigningSolarisCryptographicFrameworkClassB/LatestCRL.crl X509v3 Key Usage: critical Digital Signature X509v3 Authority Key Identifier: keyid:01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23:45:67 X509v3 Subject Key Identifier: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23:45:67 Authority Information Access: OCSP - URI:http://onsite-ocsp.verisign.com X509v3 Certificate Policies: Policy: 2.16.840.1.113733.1.7.23.2 CPS: https://www.verisign.com/rpa Policy: 2.16.840.1.113536.509.3647 CPS: https://www.sun.com/pki/cps User Notice: Explicit Text: Validated For Sun Business Operations X509v3 Extended Key Usage: Code Signing Signature Algorithm: sha1WithRSAEncryption 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67:89:ab:cd:ef:01:23:45:67:89:ab:cd:ef:01:23: 01:23:45:67 ==COMMENTS==================================================== Dynamic components in Subject DN -------------------------------- 1. dynamic OU non-empty; official name of partner company. 2. dynamic OU either empty (and NOT included in the certificate), or, if not empty, then the value must be "UsageLimited". 3. dynamic CN must be non-empty, typical value: product name and version. NOTES: supported modulus sizes: 1024 (see above) or 2048 bits; validity period: 3 years.