openssl-extensions 1.1.0 → 1.2.0

data/.gitignore

@@ -0,0 +1,8 @@
+.bundle
+
+.DS_Store
+.*.swp
+tmp
+pkg
+*.gem
+

data/.rspec

@@ -0,0 +1,2 @@
+--format Fuubar
+--color

data/.rvmrc

@@ -0,0 +1,2 @@
+rvm_gemset_create_on_use_flag=1
+rvm gemset use openssl-extensions

data/.travis.yml

@@ -0,0 +1,15 @@
+rvm:
+  - 1.8.7
+  - 1.9.2
+  - 1.9.3
+  - ree
+  - jruby
+  - rbx
+gemfile:
+  - Gemfile
+script: "bundle exec rspec spec/"
+branches:
+  only:
+    - master
+notifications:
+  email: false

data/CHANGELOG.md

@@ -1,6 +1,19 @@
+## 1.2.0, released 2011-11-03
+
+[full changelog](http://github.com/envylabs/openssl-extensions/compare/v1.1.0...v1.2.0)
+
+**Enhancements**
+
+* Extended OpenSSL::BN to provide a #to_hex helper, a shortcut for to_s(16) \[[pyrat](https://github.com/pyrat)\]
+* Extended OpenSSL::X509::Certificate, adding #authority_info_access and #crl_distribution_points methods \[[pyrat](https://github.com/pyrat)\]
+
 ## 1.1.0, released 2011-01-20
 
-* Extended OpenSSL::PKey::PKey to add equality methods.
+[full changelog](http://github.com/envylabs/openssl-extensions/compare/v1.0.0...v1.1.0)
+
+**Enhancements**
+
+* Extended OpenSSL::PKey::PKey to add equality methods
 
 ## 1.0.0, released 2011-01-17
 

data/Gemfile

@@ -0,0 +1,2 @@
+source "http://rubygems.org"
+gemspec

data/Gemfile.lock

@@ -0,0 +1,31 @@
+PATH
+  remote: .
+  specs:
+    openssl-extensions (1.2.0)
+
+GEM
+  remote: http://rubygems.org/
+  specs:
+    diff-lcs (1.1.2)
+    fuubar (0.0.3)
+      rspec (~> 2.0)
+      rspec-instafail (~> 0.1.4)
+      ruby-progressbar (~> 0.0.9)
+    rspec (2.4.0)
+      rspec-core (~> 2.4.0)
+      rspec-expectations (~> 2.4.0)
+      rspec-mocks (~> 2.4.0)
+    rspec-core (2.4.0)
+    rspec-expectations (2.4.0)
+      diff-lcs (~> 1.1.2)
+    rspec-instafail (0.1.5)
+    rspec-mocks (2.4.0)
+    ruby-progressbar (0.0.9)
+
+PLATFORMS
+  ruby
+
+DEPENDENCIES
+  fuubar (~> 0.0.1)
+  openssl-extensions!
+  rspec (~> 2.4.0)

data/README.md

@@ -1,4 +1,4 @@
-# OpenSSL Extensions
+# OpenSSL Extensions [![Build status][ci-image]][ci]
 
 This library generally provides helper methods which makes working with
 OpenSSL a little more bearable.  It does, however, provide some additional
@@ -48,3 +48,6 @@ library:
 ## License
 
 Released under the MIT License. See the LICENSE file for further details.
+
+[ci]: http://travis-ci.org/nbibler/openssl-extensions
+[ci-image]: https://secure.travis-ci.org/nbibler/openssl-extensions.png

data/Rakefile

@@ -0,0 +1,9 @@
+require 'rubygems'
+require 'rake'
+require 'rspec/core/rake_task'
+
+task :default => :spec
+
+RSpec::Core::RakeTask.new(:spec) do |t|
+  t.pattern = 'spec/**/*_spec.rb'
+end

data/autotest/discover.rb

@@ -0,0 +1 @@
+Autotest.add_discovery { "rspec2" }

data/lib/openssl-extensions/all.rb

@@ -7,3 +7,4 @@ require 'openssl-extensions/x509/certificate_chain'
 require 'openssl-extensions/x509/request'
 require 'openssl-extensions/x509/name'
 require 'openssl-extensions/ssl/ssl_socket'
+require 'openssl-extensions/bn'

data/lib/openssl-extensions/bn.rb

@@ -0,0 +1,15 @@
+require 'openssl-extensions'
+
+module OpenSSLExtensions
+  module BN
+    ##
+    # OpenSSL deals with serials in HEX format.
+    # This gives you the ability to get this hex serial if you need to work with 
+    # certificate information directly with OpenSSL
+    def to_hex
+      to_s(16).upcase
+    end
+  end
+end
+
+OpenSSL::BN.send(:include, OpenSSLExtensions::BN)

data/lib/openssl-extensions/pkey/pkey.rb

@@ -5,12 +5,19 @@ require 'openssl-extensions/pkey'
 # Extends OpenSSL::PKey::PKey and its submodules with helper methods.
 #
 module OpenSSLExtensions::PKey::PKey
+  ##
+  # Equality is tested by comparing the instances' +hash+.
+  #
   def ==(other)
     other.kind_of?(OpenSSL::PKey::PKey) &&
       self.hash == other.hash
   end
   alias_method :eql?, :==
 
+  ##
+  # Override the default Object#hash to identify uniqueness of the key.
+  # This uses a hash of the PEM.
+  #
   def hash
     to_pem.hash
   end

data/lib/openssl-extensions/version.rb

@@ -1,3 +1,3 @@
 module OpenSSLExtensions
-  Version = '1.1.0'
+  Version = '1.2.0'
 end

data/lib/openssl-extensions/x509/certificate.rb

@@ -83,6 +83,16 @@ module OpenSSLExtensions::X509::Certificate
   def subject_key_identifier
     read_extension_by_oid('subjectKeyIdentifier')
   end
+  
+  ##
+  # This can be used for getting OCSP Urls for revocation checks.
+  def authority_info_access
+    read_extension_by_oid('authorityInfoAccess')
+  end
+  
+  def crl_distribution_points
+    read_extension_by_oid('crlDistributionPoints')
+  end
 
   ##
   # Returns the SSL version used by the certificate.  Most likely, this
@@ -100,7 +110,7 @@ module OpenSSLExtensions::X509::Certificate
       $1.to_i
     end
   end
-
+ 
 end
 
 OpenSSL::X509::Certificate.send(:include, OpenSSLExtensions::X509::Certificate)

data/openssl-extensions.gemspec

@@ -0,0 +1,25 @@
+# -*- encoding: utf-8 -*-
+lib = File.expand_path('../lib/', __FILE__)
+$:.unshift lib unless $:.include?(lib)
+
+require 'openssl-extensions/version'
+
+Gem::Specification.new do |s|
+  s.name = 'openssl-extensions'
+  s.version = OpenSSLExtensions::Version
+  s.platform = Gem::Platform::RUBY
+  s.authors = ['Nathaniel Bibler']
+  s.email = ['nate@envylabs.com']
+  s.homepage = 'http://github.com/envylabs/openssl-extensions'
+  s.summary = 'Helper methods and extensions for OpenSSL to make the interface more intuitive.'
+  s.description = 'This library patches OpenSSL to add helper methods and extensions to OpenSSL objects with the intention of making the interface more intuitive.'
+  s.required_rubygems_version = '>= 1.3.6'
+
+  s.add_development_dependency 'rspec', '~> 2.4.0'
+  s.add_development_dependency 'fuubar', '~> 0.0.1'
+
+  s.files         = `git ls-files`.split("\n")
+  s.test_files    = `git ls-files -- {test,spec,features}/*`.split("\n")
+  s.executables   = `git ls-files -- bin/*`.split("\n").map{ |f| File.basename(f) }
+  s.require_paths = ["lib"]
+end

data/spec/models/openssl-extensions/x509/certificate_spec.rb

@@ -1,7 +1,8 @@
 require 'spec_helper'
 
 describe OpenSSLExtensions::X509::Certificate do
-  subject { extended_ssl_certificates('www.geocerts.com') }
+  let(:certificate) { extended_ssl_certificates('www.geocerts.com') }
+  subject { certificate }
 
   its(:subject_alternative_names) { should == %w(www.geocerts.com geocerts.com) }
   its(:subject_key_identifier) { should be_nil }
@@ -9,33 +10,42 @@ describe OpenSSLExtensions::X509::Certificate do
   its(:ssl_version) { should == 3 }
 
   context 'strength' do
-    it 'is 2048 bits' do
-      subject.strength.should == 2048
+    subject { certificate.strength }
+
+    context 'for a 2048 bit certificate' do
+      it { should == 2048 }
     end
 
-    it 'is 1024 bits' do
-      extended_ssl_certificates('www.twongo.com').strength.should == 1024
+    context 'for a 1024 bit certificate' do
+      let(:certificate) { extended_ssl_certificates('www.twongo.com') }
+
+      it { should == 1024 }
     end
   end
 
   context 'allows_certificate_signing?' do
+    subject { certificate.allows_certificate_signing? }
+
     context 'for V3' do
-      it 'is true for a root certificate' do
-        extended_ssl_certificates('GeoTrust Primary Certification Authority').allows_certificate_signing?.should be_true
+      context 'for a root certificate' do
+        let(:certificate) { extended_ssl_certificates('GeoTrust Primary Certification Authority') }
+        it { should be_true }
       end
 
-      it 'is false for a site certificate' do
-        extended_ssl_certificates('www.geocerts.com').allows_certificate_signing?.should be_false
+      context 'for a site certificate' do
+        it { should be_false }
       end
     end
 
     context 'for V1' do
-      it 'is true for a root certificate' do
-        extended_ssl_certificates('HongKong Post Root CA 1').allows_certificate_signing?.should be_true
+      context 'for a root certificate' do
+        let(:certificate) { extended_ssl_certificates('HongKong Post Root CA 1') }
+        it { should be_true }
       end
 
-      it 'is false for a site certificate' do
-        extended_ssl_certificates('app1.hongkongpost.com').allows_certificate_signing?.should be_false
+      context 'for a site certificate' do
+        let(:certificate) { extended_ssl_certificates('app1.hongkongpost.com') }
+        it { should be_false }
       end
     end
   end
@@ -61,7 +71,8 @@ describe OpenSSLExtensions::X509::Certificate do
 
   context 'equality (==)' do
     it 'is true with matching PEMs' do
-      ssl_certificates('www.geocerts.com').should == ssl_certificates('www.geocerts.com')
+      ssl_certificates('www.geocerts.com').
+        should == ssl_certificates('www.geocerts.com')
     end
 
     it 'is false with mismatched PEMs' do
@@ -81,16 +92,15 @@ describe OpenSSLExtensions::X509::Certificate do
     it 'does not modify non-duplicates' do
       [ssl_certificates('www.geocerts.com'),
         ssl_certificates('GeoTrust Extended Validation SSL CA')].uniq.should ==
-      [ssl_certificates('www.geocerts.com'),
-        ssl_certificates('GeoTrust Extended Validation SSL CA')]
+        [ssl_certificates('www.geocerts.com'),
+          ssl_certificates('GeoTrust Extended Validation SSL CA')]
     end
   end
 
-  context 'when a subject key identifier is provided' do
+  context 'subject_key_identifier' do
+    subject { ssl_certificates('GeoTrust Extended Validation SSL CA').extend(OpenSSLExtensions::X509::Certificate).subject_key_identifier }
 
-    subject { ssl_certificates('GeoTrust Extended Validation SSL CA').extend(OpenSSLExtensions::X509::Certificate) }
-
-    its(:subject_key_identifier) { should == '28:C4:EB:8F:F1:5F:79:90:A3:2B:55:C3:56:4E:7D:6B:53:72:2C:18' }
+    it { should == '28:C4:EB:8F:F1:5F:79:90:A3:2B:55:C3:56:4E:7D:6B:53:72:2C:18' }
   end
 
   context 'root?' do
@@ -106,4 +116,27 @@ describe OpenSSLExtensions::X509::Certificate do
       extended_ssl_certificates('globalsign-root-ca').should be_root
     end
   end
+
+  context 'serial' do
+    context 'to_hex' do
+      let(:certificate) { extended_ssl_certificates('GeoTrust Extended Validation SSL CA') }
+      subject { certificate.serial.to_hex }
+
+      it 'returns the base 16 (hex) format of the serial number' do
+        should eq('6948A26B201AA421E898B1C492C7C58E')
+      end
+    end
+  end
+
+  context 'crl_distribution_points' do
+    subject { certificate.crl_distribution_points }
+
+    it { should == "URI:http://EVSSL-crl.geotrust.com/crls/gtextvalca.crl\n" }
+  end
+
+  context 'authority_info_access' do
+    subject { certificate.authority_info_access }
+
+    it { should == "OCSP - URI:http://EVSSL-ocsp.geotrust.com\nCA Issuers - URI:http://EVSSL-aia.geotrust.com/evca.crt\n" }
+  end
 end

data/spec/requests/openssl/bn_spec.rb

@@ -0,0 +1,9 @@
+require 'spec_helper'
+
+describe OpenSSL::BN do
+  subject { ssl_certificates('www.geocerts.com').serial }
+
+  it "includes the OpenSSLExtensions::BN extensions" do
+    subject.should be_kind_of OpenSSLExtensions::BN
+  end
+end

metadata

@@ -1,87 +1,76 @@
---- !ruby/object:Gem::Specification 
+--- !ruby/object:Gem::Specification
 name: openssl-extensions
-version: !ruby/object:Gem::Version 
-  hash: 19
-  prerelease: false
-  segments: 
-  - 1
-  - 1
-  - 0
-  version: 1.1.0
+version: !ruby/object:Gem::Version
+  version: 1.2.0
+  prerelease: 
 platform: ruby
-authors: 
+authors:
 - Nathaniel Bibler
 autorequire: 
 bindir: bin
 cert_chain: []
-
-date: 2011-01-20 00:00:00 -05:00
-default_executable: 
-dependencies: 
-- !ruby/object:Gem::Dependency 
+date: 2011-11-03 00:00:00.000000000Z
+dependencies:
+- !ruby/object:Gem::Dependency
   name: rspec
-  prerelease: false
-  requirement: &id001 !ruby/object:Gem::Requirement 
+  requirement: &2152536060 !ruby/object:Gem::Requirement
     none: false
-    requirements: 
+    requirements:
     - - ~>
-      - !ruby/object:Gem::Version 
-        hash: 31
-        segments: 
-        - 2
-        - 4
-        - 0
+      - !ruby/object:Gem::Version
         version: 2.4.0
   type: :development
-  version_requirements: *id001
-- !ruby/object:Gem::Dependency 
-  name: fuubar
   prerelease: false
-  requirement: &id002 !ruby/object:Gem::Requirement 
+  version_requirements: *2152536060
+- !ruby/object:Gem::Dependency
+  name: fuubar
+  requirement: &2152563220 !ruby/object:Gem::Requirement
     none: false
-    requirements: 
+    requirements:
     - - ~>
-      - !ruby/object:Gem::Version 
-        hash: 29
-        segments: 
-        - 0
-        - 0
-        - 1
+      - !ruby/object:Gem::Version
         version: 0.0.1
   type: :development
-  version_requirements: *id002
-description: This library patches OpenSSL to add helper methods and extensions to OpenSSL objects with the intention of making the interface more intuitive.
-email: 
+  prerelease: false
+  version_requirements: *2152563220
+description: This library patches OpenSSL to add helper methods and extensions to
+  OpenSSL objects with the intention of making the interface more intuitive.
+email:
 - nate@envylabs.com
 executables: []
-
 extensions: []
-
 extra_rdoc_files: []
-
-files: 
+files:
+- .gitignore
+- .rspec
+- .rvmrc
+- .travis.yml
+- CHANGELOG.md
+- Gemfile
+- Gemfile.lock
+- LICENSE
+- README.md
+- Rakefile
+- autotest/discover.rb
+- lib/openssl-extensions.rb
 - lib/openssl-extensions/all.rb
-- lib/openssl-extensions/pkey/pkey.rb
+- lib/openssl-extensions/bn.rb
 - lib/openssl-extensions/pkey.rb
-- lib/openssl-extensions/ssl/ssl_socket.rb
+- lib/openssl-extensions/pkey/pkey.rb
 - lib/openssl-extensions/ssl.rb
+- lib/openssl-extensions/ssl/ssl_socket.rb
 - lib/openssl-extensions/version.rb
+- lib/openssl-extensions/x509.rb
 - lib/openssl-extensions/x509/authority_key_identifier.rb
 - lib/openssl-extensions/x509/certificate.rb
 - lib/openssl-extensions/x509/certificate_chain.rb
 - lib/openssl-extensions/x509/name.rb
 - lib/openssl-extensions/x509/request.rb
-- lib/openssl-extensions/x509.rb
-- lib/openssl-extensions.rb
-- CHANGELOG.md
-- LICENSE
-- README.md
+- openssl-extensions.gemspec
 - spec/fixtures/certificate_requests/1024.csr
 - spec/fixtures/certificate_requests/challenge.csr
 - spec/fixtures/certificate_requests/envylabs.csr
 - spec/fixtures/certificate_requests/geocerts.csr
-- spec/fixtures/certificate_requests/geocerts.key
-- spec/fixtures/certificate_requests/geocerts_1024.key
 - spec/fixtures/certificate_requests/sans.csr
 - spec/fixtures/certificates/app1.hongkongpost.com.pem
 - spec/fixtures/certificates/equifax-secure-ca.pem
@@ -96,11 +85,6 @@ files:
 - spec/fixtures/certificates/www.twongo.com.pem
 - spec/fixtures/keys/dsa.key
 - spec/fixtures/keys/rsa.key
-- spec/integration/openssl/pkey/pkey_spec.rb
-- spec/integration/openssl/ssl/ssl_socket_spec.rb
-- spec/integration/openssl/x509/certificate_spec.rb
-- spec/integration/openssl/x509/name_spec.rb
-- spec/integration/openssl/x509/request_spec.rb
 - spec/models/openssl-extensions/pkey/pkey_spec.rb
 - spec/models/openssl-extensions/ssl/ssl_socket_spec.rb
 - spec/models/openssl-extensions/x509/authority_key_identifier_spec.rb
@@ -109,53 +93,45 @@ files:
 - spec/models/openssl-extensions/x509/name_spec.rb
 - spec/models/openssl-extensions/x509/request_spec.rb
 - spec/models/openssl-extensions_spec.rb
+- spec/requests/openssl/bn_spec.rb
+- spec/requests/openssl/pkey/pkey_spec.rb
+- spec/requests/openssl/ssl/ssl_socket_spec.rb
+- spec/requests/openssl/x509/certificate_spec.rb
+- spec/requests/openssl/x509/name_spec.rb
+- spec/requests/openssl/x509/request_spec.rb
 - spec/spec_helper.rb
 - spec/support/certificate_request_fixtures.rb
 - spec/support/pkey_fixtures.rb
 - spec/support/ssl_certificate_fixtures.rb
-has_rdoc: true
 homepage: http://github.com/envylabs/openssl-extensions
 licenses: []
-
 post_install_message: 
 rdoc_options: []
-
-require_paths: 
+require_paths:
 - lib
-required_ruby_version: !ruby/object:Gem::Requirement 
+required_ruby_version: !ruby/object:Gem::Requirement
   none: false
-  requirements: 
-  - - ">="
-    - !ruby/object:Gem::Version 
-      hash: 3
-      segments: 
-      - 0
-      version: "0"
-required_rubygems_version: !ruby/object:Gem::Requirement 
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
   none: false
-  requirements: 
-  - - ">="
-    - !ruby/object:Gem::Version 
-      hash: 23
-      segments: 
-      - 1
-      - 3
-      - 6
+  requirements:
+  - - ! '>='
+    - !ruby/object:Gem::Version
       version: 1.3.6
 requirements: []
-
 rubyforge_project: 
-rubygems_version: 1.3.7
+rubygems_version: 1.8.10
 signing_key: 
 specification_version: 3
 summary: Helper methods and extensions for OpenSSL to make the interface more intuitive.
-test_files: 
+test_files:
 - spec/fixtures/certificate_requests/1024.csr
 - spec/fixtures/certificate_requests/challenge.csr
 - spec/fixtures/certificate_requests/envylabs.csr
 - spec/fixtures/certificate_requests/geocerts.csr
-- spec/fixtures/certificate_requests/geocerts.key
-- spec/fixtures/certificate_requests/geocerts_1024.key
 - spec/fixtures/certificate_requests/sans.csr
 - spec/fixtures/certificates/app1.hongkongpost.com.pem
 - spec/fixtures/certificates/equifax-secure-ca.pem
@@ -170,11 +146,6 @@ test_files:
 - spec/fixtures/certificates/www.twongo.com.pem
 - spec/fixtures/keys/dsa.key
 - spec/fixtures/keys/rsa.key
-- spec/integration/openssl/pkey/pkey_spec.rb
-- spec/integration/openssl/ssl/ssl_socket_spec.rb
-- spec/integration/openssl/x509/certificate_spec.rb
-- spec/integration/openssl/x509/name_spec.rb
-- spec/integration/openssl/x509/request_spec.rb
 - spec/models/openssl-extensions/pkey/pkey_spec.rb
 - spec/models/openssl-extensions/ssl/ssl_socket_spec.rb
 - spec/models/openssl-extensions/x509/authority_key_identifier_spec.rb
@@ -183,6 +154,12 @@ test_files:
 - spec/models/openssl-extensions/x509/name_spec.rb
 - spec/models/openssl-extensions/x509/request_spec.rb
 - spec/models/openssl-extensions_spec.rb
+- spec/requests/openssl/bn_spec.rb
+- spec/requests/openssl/pkey/pkey_spec.rb
+- spec/requests/openssl/ssl/ssl_socket_spec.rb
+- spec/requests/openssl/x509/certificate_spec.rb
+- spec/requests/openssl/x509/name_spec.rb
+- spec/requests/openssl/x509/request_spec.rb
 - spec/spec_helper.rb
 - spec/support/certificate_request_fixtures.rb
 - spec/support/pkey_fixtures.rb

data/spec/fixtures/certificate_requests/geocerts.key

@@ -1,27 +0,0 @@
------BEGIN RSA PRIVATE KEY-----
-MIIEogIBAAKCAQEAuXWzKA84WdxAhyOSsJgyh4Xa6UCItYcEanPL1NP5vAsDXyoG
-lKry49hRDGQkX6SQ+ER3NLYw7jjADn0eB9wIe3RRABRaHzaGTR4saFuRlBFahWq7
-WlRXtyGGM/3LO93GXbN/ZGqZVVzkP/4UhPge6mEs81mTmVAiuLanRrNnakt/6wJu
-Jg/leyaXtQ82RHE6Oge+h8LaEbHUtfx2Z8ooiwAr4hk4rAH3AqQfmWiEF+XDIEDI
-0fBWcUCEXTxpfthojP6JuRC1PS1X9kk5P4ol3nSDlDl4YS4x6LF8OYhZyBMLxCat
-9YueS7T8vx64+ilwhXevsqVVu84HHx1TDupLjwIDAQABAoIBAGXVvURX5ydgi4Yp
-AFk7mTNVSrkdmHOk6cXSQ7BfnRemLHnKx8ZGgAygMRDOxDJIWNoaLiKhkAie3MaX
-6S+DoJy5Z+jVRA8zj1c1JElBTpSxWrU7wBh/i5KhM+HEkB4VTuEQuPjYl82JrkN9
-LqM84yzroxUUsLlUiVxH314xEK4KS4vzEte9Mf3YGO00OTcKRHig3J1en+5m56i/
-3GsGjCogT8xTAPV+KSX6qU7GQ/1KE0soQzt2WlVQT7HwvcUhLn2C9l28Asn+mZaF
-1aPsiEoFGPsBfDopWywST6dvxe4RHByLWEpjUUKhUMuv8Eqfd531+qPFnhrHn9QY
-aM5SFAECgYEA4VLDcDjALNNZEYN/hZHm9l/RJONHZ+CLAwpTHDdlwcejHL8gxTo0
-G8cEbgT0IyL6dIAC8aB/ne7Cb/Ua2AIklA04FJe2B4Q83ICmPFtHdoQq/ViGqVxM
-yvU/KY28A7UYIGYmoKFsONo//HIXED61iK7ChUDMUXcZpublOTEQFo8CgYEA0rWQ
-p1EebI7cZqQzSs2wueTKDDswIRnIoX9x8O0Ar1HkzoJ2JOAW999UZ8x8jeQhRNQX
-NZ/r+ixWvzzVPQva+SxgQqx4dB08NJGgdEOkYqzl3bRnR2q2I+nyNDYU8elxIvUd
-95OGOQZGd12oLUKBG3YIb8Oc4Hfwz5/7ACqE+wECgYBfF1iXobuor0ElnQNSUXLR
-gzp2gNx/wEmqbM8KV27ASwpRdW/VDG01U9ZQwBJwSbC9PdEAPCXfdwXjzeMYSj85
-pCKIvkX6AhrVTA3b5wHPyJOD+7pI+0UFWl7foIs6XVDjS3j9zWIo1CKw3U1Sc8SU
-/HvnVKNltgfDYipW6pfJjQKBgBajPRxMwckF/DXm1D/oI2GFbBOuVDhqLbz0FUi+
-HcG4Oa3aJFlH3g/ZZZcVSBhydwSPCMNRICgrlVJMddhuKqN0mg7vuq026t32+1ci
-YUncq4GLPUFV/KWVH9luKgfnfak0znhn2BbOTsnKPSRHrdlGcBeZ24PePvf/hxb4
-ensBAoGANyQfL6E4RcBHQWZ1d2wq+Gd/mFctLrHWaJwdYd0dxd7oQ5zhue7+yPfD
-q5dosxjGs7ZEF5HbMwf5Iv0RAkb/W4BKja/tC6PIplpCTt59COlGdnLyHJeoRmF6
-KnSai8jcXz2SWdOMQWgHSSdfWqxosIf3wAIwbtY7wNv1t+1JguE=
------END RSA PRIVATE KEY-----

data/spec/fixtures/certificate_requests/geocerts_1024.key

@@ -1,15 +0,0 @@
------BEGIN RSA PRIVATE KEY-----
-MIICXQIBAAKBgQDdlqVkMMohJ1kUqBxqZJojCFtJFht7f4JDs5kURI7QSCpN6eB/
-KLqP4x8skx3FGktU/Vgsdri9OeLS71cyw389eJyxmDFroicE0pyAd2o6dZGh1x9/
-7AJuIDwolhyNAhHLtKppTRh1LIUoU2ZU9xuywN9QzI5Yj29pNBaszsbEJwIDAQAB
-AoGBALm8LTPW5YZ2qedzpiXT35MfzQxs+GpDDdhbsSNY9/BDnRojwKY1aHN1J8tA
-IUL2cFBz7rWOaflKjQLL1WZakcpQW9msIemPF0gKD5cNJrMuPcHZEu5vpPOXcTtR
-N4VxW5+U/PYU5J69j6q800z/Z0rWl+YtLnKc8ZbIIbFX1DBhAkEA9U4WR9QokPDf
-IPjDJOZkBVvvLLfnCx8RkcTmrJslfJ/5VrFLCVHMw1oaZuDOJVIG8bvMElcQR3/E
-qUHCw90V9wJBAOc/2i9gY/Mimzfs9xBNv+NFXEoJdoVHw9NAZgDi9otHZmfQHzYh
-3DCQLzptJSp4cArVL5SB1mlLBFpmhBkLd1ECQAzjHFKLt9HdhatixkXDANAzQz5z
-LuUrra2dzYyV3gNNGDlQuSN1M6+zpR1whAP76jd66T6xaj6HXNqThNrrW4MCQDAI
-rlx67Cf7vzwdp7AmRj6CEMp8Lrc+kemWjdmPS2Dg4t+bdnA7Fk6sFHNRao/o1nUZ
-lTmGwq+6WlwgwT2miRECQQDrfnkHnjQP3yWtuwzx8/LeMSZ6rfMmQAAWUnF6FoRg
-/v7SVDx353vmj8k+ulQoyP6RKCnKZf4dGPRWCgpetdRk
------END RSA PRIVATE KEY-----