node-opcua-pki 2.16.0 → 2.18.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (66) hide show
  1. package/.ignore +6 -6
  2. package/.prettierrc +5 -4
  3. package/LICENSE +22 -21
  4. package/bin/crypto_create_CA.js +0 -0
  5. package/bin/crypto_create_CA_config.example.js +18 -18
  6. package/bin/install_prerequisite.js +9 -9
  7. package/certificates1/CA/conf/caconfig.cnf +125 -0
  8. package/certificates1/CA/conf/caconfig.cnf.tmp +125 -0
  9. package/certificates1/CA/crl/revocation_list.crl +16 -0
  10. package/certificates1/CA/crl/revocation_list.der +0 -0
  11. package/certificates1/CA/crlnumber +1 -0
  12. package/certificates1/CA/crlnumber.old +1 -0
  13. package/certificates1/CA/index.txt +0 -0
  14. package/certificates1/CA/index.txt.attr +1 -0
  15. package/certificates1/CA/private/cakey.csr +76 -0
  16. package/certificates1/CA/serial +1 -0
  17. package/certificates1/config.js +18 -0
  18. package/dist/crypto_create_CA.d.ts +2 -2
  19. package/dist/crypto_create_CA.js +850 -849
  20. package/dist/crypto_create_CA.js.map +1 -1
  21. package/dist/index.d.ts +6 -6
  22. package/dist/index.js +44 -43
  23. package/dist/index.js.map +1 -1
  24. package/dist/misc/applicationurn.d.ts +1 -1
  25. package/dist/misc/applicationurn.js +46 -45
  26. package/dist/misc/applicationurn.js.map +1 -1
  27. package/dist/misc/hostname.d.ts +8 -8
  28. package/dist/misc/hostname.js +102 -102
  29. package/dist/misc/install_prerequisite.d.ts +9 -9
  30. package/dist/misc/install_prerequisite.js +360 -359
  31. package/dist/misc/install_prerequisite.js.map +1 -1
  32. package/dist/misc/subject.d.ts +26 -21
  33. package/dist/misc/subject.js +121 -90
  34. package/dist/misc/subject.js.map +1 -1
  35. package/dist/pki/certificate_authority.d.ts +61 -61
  36. package/dist/pki/certificate_authority.js +481 -480
  37. package/dist/pki/certificate_authority.js.map +1 -1
  38. package/dist/pki/certificate_manager.d.ts +144 -144
  39. package/dist/pki/certificate_manager.js +891 -890
  40. package/dist/pki/certificate_manager.js.map +1 -1
  41. package/dist/pki/common.d.ts +5 -5
  42. package/dist/pki/common.js +2 -2
  43. package/dist/pki/templates/ca_config_template.cnf.d.ts +2 -2
  44. package/dist/pki/templates/ca_config_template.cnf.js +129 -129
  45. package/dist/pki/templates/simple_config_template.cnf.d.ts +2 -2
  46. package/dist/pki/templates/simple_config_template.cnf.js +75 -75
  47. package/dist/pki/toolbox.d.ts +159 -159
  48. package/dist/pki/toolbox.js +671 -669
  49. package/dist/pki/toolbox.js.map +1 -1
  50. package/dist/pki/toolbox_pfx.js +18 -18
  51. package/lib/crypto_create_CA.ts +1156 -1155
  52. package/lib/index.ts +28 -27
  53. package/lib/misc/applicationurn.ts +45 -44
  54. package/lib/misc/hostname.ts +89 -89
  55. package/lib/misc/install_prerequisite.ts +451 -450
  56. package/lib/misc/subject.ts +141 -110
  57. package/lib/pki/certificate_authority.ts +3 -2
  58. package/lib/pki/certificate_manager.ts +2 -1
  59. package/lib/pki/common.ts +5 -5
  60. package/lib/pki/templates/ca_config_template.cnf.ts +129 -129
  61. package/lib/pki/templates/simple_config_template.cnf.ts +75 -75
  62. package/lib/pki/toolbox.ts +18 -16
  63. package/lib/pki/toolbox_pfx.ts +19 -19
  64. package/package.json +89 -89
  65. package/readme.md +156 -143
  66. package/tsconfig.json +20 -20
package/.ignore CHANGED
@@ -1,6 +1,6 @@
1
- package-lock.json
2
- pnpm-lock.yaml
3
- *.xml
4
- dist/
5
- node_modules/
6
- CTT/
1
+ package-lock.json
2
+ pnpm-lock.yaml
3
+ *.xml
4
+ dist/
5
+ node_modules/
6
+ CTT/
package/.prettierrc CHANGED
@@ -1,4 +1,5 @@
1
- {
2
- "tabWidth": 4,
3
- "printWidth": 132
4
- }
1
+ {
2
+ "tabWidth": 4,
3
+ "printWidth": 132,
4
+ "useTabs": false
5
+ }
package/LICENSE CHANGED
@@ -1,21 +1,22 @@
1
- The MIT License (MIT)
2
-
3
- Copyright (c) 2015-2020 Etienne Rossignon
4
-
5
- Permission is hereby granted, free of charge, to any person obtaining a copy
6
- of this software and associated documentation files (the "Software"), to deal
7
- in the Software without restriction, including without limitation the rights
8
- to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
9
- copies of the Software, and to permit persons to whom the Software is
10
- furnished to do so, subject to the following conditions:
11
-
12
- The above copyright notice and this permission notice shall be included in all
13
- copies or substantial portions of the Software.
14
-
15
- THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16
- IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17
- FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18
- AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19
- LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20
- OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21
- SOFTWARE.
1
+ The MIT License (MIT)
2
+
3
+ Copyright (c) 2014-2022 - Etienne Rossignon - etienne.rossignon (at) gadz.org
4
+ Copyright (c) 2022 - Sterfive.com
5
+
6
+ Permission is hereby granted, free of charge, to any person obtaining a copy
7
+ of this software and associated documentation files (the "Software"), to deal
8
+ in the Software without restriction, including without limitation the rights
9
+ to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
10
+ copies of the Software, and to permit persons to whom the Software is
11
+ furnished to do so, subject to the following conditions:
12
+
13
+ The above copyright notice and this permission notice shall be included in all
14
+ copies or substantial portions of the Software.
15
+
16
+ THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
17
+ IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
18
+ FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
19
+ AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
20
+ LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
21
+ OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
22
+ SOFTWARE.
package/bin/crypto_create_CA.js CHANGED
File without changes
package/bin/crypto_create_CA_config.example.js CHANGED
@@ -1,18 +1,18 @@
1
- "use strict";
2
- // ---------------------------------------------------------------------------------------------------------------------
3
- module.exports = {
4
-
5
- subject: {
6
- commonName: "NodeOPCUA-TEST",
7
- organization: "NodeOPCUA",
8
- organizationalUnit: "Unit",
9
- locality: "Paris",
10
- state: "IDF",
11
- country: "FR" // Two letters
12
- },
13
-
14
- validity: 365 * 15, // 15 years
15
-
16
- keySize: 2048 // default private key size : 2048, 3072 or 4096 (avoid 1024 too weak)
17
- };
18
-
1
+ "use strict";
2
+ // ---------------------------------------------------------------------------------------------------------------------
3
+ module.exports = {
4
+
5
+ subject: {
6
+ commonName: "NodeOPCUA-TEST",
7
+ organization: "NodeOPCUA",
8
+ organizationalUnit: "Unit",
9
+ locality: "Paris",
10
+ state: "IDF",
11
+ country: "FR" // Two letters
12
+ },
13
+
14
+ validity: 365 * 15, // 15 years
15
+
16
+ keySize: 2048 // default private key size : 2048, 3072 or 4096 (avoid 1024 too weak)
17
+ };
18
+
package/bin/install_prerequisite.js CHANGED
@@ -1,9 +1,9 @@
1
- #!/usr/bin/env node
2
- "use strict";
3
- // eslint-disable-next-line @typescript-eslint/no-var-requires
4
- var install_prerequisite = require("../dist/lib/misc/install_prerequisite").install_prerequisite;
5
- install_prerequisite(function(err){
6
- if (err) {
7
- console.log("err = ",err.message);
8
- }
9
- });
1
+ #!/usr/bin/env node
2
+ "use strict";
3
+ // eslint-disable-next-line @typescript-eslint/no-var-requires
4
+ var install_prerequisite = require("../dist/lib/misc/install_prerequisite").install_prerequisite;
5
+ install_prerequisite(function(err){
6
+ if (err) {
7
+ console.log("err = ",err.message);
8
+ }
9
+ });
package/certificates1/CA/conf/caconfig.cnf ADDED
@@ -0,0 +1,125 @@
1
+ #.........DO NOT MODIFY BY HAND .........................
2
+ [ ca ]
3
+ default_ca = CA_default
4
+ [ CA_default ]
5
+ dir = C:/sterfive/NodeOPCUA/node-opcua-pki/certificates/CA # the main CA folder
6
+ certs = $dir/certs # where to store certificates
7
+ new_certs_dir = $dir/certs #
8
+ database = $dir/index.txt # the certificate database
9
+ serial = $dir/serial # the serial number counter
10
+ certificate = $dir/public/cacert.pem # The root CA certificate
11
+ private_key = $dir/private/cakey.pem # the CA private key
12
+ x509_extensions = usr_cert #
13
+ default_days = 3650 # default validity : 10 years
14
+
15
+ # default_md = sha1
16
+
17
+ default_md = sha256 # The default digest algorithm
18
+
19
+ preserve = no
20
+ policy = policy_match
21
+ # randfile = $dir/random.rnd
22
+ # default_startdate = YYMMDDHHMMSSZ
23
+ # default_enddate = YYMMDDHHMMSSZ
24
+ crl_dir = $dir/crl
25
+ crl_extensions = crl_ext
26
+ crl = $dir/revocation_list.crl # the Revocation list
27
+ crlnumber = $dir/crlnumber # CRL number file
28
+ default_crl_days = 30
29
+ default_crl_hours = 24
30
+ #msie_hack
31
+
32
+ [ policy_match ]
33
+ countryName = optional
34
+ stateOrProvinceName = optional
35
+ localityName = optional
36
+ organizationName = optional
37
+ organizationalUnitName = optional
38
+ commonName = optional
39
+ emailAddress = optional
40
+
41
+ [ req ]
42
+ default_bits = 4096 # Size of keys
43
+ default_keyfile = key.pem # name of generated keys
44
+ distinguished_name = req_distinguished_name
45
+ attributes = req_attributes
46
+ x509_extensions = v3_ca
47
+ #input_password
48
+ #output_password
49
+ string_mask = nombstr # permitted characters
50
+ req_extensions = v3_req
51
+
52
+ [ req_distinguished_name ]
53
+
54
+ #0 countryName = Country Name (2 letter code)
55
+ # countryName_default = FR
56
+ # countryName_min = 2
57
+ # countryName_max = 2
58
+ # stateOrProvinceName = State or Province Name (full name)
59
+ # stateOrProvinceName_default = Ile de France
60
+ # localityName = Locality Name (city, district)
61
+ # localityName_default = Paris
62
+ organizationName = Organization Name (company)
63
+ organizationName_default = NodeOPCUA
64
+ # organizationalUnitName = Organizational Unit Name (department, division)
65
+ # organizationalUnitName_default = R&D
66
+ commonName = Common Name (hostname, FQDN, IP, or your name)
67
+ commonName_max = 256
68
+ commonName_default = NodeOPCUA
69
+ # emailAddress = Email Address
70
+ # emailAddress_max = 40
71
+ # emailAddress_default = node-opcua (at) node-opcua (dot) com
72
+
73
+ [ req_attributes ]
74
+ #challengePassword = A challenge password
75
+ #challengePassword_min = 4
76
+ #challengePassword_max = 20
77
+ #unstructuredName = An optional company name
78
+ [ usr_cert ]
79
+ basicConstraints = critical, CA:FALSE
80
+ subjectKeyIdentifier = hash
81
+ authorityKeyIdentifier = keyid,issuer:always
82
+ #authorityKeyIdentifier = keyid
83
+ subjectAltName = $ENV::ALTNAME
84
+ # issuerAltName = issuer:copy
85
+ nsComment = ''OpenSSL Generated Certificate''
86
+ #nsCertType = client, email, objsign for ''everything including object signing''
87
+ #nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem
88
+ #nsBaseUrl =
89
+ #nsRenewalUrl =
90
+ #nsCaPolicyUrl =
91
+ #nsSslServerName =
92
+ keyUsage = critical, digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment, keyAgreement, keyCertSign
93
+ extendedKeyUsage = critical,serverAuth ,clientAuth
94
+
95
+ [ v3_req ]
96
+ basicConstraints = critical, CA:FALSE
97
+ keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement
98
+ extendedKeyUsage = critical,serverAuth ,clientAuth
99
+ subjectAltName = $ENV::ALTNAME
100
+ nsComment = "CA Generated by Node-OPCUA Certificate utility using openssl"
101
+ [ v3_ca ]
102
+ subjectKeyIdentifier = hash
103
+ authorityKeyIdentifier = keyid:always,issuer:always
104
+ # authorityKeyIdentifier = keyid
105
+ basicConstraints = CA:TRUE
106
+ keyUsage = critical, cRLSign, keyCertSign
107
+ nsComment = "CA Certificate generated by Node-OPCUA Certificate utility using openssl"
108
+ #nsCertType = sslCA, emailCA
109
+ #subjectAltName = email:copy
110
+ #issuerAltName = issuer:copy
111
+ #obj = DER:02:03
112
+ crlDistributionPoints = @crl_info
113
+ [ crl_info ]
114
+ URI.0 = http://localhost:8900/crl.pem
115
+ [ v3_selfsigned]
116
+ basicConstraints = critical, CA:FALSE
117
+ keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement
118
+ extendedKeyUsage = critical,serverAuth ,clientAuth
119
+ nsComment = "Self-signed certificate, generated by NodeOPCUA"
120
+ subjectAltName = $ENV::ALTNAME
121
+
122
+ [ crl_ext ]
123
+ #issuerAltName = issuer:copy
124
+ authorityKeyIdentifier = keyid:always,issuer:always
125
+ #authorityInfoAccess = @issuer_info
package/certificates1/CA/conf/caconfig.cnf.tmp ADDED
@@ -0,0 +1,125 @@
1
+ #.........DO NOT MODIFY BY HAND .........................
2
+ [ ca ]
3
+ default_ca = CA_default
4
+ [ CA_default ]
5
+ dir = C:/sterfive/NodeOPCUA/node-opcua-pki/certificates/CA # the main CA folder
6
+ certs = $dir/certs # where to store certificates
7
+ new_certs_dir = $dir/certs #
8
+ database = $dir/index.txt # the certificate database
9
+ serial = $dir/serial # the serial number counter
10
+ certificate = $dir/public/cacert.pem # The root CA certificate
11
+ private_key = $dir/private/cakey.pem # the CA private key
12
+ x509_extensions = usr_cert #
13
+ default_days = 3650 # default validity : 10 years
14
+
15
+ # default_md = sha1
16
+
17
+ default_md = sha256 # The default digest algorithm
18
+
19
+ preserve = no
20
+ policy = policy_match
21
+ # randfile = $dir/random.rnd
22
+ # default_startdate = YYMMDDHHMMSSZ
23
+ # default_enddate = YYMMDDHHMMSSZ
24
+ crl_dir = $dir/crl
25
+ crl_extensions = crl_ext
26
+ crl = $dir/revocation_list.crl # the Revocation list
27
+ crlnumber = $dir/crlnumber # CRL number file
28
+ default_crl_days = 30
29
+ default_crl_hours = 24
30
+ #msie_hack
31
+
32
+ [ policy_match ]
33
+ countryName = optional
34
+ stateOrProvinceName = optional
35
+ localityName = optional
36
+ organizationName = optional
37
+ organizationalUnitName = optional
38
+ commonName = optional
39
+ emailAddress = optional
40
+
41
+ [ req ]
42
+ default_bits = 4096 # Size of keys
43
+ default_keyfile = key.pem # name of generated keys
44
+ distinguished_name = req_distinguished_name
45
+ attributes = req_attributes
46
+ x509_extensions = v3_ca
47
+ #input_password
48
+ #output_password
49
+ string_mask = nombstr # permitted characters
50
+ req_extensions = v3_req
51
+
52
+ [ req_distinguished_name ]
53
+
54
+ #0 countryName = Country Name (2 letter code)
55
+ # countryName_default = FR
56
+ # countryName_min = 2
57
+ # countryName_max = 2
58
+ # stateOrProvinceName = State or Province Name (full name)
59
+ # stateOrProvinceName_default = Ile de France
60
+ # localityName = Locality Name (city, district)
61
+ # localityName_default = Paris
62
+ organizationName = Organization Name (company)
63
+ organizationName_default = NodeOPCUA
64
+ # organizationalUnitName = Organizational Unit Name (department, division)
65
+ # organizationalUnitName_default = R&D
66
+ commonName = Common Name (hostname, FQDN, IP, or your name)
67
+ commonName_max = 256
68
+ commonName_default = NodeOPCUA
69
+ # emailAddress = Email Address
70
+ # emailAddress_max = 40
71
+ # emailAddress_default = node-opcua (at) node-opcua (dot) com
72
+
73
+ [ req_attributes ]
74
+ #challengePassword = A challenge password
75
+ #challengePassword_min = 4
76
+ #challengePassword_max = 20
77
+ #unstructuredName = An optional company name
78
+ [ usr_cert ]
79
+ basicConstraints = critical, CA:FALSE
80
+ subjectKeyIdentifier = hash
81
+ authorityKeyIdentifier = keyid,issuer:always
82
+ #authorityKeyIdentifier = keyid
83
+ subjectAltName = URI:undefined
84
+ # issuerAltName = issuer:copy
85
+ nsComment = ''OpenSSL Generated Certificate''
86
+ #nsCertType = client, email, objsign for ''everything including object signing''
87
+ #nsCaRevocationUrl = http://www.domain.dom/ca-crl.pem
88
+ #nsBaseUrl =
89
+ #nsRenewalUrl =
90
+ #nsCaPolicyUrl =
91
+ #nsSslServerName =
92
+ keyUsage = critical, digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment, keyAgreement, keyCertSign
93
+ extendedKeyUsage = critical,serverAuth ,clientAuth
94
+
95
+ [ v3_req ]
96
+ basicConstraints = critical, CA:FALSE
97
+ keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement
98
+ extendedKeyUsage = critical,serverAuth ,clientAuth
99
+ subjectAltName = URI:undefined
100
+ nsComment = "CA Generated by Node-OPCUA Certificate utility using openssl"
101
+ [ v3_ca ]
102
+ subjectKeyIdentifier = hash
103
+ authorityKeyIdentifier = keyid:always,issuer:always
104
+ # authorityKeyIdentifier = keyid
105
+ basicConstraints = CA:TRUE
106
+ keyUsage = critical, cRLSign, keyCertSign
107
+ nsComment = "CA Certificate generated by Node-OPCUA Certificate utility using openssl"
108
+ #nsCertType = sslCA, emailCA
109
+ #subjectAltName = email:copy
110
+ #issuerAltName = issuer:copy
111
+ #obj = DER:02:03
112
+ crlDistributionPoints = @crl_info
113
+ [ crl_info ]
114
+ URI.0 = http://localhost:8900/crl.pem
115
+ [ v3_selfsigned]
116
+ basicConstraints = critical, CA:FALSE
117
+ keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement
118
+ extendedKeyUsage = critical,serverAuth ,clientAuth
119
+ nsComment = "Self-signed certificate, generated by NodeOPCUA"
120
+ subjectAltName = URI:undefined
121
+
122
+ [ crl_ext ]
123
+ #issuerAltName = issuer:copy
124
+ authorityKeyIdentifier = keyid:always,issuer:always
125
+ #authorityInfoAccess = @issuer_info
package/certificates1/CA/crl/revocation_list.crl ADDED
@@ -0,0 +1,16 @@
1
+ -----BEGIN X509 CRL-----
2
+ MIICeDCCAWACAQEwDQYJKoZIhvcNAQELBQAwczELMAkGA1UEBhMCRlIxDDAKBgNV
3
+ BAgTA0lERjEOMAwGA1UEBxMFUGFyaXMxLzAtBgNVBAoTJkxvY2FsIE5PREUtT1BD
4
+ VUEgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MRUwEwYDVQQDEwxOb2RlT1BDVUEtQ0EX
5
+ DTIyMDYwOTA1MjQ1N1oXDTIyMDcxMDA1MjQ1N1qggbgwgbUwgaUGA1UdIwSBnTCB
6
+ moAUqiGintRcr0au0uyo8p6vyDyYXgmhd6R1MHMxCzAJBgNVBAYTAkZSMQwwCgYD
7
+ VQQIEwNJREYxDjAMBgNVBAcTBVBhcmlzMS8wLQYDVQQKEyZMb2NhbCBOT0RFLU9Q
8
+ Q1VBIENlcnRpZmljYXRlIEF1dGhvcml0eTEVMBMGA1UEAxMMTm9kZU9QQ1VBLUNB
9
+ ggkAmNsv7XEq7AEwCwYDVR0UBAQCAhAAMA0GCSqGSIb3DQEBCwUAA4IBAQCWfHB/
10
+ yNuhD+Xf/NcJi0BHt2j1/OpLzSEOtfR/djhbXv1cDLJCCl3i+ZatklFQq5nyhVhv
11
+ E32rncNEVwAPez3rdQxFfr25byzMC6UAmnRnqIN2MvC0CCUfxdqeXh9EYGmy/lLD
12
+ IUhomGmszfoWmkOnsr63korw+nPn3k+uVpMVXPdHwMgQjxjd7lynSIsmqL0FuMYt
13
+ jD1y+QYagV9uviccIbU+acje0QIYlchYuSK1Rj5hILstj/PwrvHZ5iLGkYy4Y2Tj
14
+ LomQs6zw82d0pzuhVEBp+7jNc8+cI+M9V4ckIEc1t3V59wl+I98k82RHAOTCe9dq
15
+ LKFFRD+4a7BBhNbL
16
+ -----END X509 CRL-----
package/certificates1/CA/crlnumber ADDED
@@ -0,0 +1 @@
1
+ 1001
package/certificates1/CA/crlnumber.old ADDED
@@ -0,0 +1 @@
1
+ 1000
package/certificates1/CA/index.txt ADDED
File without changes
package/certificates1/CA/index.txt.attr ADDED
@@ -0,0 +1 @@
1
+ unique_subject = no
package/certificates1/CA/private/cakey.csr ADDED
@@ -0,0 +1,76 @@
1
+ Certificate Request:
2
+ Data:
3
+ Version: 0 (0x0)
4
+ Subject: C=FR, ST=IDF, L=Paris, O=Local NODE-OPCUA Certificate Authority, CN=NodeOPCUA-CA
5
+ Subject Public Key Info:
6
+ Public Key Algorithm: rsaEncryption
7
+ Public-Key: (2048 bit)
8
+ Modulus:
9
+ 00:c1:d3:5d:fb:6e:b7:13:06:7d:8f:77:7f:5a:e9:
10
+ 2a:e4:62:99:f9:92:0a:7f:47:95:bd:d6:2f:f4:40:
11
+ 58:e4:88:c6:22:74:ab:bf:1a:9e:bf:64:7f:f0:c1:
12
+ 6c:46:57:8c:64:1d:8f:30:bb:5d:6c:a0:5b:99:da:
13
+ 9c:ac:62:8b:65:11:14:3e:ff:d4:2b:41:38:d4:5a:
14
+ e9:f4:5e:35:f4:ca:f2:07:0b:d2:ea:c8:3b:ad:61:
15
+ 7c:b6:16:c8:fd:51:3f:19:96:ef:93:5b:78:13:6d:
16
+ ee:d3:ae:14:9a:c8:61:68:4e:ee:15:1a:d9:b3:1e:
17
+ c5:3c:69:8b:73:4e:e2:48:fd:9b:89:52:9d:29:73:
18
+ 1e:3c:f2:ff:de:3c:b8:06:bf:73:6a:eb:a3:e8:57:
19
+ f2:a6:ad:ae:60:4b:61:22:cb:1c:15:25:6b:ad:0e:
20
+ 18:41:09:52:ea:c5:ad:f1:0f:e4:86:8d:fd:c1:b0:
21
+ ef:11:b4:d4:dc:24:bf:13:91:e6:c7:11:93:5c:6c:
22
+ 95:71:37:a5:7a:02:88:a8:45:25:58:b5:85:f8:af:
23
+ 0d:ff:6d:2f:1f:b4:99:29:18:57:a4:c6:87:ec:61:
24
+ da:a8:00:94:0f:f8:3d:aa:23:00:ea:9e:53:12:7f:
25
+ 05:2a:2a:92:75:71:76:9e:c2:29:5e:cf:8e:32:21:
26
+ e0:eb
27
+ Exponent: 65537 (0x10001)
28
+ Attributes:
29
+ Requested Extensions:
30
+ X509v3 Basic Constraints: critical
31
+ CA:FALSE
32
+ X509v3 Key Usage:
33
+ Digital Signature, Non Repudiation, Key Encipherment, Data Encipherment, Key Agreement
34
+ X509v3 Extended Key Usage: critical
35
+ TLS Web Server Authentication, TLS Web Client Authentication
36
+ X509v3 Subject Alternative Name:
37
+ URI:undefined
38
+ Netscape Comment:
39
+ CA Generated by Node-OPCUA Certificate utility using openssl
40
+ Signature Algorithm: sha256WithRSAEncryption
41
+ 93:52:f0:28:dd:81:5b:44:65:d9:2c:95:7b:f8:10:68:96:86:
42
+ 0c:46:d5:e8:f3:48:23:f4:ed:8d:50:66:f9:36:2b:df:4e:1e:
43
+ 90:04:61:b0:8c:b6:9b:d2:b3:e8:d3:5f:b2:5e:58:e4:15:ab:
44
+ 95:4c:3f:97:ad:85:0a:08:44:1c:b3:d3:e8:fd:95:ac:33:6c:
45
+ f0:b8:99:6a:56:5e:d5:a3:3d:6c:02:52:a0:a3:2d:25:e8:d0:
46
+ 24:f6:b7:53:b0:ea:e1:4c:26:ea:b3:93:36:20:a5:b9:02:c8:
47
+ c6:f2:33:ba:40:df:43:bd:bc:f1:e9:03:bc:02:27:34:8a:d9:
48
+ 01:ca:42:36:80:f7:d2:19:95:fc:ad:34:09:04:e2:78:0d:c9:
49
+ 85:20:e1:3d:9f:c5:da:9b:57:95:2d:f1:77:12:1d:90:2f:53:
50
+ d3:f8:f5:ed:2b:25:82:36:c6:77:28:ec:ee:05:a4:f9:3c:d4:
51
+ 74:b7:d4:af:dc:a5:55:ea:e8:b8:f8:c6:48:84:11:40:ef:b8:
52
+ 9e:23:d7:4b:4e:99:fc:4c:63:a8:32:43:22:c9:ca:e4:a9:9a:
53
+ 88:2b:6b:f9:69:42:db:dc:04:20:4c:71:cd:77:c6:0a:98:8a:
54
+ dd:f6:c5:71:74:f0:e4:5b:82:ff:fc:6f:a3:cd:9c:f2:65:4a:
55
+ 33:2c:80:86
56
+ -----BEGIN CERTIFICATE REQUEST-----
57
+ MIIDbTCCAlUCAQAwczELMAkGA1UEBhMCRlIxDDAKBgNVBAgTA0lERjEOMAwGA1UE
58
+ BxMFUGFyaXMxLzAtBgNVBAoTJkxvY2FsIE5PREUtT1BDVUEgQ2VydGlmaWNhdGUg
59
+ QXV0aG9yaXR5MRUwEwYDVQQDEwxOb2RlT1BDVUEtQ0EwggEiMA0GCSqGSIb3DQEB
60
+ AQUAA4IBDwAwggEKAoIBAQDB0137brcTBn2Pd39a6SrkYpn5kgp/R5W91i/0QFjk
61
+ iMYidKu/Gp6/ZH/wwWxGV4xkHY8wu11soFuZ2pysYotlERQ+/9QrQTjUWun0XjX0
62
+ yvIHC9LqyDutYXy2Fsj9UT8Zlu+TW3gTbe7TrhSayGFoTu4VGtmzHsU8aYtzTuJI
63
+ /ZuJUp0pcx488v/ePLgGv3Nq66PoV/Kmra5gS2EiyxwVJWutDhhBCVLqxa3xD+SG
64
+ jf3BsO8RtNTcJL8TkebHEZNcbJVxN6V6AoioRSVYtYX4rw3/bS8ftJkpGFekxofs
65
+ YdqoAJQP+D2qIwDqnlMSfwUqKpJ1cXaewilez44yIeDrAgMBAAGggbQwgbEGCSqG
66
+ SIb3DQEJDjGBozCBoDAMBgNVHRMBAf8EAjAAMAsGA1UdDwQEAwID+DAgBgNVHSUB
67
+ Af8EFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwFAYDVR0RBA0wC4YJdW5kZWZpbmVk
68
+ MEsGCWCGSAGG+EIBDQQ+FjxDQSBHZW5lcmF0ZWQgYnkgTm9kZS1PUENVQSBDZXJ0
69
+ aWZpY2F0ZSB1dGlsaXR5IHVzaW5nIG9wZW5zc2wwDQYJKoZIhvcNAQELBQADggEB
70
+ AJNS8CjdgVtEZdkslXv4EGiWhgxG1ejzSCP07Y1QZvk2K99OHpAEYbCMtpvSs+jT
71
+ X7JeWOQVq5VMP5ethQoIRByz0+j9lawzbPC4mWpWXtWjPWwCUqCjLSXo0CT2t1Ow
72
+ 6uFMJuqzkzYgpbkCyMbyM7pA30O9vPHpA7wCJzSK2QHKQjaA99IZlfytNAkE4ngN
73
+ yYUg4T2fxdqbV5Ut8XcSHZAvU9P49e0rJYI2xnco7O4FpPk81HS31K/cpVXq6Lj4
74
+ xkiEEUDvuJ4j10tOmfxMY6gyQyLJyuSpmogra/lpQtvcBCBMcc13xgqYit32xXF0
75
+ 8ORbgv/8b6PNnPJlSjMsgIY=
76
+ -----END CERTIFICATE REQUEST-----
package/certificates1/CA/serial ADDED
@@ -0,0 +1 @@
1
+ 1000
package/certificates1/config.js ADDED
@@ -0,0 +1,18 @@
1
+ "use strict";
2
+ // ---------------------------------------------------------------------------------------------------------------------
3
+ module.exports = {
4
+
5
+ subject: {
6
+ commonName: "NodeOPCUA-TEST",
7
+ organization: "NodeOPCUA",
8
+ organizationalUnit: "Unit",
9
+ locality: "Paris",
10
+ state: "IDF",
11
+ country: "FR" // Two letters
12
+ },
13
+
14
+ validity: 365 * 15, // 15 years
15
+
16
+ keySize: 2048 // default private key size : 2048, 3072 or 4096 (avoid 1024 too weak)
17
+ };
18
+
package/dist/crypto_create_CA.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- import { ErrorCallback } from "./pki/common";
2
- export declare function main(argumentsList: string, _done?: ErrorCallback): void;
1
+ import { ErrorCallback } from "./pki/common";
2
+ export declare function main(argumentsList: string, _done?: ErrorCallback): void;