158 ServerIron ADX Security Guide
53-1002440-03
Configuring SSL on a ServerIron ADX
6
The certificate hierarchy is shown as under:
Level 0 (root) issuer : CN=OS Level_0 CA
Subject : CN=OS Level_0 CA
Level 1 (first intermediary: Issuer : CN=OS Level_0 CA
Subject : CN=OS Level_1 CA
Level 2 (Second intermediary:Issuer : CN=OS Level_1 CA
Subject: CN=OS Level_2 CA
Level 3 (Server Certificate)Issuer: CN=OS Level_2 CA
Subject: CN=ServerCert by Level_2
ServerIronADX# show ssl cert l4chaincert
Certificate:
Dat Version: lu (0xlx)
Serial Number: 3 (0x00000003)
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=OS Level_2 CA
Validity
Not Before: Feb 10 03:14:21 2006 GMT
Not After : Feb 8 03:14:21 2016 GMT
Subject: CN=ServerCert by Level_2, O=Foundry Nets, OU=L47QA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:bb:d1:5d:8d:5a:ac:0e:94:ec:6c:49:fa:0e:03:
cd:c1:84:52:f0:e6:be:5d:a8:d3:36:c0:33:19:67:
d9:d0:1a:27:87:68:ce:06:68:b1:35:53:64:01:27:
67:4a:69:6d:1f:6f:2e:99:0a:f2:85:ea:fb:1f:f0:
99:21:26:ff:f5:50:11:22:a6:55:cd:fa:b1:2f:be:
5d:cf:65:be:4d:1e:37:e1:64:46:69:c1:73:e5:de:
d5:1d:09:ef:f0:e7:fa:c3:b5:f1:90:21:d5:84:23:
24:8e:9d:f7:35:66:7e:c0:97:af:61:ee:5a:3e:31:
b6:a7:5f:b9:81:1d:0d:43:d9
Exponent: lu IÕ8~0xlx)
*sNetscape Cert Type:
*sSSL Server
*sX509v3 Key Usage:
*sDigital Signature, Non Repudiation, Key Encipherment
*sX509v3 Extended Key Usage:
*sTLS Web Server Authentication
*sNetscape CA Revocation Url:
*s
*sX509v3 Subject Key Identifier:
*s
*sX509v3 Authority Key Identifier:
*skeyid:23:77:98:42:E1:C1:BC:E7:9A:92:79:8E:DF:8D:C3:C1:2A:35:F2:0F
*sDirName:/CN=OS Level_1 CA
*sserial:01
*sAuthority Information Access:
*sCA Issuers - URI:http://s1.l47qa.com/l2/ca.crt
*sX509v3 CRL Distribution Points:
*sURI:http://s1.l47qa.com/l2/crl-v2.crl
*sX509v3 Certificate Policies:
*sPolicy: 1.1.1.1.1