Training
Module
Implement and manage Active Directory Certificate Services - Training
Implement and manage Active Directory Certificate Services
CMC Renewal Encoded ASN.1
The following example contains a CMC renewal request shown in ASN.1 format. The example was generated by using the Certreq.exe and Certutil.exe tools. The .inf file used as input to Certreq.exe contains the following configuration.
syntax
[NewRequest]
RequestType=cmc
RenewalCert=248f7d3c00000000086e
The configuration specifies the type of request (CMC) and the serial number of the certificate upon which the request is based. This generates the following output.
syntax
0000: 30 82 0b 04 ; SEQUENCE (b04 Bytes)
0004: 06 09 ; OBJECT_ID (9 Bytes)
0006: | 2a 86 48 86 f7 0d 01 07 02
| ; 1.2.840.113549.1.7.2 PKCS 7 Signed
000f: a0 82 0a f5 ; OPTIONAL[0] (af5 Bytes)
0013: 30 82 0a f1 ; SEQUENCE (af1 Bytes)
0017: 02 01 ; INTEGER (1 Bytes)
0019: | 03
001a: 31 0b ; SET (b Bytes)
001c: | 30 09 ; SEQUENCE (9 Bytes)
001e: | 06 05 ; OBJECT_ID (5 Bytes)
0020: | | 2b 0e 03 02 1a
| | ; 1.3.14.3.2.26 sha1 (sha1NoSign)
0025: | 05 00 ; NULL (0 Bytes)
0027: 30 82 09 e1 ; SEQUENCE (9e1 Bytes)
002b: | 06 08 ; OBJECT_ID (8 Bytes)
002d: | | 2b 06 01 05 05 07 0c 02
| | ; 1.3.6.1.5.5.7.12.2 CMC Data
0035: | a0 82 09 d3 ; OPTIONAL[0] (9d3 Bytes)
0039: | 04 82 09 cf ; OCTET_STRING (9cf Bytes)
003d: | 30 82 09 cb ; SEQUENCE (9cb Bytes)
0041: | 30 78 ; SEQUENCE (78 Bytes)
0043: | | 30 76 ; SEQUENCE (76 Bytes)
0045: | | 02 01 ; INTEGER (1 Bytes)
0047: | | | 02
0048: | | 06 0a ; OBJECT_ID (a Bytes)
004a: | | | 2b 06 01 04 01 82 37 0a 0a 01
| | | ; 1.3.6.1.4.1.311.10.10.1 CMC Attributes
0054: | | 31 65 ; SET (65 Bytes)
0056: | | 30 63 ; SEQUENCE (63 Bytes)
0058: | | 02 01 ; INTEGER (1 Bytes)
005a: | | | 00
005b: | | 30 03 ; SEQUENCE (3 Bytes)
005d: | | | 02 01 ; INTEGER (1 Bytes)
005f: | | | 01
0060: | | 31 59 ; SET (59 Bytes)
0062: | | 30 57 ; SEQUENCE (57 Bytes)
0064: | | 06 09 ; OBJECT_ID (9 Bytes)
0066: | | | 2b 06 01 04 01 82 37 15 14
| | | ; 1.3.6.1.4.1.311.21.20 Client Information
006f: | | 31 4a ; SET (4a Bytes)
0071: | | 30 48 ; SEQUENCE (48 Bytes)
0073: | | 02 01 ; INTEGER (1 Bytes)
0075: | | | 09
0076: | | 0c 23 ; UTF8_STRING (23 Bytes)
0078: | | | 76 69 63 68 33 64 2e 6a 64 6f 6d 63 73 63 2e 6e ; vich3d.jdomcsc.n
0088: | | | 74 74 65 73 74 2e 6d 69 63 72 6f 73 6f 66 74 2e ; ttest.microsoft.
0098: | | | 63 6f 6d ; com
| | | ; "vich3d.jdomcsc.nttest.microsoft.com"
009b: | | 0c 15 ; UTF8_STRING (15 Bytes)
009d: | | | 4a 44 4f 4d 43 53 43 5c 61 64 6d 69 6e 69 73 74 ; JDOMCSC\administ
00ad: | | | 72 61 74 6f 72 ; rator
| | | ; "JDOMCSC\administrator"
00b2: | | 0c 07 ; UTF8_STRING (7 Bytes)
00b4: | | 63 65 72 74 72 65 71 ; certreq
| | ; "certreq"
00bb: | 30 82 09 49 ; SEQUENCE (949 Bytes)
00bf: | | a0 82 09 45 ; OPTIONAL[0] (945 Bytes)
00c3: | | 02 01 ; INTEGER (1 Bytes)
00c5: | | | 01
00c6: | | 30 82 09 3e ; SEQUENCE (93e Bytes)
00ca: | | 30 82 08 a7 ; SEQUENCE (8a7 Bytes)
00ce: | | | 02 01 ; INTEGER (1 Bytes)
00d0: | | | | 00
00d1: | | | 30 00 ; SEQUENCE (0 Bytes)
00d3: | | | 30 81 9f ; SEQUENCE (9f Bytes)
00d6: | | | | 30 0d ; SEQUENCE (d Bytes)
00d8: | | | | | 06 09 ; OBJECT_ID (9 Bytes)
00da: | | | | | | 2a 86 48 86 f7 0d 01 01 01
| | | | | | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
00e3: | | | | | 05 00 ; NULL (0 Bytes)
00e5: | | | | 03 81 8d ; BIT_STRING (8d Bytes)
00e8: | | | | 00
00e9: | | | | 30 81 89 ; SEQUENCE (89 Bytes)
00ec: | | | | 02 81 81 ; INTEGER (81 Bytes)
00ef: | | | | | 00
00f0: | | | | | b4 04 6e 1a b2 17 f6 bf d4 cb 51 17 cc a5 39 bd
0100: | | | | | 54 ac 52 92 e9 0e bf d6 c4 0c df 32 e9 eb e3 b9
0110: | | | | | a1 30 5f 8e cd da d8 e0 6a 2c 1b 01 17 fc aa 31
0120: | | | | | 04 42 11 cf 29 8f a2 64 03 3d 9d 23 e2 76 58 1c
0130: | | | | | 75 47 bc e1 9b 41 79 c4 5b 40 65 9f 56 b1 a6 d2
0140: | | | | | 74 b2 e7 2e 5e 2f 62 fc 7e 76 c8 81 cd d4 ca 0d
0150: | | | | | bc 35 ba 59 57 61 11 12 14 74 34 88 3f 62 d3 26
0160: | | | | | fb 93 ce a7 ca 0e 5f 96 d1 d4 9e 70 8f be 73 bd
0170: | | | | 02 03 ; INTEGER (3 Bytes)
0172: | | | | 01 00 01
0175: | | | a0 82 07 fc ; OPTIONAL[0] (7fc Bytes)
0179: | | | 30 1a ; SEQUENCE (1a Bytes)
017b: | | | | 06 0a ; OBJECT_ID (a Bytes)
017d: | | | | | 2b 06 01 04 01 82 37 0d 02 03
| | | | | ; 1.3.6.1.4.1.311.13.2.3 OS Version
0187: | | | | 31 0c ; SET (c Bytes)
0189: | | | | 16 0a ; IA5_STRING (a Bytes)
018b: | | | | 36 2e 30 2e 35 33 36 31 2e 32 ; 6.0.5361.2
| | | | ; "6.0.5361.2"
0195: | | | 30 3e ; SEQUENCE (3e Bytes)
0197: | | | | 06 09 ; OBJECT_ID (9 Bytes)
0199: | | | | | 2a 86 48 86 f7 0d 01 09 0e
| | | | | ; 1.2.840.113549.1.9.14 Certificate Extensions
01a2: | | | | 31 31 ; SET (31 Bytes)
01a4: | | | | 30 2f ; SEQUENCE (2f Bytes)
01a6: | | | | 30 1d ; SEQUENCE (1d Bytes)
01a8: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
01aa: | | | | | | 55 1d 0e
| | | | | | ; 2.5.29.14 Subject Key Identifier
01ad: | | | | | 04 16 ; OCTET_STRING (16 Bytes)
01af: | | | | | 04 14 ; OCTET_STRING (14 Bytes)
01b1: | | | | | d2 91 95 03 6a b4 a6 a7 43 cd bd 35 0e 1c 80 58 ; ....j...C..5...X
01c1: | | | | | 91 e3 9a 33 ; ...3
01c5: | | | | 30 0e ; SEQUENCE (e Bytes)
01c7: | | | | 06 03 ; OBJECT_ID (3 Bytes)
01c9: | | | | | 55 1d 0f
| | | | | ; 2.5.29.15 Key Usage
01cc: | | | | 01 01 ; BOOL (1 Bytes)
01ce: | | | | | ff
01cf: | | | | 04 04 ; OCTET_STRING (4 Bytes)
01d1: | | | | 03 02 ; BIT_STRING (2 Bytes)
01d3: | | | | 07
01d4: | | | | 80
01d5: | | | 30 57 ; SEQUENCE (57 Bytes)
01d7: | | | | 06 09 ; OBJECT_ID (9 Bytes)
01d9: | | | | | 2b 06 01 04 01 82 37 15 14
| | | | | ; 1.3.6.1.4.1.311.21.20 Client Information
01e2: | | | | 31 4a ; SET (4a Bytes)
01e4: | | | | 30 48 ; SEQUENCE (48 Bytes)
01e6: | | | | 02 01 ; INTEGER (1 Bytes)
01e8: | | | | | 09
01e9: | | | | 0c 23 ; UTF8_STRING (23 Bytes)
01eb: | | | | | 76 69 63 68 33 64 2e 6a 64 6f 6d 63 73 63 2e 6e ; vich3d.jdomcsc.n
01fb: | | | | | 74 74 65 73 74 2e 6d 69 63 72 6f 73 6f 66 74 2e ; ttest.microsoft.
020b: | | | | | 63 6f 6d ; com
| | | | | ; "vich3d.jdomcsc.nttest.microsoft.com"
020e: | | | | 0c 15 ; UTF8_STRING (15 Bytes)
0210: | | | | | 4a 44 4f 4d 43 53 43 5c 61 64 6d 69 6e 69 73 74 ; JDOMCSC\administ
0220: | | | | | 72 61 74 6f 72 ; rator
| | | | | ; "JDOMCSC\administrator"
0225: | | | | 0c 07 ; UTF8_STRING (7 Bytes)
0227: | | | | 63 65 72 74 72 65 71 ; certreq
| | | | ; "certreq"
022e: | | | 30 66 ; SEQUENCE (66 Bytes)
0230: | | | | 06 0a ; OBJECT_ID (a Bytes)
0232: | | | | | 2b 06 01 04 01 82 37 0d 02 02
| | | | | ; 1.3.6.1.4.1.311.13.2.2 Enrollment CSP
023c: | | | | 31 58 ; SET (58 Bytes)
023e: | | | | 30 56 ; SEQUENCE (56 Bytes)
0240: | | | | 02 01 ; INTEGER (1 Bytes)
0242: | | | | | 02
0243: | | | | 1e 4e ; UNICODE_STRING (4e Bytes)
0245: | | | | | 00 4d 00 69 00 63 00 72 00 6f 00 73 00 6f 00 66 ; .M.i.c.r.o.s.o.f
0255: | | | | | 00 74 00 20 00 53 00 74 00 72 00 6f 00 6e 00 67 ; .t. .S.t.r.o.n.g
0265: | | | | | 00 20 00 43 00 72 00 79 00 70 00 74 00 6f 00 67 ; . .C.r.y.p.t.o.g
0275: | | | | | 00 72 00 61 00 70 00 68 00 69 00 63 00 20 00 50 ; .r.a.p.h.i.c. .P
0285: | | | | | 00 72 00 6f 00 76 00 69 00 64 00 65 00 72 ; .r.o.v.i.d.e.r
| | | | | ; "Microsoft Strong Cryptographic Provider"
0293: | | | | 03 01 ; BIT_STRING (1 Bytes)
0295: | | | | 00
0296: | | | 30 82 06 db ; SEQUENCE (6db Bytes)
029a: | | | 06 09 ; OBJECT_ID (9 Bytes)
029c: | | | | 2b 06 01 04 01 82 37 0d 01
| | | | ; 1.3.6.1.4.1.311.13.1
02a5: | | | 31 82 06 cc ; SET (6cc Bytes)
02a9: | | | 30 82 06 c8 ; SEQUENCE (6c8 Bytes)
02ad: | | | 30 82 06 4d ; SEQUENCE (64d Bytes)
02b1: | | | | a0 03 ; OPTIONAL[0] (3 Bytes)
02b3: | | | | | 02 01 ; INTEGER (1 Bytes)
02b5: | | | | | 02
02b6: | | | | 02 0a ; INTEGER (a Bytes)
02b8: | | | | | 24 8f 7d 3c 00 00 00 00 08 6e
02c2: | | | | 30 0a ; SEQUENCE (a Bytes)
02c4: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
02c6: | | | | | 2a 86 48 ce 3d 04 03 03
| | | | | ; 1.2.840.10045.4.3.3 ECDSA SHA-384(certlib) (sha384ECDSA)
02ce: | | | | 30 42 ; SEQUENCE (42 Bytes)
02d0: | | | | | 31 12 ; SET (12 Bytes)
02d2: | | | | | | 30 10 ; SEQUENCE (10 Bytes)
02d4: | | | | | | 06 03 ; OBJECT_ID (3 Bytes)
02d6: | | | | | | | 55 04 0a
| | | | | | | ; 2.5.4.10 Organization (O)
02d9: | | | | | | 13 09 ; PRINTABLE_STRING (9 Bytes)
02db: | | | | | | 4d 69 63 72 6f 73 6f 66 74 ; Microsoft
| | | | | | ; "Microsoft"
02e4: | | | | | 31 2c ; SET (2c Bytes)
02e6: | | | | | 30 2a ; SEQUENCE (2a Bytes)
02e8: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
02ea: | | | | | | 55 04 03
| | | | | | ; 2.5.4.3 Common Name (CN)
02ed: | | | | | 13 23 ; PRINTABLE_STRING (23 Bytes)
02ef: | | | | | 4a 44 4f 4d 43 53 43 20 4c 6f 6e 67 68 6f 72 6e ; JDOMCSC Longhorn
02ff: | | | | | 20 45 6e 74 65 72 70 72 69 73 65 20 52 6f 6f 74 ; Enterprise Root
030f: | | | | | 20 43 41 ; CA
| | | | | ; "JDOMCSC Longhorn Enterprise Root CA"
0312: | | | | 30 1e ; SEQUENCE (1e Bytes)
0314: | | | | | 17 0d ; UTC_TIME (d Bytes)
0316: | | | | | | 30 36 30 34 32 34 32 33 31 33 33 30 5a ; 060424231330Z
| | | | | | ; 4/24/2006 4:13 PM
0323: | | | | | 17 0d ; UTC_TIME (d Bytes)
0325: | | | | | 30 37 30 34 32 34 32 33 31 33 33 30 5a ; 070424231330Z
| | | | | ; 4/24/2007 4:13 PM
0332: | | | | 30 81 c4 ; SEQUENCE (c4 Bytes)
0335: | | | | | 31 13 ; SET (13 Bytes)
0337: | | | | | | 30 11 ; SEQUENCE (11 Bytes)
0339: | | | | | | 06 0a ; OBJECT_ID (a Bytes)
033b: | | | | | | | 09 92 26 89 93 f2 2c 64 01 19
| | | | | | | ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
0345: | | | | | | 16 03 ; IA5_STRING (3 Bytes)
0347: | | | | | | 63 6f 6d ; com
| | | | | | ; "com"
034a: | | | | | 31 19 ; SET (19 Bytes)
034c: | | | | | | 30 17 ; SEQUENCE (17 Bytes)
034e: | | | | | | 06 0a ; OBJECT_ID (a Bytes)
0350: | | | | | | | 09 92 26 89 93 f2 2c 64 01 19
| | | | | | | ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
035a: | | | | | | 16 09 ; IA5_STRING (9 Bytes)
035c: | | | | | | 6d 69 63 72 6f 73 6f 66 74 ; microsoft
| | | | | | ; "microsoft"
0365: | | | | | 31 16 ; SET (16 Bytes)
0367: | | | | | | 30 14 ; SEQUENCE (14 Bytes)
0369: | | | | | | 06 0a ; OBJECT_ID (a Bytes)
036b: | | | | | | | 09 92 26 89 93 f2 2c 64 01 19
| | | | | | | ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
0375: | | | | | | 16 06 ; IA5_STRING (6 Bytes)
0377: | | | | | | 6e 74 74 65 73 74 ; nttest
| | | | | | ; "nttest"
037d: | | | | | 31 17 ; SET (17 Bytes)
037f: | | | | | | 30 15 ; SEQUENCE (15 Bytes)
0381: | | | | | | 06 0a ; OBJECT_ID (a Bytes)
0383: | | | | | | | 09 92 26 89 93 f2 2c 64 01 19
| | | | | | | ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
038d: | | | | | | 16 07 ; IA5_STRING (7 Bytes)
038f: | | | | | | 6a 64 6f 6d 63 73 63 ; jdomcsc
| | | | | | ; "jdomcsc"
0396: | | | | | 31 0e ; SET (e Bytes)
0398: | | | | | | 30 0c ; SEQUENCE (c Bytes)
039a: | | | | | | 06 03 ; OBJECT_ID (3 Bytes)
039c: | | | | | | | 55 04 03
| | | | | | | ; 2.5.4.3 Common Name (CN)
039f: | | | | | | 13 05 ; PRINTABLE_STRING (5 Bytes)
03a1: | | | | | | 55 73 65 72 73 ; Users
| | | | | | ; "Users"
03a6: | | | | | 31 16 ; SET (16 Bytes)
03a8: | | | | | | 30 14 ; SEQUENCE (14 Bytes)
03aa: | | | | | | 06 03 ; OBJECT_ID (3 Bytes)
03ac: | | | | | | | 55 04 03
| | | | | | | ; 2.5.4.3 Common Name (CN)
03af: | | | | | | 13 0d ; PRINTABLE_STRING (d Bytes)
03b1: | | | | | | 41 64 6d 69 6e 69 73 74 72 61 74 6f 72 ; Administrator
| | | | | | ; "Administrator"
03be: | | | | | 31 39 ; SET (39 Bytes)
03c0: | | | | | 30 37 ; SEQUENCE (37 Bytes)
03c2: | | | | | 06 09 ; OBJECT_ID (9 Bytes)
03c4: | | | | | | 2a 86 48 86 f7 0d 01 09 01
| | | | | | ; 1.2.840.113549.1.9.1 Email Address (E)
03cd: | | | | | 16 2a ; IA5_STRING (2a Bytes)
03cf: | | | | | 41 64 6d 69 6e 69 73 74 72 61 74 6f 72 40 6a 64 ; Administrator@jd
03df: | | | | | 6f 6d 63 73 63 2e 6e 74 74 65 73 74 2e 6d 69 63 ; omcsc.nttest.mic
03ef: | | | | | 72 6f 73 6f 66 74 2e 63 6f 6d ; rosoft.com
| | | | | ; "Administrator@jdomcsc.nttest.microsoft.com"
03f9: | | | | 30 81 9f ; SEQUENCE (9f Bytes)
03fc: | | | | | 30 0d ; SEQUENCE (d Bytes)
03fe: | | | | | | 06 09 ; OBJECT_ID (9 Bytes)
0400: | | | | | | | 2a 86 48 86 f7 0d 01 01 01
| | | | | | | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
0409: | | | | | | 05 00 ; NULL (0 Bytes)
040b: | | | | | 03 81 8d ; BIT_STRING (8d Bytes)
040e: | | | | | 00
040f: | | | | | 30 81 89 ; SEQUENCE (89 Bytes)
0412: | | | | | 02 81 81 ; INTEGER (81 Bytes)
0415: | | | | | | 00
0416: | | | | | | 91 9d 0a 8e 1d 7a 21 e9 ba 34 c7 54 1d 79 c9 35
0426: | | | | | | 91 e9 68 cb 3d ef 2b 4d a6 52 31 f4 95 31 44 02
0436: | | | | | | 75 cd d5 34 ec a2 32 0c 4f 97 b7 6c 87 ca b2 b0
0446: | | | | | | 5b 53 a6 74 b7 1e 69 a7 d8 c3 3d 03 20 14 5a cb
0456: | | | | | | 40 ed f8 5e ee c4 be 97 62 70 44 2f 47 1e 3e b5
0466: | | | | | | 61 33 d9 02 c3 87 62 4e 74 26 ef fa 0b 06 d0 0c
0476: | | | | | | ec 68 fc 93 10 88 5b 70 8f 94 13 eb 6e 86 d4 b5
0486: | | | | | | 14 e8 6f 87 21 3d 1d 3e 16 d4 cf e7 19 70 c7 31
0496: | | | | | 02 03 ; INTEGER (3 Bytes)
0498: | | | | | 01 00 01
049b: | | | | a3 82 04 5f ; OPTIONAL[3] (45f Bytes)
049f: | | | | 30 82 04 5b ; SEQUENCE (45b Bytes)
04a3: | | | | 30 17 ; SEQUENCE (17 Bytes)
04a5: | | | | | 06 09 ; OBJECT_ID (9 Bytes)
04a7: | | | | | | 2b 06 01 04 01 82 37 14 02
| | | | | | ; 1.3.6.1.4.1.311.20.2 Certificate Template Name (Certificate Type)
04b0: | | | | | 04 0a ; OCTET_STRING (a Bytes)
04b2: | | | | | 1e 08 00 55 00 73 00 65 00 72 ; ...U.s.e.r
04bc: | | | | 30 29 ; SEQUENCE (29 Bytes)
04be: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
04c0: | | | | | | 55 1d 25
| | | | | | ; 2.5.29.37 Enhanced Key Usage
04c3: | | | | | 04 22 ; OCTET_STRING (22 Bytes)
04c5: | | | | | 30 20 ; SEQUENCE (20 Bytes)
04c7: | | | | | 06 0a ; OBJECT_ID (a Bytes)
04c9: | | | | | | 2b 06 01 04 01 82 37 0a 03 04
| | | | | | ; 1.3.6.1.4.1.311.10.3.4 Encrypting File System
04d3: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
04d5: | | | | | | 2b 06 01 05 05 07 03 04
| | | | | | ; 1.3.6.1.5.5.7.3.4 Secure Email
04dd: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
04df: | | | | | 2b 06 01 05 05 07 03 02
| | | | | ; 1.3.6.1.5.5.7.3.2 Client Authentication
04e7: | | | | 30 0b ; SEQUENCE (b Bytes)
04e9: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
04eb: | | | | | | 55 1d 0f
| | | | | | ; 2.5.29.15 Key Usage
04ee: | | | | | 04 04 ; OCTET_STRING (4 Bytes)
04f0: | | | | | 03 02 ; BIT_STRING (2 Bytes)
04f2: | | | | | 05
04f3: | | | | | a0
04f4: | | | | 30 4b ; SEQUENCE (4b Bytes)
04f6: | | | | | 06 09 ; OBJECT_ID (9 Bytes)
04f8: | | | | | | 2a 86 48 86 f7 0d 01 09 0f
| | | | | | ; 1.2.840.113549.1.9.15 SMIME Capabilities
0501: | | | | | 04 3e ; OCTET_STRING (3e Bytes)
0503: | | | | | 30 3c ; SEQUENCE (3c Bytes)
0505: | | | | | 30 0e ; SEQUENCE (e Bytes)
0507: | | | | | | 06 08 ; OBJECT_ID (8 Bytes)
0509: | | | | | | | 2a 86 48 86 f7 0d 03 02
| | | | | | | ; 1.2.840.113549.3.2 rc2
0511: | | | | | | 02 02 ; INTEGER (2 Bytes)
0513: | | | | | | 00
0514: | | | | | | 80
0515: | | | | | 30 0e ; SEQUENCE (e Bytes)
0517: | | | | | | 06 08 ; OBJECT_ID (8 Bytes)
0519: | | | | | | | 2a 86 48 86 f7 0d 03 04
| | | | | | | ; 1.2.840.113549.3.4 rc4
0521: | | | | | | 02 02 ; INTEGER (2 Bytes)
0523: | | | | | | 00
0524: | | | | | | 80
0525: | | | | | 30 0a ; SEQUENCE (a Bytes)
0527: | | | | | | 06 05 ; OBJECT_ID (5 Bytes)
0529: | | | | | | | 2b 0e 03 02 07
| | | | | | | ; 1.3.14.3.2.7 des
052e: | | | | | | 02 01 ; INTEGER (1 Bytes)
0530: | | | | | | 38
0531: | | | | | 30 0e ; SEQUENCE (e Bytes)
0533: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
0535: | | | | | | 2a 86 48 86 f7 0d 03 07
| | | | | | ; 1.2.840.113549.3.7 3des
053d: | | | | | 02 02 ; INTEGER (2 Bytes)
053f: | | | | | 00
0540: | | | | | a8
0541: | | | | 30 1d ; SEQUENCE (1d Bytes)
0543: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0545: | | | | | | 55 1d 0e
| | | | | | ; 2.5.29.14 Subject Key Identifier
0548: | | | | | 04 16 ; OCTET_STRING (16 Bytes)
054a: | | | | | 04 14 ; OCTET_STRING (14 Bytes)
054c: | | | | | 60 8a b3 ff 41 13 ee 58 9d 66 8f b2 0e 72 da 5f ; `...A..X.f...r._
055c: | | | | | 5f 30 9e 90 ; _0..
0560: | | | | 30 1f ; SEQUENCE (1f Bytes)
0562: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0564: | | | | | | 55 1d 23
| | | | | | ; 2.5.29.35 Authority Key Identifier
0567: | | | | | 04 18 ; OCTET_STRING (18 Bytes)
0569: | | | | | 30 16 ; SEQUENCE (16 Bytes)
056b: | | | | | 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)
056d: | | | | | 16 a1 b0 9e 8f 4f ee 2e d4 25 07 90 2b 89 37 21 ; .....O...%..+.7!
057d: | | | | | 70 c7 d6 65 ; p..e
0581: | | | | 30 82 01 6f ; SEQUENCE (16f Bytes)
0585: | | | | | 06 03 ; OBJECT_ID (3 Bytes)
0587: | | | | | | 55 1d 1f
| | | | | | ; 2.5.29.31 CRL Distribution Points
058a: | | | | | 04 82 01 66 ; OCTET_STRING (166 Bytes)
058e: | | | | | 30 82 01 62 ; SEQUENCE (162 Bytes)
0592: | | | | | 30 82 01 5e ; SEQUENCE (15e Bytes)
0596: | | | | | a0 82 01 5a ; OPTIONAL[0] (15a Bytes)
059a: | | | | | a0 82 01 56 ; OPTIONAL[0] (156 Bytes)
059e: | | | | | 86 81 ea ; CONTEXT_SPECIFIC[6] (ea Bytes)
05a1: | | | | | | 6c 64 61 70 3a 2f 2f 2f 43 4e 3d 4a 44 4f 4d 43 ; ldap:///CN=JDOMC
05b1: | | | | | | 53 43 25 32 30 4c 6f 6e 67 68 6f 72 6e 25 32 30 ; SC%20Longhorn%20
05c1: | | | | | | 45 6e 74 65 72 70 72 69 73 65 25 32 30 52 6f 6f ; Enterprise%20Roo
05d1: | | | | | | 74 25 32 30 43 41 2c 43 4e 3d 4a 41 59 54 45 53 ; t%20CA,CN=JAYTES
05e1: | | | | | | 54 37 2c 43 4e 3d 43 44 50 2c 43 4e 3d 50 75 62 ; T7,CN=CDP,CN=Pub
05f1: | | | | | | 6c 69 63 25 32 30 4b 65 79 25 32 30 53 65 72 76 ; lic%20Key%20Serv
0601: | | | | | | 69 63 65 73 2c 43 4e 3d 53 65 72 76 69 63 65 73 ; ices,CN=Services
0611: | | | | | | 2c 43 4e 3d 43 6f 6e 66 69 67 75 72 61 74 69 6f ; ,CN=Configuratio
0621: | | | | | | 6e 2c 44 43 3d 6a 64 6f 6d 63 73 63 2c 44 43 3d ; n,DC=jdomcsc,DC=
0631: | | | | | | 6e 74 74 65 73 74 2c 44 43 3d 6d 69 63 72 6f 73 ; nttest,DC=micros
0641: | | | | | | 6f 66 74 2c 44 43 3d 63 6f 6d 3f 63 65 72 74 69 ; oft,DC=com?certi
0651: | | | | | | 66 69 63 61 74 65 52 65 76 6f 63 61 74 69 6f 6e ; ficateRevocation
0661: | | | | | | 4c 69 73 74 3f 62 61 73 65 3f 6f 62 6a 65 63 74 ; List?base?object
0671: | | | | | | 43 6c 61 73 73 3d 63 52 4c 44 69 73 74 72 69 62 ; Class=cRLDistrib
0681: | | | | | | 75 74 69 6f 6e 50 6f 69 6e 74 ; utionPoint
068b: | | | | | 86 67 ; CONTEXT_SPECIFIC[6] (67 Bytes)
068d: | | | | | 68 74 74 70 3a 2f 2f 6a 61 79 74 65 73 74 37 2e ; https://jaytest7.
069d: | | | | | 6a 64 6f 6d 63 73 63 2e 6e 74 74 65 73 74 2e 6d ; jdomcsc.nttest.m
06ad: | | | | | 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 43 65 72 ; icrosoft.com/Cer
06bd: | | | | | 74 45 6e 72 6f 6c 6c 2f 4a 44 4f 4d 43 53 43 25 ; tEnroll/JDOMCSC%
06cd: | | | | | 32 30 4c 6f 6e 67 68 6f 72 6e 25 32 30 45 6e 74 ; 20Longhorn%20Ent
06dd: | | | | | 65 72 70 72 69 73 65 25 32 30 52 6f 6f 74 25 32 ; erprise%20Root%2
06ed: | | | | | 30 43 41 2e 63 72 6c ; 0CA.crl
06f4: | | | | 30 82 01 93 ; SEQUENCE (193 Bytes)
06f8: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
06fa: | | | | | | 2b 06 01 05 05 07 01 01
| | | | | | ; 1.3.6.1.5.5.7.1.1 Authority Information Access
0702: | | | | | 04 82 01 85 ; OCTET_STRING (185 Bytes)
0706: | | | | | 30 82 01 81 ; SEQUENCE (181 Bytes)
070a: | | | | | 30 81 e1 ; SEQUENCE (e1 Bytes)
070d: | | | | | | 06 08 ; OBJECT_ID (8 Bytes)
070f: | | | | | | | 2b 06 01 05 05 07 30 02
| | | | | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
0717: | | | | | | 86 81 d4 ; CONTEXT_SPECIFIC[6] (d4 Bytes)
071a: | | | | | | 6c 64 61 70 3a 2f 2f 2f 43 4e 3d 4a 44 4f 4d 43 ; ldap:///CN=JDOMC
072a: | | | | | | 53 43 25 32 30 4c 6f 6e 67 68 6f 72 6e 25 32 30 ; SC%20Longhorn%20
073a: | | | | | | 45 6e 74 65 72 70 72 69 73 65 25 32 30 52 6f 6f ; Enterprise%20Roo
074a: | | | | | | 74 25 32 30 43 41 2c 43 4e 3d 41 49 41 2c 43 4e ; t%20CA,CN=AIA,CN
075a: | | | | | | 3d 50 75 62 6c 69 63 25 32 30 4b 65 79 25 32 30 ; =Public%20Key%20
076a: | | | | | | 53 65 72 76 69 63 65 73 2c 43 4e 3d 53 65 72 76 ; Services,CN=Serv
077a: | | | | | | 69 63 65 73 2c 43 4e 3d 43 6f 6e 66 69 67 75 72 ; ices,CN=Configur
078a: | | | | | | 61 74 69 6f 6e 2c 44 43 3d 6a 64 6f 6d 63 73 63 ; ation,DC=jdomcsc
079a: | | | | | | 2c 44 43 3d 6e 74 74 65 73 74 2c 44 43 3d 6d 69 ; ,DC=nttest,DC=mi
07aa: | | | | | | 63 72 6f 73 6f 66 74 2c 44 43 3d 63 6f 6d 3f 63 ; crosoft,DC=com?c
07ba: | | | | | | 41 43 65 72 74 69 66 69 63 61 74 65 3f 62 61 73 ; ACertificate?bas
07ca: | | | | | | 65 3f 6f 62 6a 65 63 74 43 6c 61 73 73 3d 63 65 ; e?objectClass=ce
07da: | | | | | | 72 74 69 66 69 63 61 74 69 6f 6e 41 75 74 68 6f ; rtificationAutho
07ea: | | | | | | 72 69 74 79 ; rity
07ee: | | | | | 30 81 9a ; SEQUENCE (9a Bytes)
07f1: | | | | | 06 08 ; OBJECT_ID (8 Bytes)
07f3: | | | | | | 2b 06 01 05 05 07 30 02
| | | | | | ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
07fb: | | | | | 86 81 8d ; CONTEXT_SPECIFIC[6] (8d Bytes)
07fe: | | | | | 68 74 74 70 3a 2f 2f 6a 61 79 74 65 73 74 37 2e ; https://jaytest7.
080e: | | | | | 6a 64 6f 6d 63 73 63 2e 6e 74 74 65 73 74 2e 6d ; jdomcsc.nttest.m
081e: | | | | | 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 2f 43 65 72 ; icrosoft.com/Cer
082e: | | | | | 74 45 6e 72 6f 6c 6c 2f 4a 41 59 54 45 53 54 37 ; tEnroll/JAYTEST7
083e: | | | | | 2e 6a 64 6f 6d 63 73 63 2e 6e 74 74 65 73 74 2e ; .jdomcsc.nttest.
084e: | | | | | 6d 69 63 72 6f 73 6f 66 74 2e 63 6f 6d 5f 4a 44 ; microsoft.com_JD
085e: | | | | | 4f 4d 43 53 43 25 32 30 4c 6f 6e 67 68 6f 72 6e ; OMCSC%20Longhorn
086e: | | | | | 25 32 30 45 6e 74 65 72 70 72 69 73 65 25 32 30 ; %20Enterprise%20
087e: | | | | | 52 6f 6f 74 25 32 30 43 41 2e 63 72 74 ; Root%20CA.crt
088b: | | | | 30 71 ; SEQUENCE (71 Bytes)
088d: | | | | 06 03 ; OBJECT_ID (3 Bytes)
088f: | | | | | 55 1d 11
| | | | | ; 2.5.29.17 Subject Alternative Name
0892: | | | | 04 6a ; OCTET_STRING (6a Bytes)
0894: | | | | 30 68 ; SEQUENCE (68 Bytes)
0896: | | | | a0 3a ; OPTIONAL[0] (3a Bytes)
0898: | | | | | 06 0a ; OBJECT_ID (a Bytes)
089a: | | | | | | 2b 06 01 04 01 82 37 14 02 03
| | | | | | ; 1.3.6.1.4.1.311.20.2.3 Principal Name
08a4: | | | | | a0 2c ; OPTIONAL[0] (2c Bytes)
08a6: | | | | | 0c 2a ; UTF8_STRING (2a Bytes)
08a8: | | | | | 41 64 6d 69 6e 69 73 74 72 61 74 6f 72 40 6a 64 ; Administrator@jd
08b8: | | | | | 6f 6d 63 73 63 2e 6e 74 74 65 73 74 2e 6d 69 63 ; omcsc.nttest.mic
08c8: | | | | | 72 6f 73 6f 66 74 2e 63 6f 6d ; rosoft.com
| | | | | ; "Administrator@jdomcsc.nttest.microsoft.com"
08d2: | | | | 81 2a ; CONTEXT_SPECIFIC[1] (2a Bytes)
08d4: | | | | 41 64 6d 69 6e 69 73 74 72 61 74 6f 72 40 6a 64 ; Administrator@jd
08e4: | | | | 6f 6d 63 73 63 2e 6e 74 74 65 73 74 2e 6d 69 63 ; omcsc.nttest.mic
08f4: | | | | 72 6f 73 6f 66 74 2e 63 6f 6d ; rosoft.com
08fe: | | | 30 0a ; SEQUENCE (a Bytes)
0900: | | | | 06 08 ; OBJECT_ID (8 Bytes)
0902: | | | | 2a 86 48 ce 3d 04 03 03
| | | | ; 1.2.840.10045.4.3.3 ECDSA SHA-384(certlib) (sha384ECDSA)
090a: | | | 03 69 ; BIT_STRING (69 Bytes)
090c: | | | 00
090d: | | | 30 66 ; SEQUENCE (66 Bytes)
090f: | | | 02 31 ; INTEGER (31 Bytes)
0911: | | | | 00
0912: | | | | a6 17 95 57 a2 76 a3 fb b3 19 82 85 3f 5f 69 76
0922: | | | | d8 31 52 b2 22 87 d9 64 f3 ad 9b 17 b1 af 35 01
0932: | | | | 93 3a a9 ac 39 31 4d 68 9d 53 45 cc 71 3e 1e b8
0942: | | | 02 31 ; INTEGER (31 Bytes)
0944: | | | 00
0945: | | | b7 55 5f 94 b7 b2 9c 9d 4f 95 bb f3 83 85 b2 7a
0955: | | | fe 5e 00 83 20 65 e4 5c 97 20 23 6b 10 00 ef 01
0965: | | | 13 c5 a6 4f f4 e8 64 ef 62 b2 0c de 0d 27 06 63
0975: | | 30 0d ; SEQUENCE (d Bytes)
0977: | | | 06 09 ; OBJECT_ID (9 Bytes)
0979: | | | | 2a 86 48 86 f7 0d 01 01 05
| | | | ; 1.2.840.113549.1.1.5 sha1RSA
0982: | | | 05 00 ; NULL (0 Bytes)
0984: | | 03 81 81 ; BIT_STRING (81 Bytes)
0987: | | 00
0988: | | 15 f7 5d 54 26 b8 56 58 ee a3 2b 29 2b 52 ff b0
0998: | | be 73 ec 86 d7 87 8c 2c 3f 35 c6 69 6d 5a f3 9b
09a8: | | 53 d1 ef 3a e3 4d 38 f8 a5 60 03 48 9d 36 f3 48
09b8: | | d2 c5 e2 c4 d0 fc 2b 98 20 75 da 07 27 8b 3e fa
09c8: | | 0c 2d d6 61 9e d3 83 9b 39 5f 3c bf 70 57 01 45
09d8: | | 00 41 95 c2 99 c9 2f b3 32 06 d1 b8 41 5f 84 25
09e8: | | a4 44 78 a0 69 b8 51 86 e9 ea c6 08 52 79 06 c4
09f8: | | 02 a0 83 dd 9e a7 b0 ad 4e c2 31 41 8c f2 7a 22
0a08: | 30 00 ; SEQUENCE (0 Bytes)
0a0a: | 30 00 ; SEQUENCE (0 Bytes)
0a0c: 31 81 f9 ; SET (f9 Bytes)
0a0f: 30 81 f6 ; SEQUENCE (f6 Bytes)
0a12: 02 01 ; INTEGER (1 Bytes)
0a14: | 03
0a15: 80 14 ; CONTEXT_SPECIFIC[0] (14 Bytes)
0a17: | d2 91 95 03 6a b4 a6 a7 43 cd bd 35 0e 1c 80 58 ; ....j...C..5...X
0a27: | 91 e3 9a 33 ; ...3
0a2b: 30 09 ; SEQUENCE (9 Bytes)
0a2d: | 06 05 ; OBJECT_ID (5 Bytes)
0a2f: | | 2b 0e 03 02 1a
| | ; 1.3.14.3.2.26 sha1 (sha1NoSign)
0a34: | 05 00 ; NULL (0 Bytes)
0a36: a0 3e ; OPTIONAL[0] (3e Bytes)
0a38: | 30 17 ; SEQUENCE (17 Bytes)
0a3a: | | 06 09 ; OBJECT_ID (9 Bytes)
0a3c: | | | 2a 86 48 86 f7 0d 01 09 03
| | | ; 1.2.840.113549.1.9.3 Content Type
0a45: | | 31 0a ; SET (a Bytes)
0a47: | | 06 08 ; OBJECT_ID (8 Bytes)
0a49: | | 2b 06 01 05 05 07 0c 02
| | ; 1.3.6.1.5.5.7.12.2 CMC Data
0a51: | 30 23 ; SEQUENCE (23 Bytes)
0a53: | 06 09 ; OBJECT_ID (9 Bytes)
0a55: | | 2a 86 48 86 f7 0d 01 09 04
| | ; 1.2.840.113549.1.9.4 Message Digest
0a5e: | 31 16 ; SET (16 Bytes)
0a60: | 04 14 ; OCTET_STRING (14 Bytes)
0a62: | f1 13 a1 dc 4d 88 2e 81 70 35 53 2a d2 de 5c 9a ; ....M...p5S*..\.
0a72: | ce e8 8e db ; ....
0a76: 30 0d ; SEQUENCE (d Bytes)
0a78: | 06 09 ; OBJECT_ID (9 Bytes)
0a7a: | | 2a 86 48 86 f7 0d 01 01 01
| | ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
0a83: | 05 00 ; NULL (0 Bytes)
0a85: 04 81 80 ; OCTET_STRING (80 Bytes)
0a88: a4 e7 b3 6b e9 f7 3c 2a fd c1 33 ed 3c b1 99 f8 ; ...k..<*..3.<...
0a98: c9 c1 5b 20 be 32 f7 94 d2 1d 07 de a4 8c 76 aa ; ..[ .2........v.
0aa8: 1a 39 5e 6b 04 3c e8 d4 dd fa 7b 5a 25 e1 61 4f ; .9^k.<....{Z%.aO
0ab8: 03 00 c1 18 59 56 77 52 3c 99 22 fd 78 37 c5 8f ; ....YVwR<.".x7..
0ac8: 51 2e 06 2a 29 66 d3 83 0e eb 04 ed f3 aa d7 00 ; Q..*)f..........
0ad8: 31 9e db 49 72 77 bb a8 f7 e0 3a 23 bc cb b9 29 ; 1..Irw....:#...)
0ae8: 3c eb cb a6 aa 0c 7c be 77 b7 7e db 3f 65 a7 be ; <.....|.w.~.?e..
0af8: a9 88 99 b0 c8 12 a0 e2 27 c4 04 f1 88 09 8e 6b ; ........'......k
CertUtil: -asn command completed successfully.
Additional resources
Documentation
-
PKCS \#7 EOBO Encoded ASN.1 - Win32 apps
The following example contains a PKCS \#7 Enroll On Behalf Of (EOBO) request shown in ASN.1 format. The example was generated by using the Certreq.exe and Certutil.exe tools. The .inf file used as input to Certreq.exe contains the following configuration.
-
PKCS \#7 Renewal Encoded ASN.1 - Win32 apps
The following example contains a PKCS \#7 renewal request shown in ASN.1 format. The example was generated by using the Certreq.exe and Certutil.exe tools. The .inf file used as input to Certreq.exe contains the following configuration.
-
Key Generation Encoded ASN.1 - Win32 apps
The following example contains a key generation request shown in ASN.1 format.