Freigeben über


CMC-Verlängerungsanforderung

Das folgende Beispiel enthält eine CMC-Verlängerungsanforderung. Das Beispiel wurde mithilfe der tools Certreq.exe und Certutil.exe generiert. Die .inf-Datei, die als Eingabe für Certreq.exe verwendet wird, enthält die folgende Konfiguration.

[NewRequest]
RequestType=cmc
RenewalCert=248f7d3c00000000086e

Die Konfiguration gibt den Anforderungstyp (CMC) und die Seriennummer des Zertifikats an, auf dem die Anforderung basiert. Dadurch wird die folgende Ausgabe generiert.

PKCS7/CMS Message:
  CMSG_SIGNED(2)
  CMSG_SIGNED_DATA_CMS_VERSION(3)
  Content Type: 1.3.6.1.5.5.7.12.2 CMC Data

PKCS7 Message Content:
================ Begin Nesting Level 1 ================
CMS Certificate Request:
Tagged Attributes: 1

  Body Part Id: 2
  1.3.6.1.4.1.311.10.10.1 CMC Attributes
  Value[0]:
    Data Reference: 0
    Cert Reference[0]: 1
  1 attributes:

  Attribute[0]: 1.3.6.1.4.1.311.21.20 (Client Information)
    Value[0][0]:
    Unknown Attribute type
    Client Id: = 9
      (XECI_DISABLE -- 0)
      (XECI_XENROLL -- 1)
      (XECI_AUTOENROLL -- 2)
      (XECI_REQWIZARD -- 3)
      (XECI_CERTREQ -- 4)
    User: JDOMCSC\administrator
    Machine: vich3d.jdomcsc.nttest.microsoft.com
    Process: certreq
    0000  30 48 02 01 09 0c 23 76  69 63 68 33 64 2e 6a 64   0H....#vich3d.jd
    0010  6f 6d 63 73 63 2e 6e 74  74 65 73 74 2e 6d 69 63   omcsc.nttest.mic
    0020  72 6f 73 6f 66 74 2e 63  6f 6d 0c 15 4a 44 4f 4d   rosoft.com..JDOM
    0030  43 53 43 5c 61 64 6d 69  6e 69 73 74 72 61 74 6f   CSC\administrato
    0040  72 0c 07 63 65 72 74 72  65 71                     r..certreq


Tagged Requests: 1
  CMC_TAGGED_CERT_REQUEST_CHOICE:
  Body Part Id: 1
================ Begin Nesting Level 2 ================
Element 0:
PKCS10 Certificate Request:
Version: 1
Subject:
    EMPTY

Public Key Algorithm:
    Algorithm ObjectId: 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
    Algorithm Parameters:
    05 00
Public Key Length: 1024 bits
Public Key: UnusedBits = 0
    0000  30 81 89 02 81 81 00 b4  04 6e 1a b2 17 f6 bf d4
    0010  cb 51 17 cc a5 39 bd 54  ac 52 92 e9 0e bf d6 c4
    0020  0c df 32 e9 eb e3 b9 a1  30 5f 8e cd da d8 e0 6a
    0030  2c 1b 01 17 fc aa 31 04  42 11 cf 29 8f a2 64 03
    0040  3d 9d 23 e2 76 58 1c 75  47 bc e1 9b 41 79 c4 5b
    0050  40 65 9f 56 b1 a6 d2 74  b2 e7 2e 5e 2f 62 fc 7e
    0060  76 c8 81 cd d4 ca 0d bc  35 ba 59 57 61 11 12 14
    0070  74 34 88 3f 62 d3 26 fb  93 ce a7 ca 0e 5f 96 d1
    0080  d4 9e 70 8f be 73 bd 02  03 01 00 01
Request Attributes: 5
  5 attributes:

  Attribute[0]: 1.3.6.1.4.1.311.13.2.3 (OS Version)
    Value[0][0]:
        6.0.5361.2
    0000  16 0a 36 2e 30 2e 35 33  36 31 2e 32               ..6.0.5361.2

  Attribute[1]: 1.2.840.113549.1.9.14 (Certificate Extensions)
    Value[1][0]:
    Unknown Attribute type
Certificate Extensions: 2
    2.5.29.14: Flags = 0, Length = 16
    Subject Key Identifier
        d2 91 95 03 6a b4 a6 a7 43 cd bd 35 0e 1c 80 58 91 e3 9a 33

    0000  04 14 d2 91 95 03 6a b4  a6 a7 43 cd bd 35 0e 1c   ......j...C..5..
    0010  80 58 91 e3 9a 33                                  .X...3

    2.5.29.15: Flags = 1(Critical), Length = 4
    Key Usage
        Digital Signature (80)

    0000  03 02 07 80                                        ....

    0000  30 2f 30 1d 06 03 55 1d  0e 04 16 04 14 d2 91 95   0/0...U.........
    0010  03 6a b4 a6 a7 43 cd bd  35 0e 1c 80 58 91 e3 9a   .j...C..5...X...
    0020  33 30 0e 06 03 55 1d 0f  01 01 ff 04 04 03 02 07   30...U..........
    0030  80                                                 .

  Attribute[2]: 1.3.6.1.4.1.311.21.20 (Client Information)
    Value[2][0]:
    Unknown Attribute type
    Client Id: = 9
      (XECI_DISABLE -- 0)
      (XECI_XENROLL -- 1)
      (XECI_AUTOENROLL -- 2)
      (XECI_REQWIZARD -- 3)
      (XECI_CERTREQ -- 4)
    User: JDOMCSC\administrator
    Machine: vich3d.jdomcsc.nttest.microsoft.com
    Process: certreq
    0000  30 48 02 01 09 0c 23 76  69 63 68 33 64 2e 6a 64   0H....#vich3d.jd
    0010  6f 6d 63 73 63 2e 6e 74  74 65 73 74 2e 6d 69 63   omcsc.nttest.mic
    0020  72 6f 73 6f 66 74 2e 63  6f 6d 0c 15 4a 44 4f 4d   rosoft.com..JDOM
    0030  43 53 43 5c 61 64 6d 69  6e 69 73 74 72 61 74 6f   CSC\administrato
    0040  72 0c 07 63 65 72 74 72  65 71                     r..certreq

  Attribute[3]: 1.3.6.1.4.1.311.13.2.2 (Enrollment CSP)
    Value[3][0]:
    Unknown Attribute type
    CSP Provider Info
    KeySpec = 2
    Provider = Microsoft Strong Cryptographic Provider
    Signature: UnusedBits=0
    0000  30 56 02 01 02 1e 4e 00  4d 00 69 00 63 00 72 00   0V....N.M.i.c.r.
    0010  6f 00 73 00 6f 00 66 00  74 00 20 00 53 00 74 00   o.s.o.f.t. .S.t.
    0020  72 00 6f 00 6e 00 67 00  20 00 43 00 72 00 79 00   r.o.n.g. .C.r.y.
    0030  70 00 74 00 6f 00 67 00  72 00 61 00 70 00 68 00   p.t.o.g.r.a.p.h.
    0040  69 00 63 00 20 00 50 00  72 00 6f 00 76 00 69 00   i.c. .P.r.o.v.i.
    0050  64 00 65 00 72 03 01 00                            d.e.r...

  Attribute[4]: 1.3.6.1.4.1.311.13.1
    Value[4][0]:
    Unknown Attribute type
Renewal Certificate:
================ Begin Nesting Level 3 ================
X509 Certificate:
Version: 3
Serial Number: 248f7d3c00000000086e
    6e 08 00 00 00 00 3c 7d  8f 24
Signature Algorithm:
    Algorithm ObjectId: 1.2.840.10045.4.3.3 ECDSA SHA-384(certlib) (sha384ECDSA)
    Algorithm Parameters: NULL
Issuer:
    CN=JDOMCSC Longhorn Enterprise Root CA
    O=Microsoft
    [0,0]: CERT_RDN_PRINTABLE_STRING, Length = 9 (9/64 Characters)
        2.5.4.10 Organization (O)="Microsoft"

        4d 69 63 72 6f 73 6f 66  74                        Microsoft

        4d 00 69 00 63 00 72 00  6f 00 73 00 6f 00 66 00   M.i.c.r.o.s.o.f.
        74 00                                              t.

    [1,0]: CERT_RDN_PRINTABLE_STRING, Length = 35 (35/64 Characters)
        2.5.4.3 Common Name (CN)="JDOMCSC Longhorn Enterprise Root CA"

        4a 44 4f 4d 43 53 43 20  4c 6f 6e 67 68 6f 72 6e   JDOMCSC Longhorn
        20 45 6e 74 65 72 70 72  69 73 65 20 52 6f 6f 74    Enterprise Root
        20 43 41                                            CA

        4a 00 44 00 4f 00 4d 00  43 00 53 00 43 00 20 00   J.D.O.M.C.S.C. .
        4c 00 6f 00 6e 00 67 00  68 00 6f 00 72 00 6e 00   L.o.n.g.h.o.r.n.
        20 00 45 00 6e 00 74 00  65 00 72 00 70 00 72 00    .E.n.t.e.r.p.r.
        69 00 73 00 65 00 20 00  52 00 6f 00 6f 00 74 00   i.s.e. .R.o.o.t.
        20 00 43 00 41 00                                   .C.A.


NotBefore: 4/24/2006 4:13 PM
NotAfter: 4/24/2007 4:13 PM

Subject:
    E=Administrator@jdomcsc.nttest.microsoft.com
    CN=Administrator
    CN=Users
    DC=jdomcsc
    DC=nttest
    DC=microsoft
    DC=com
    [0,0]: CERT_RDN_IA5_STRING, Length = 3 (3/128 Characters)
        0.9.2342.19200300.100.1.25 Domain Component (DC)="com"

        63 6f 6d                                           com

        63 00 6f 00 6d 00                                  c.o.m.

    [1,0]: CERT_RDN_IA5_STRING, Length = 9 (9/128 Characters)
        0.9.2342.19200300.100.1.25 Domain Component (DC)="microsoft"

        6d 69 63 72 6f 73 6f 66  74                        microsoft

        6d 00 69 00 63 00 72 00  6f 00 73 00 6f 00 66 00   m.i.c.r.o.s.o.f.
        74 00                                              t.

    [2,0]: CERT_RDN_IA5_STRING, Length = 6 (6/128 Characters)
        0.9.2342.19200300.100.1.25 Domain Component (DC)="nttest"

        6e 74 74 65 73 74                                  nttest

        6e 00 74 00 74 00 65 00  73 00 74 00               n.t.t.e.s.t.

    [3,0]: CERT_RDN_IA5_STRING, Length = 7 (7/128 Characters)
        0.9.2342.19200300.100.1.25 Domain Component (DC)="jdomcsc"

        6a 64 6f 6d 63 73 63                               jdomcsc

        6a 00 64 00 6f 00 6d 00  63 00 73 00 63 00         j.d.o.m.c.s.c.

    [4,0]: CERT_RDN_PRINTABLE_STRING, Length = 5 (5/64 Characters)
        2.5.4.3 Common Name (CN)="Users"

        55 73 65 72 73                                     Users

        55 00 73 00 65 00 72 00  73 00                     U.s.e.r.s.

    [5,0]: CERT_RDN_PRINTABLE_STRING, Length = 13 (13/64 Characters)
        2.5.4.3 Common Name (CN)="Administrator"

        41 64 6d 69 6e 69 73 74  72 61 74 6f 72            Administrator

        41 00 64 00 6d 00 69 00  6e 00 69 00 73 00 74 00   A.d.m.i.n.i.s.t.
        72 00 61 00 74 00 6f 00  72 00                     r.a.t.o.r.

    [6,0]: CERT_RDN_IA5_STRING, Length = 42 (42/128 Characters)
        1.2.840.113549.1.9.1 Email Address (E)="Administrator@jdomcsc.nttest.microsoft.com"

        41 64 6d 69 6e 69 73 74  72 61 74 6f 72 40 6a 64   Administrator@jd
        6f 6d 63 73 63 2e 6e 74  74 65 73 74 2e 6d 69 63   omcsc.nttest.mic
        72 6f 73 6f 66 74 2e 63  6f 6d                     rosoft.com

        41 00 64 00 6d 00 69 00  6e 00 69 00 73 00 74 00   A.d.m.i.n.i.s.t.
        72 00 61 00 74 00 6f 00  72 00 40 00 6a 00 64 00   r.a.t.o.r.@.j.d.
        6f 00 6d 00 63 00 73 00  63 00 2e 00 6e 00 74 00   o.m.c.s.c...n.t.
        74 00 65 00 73 00 74 00  2e 00 6d 00 69 00 63 00   t.e.s.t...m.i.c.
        72 00 6f 00 73 00 6f 00  66 00 74 00 2e 00 63 00   r.o.s.o.f.t...c.
        6f 00 6d 00                                        o.m.


Public Key Algorithm:
    Algorithm ObjectId: 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
    Algorithm Parameters:
    05 00
Public Key Length: 1024 bits
Public Key: UnusedBits = 0
    0000  30 81 89 02 81 81 00 91  9d 0a 8e 1d 7a 21 e9 ba
    0010  34 c7 54 1d 79 c9 35 91  e9 68 cb 3d ef 2b 4d a6
    0020  52 31 f4 95 31 44 02 75  cd d5 34 ec a2 32 0c 4f
    0030  97 b7 6c 87 ca b2 b0 5b  53 a6 74 b7 1e 69 a7 d8
    0040  c3 3d 03 20 14 5a cb 40  ed f8 5e ee c4 be 97 62
    0050  70 44 2f 47 1e 3e b5 61  33 d9 02 c3 87 62 4e 74
    0060  26 ef fa 0b 06 d0 0c ec  68 fc 93 10 88 5b 70 8f
    0070  94 13 eb 6e 86 d4 b5 14  e8 6f 87 21 3d 1d 3e 16
    0080  d4 cf e7 19 70 c7 31 02  03 01 00 01
Certificate Extensions: 9
    1.3.6.1.4.1.311.20.2: Flags = 0, Length = a
    Certificate Template Name (Certificate Type)
        User

    0000  1e 08 00 55 00 73 00 65  00 72                     ...U.s.e.r

    2.5.29.37: Flags = 0, Length = 22
    Enhanced Key Usage
        Encrypting File System (1.3.6.1.4.1.311.10.3.4)
        Secure Email (1.3.6.1.5.5.7.3.4)
        Client Authentication (1.3.6.1.5.5.7.3.2)

    0000  30 20 06 0a 2b 06 01 04  01 82 37 0a 03 04 06 08   0 ..+.....7.....
    0010  2b 06 01 05 05 07 03 04  06 08 2b 06 01 05 05 07   +.........+.....
    0020  03 02                                              ..

    2.5.29.15: Flags = 0, Length = 4
    Key Usage
        Digital Signature, Key Encipherment (a0)

    0000  03 02 05 a0                                        ....

    1.2.840.113549.1.9.15: Flags = 0, Length = 3e
    SMIME Capabilities
        [1]SMIME Capability
             Object ID=1.2.840.113549.3.2
             Parameters=02 02 00 80
        [2]SMIME Capability
             Object ID=1.2.840.113549.3.4
             Parameters=02 02 00 80
        [3]SMIME Capability
             Object ID=1.3.14.3.2.7
             Parameters=02 01 38
        [4]SMIME Capability
             Object ID=1.2.840.113549.3.7
             Parameters=02 02 00 a8

    0000  30 3c 30 0e 06 08 2a 86  48 86 f7 0d 03 02 02 02   0<0...*.H.......
    0010  00 80 30 0e 06 08 2a 86  48 86 f7 0d 03 04 02 02   ..0...*.H.......
    0020  00 80 30 0a 06 05 2b 0e  03 02 07 02 01 38 30 0e   ..0...+......80.
    0030  06 08 2a 86 48 86 f7 0d  03 07 02 02 00 a8         ..*.H.........

    2.5.29.14: Flags = 0, Length = 16
    Subject Key Identifier
        60 8a b3 ff 41 13 ee 58 9d 66 8f b2 0e 72 da 5f 5f 30 9e 90

    0000  04 14 60 8a b3 ff 41 13  ee 58 9d 66 8f b2 0e 72   ..`...A..X.f...r
    0010  da 5f 5f 30 9e 90                                  .__0..

    2.5.29.35: Flags = 0, Length = 18
    Authority Key Identifier
        KeyID=16 a1 b0 9e 8f 4f ee 2e d4 25 07 90 2b 89 37 21 70 c7 d6 65

    0000  30 16 80 14 16 a1 b0 9e  8f 4f ee 2e d4 25 07 90   0........O...%..
    0010  2b 89 37 21 70 c7 d6 65                            +.7!p..e

    2.5.29.31: Flags = 0, Length = 166
    CRL Distribution Points
        [1]CRL Distribution Point
             Distribution Point Name:
                  Full Name:
                       URL=ldap:///CN=JDOMCSC%20Longhorn%20Enterprise%20Root%20CA,CN=JAYTEST7,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=jdomcsc,DC=nttest,DC=microsoft,DC=com?certificateRevocationList?base?objectClass=cRLDistributionPoint
                       URL=https://jaytest7.jdomcsc.nttest.microsoft.com/CertEnroll/JDOMCSC%20Longhorn%20Enterprise%20Root%20CA.crl

    0000  30 82 01 62 30 82 01 5e  a0 82 01 5a a0 82 01 56   0..b0..^...Z...V
    0010  86 81 ea 6c 64 61 70 3a  2f 2f 2f 43 4e 3d 4a 44   ...ldap:///CN=JD
    0020  4f 4d 43 53 43 25 32 30  4c 6f 6e 67 68 6f 72 6e   OMCSC%20Longhorn
    0030  25 32 30 45 6e 74 65 72  70 72 69 73 65 25 32 30   %20Enterprise%20
    0040  52 6f 6f 74 25 32 30 43  41 2c 43 4e 3d 4a 41 59   Root%20CA,CN=JAY
    0050  54 45 53 54 37 2c 43 4e  3d 43 44 50 2c 43 4e 3d   TEST7,CN=CDP,CN=
    0060  50 75 62 6c 69 63 25 32  30 4b 65 79 25 32 30 53   Public%20Key%20S
    0070  65 72 76 69 63 65 73 2c  43 4e 3d 53 65 72 76 69   ervices,CN=Servi
    0080  63 65 73 2c 43 4e 3d 43  6f 6e 66 69 67 75 72 61   ces,CN=Configura
    0090  74 69 6f 6e 2c 44 43 3d  6a 64 6f 6d 63 73 63 2c   tion,DC=jdomcsc,
    00a0  44 43 3d 6e 74 74 65 73  74 2c 44 43 3d 6d 69 63   DC=nttest,DC=mic
    00b0  72 6f 73 6f 66 74 2c 44  43 3d 63 6f 6d 3f 63 65   rosoft,DC=com?ce
    00c0  72 74 69 66 69 63 61 74  65 52 65 76 6f 63 61 74   rtificateRevocat
    00d0  69 6f 6e 4c 69 73 74 3f  62 61 73 65 3f 6f 62 6a   ionList?base?obj
    00e0  65 63 74 43 6c 61 73 73  3d 63 52 4c 44 69 73 74   ectClass=cRLDist
    00f0  72 69 62 75 74 69 6f 6e  50 6f 69 6e 74 86 67 68   ributionPoint.gh
    0100  74 74 70 3a 2f 2f 6a 61  79 74 65 73 74 37 2e 6a   ttp://jaytest7.j
    0110  64 6f 6d 63 73 63 2e 6e  74 74 65 73 74 2e 6d 69   domcsc.nttest.mi
    0120  63 72 6f 73 6f 66 74 2e  63 6f 6d 2f 43 65 72 74   crosoft.com/Cert
    0130  45 6e 72 6f 6c 6c 2f 4a  44 4f 4d 43 53 43 25 32   Enroll/JDOMCSC%2
    0140  30 4c 6f 6e 67 68 6f 72  6e 25 32 30 45 6e 74 65   0Longhorn%20Ente
    0150  72 70 72 69 73 65 25 32  30 52 6f 6f 74 25 32 30   rprise%20Root%20
    0160  43 41 2e 63 72 6c                                  CA.crl

    1.3.6.1.5.5.7.1.1: Flags = 0, Length = 185
    Authority Information Access
        [1]Authority Info Access
             Access Method=Certification Authority Issuer (1.3.6.1.5.5.7.48.2)
             Alternative Name:
                  URL=ldap:///CN=JDOMCSC%20Longhorn%20Enterprise%20Root%20CA,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=jdomcsc,DC=nttest,DC=microsoft,DC=com?cACertificate?base?objectClass=certificationAuthority
        [2]Authority Info Access
             Access Method=Certification Authority Issuer (1.3.6.1.5.5.7.48.2)
             Alternative Name:
                  URL=https://jaytest7.jdomcsc.nttest.microsoft.com/CertEnroll/JAYTEST7.jdomcsc.nttest.microsoft.com_JDOMCSC%20Longhorn%20Enterprise%20Root%20CA.crt

    0000  30 82 01 81 30 81 e1 06  08 2b 06 01 05 05 07 30   0...0....+.....0
    0010  02 86 81 d4 6c 64 61 70  3a 2f 2f 2f 43 4e 3d 4a   ....ldap:///CN=J
    0020  44 4f 4d 43 53 43 25 32  30 4c 6f 6e 67 68 6f 72   DOMCSC%20Longhor
    0030  6e 25 32 30 45 6e 74 65  72 70 72 69 73 65 25 32   n%20Enterprise%2
    0040  30 52 6f 6f 74 25 32 30  43 41 2c 43 4e 3d 41 49   0Root%20CA,CN=AI
    0050  41 2c 43 4e 3d 50 75 62  6c 69 63 25 32 30 4b 65   A,CN=Public%20Ke
    0060  79 25 32 30 53 65 72 76  69 63 65 73 2c 43 4e 3d   y%20Services,CN=
    0070  53 65 72 76 69 63 65 73  2c 43 4e 3d 43 6f 6e 66   Services,CN=Conf
    0080  69 67 75 72 61 74 69 6f  6e 2c 44 43 3d 6a 64 6f   iguration,DC=jdo
    0090  6d 63 73 63 2c 44 43 3d  6e 74 74 65 73 74 2c 44   mcsc,DC=nttest,D
    00a0  43 3d 6d 69 63 72 6f 73  6f 66 74 2c 44 43 3d 63   C=microsoft,DC=c
    00b0  6f 6d 3f 63 41 43 65 72  74 69 66 69 63 61 74 65   om?cACertificate
    00c0  3f 62 61 73 65 3f 6f 62  6a 65 63 74 43 6c 61 73   ?base?objectClas
    00d0  73 3d 63 65 72 74 69 66  69 63 61 74 69 6f 6e 41   s=certificationA
    00e0  75 74 68 6f 72 69 74 79  30 81 9a 06 08 2b 06 01   uthority0....+..
    00f0  05 05 07 30 02 86 81 8d  68 74 74 70 3a 2f 2f 6a   ...0....https://j
    0100  61 79 74 65 73 74 37 2e  6a 64 6f 6d 63 73 63 2e   aytest7.jdomcsc.
    0110  6e 74 74 65 73 74 2e 6d  69 63 72 6f 73 6f 66 74   nttest.microsoft
    0120  2e 63 6f 6d 2f 43 65 72  74 45 6e 72 6f 6c 6c 2f   .com/CertEnroll/
    0130  4a 41 59 54 45 53 54 37  2e 6a 64 6f 6d 63 73 63   JAYTEST7.jdomcsc
    0140  2e 6e 74 74 65 73 74 2e  6d 69 63 72 6f 73 6f 66   .nttest.microsof
    0150  74 2e 63 6f 6d 5f 4a 44  4f 4d 43 53 43 25 32 30   t.com_JDOMCSC%20
    0160  4c 6f 6e 67 68 6f 72 6e  25 32 30 45 6e 74 65 72   Longhorn%20Enter
    0170  70 72 69 73 65 25 32 30  52 6f 6f 74 25 32 30 43   prise%20Root%20C
    0180  41 2e 63 72 74                                     A.crt

    2.5.29.17: Flags = 0, Length = 6a
    Subject Alternative Name
        Other Name:
             Principal Name=Administrator@jdomcsc.nttest.microsoft.com
        RFC822 Name=Administrator@jdomcsc.nttest.microsoft.com
    AltName: 2 entries:
    AltName[0] CERT_ALT_NAME_OTHER_NAME: 1.3.6.1.4.1.311.20.2.3 Principal Name: 
      CERT_RDN_UTF8_STRING, Length = 42 (42 Characters)
        "Administrator@jdomcsc.nttest.microsoft.com"

        41 64 6d 69 6e 69 73 74  72 61 74 6f 72 40 6a 64   Administrator@jd
        6f 6d 63 73 63 2e 6e 74  74 65 73 74 2e 6d 69 63   omcsc.nttest.mic
        72 6f 73 6f 66 74 2e 63  6f 6d                     rosoft.com

        41 00 64 00 6d 00 69 00  6e 00 69 00 73 00 74 00   A.d.m.i.n.i.s.t.
        72 00 61 00 74 00 6f 00  72 00 40 00 6a 00 64 00   r.a.t.o.r.@.j.d.
        6f 00 6d 00 63 00 73 00  63 00 2e 00 6e 00 74 00   o.m.c.s.c...n.t.
        74 00 65 00 73 00 74 00  2e 00 6d 00 69 00 63 00   t.e.s.t...m.i.c.
        72 00 6f 00 73 00 6f 00  66 00 74 00 2e 00 63 00   r.o.s.o.f.t...c.
        6f 00 6d 00                                        o.m.

    AltName[1] CERT_ALT_NAME_RFC822_NAME: "Administrator@jdomcsc.nttest.microsoft.com"

    0000  30 68 a0 3a 06 0a 2b 06  01 04 01 82 37 14 02 03   0h.:..+.....7...
    0010  a0 2c 0c 2a 41 64 6d 69  6e 69 73 74 72 61 74 6f   .,.*Administrato
    0020  72 40 6a 64 6f 6d 63 73  63 2e 6e 74 74 65 73 74   r@jdomcsc.nttest
    0030  2e 6d 69 63 72 6f 73 6f  66 74 2e 63 6f 6d 81 2a   .microsoft.com.*
    0040  41 64 6d 69 6e 69 73 74  72 61 74 6f 72 40 6a 64   Administrator@jd
    0050  6f 6d 63 73 63 2e 6e 74  74 65 73 74 2e 6d 69 63   omcsc.nttest.mic
    0060  72 6f 73 6f 66 74 2e 63  6f 6d                     rosoft.com

Signature Algorithm:
    Algorithm ObjectId: 1.2.840.10045.4.3.3 ECDSA SHA-384(certlib) (sha384ECDSA)
    Algorithm Parameters: NULL
Signature: UnusedBits=0
    0000  63 06 27 0d de 0c b2 62  ef 64 e8 f4 4f a6 c5 13
    0010  01 ef 00 10 6b 23 20 97  5c e4 65 20 83 00 5e fe
    0020  7a b2 85 83 f3 bb 95 4f  9d 9c b2 b7 94 5f 55 b7
    0030  00 31 02 b8 1e 3e 71 cc  45 53 9d 68 4d 31 39 ac
    0040  a9 3a 93 01 35 af b1 17  9b ad f3 64 d9 87 22 b2
    0050  52 31 d8 76 69 5f 3f 85  82 19 b3 fb a3 76 a2 57
    0060  95 17 a6 00 31 02 66 30
Non-root Certificate
Key Id Hash(rfc-sha1): 60 8a b3 ff 41 13 ee 58 9d 66 8f b2 0e 72 da 5f 5f 30 9e 90
Key Id Hash(sha1): 6e b9 3a 0e f0 9a be a0 ce 63 ed d7 cc ff 66 f3 63 da 73 82
Cert Hash(md5): 6d ae d5 a7 07 fe d0 b3 52 de c3 64 01 f4 55 a9
Cert Hash(sha1): fe cb d8 53 b3 a8 34 d8 b3 4b 4e e2 76 50 84 29 1c 81 3c e0
----------------  End Nesting Level 3  ----------------
    0000  30 82 06 c8 30 82 06 4d  a0 03 02 01 02 02 0a 24   0...0..M.......$
    0010  8f 7d 3c 00 00 00 00 08  6e 30 0a 06 08 2a 86 48   .}<.....n0...*.H
    0020  ce 3d 04 03 03 30 42 31  12 30 10 06 03 55 04 0a   .=...0B1.0...U..
    0030  13 09 4d 69 63 72 6f 73  6f 66 74 31 2c 30 2a 06   ..Microsoft1,0*.
    0040  03 55 04 03 13 23 4a 44  4f 4d 43 53 43 20 4c 6f   .U...#JDOMCSC Lo
    0050  6e 67 68 6f 72 6e 20 45  6e 74 65 72 70 72 69 73   nghorn Enterpris
    0060  65 20 52 6f 6f 74 20 43  41 30 1e 17 0d 30 36 30   e Root CA0...060
    0070  34 32 34 32 33 31 33 33  30 5a 17 0d 30 37 30 34   424231330Z..0704
    0080  32 34 32 33 31 33 33 30  5a 30 81 c4 31 13 30 11   24231330Z0..1.0.
    0090  06 0a 09 92 26 89 93 f2  2c 64 01 19 16 03 63 6f   ....&...,d....co
    00a0  6d 31 19 30 17 06 0a 09  92 26 89 93 f2 2c 64 01   m1.0.....&...,d.
    00b0  19 16 09 6d 69 63 72 6f  73 6f 66 74 31 16 30 14   ...microsoft1.0.
    00c0  06 0a 09 92 26 89 93 f2  2c 64 01 19 16 06 6e 74   ....&...,d....nt
    00d0  74 65 73 74 31 17 30 15  06 0a 09 92 26 89 93 f2   test1.0.....&...
    00e0  2c 64 01 19 16 07 6a 64  6f 6d 63 73 63 31 0e 30   ,d....jdomcsc1.0
    00f0  0c 06 03 55 04 03 13 05  55 73 65 72 73 31 16 30   ...U....Users1.0
    0100  14 06 03 55 04 03 13 0d  41 64 6d 69 6e 69 73 74   ...U....Administ
    0110  72 61 74 6f 72 31 39 30  37 06 09 2a 86 48 86 f7   rator1907..*.H..
    0120  0d 01 09 01 16 2a 41 64  6d 69 6e 69 73 74 72 61   .....*Administra
    0130  74 6f 72 40 6a 64 6f 6d  63 73 63 2e 6e 74 74 65   tor@jdomcsc.ntte
    0140  73 74 2e 6d 69 63 72 6f  73 6f 66 74 2e 63 6f 6d   st.microsoft.com
    0150  30 81 9f 30 0d 06 09 2a  86 48 86 f7 0d 01 01 01   0..0...*.H......
    0160  05 00 03 81 8d 00 30 81  89 02 81 81 00 91 9d 0a   ......0.........
    0170  8e 1d 7a 21 e9 ba 34 c7  54 1d 79 c9 35 91 e9 68   ..z!..4.T.y.5..h
    0180  cb 3d ef 2b 4d a6 52 31  f4 95 31 44 02 75 cd d5   .=.+M.R1..1D.u..
    0190  34 ec a2 32 0c 4f 97 b7  6c 87 ca b2 b0 5b 53 a6   4..2.O..l....[S.
    01a0  74 b7 1e 69 a7 d8 c3 3d  03 20 14 5a cb 40 ed f8   t..i...=. .Z.@..
    01b0  5e ee c4 be 97 62 70 44  2f 47 1e 3e b5 61 33 d9   ^....bpD/G.>.a3.
    01c0  02 c3 87 62 4e 74 26 ef  fa 0b 06 d0 0c ec 68 fc   ...bNt&.......h.
    01d0  93 10 88 5b 70 8f 94 13  eb 6e 86 d4 b5 14 e8 6f   ...[p....n.....o
    01e0  87 21 3d 1d 3e 16 d4 cf  e7 19 70 c7 31 02 03 01   .!=.>.....p.1...
    01f0  00 01 a3 82 04 5f 30 82  04 5b 30 17 06 09 2b 06   ....._0..[0...+.
    0200  01 04 01 82 37 14 02 04  0a 1e 08 00 55 00 73 00   ....7.......U.s.
    0210  65 00 72 30 29 06 03 55  1d 25 04 22 30 20 06 0a   e.r0)..U.%."0 ..
    0220  2b 06 01 04 01 82 37 0a  03 04 06 08 2b 06 01 05   +.....7.....+...
    0230  05 07 03 04 06 08 2b 06  01 05 05 07 03 02 30 0b   ......+.......0.
    0240  06 03 55 1d 0f 04 04 03  02 05 a0 30 4b 06 09 2a   ..U........0K..*
    0250  86 48 86 f7 0d 01 09 0f  04 3e 30 3c 30 0e 06 08   .H.......>0<0...
    0260  2a 86 48 86 f7 0d 03 02  02 02 00 80 30 0e 06 08   *.H.........0...
    0270  2a 86 48 86 f7 0d 03 04  02 02 00 80 30 0a 06 05   *.H.........0...
    0280  2b 0e 03 02 07 02 01 38  30 0e 06 08 2a 86 48 86   +......80...*.H.
    0290  f7 0d 03 07 02 02 00 a8  30 1d 06 03 55 1d 0e 04   ........0...U...
    02a0  16 04 14 60 8a b3 ff 41  13 ee 58 9d 66 8f b2 0e   ...`...A..X.f...
    02b0  72 da 5f 5f 30 9e 90 30  1f 06 03 55 1d 23 04 18   r.__0..0...U.#..
    02c0  30 16 80 14 16 a1 b0 9e  8f 4f ee 2e d4 25 07 90   0........O...%..
    02d0  2b 89 37 21 70 c7 d6 65  30 82 01 6f 06 03 55 1d   +.7!p..e0..o..U.
    02e0  1f 04 82 01 66 30 82 01  62 30 82 01 5e a0 82 01   ....f0..b0..^...
    02f0  5a a0 82 01 56 86 81 ea  6c 64 61 70 3a 2f 2f 2f   Z...V...ldap:///
    0300  43 4e 3d 4a 44 4f 4d 43  53 43 25 32 30 4c 6f 6e   CN=JDOMCSC%20Lon
    0310  67 68 6f 72 6e 25 32 30  45 6e 74 65 72 70 72 69   ghorn%20Enterpri
    0320  73 65 25 32 30 52 6f 6f  74 25 32 30 43 41 2c 43   se%20Root%20CA,C
    0330  4e 3d 4a 41 59 54 45 53  54 37 2c 43 4e 3d 43 44   N=JAYTEST7,CN=CD
    0340  50 2c 43 4e 3d 50 75 62  6c 69 63 25 32 30 4b 65   P,CN=Public%20Ke
    0350  79 25 32 30 53 65 72 76  69 63 65 73 2c 43 4e 3d   y%20Services,CN=
    0360  53 65 72 76 69 63 65 73  2c 43 4e 3d 43 6f 6e 66   Services,CN=Conf
    0370  69 67 75 72 61 74 69 6f  6e 2c 44 43 3d 6a 64 6f   iguration,DC=jdo
    0380  6d 63 73 63 2c 44 43 3d  6e 74 74 65 73 74 2c 44   mcsc,DC=nttest,D
    0390  43 3d 6d 69 63 72 6f 73  6f 66 74 2c 44 43 3d 63   C=microsoft,DC=c
    03a0  6f 6d 3f 63 65 72 74 69  66 69 63 61 74 65 52 65   om?certificateRe
    03b0  76 6f 63 61 74 69 6f 6e  4c 69 73 74 3f 62 61 73   vocationList?bas
    03c0  65 3f 6f 62 6a 65 63 74  43 6c 61 73 73 3d 63 52   e?objectClass=cR
    03d0  4c 44 69 73 74 72 69 62  75 74 69 6f 6e 50 6f 69   LDistributionPoi
    03e0  6e 74 86 67 68 74 74 70  3a 2f 2f 6a 61 79 74 65   nt.ghttp://jayte
    03f0  73 74 37 2e 6a 64 6f 6d  63 73 63 2e 6e 74 74 65   st7.jdomcsc.ntte
    0400  73 74 2e 6d 69 63 72 6f  73 6f 66 74 2e 63 6f 6d   st.microsoft.com
    0410  2f 43 65 72 74 45 6e 72  6f 6c 6c 2f 4a 44 4f 4d   /CertEnroll/JDOM
    0420  43 53 43 25 32 30 4c 6f  6e 67 68 6f 72 6e 25 32   CSC%20Longhorn%2
    0430  30 45 6e 74 65 72 70 72  69 73 65 25 32 30 52 6f   0Enterprise%20Ro
    0440  6f 74 25 32 30 43 41 2e  63 72 6c 30 82 01 93 06   ot%20CA.crl0....
    0450  08 2b 06 01 05 05 07 01  01 04 82 01 85 30 82 01   .+...........0..
    0460  81 30 81 e1 06 08 2b 06  01 05 05 07 30 02 86 81   .0....+.....0...
    0470  d4 6c 64 61 70 3a 2f 2f  2f 43 4e 3d 4a 44 4f 4d   .ldap:///CN=JDOM
    0480  43 53 43 25 32 30 4c 6f  6e 67 68 6f 72 6e 25 32   CSC%20Longhorn%2
    0490  30 45 6e 74 65 72 70 72  69 73 65 25 32 30 52 6f   0Enterprise%20Ro
    04a0  6f 74 25 32 30 43 41 2c  43 4e 3d 41 49 41 2c 43   ot%20CA,CN=AIA,C
    04b0  4e 3d 50 75 62 6c 69 63  25 32 30 4b 65 79 25 32   N=Public%20Key%2
    04c0  30 53 65 72 76 69 63 65  73 2c 43 4e 3d 53 65 72   0Services,CN=Ser
    04d0  76 69 63 65 73 2c 43 4e  3d 43 6f 6e 66 69 67 75   vices,CN=Configu
    04e0  72 61 74 69 6f 6e 2c 44  43 3d 6a 64 6f 6d 63 73   ration,DC=jdomcs
    04f0  63 2c 44 43 3d 6e 74 74  65 73 74 2c 44 43 3d 6d   c,DC=nttest,DC=m
    0500  69 63 72 6f 73 6f 66 74  2c 44 43 3d 63 6f 6d 3f   icrosoft,DC=com?
    0510  63 41 43 65 72 74 69 66  69 63 61 74 65 3f 62 61   cACertificate?ba
    0520  73 65 3f 6f 62 6a 65 63  74 43 6c 61 73 73 3d 63   se?objectClass=c
    0530  65 72 74 69 66 69 63 61  74 69 6f 6e 41 75 74 68   ertificationAuth
    0540  6f 72 69 74 79 30 81 9a  06 08 2b 06 01 05 05 07   ority0....+.....
    0550  30 02 86 81 8d 68 74 74  70 3a 2f 2f 6a 61 79 74   0....https://jayt
    0560  65 73 74 37 2e 6a 64 6f  6d 63 73 63 2e 6e 74 74   est7.jdomcsc.ntt
    0570  65 73 74 2e 6d 69 63 72  6f 73 6f 66 74 2e 63 6f   est.microsoft.co
    0580  6d 2f 43 65 72 74 45 6e  72 6f 6c 6c 2f 4a 41 59   m/CertEnroll/JAY
    0590  54 45 53 54 37 2e 6a 64  6f 6d 63 73 63 2e 6e 74   TEST7.jdomcsc.nt
    05a0  74 65 73 74 2e 6d 69 63  72 6f 73 6f 66 74 2e 63   test.microsoft.c
    05b0  6f 6d 5f 4a 44 4f 4d 43  53 43 25 32 30 4c 6f 6e   om_JDOMCSC%20Lon
    05c0  67 68 6f 72 6e 25 32 30  45 6e 74 65 72 70 72 69   ghorn%20Enterpri
    05d0  73 65 25 32 30 52 6f 6f  74 25 32 30 43 41 2e 63   se%20Root%20CA.c
    05e0  72 74 30 71 06 03 55 1d  11 04 6a 30 68 a0 3a 06   rt0q..U...j0h.:.
    05f0  0a 2b 06 01 04 01 82 37  14 02 03 a0 2c 0c 2a 41   .+.....7....,.*A
    0600  64 6d 69 6e 69 73 74 72  61 74 6f 72 40 6a 64 6f   dministrator@jdo
    0610  6d 63 73 63 2e 6e 74 74  65 73 74 2e 6d 69 63 72   mcsc.nttest.micr
    0620  6f 73 6f 66 74 2e 63 6f  6d 81 2a 41 64 6d 69 6e   osoft.com.*Admin
    0630  69 73 74 72 61 74 6f 72  40 6a 64 6f 6d 63 73 63   istrator@jdomcsc
    0640  2e 6e 74 74 65 73 74 2e  6d 69 63 72 6f 73 6f 66   .nttest.microsof
    0650  74 2e 63 6f 6d 30 0a 06  08 2a 86 48 ce 3d 04 03   t.com0...*.H.=..
    0660  03 03 69 00 30 66 02 31  00 a6 17 95 57 a2 76 a3   ..i.0f.1....W.v.
    0670  fb b3 19 82 85 3f 5f 69  76 d8 31 52 b2 22 87 d9   .....?_iv.1R."..
    0680  64 f3 ad 9b 17 b1 af 35  01 93 3a a9 ac 39 31 4d   d......5..:..91M
    0690  68 9d 53 45 cc 71 3e 1e  b8 02 31 00 b7 55 5f 94   h.SE.q>...1..U_.
    06a0  b7 b2 9c 9d 4f 95 bb f3  83 85 b2 7a fe 5e 00 83   ....O......z.^..
    06b0  20 65 e4 5c 97 20 23 6b  10 00 ef 01 13 c5 a6 4f    e.\. #k.......O
    06c0  f4 e8 64 ef 62 b2 0c de  0d 27 06 63               ..d.b....'.c
Signature Algorithm:
    Algorithm ObjectId: 1.2.840.113549.1.1.5 sha1RSA
    Algorithm Parameters:
    05 00
Signature: UnusedBits=0
    0000  22 7a f2 8c 41 31 c2 4e  ad b0 a7 9e dd 83 a0 02
    0010  c4 06 79 52 08 c6 ea e9  86 51 b8 69 a0 78 44 a4
    0020  25 84 5f 41 b8 d1 06 32  b3 2f c9 99 c2 95 41 00
    0030  45 01 57 70 bf 3c 5f 39  9b 83 d3 9e 61 d6 2d 0c
    0040  fa 3e 8b 27 07 da 75 20  98 2b fc d0 c4 e2 c5 d2
    0050  48 f3 36 9d 48 03 60 a5  f8 38 4d e3 3a ef d1 53
    0060  9b f3 5a 6d 69 c6 35 3f  2c 8c 87 d7 86 ec 73 be
    0070  b0 ff 52 2b 29 2b a3 ee  58 56 b8 26 54 5d f7 15
Signature matches Public Key
Key Id Hash(rfc-sha1): d2 91 95 03 6a b4 a6 a7 43 cd bd 35 0e 1c 80 58 91 e3 9a 33
Key Id Hash(sha1): af cd 76 a2 8c 0a 19 7f 65 08 ee 52 19 76 6a 56 73 73 ef 71
----------------  End Nesting Level 2  ----------------

Tagged Content Info: 0
Tagged Other Messages: 0
----------------  End Nesting Level 1  ----------------

Signer Count: 1

Signer Info[0]:
Signature matches request Public Key
CMSG_SIGNER_INFO_CMS_VERSION(3)
CERT_ID_KEY_IDENTIFIER(2)
    0000  d2 91 95 03 6a b4 a6 a7  43 cd bd 35 0e 1c 80 58
    0010  91 e3 9a 33
Hash Algorithm:
    Algorithm ObjectId: 1.3.14.3.2.26 sha1 (sha1NoSign)
    Algorithm Parameters: NULL
Encrypted Hash Algorithm:
    Algorithm ObjectId: 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
    Algorithm Parameters: NULL
Encrypted Hash:
    0000  a4 e7 b3 6b e9 f7 3c 2a  fd c1 33 ed 3c b1 99 f8
    0010  c9 c1 5b 20 be 32 f7 94  d2 1d 07 de a4 8c 76 aa
    0020  1a 39 5e 6b 04 3c e8 d4  dd fa 7b 5a 25 e1 61 4f
    0030  03 00 c1 18 59 56 77 52  3c 99 22 fd 78 37 c5 8f
    0040  51 2e 06 2a 29 66 d3 83  0e eb 04 ed f3 aa d7 00
    0050  31 9e db 49 72 77 bb a8  f7 e0 3a 23 bc cb b9 29
    0060  3c eb cb a6 aa 0c 7c be  77 b7 7e db 3f 65 a7 be
    0070  a9 88 99 b0 c8 12 a0 e2  27 c4 04 f1 88 09 8e 6b

Authenticated Attributes[0]:
  2 attributes:

  Attribute[0]: 1.2.840.113549.1.9.3 (Content Type)
    Value[0][0]:
    Unknown Attribute type
    1.3.6.1.5.5.7.12.2 CMC Data
    0000  06 08 2b 06 01 05 05 07  0c 02                     ..+.......

  Attribute[1]: 1.2.840.113549.1.9.4 (Message Digest)
    Value[1][0]:
    Unknown Attribute type
    Message Digest(certutil):
        f1 13 a1 dc 4d 88 2e 81 70 35 53 2a d2 de 5c 9a ce e8 8e db
    0000  04 14 f1 13 a1 dc 4d 88  2e 81 70 35 53 2a d2 de   ......M...p5S*..
    0010  5c 9a ce e8 8e db                                  \.....

Unauthenticated Attributes[0]:
  0 attributes:

Computed Hash: a6 da bb a8 3c 44 da e1 76 c2 a3 20 45 d9 4c 31 7f 40 51 92
No Recipient

No Certificates
No CRLs
CertUtil: -dump command completed successfully.

Beispielanforderungen