Partilhar via


PKCS nº 7 EOBO codificado como ASN.1

O exemplo a seguir contém uma solicitação EOBO (Enroll On Behalf Of) do PKCS nº 7 mostrada no formato ASN.1. O exemplo foi gerado usando as ferramentas Certreq.exe e Certutil.exe. O arquivo .inf usado como entrada para Certreq.exe contém a configuração a seguir.

[NewRequest]
RequestType=pkcs7
RequesterName=Domain\TargetUser

[RequestAttributes]
CertificateTemplate=User

Essa configuração gera a saída de exemplo a seguir. A configuração especifica o tipo de solicitação (PKCS nº 7), o nome da entidade que solicita o registro e o nome do modelo. O modelo usuário especifica que:

  • A solicitação deve usar o Microsoft Base Cryptographic Provider 1.0 ou o Microsoft Enhanced Cryptographic Provider 1.0.
  • O nome da entidade deve ser criado a partir do Active Directory.
  • A solicitação inclui as extensões Nome do Modelo de Certificado, Uso Avançado de Chave (EKU) e Uso de Chave. A extensão de EKU especifica que o certificado emitido pode ser usado para criptografar o EFS (Sistema de Arquivos), o email seguro e a autenticação do cliente.
0000: 30 82 0a de               ; SEQUENCE (ade Bytes)
0004:    06 09                  ; OBJECT_ID (9 Bytes)
0006:    |  2a 86 48 86 f7 0d 01 07  02
         |     ; 1.2.840.113549.1.7.2 PKCS 7 Signed
000f:    a0 82 0a cf                ; OPTIONAL[0] (acf Bytes)
0013:       30 82 0a cb             ; SEQUENCE (acb Bytes)
0017:          02 01                ; INTEGER (1 Bytes)
0019:          |  01
001a:          31 0b                ; SET (b Bytes)
001c:          |  30 09             ; SEQUENCE (9 Bytes)
001e:          |     06 05          ; OBJECT_ID (5 Bytes)
0020:          |     |  2b 0e 03 02 1a
               |     |     ; 1.3.14.3.2.26 sha1 (sha1NoSign)
0025:          |     05 00          ; NULL (0 Bytes)
0027:          30 82 03 0d          ; SEQUENCE (30d Bytes)
002b:          |  06 09             ; OBJECT_ID (9 Bytes)
002d:          |  |  2a 86 48 86 f7 0d 01 07  01
               |  |     ; 1.2.840.113549.1.7.1 PKCS 7 Data
0036:          |  a0 82 02 fe           ; OPTIONAL[0] (2fe Bytes)
003a:          |     04 82 02 fa        ; OCTET_STRING (2fa Bytes)
003e:          |        30 82 02 f6     ; SEQUENCE (2f6 Bytes)
0042:          |           30 82 02 5f      ; SEQUENCE (25f Bytes)
0046:          |           |  02 01     ; INTEGER (1 Bytes)
0048:          |           |  |  00
0049:          |           |  30 00     ; SEQUENCE (0 Bytes)
004b:          |           |  30 81 9f      ; SEQUENCE (9f Bytes)
004e:          |           |  |  30 0d      ; SEQUENCE (d Bytes)
0050:          |           |  |  |  06 09   ; OBJECT_ID (9 Bytes)
0052:          |           |  |  |  |  2a 86 48 86 f7 0d 01 01  01
               |           |  |  |  |     ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
005b:          |           |  |  |  05 00   ; NULL (0 Bytes)
005d:          |           |  |  03 81 8d   ; BIT_STRING (8d Bytes)
0060:          |           |  |     00
0061:          |           |  |     30 81 89    ; SEQUENCE (89 Bytes)
0064:          |           |  |        02 81 81 ; INTEGER (81 Bytes)
0067:          |           |  |        |  00
0068:          |           |  |        |  d3 fc 7a a7 5d b5 ae dd  68 a7 a1 8b 70 1f 8f ec
0078:          |           |  |        |  83 78 ce b2 fe f6 77 59  c8 60 a6 e9 32 e2 cd bd
0088:          |           |  |        |  b5 78 0c ec 92 bd a1 ce  9d f8 64 54 4a 99 cf 45
0098:          |           |  |        |  72 da db ab 6b c2 e8 a2  8c 90 76 59 d1 59 5c a6
00a8:          |           |  |        |  d3 af 33 9a 50 e9 d5 b2  6d ec 11 f9 9d fd 4b 64
00b8:          |           |  |        |  2c 74 70 76 9d 02 51 fa  d9 d0 2f 39 fe 97 e3 2a
00c8:          |           |  |        |  dc 96 54 ed c1 71 7e 95  19 ad 0f ca a7 50 c1 9d
00d8:          |           |  |        |  19 f1 09 38 7e 93 ed 28  f5 17 62 f9 81 ab f5 cd
00e8:          |           |  |        02 03    ; INTEGER (3 Bytes)
00ea:          |           |  |           01 00 01
00ed:          |           |  a0 82 01 b4   ; OPTIONAL[0] (1b4 Bytes)
00f1:          |           |     30 1a      ; SEQUENCE (1a Bytes)
00f3:          |           |     |  06 0a   ; OBJECT_ID (a Bytes)
00f5:          |           |     |  |  2b 06 01 04 01 82 37 0d  02 03
               |           |     |  |     ; 1.3.6.1.4.1.311.13.2.3 OS Version
00ff:          |           |     |  31 0c   ; SET (c Bytes)
0101:          |           |     |     16 0a    ; IA5_STRING (a Bytes)
0103:          |           |     |        36 2e 30 2e 35 33 36 31  2e 32                    ; 6.0.5361.2
               |           |     |           ; "6.0.5361.2"
010d:          |           |     30 42      ; SEQUENCE (42 Bytes)
010f:          |           |     |  06 0a   ; OBJECT_ID (a Bytes)
0111:          |           |     |  |  2b 06 01 04 01 82 37 0d  02 01
               |           |     |  |     ; 1.3.6.1.4.1.311.13.2.1 Enrollment Name Value Pair
011b:          |           |     |  31 34   ; SET (34 Bytes)
011d:          |           |     |     30 32    ; SEQUENCE (32 Bytes)
011f:          |           |     |        1e 26 ; UNICODE_STRING (26 Bytes)
0121:          |           |     |        |  00 43 00 65 00 72 00 74  00 69 00 66 00 69 00 63  ; .C.e.r.t.i.f.i.c
0131:          |           |     |        |  00 61 00 74 00 65 00 54  00 65 00 6d 00 70 00 6c  ; .a.t.e.T.e.m.p.l
0141:          |           |     |        |  00 61 00 74 00 65                                 ; .a.t.e
               |           |     |        |     ; "CertificateTemplate"
0147:          |           |     |        1e 08 ; UNICODE_STRING (8 Bytes)
0149:          |           |     |           00 55 00 73 00 65 00 72                           ; .U.s.e.r
               |           |     |              ; "User"
0151:          |           |     30 57      ; SEQUENCE (57 Bytes)
0153:          |           |     |  06 09   ; OBJECT_ID (9 Bytes)
0155:          |           |     |  |  2b 06 01 04 01 82 37 15  14
               |           |     |  |     ; 1.3.6.1.4.1.311.21.20 Client Information
015e:          |           |     |  31 4a   ; SET (4a Bytes)
0160:          |           |     |     30 48    ; SEQUENCE (48 Bytes)
0162:          |           |     |        02 01 ; INTEGER (1 Bytes)
0164:          |           |     |        |  09
0165:          |           |     |        0c 23 ; UTF8_STRING (23 Bytes)
0167:          |           |     |        |  76 69 63 68 33 64 2e 6a  64 6f 6d 63 73 63 2e 6e  ; vich3d.jdomcsc.n
0177:          |           |     |        |  74 74 65 73 74 2e 6d 69  63 72 6f 73 6f 66 74 2e  ; ttest.microsoft.
0187:          |           |     |        |  63 6f 6d                                          ; com
               |           |     |        |     ; "vich3d.jdomcsc.nttest.microsoft.com"
018a:          |           |     |        0c 15 ; UTF8_STRING (15 Bytes)
018c:          |           |     |        |  4a 44 4f 4d 43 53 43 5c  61 64 6d 69 6e 69 73 74  ; JDOMCSC\administ
019c:          |           |     |        |  72 61 74 6f 72                                    ; rator
               |           |     |        |     ; "JDOMCSC\administrator"
01a1:          |           |     |        0c 07 ; UTF8_STRING (7 Bytes)
01a3:          |           |     |           63 65 72 74 72 65 71                              ; certreq
               |           |     |              ; "certreq"
01aa:          |           |     30 74      ; SEQUENCE (74 Bytes)
01ac:          |           |     |  06 0a   ; OBJECT_ID (a Bytes)
01ae:          |           |     |  |  2b 06 01 04 01 82 37 0d  02 02
               |           |     |  |     ; 1.3.6.1.4.1.311.13.2.2 Enrollment CSP
01b8:          |           |     |  31 66   ; SET (66 Bytes)
01ba:          |           |     |     30 64    ; SEQUENCE (64 Bytes)
01bc:          |           |     |        02 01 ; INTEGER (1 Bytes)
01be:          |           |     |        |  01
01bf:          |           |     |        1e 5c ; UNICODE_STRING (5c Bytes)
01c1:          |           |     |        |  00 4d 00 69 00 63 00 72  00 6f 00 73 00 6f 00 66  ; .M.i.c.r.o.s.o.f
01d1:          |           |     |        |  00 74 00 20 00 45 00 6e  00 68 00 61 00 6e 00 63  ; .t. .E.n.h.a.n.c
01e1:          |           |     |        |  00 65 00 64 00 20 00 43  00 72 00 79 00 70 00 74  ; .e.d. .C.r.y.p.t
01f1:          |           |     |        |  00 6f 00 67 00 72 00 61  00 70 00 68 00 69 00 63  ; .o.g.r.a.p.h.i.c
0201:          |           |     |        |  00 20 00 50 00 72 00 6f  00 76 00 69 00 64 00 65  ; . .P.r.o.v.i.d.e
0211:          |           |     |        |  00 72 00 20 00 76 00 31  00 2e 00 30              ; .r. .v.1...0
               |           |     |        |     ; "Microsoft Enhanced Cryptographic Provider v1.0"
021d:          |           |     |        03 01 ; BIT_STRING (1 Bytes)
021f:          |           |     |           00
0220:          |           |     30 81 82   ; SEQUENCE (82 Bytes)
0223:          |           |        06 09   ; OBJECT_ID (9 Bytes)
0225:          |           |        |  2a 86 48 86 f7 0d 01 09  0e
               |           |        |     ; 1.2.840.113549.1.9.14 Certificate Extensions
022e:          |           |        31 75   ; SET (75 Bytes)
0230:          |           |           30 73    ; SEQUENCE (73 Bytes)
0232:          |           |              30 17 ; SEQUENCE (17 Bytes)
0234:          |           |              |  06 09  ; OBJECT_ID (9 Bytes)
0236:          |           |              |  |  2b 06 01 04 01 82 37 14  02
               |           |              |  |     ; 1.3.6.1.4.1.311.20.2 Certificate Template Name (Certificate Type)
023f:          |           |              |  04 0a  ; OCTET_STRING (a Bytes)
0241:          |           |              |     1e 08 00 55 00 73 00 65  00 72                    ; ...U.s.e.r
024b:          |           |              30 29 ; SEQUENCE (29 Bytes)
024d:          |           |              |  06 03  ; OBJECT_ID (3 Bytes)
024f:          |           |              |  |  55 1d 25
               |           |              |  |     ; 2.5.29.37 Enhanced Key Usage
0252:          |           |              |  04 22  ; OCTET_STRING (22 Bytes)
0254:          |           |              |     30 20   ; SEQUENCE (20 Bytes)
0256:          |           |              |        06 0a    ; OBJECT_ID (a Bytes)
0258:          |           |              |        |  2b 06 01 04 01 82 37 0a  03 04
               |           |              |        |     ; 1.3.6.1.4.1.311.10.3.4 Encrypting File System
0262:          |           |              |        06 08    ; OBJECT_ID (8 Bytes)
0264:          |           |              |        |  2b 06 01 05 05 07 03 04
               |           |              |        |     ; 1.3.6.1.5.5.7.3.4 Secure Email
026c:          |           |              |        06 08    ; OBJECT_ID (8 Bytes)
026e:          |           |              |           2b 06 01 05 05 07 03 02
               |           |              |              ; 1.3.6.1.5.5.7.3.2 Client Authentication
0276:          |           |              30 0e ; SEQUENCE (e Bytes)
0278:          |           |              |  06 03  ; OBJECT_ID (3 Bytes)
027a:          |           |              |  |  55 1d 0f
               |           |              |  |     ; 2.5.29.15 Key Usage
027d:          |           |              |  01 01  ; BOOL (1 Bytes)
027f:          |           |              |  |  ff
0280:          |           |              |  04 04  ; OCTET_STRING (4 Bytes)
0282:          |           |              |     03 02   ; BIT_STRING (2 Bytes)
0284:          |           |              |        05
0285:          |           |              |        a0
0286:          |           |              30 1d ; SEQUENCE (1d Bytes)
0288:          |           |                 06 03  ; OBJECT_ID (3 Bytes)
028a:          |           |                 |  55 1d 0e
               |           |                 |     ; 2.5.29.14 Subject Key Identifier
028d:          |           |                 04 16  ; OCTET_STRING (16 Bytes)
028f:          |           |                    04 14   ; OCTET_STRING (14 Bytes)
0291:          |           |                       22 bc ae e6 cd 7a fb 76  55 02 b6 9b f9 37 10 21  ; "....z.vU....7.!
02a1:          |           |                       d3 9c e7 5a                                       ; ...Z
02a5:          |           30 0d        ; SEQUENCE (d Bytes)
02a7:          |           |  06 09     ; OBJECT_ID (9 Bytes)
02a9:          |           |  |  2a 86 48 86 f7 0d 01 01  05
               |           |  |     ; 1.2.840.113549.1.1.5 sha1RSA
02b2:          |           |  05 00     ; NULL (0 Bytes)
02b4:          |           03 81 81     ; BIT_STRING (81 Bytes)
02b7:          |              00
02b8:          |              a5 05 3b 7a 90 6b 46 a1  5c 60 38 cd e0 44 ad fa
02c8:          |              67 96 6b b3 61 ab 76 b4  11 6c 01 a4 c2 5c 10 8d
02d8:          |              f5 07 8b 0d 62 8c b6 b5  29 82 60 47 ac 6e 69 fb
02e8:          |              a3 f1 46 0c bd 48 74 0a  c9 76 9a 4d d8 cc 26 00
02f8:          |              ec 6a d7 b0 73 db b6 54  89 9c 95 ef 81 10 a5 86
0308:          |              61 16 22 15 89 cb 1d 1b  ce 73 b6 94 0a 97 80 26
0318:          |              5d 0b d6 48 3d 33 c9 31  78 ee 13 c5 55 08 be e8
0328:          |              c9 d3 6f c0 c0 02 8a 78  81 53 d3 99 23 ce 93 b7
0338:          a0 82 06 18          ; OPTIONAL[0] (618 Bytes)
033c:          |  30 82 06 14           ; SEQUENCE (614 Bytes)
0340:          |     30 82 05 9b        ; SEQUENCE (59b Bytes)
0344:          |     |  a0 03           ; OPTIONAL[0] (3 Bytes)
0346:          |     |  |  02 01        ; INTEGER (1 Bytes)
0348:          |     |  |     02
0349:          |     |  02 0a           ; INTEGER (a Bytes)
034b:          |     |  |  58 8c f8 1a 00 00 00 00  0b 57
0355:          |     |  30 0a           ; SEQUENCE (a Bytes)
0357:          |     |  |  06 08        ; OBJECT_ID (8 Bytes)
0359:          |     |  |     2a 86 48 ce 3d 04 03 03
               |     |  |        ; 1.2.840.10045.4.3.3 ECDSA SHA-384(certlib) (sha384ECDSA)
0361:          |     |  30 42           ; SEQUENCE (42 Bytes)
0363:          |     |  |  31 12        ; SET (12 Bytes)
0365:          |     |  |  |  30 10     ; SEQUENCE (10 Bytes)
0367:          |     |  |  |     06 03      ; OBJECT_ID (3 Bytes)
0369:          |     |  |  |     |  55 04 0a
               |     |  |  |     |     ; 2.5.4.10 Organization (O)
036c:          |     |  |  |     13 09      ; PRINTABLE_STRING (9 Bytes)
036e:          |     |  |  |        4d 69 63 72 6f 73 6f 66  74                       ; Microsoft
               |     |  |  |           ; "Microsoft"
0377:          |     |  |  31 2c        ; SET (2c Bytes)
0379:          |     |  |     30 2a     ; SEQUENCE (2a Bytes)
037b:          |     |  |        06 03      ; OBJECT_ID (3 Bytes)
037d:          |     |  |        |  55 04 03
               |     |  |        |     ; 2.5.4.3 Common Name (CN)
0380:          |     |  |        13 23      ; PRINTABLE_STRING (23 Bytes)
0382:          |     |  |           4a 44 4f 4d 43 53 43 20  4c 6f 6e 67 68 6f 72 6e  ; JDOMCSC Longhorn
0392:          |     |  |           20 45 6e 74 65 72 70 72  69 73 65 20 52 6f 6f 74  ;  Enterprise Root
03a2:          |     |  |           20 43 41                                          ;  CA
               |     |  |              ; "JDOMCSC Longhorn Enterprise Root CA"
03a5:          |     |  30 1e           ; SEQUENCE (1e Bytes)
03a7:          |     |  |  17 0d        ; UTC_TIME (d Bytes)
03a9:          |     |  |  |  30 36 30 35 30 35 30 31  33 31 30 35 5a           ; 060505013105Z
               |     |  |  |     ;  5/4/2006 6:31 PM
03b6:          |     |  |  17 0d        ; UTC_TIME (d Bytes)
03b8:          |     |  |     30 38 30 35 30 34 30 31  33 31 30 35 5a           ; 080504013105Z
               |     |  |        ;  5/3/2008 6:31 PM
03c5:          |     |  30 81 89        ; SEQUENCE (89 Bytes)
03c8:          |     |  |  31 13        ; SET (13 Bytes)
03ca:          |     |  |  |  30 11     ; SEQUENCE (11 Bytes)
03cc:          |     |  |  |     06 0a      ; OBJECT_ID (a Bytes)
03ce:          |     |  |  |     |  09 92 26 89 93 f2 2c 64  01 19
               |     |  |  |     |     ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
03d8:          |     |  |  |     16 03      ; IA5_STRING (3 Bytes)
03da:          |     |  |  |        63 6f 6d                                          ; com
               |     |  |  |           ; "com"
03dd:          |     |  |  31 19        ; SET (19 Bytes)
03df:          |     |  |  |  30 17     ; SEQUENCE (17 Bytes)
03e1:          |     |  |  |     06 0a      ; OBJECT_ID (a Bytes)
03e3:          |     |  |  |     |  09 92 26 89 93 f2 2c 64  01 19
               |     |  |  |     |     ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
03ed:          |     |  |  |     16 09      ; IA5_STRING (9 Bytes)
03ef:          |     |  |  |        6d 69 63 72 6f 73 6f 66  74                       ; microsoft
               |     |  |  |           ; "microsoft"
03f8:          |     |  |  31 16        ; SET (16 Bytes)
03fa:          |     |  |  |  30 14     ; SEQUENCE (14 Bytes)
03fc:          |     |  |  |     06 0a      ; OBJECT_ID (a Bytes)
03fe:          |     |  |  |     |  09 92 26 89 93 f2 2c 64  01 19
               |     |  |  |     |     ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
0408:          |     |  |  |     16 06      ; IA5_STRING (6 Bytes)
040a:          |     |  |  |        6e 74 74 65 73 74                                 ; nttest
               |     |  |  |           ; "nttest"
0410:          |     |  |  31 17        ; SET (17 Bytes)
0412:          |     |  |  |  30 15     ; SEQUENCE (15 Bytes)
0414:          |     |  |  |     06 0a      ; OBJECT_ID (a Bytes)
0416:          |     |  |  |     |  09 92 26 89 93 f2 2c 64  01 19
               |     |  |  |     |     ; 0.9.2342.19200300.100.1.25 Domain Component (DC)
0420:          |     |  |  |     16 07      ; IA5_STRING (7 Bytes)
0422:          |     |  |  |        6a 64 6f 6d 63 73 63                              ; jdomcsc
               |     |  |  |           ; "jdomcsc"
0429:          |     |  |  31 0e        ; SET (e Bytes)
042b:          |     |  |  |  30 0c     ; SEQUENCE (c Bytes)
042d:          |     |  |  |     06 03      ; OBJECT_ID (3 Bytes)
042f:          |     |  |  |     |  55 04 03
               |     |  |  |     |     ; 2.5.4.3 Common Name (CN)
0432:          |     |  |  |     13 05      ; PRINTABLE_STRING (5 Bytes)
0434:          |     |  |  |        55 73 65 72 73                                    ; Users
               |     |  |  |           ; "Users"
0439:          |     |  |  31 16        ; SET (16 Bytes)
043b:          |     |  |     30 14     ; SEQUENCE (14 Bytes)
043d:          |     |  |        06 03      ; OBJECT_ID (3 Bytes)
043f:          |     |  |        |  55 04 03
               |     |  |        |     ; 2.5.4.3 Common Name (CN)
0442:          |     |  |        13 0d      ; PRINTABLE_STRING (d Bytes)
0444:          |     |  |           41 64 6d 69 6e 69 73 74  72 61 74 6f 72           ; Administrator
               |     |  |              ; "Administrator"
0451:          |     |  30 81 9f        ; SEQUENCE (9f Bytes)
0454:          |     |  |  30 0d        ; SEQUENCE (d Bytes)
0456:          |     |  |  |  06 09     ; OBJECT_ID (9 Bytes)
0458:          |     |  |  |  |  2a 86 48 86 f7 0d 01 01  01
               |     |  |  |  |     ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
0461:          |     |  |  |  05 00     ; NULL (0 Bytes)
0463:          |     |  |  03 81 8d     ; BIT_STRING (8d Bytes)
0466:          |     |  |     00
0467:          |     |  |     30 81 89      ; SEQUENCE (89 Bytes)
046a:          |     |  |        02 81 81   ; INTEGER (81 Bytes)
046d:          |     |  |        |  00
046e:          |     |  |        |  bf 1a 3f 63 bf 9e 24 bc  10 d9 28 63 c9 4b cf 29
047e:          |     |  |        |  d9 c5 70 28 93 8a ce e7  14 68 d5 b7 20 eb 60 f2
048e:          |     |  |        |  d9 81 19 3a 98 b8 66 85  58 31 6b 53 4b 03 b9 f3
049e:          |     |  |        |  e5 bf 85 12 11 c5 a2 9e  09 7a f7 c7 ad 8f 65 77
04ae:          |     |  |        |  c1 d5 7e fd c0 48 6c 92  0c d1 06 cd b7 86 55 b4
04be:          |     |  |        |  8e a7 6b 8d 00 e6 13 4b  54 63 17 a5 12 13 2f 9e
04ce:          |     |  |        |  32 0e 2d c7 22 09 47 e6  e9 34 77 1e 94 84 18 16
04de:          |     |  |        |  05 0d 3e da 42 8f 84 fd  65 ea 1d c4 93 f9 7d 19
04ee:          |     |  |        02 03      ; INTEGER (3 Bytes)
04f0:          |     |  |           01 00 01
04f3:          |     |  a3 82 03 e8     ; OPTIONAL[3] (3e8 Bytes)
04f7:          |     |     30 82 03 e4      ; SEQUENCE (3e4 Bytes)
04fb:          |     |        30 2d     ; SEQUENCE (2d Bytes)
04fd:          |     |        |  06 09      ; OBJECT_ID (9 Bytes)
04ff:          |     |        |  |  2b 06 01 04 01 82 37 14  02
               |     |        |  |     ; 1.3.6.1.4.1.311.20.2 Certificate Template Name (Certificate Type)
0508:          |     |        |  04 20      ; OCTET_STRING (20 Bytes)
050a:          |     |        |     1e 1e 00 45 00 6e 00 72  00 6f 00 6c 00 6c 00 6d  ; ...E.n.r.o.l.l.m
051a:          |     |        |     00 65 00 6e 00 74 00 41  00 67 00 65 00 6e 00 74  ; .e.n.t.A.g.e.n.t
052a:          |     |        30 15     ; SEQUENCE (15 Bytes)
052c:          |     |        |  06 03      ; OBJECT_ID (3 Bytes)
052e:          |     |        |  |  55 1d 25
               |     |        |  |     ; 2.5.29.37 Enhanced Key Usage
0531:          |     |        |  04 0e      ; OCTET_STRING (e Bytes)
0533:          |     |        |     30 0c   ; SEQUENCE (c Bytes)
0535:          |     |        |        06 0a    ; OBJECT_ID (a Bytes)
0537:          |     |        |           2b 06 01 04 01 82 37 14  02 01
               |     |        |              ; 1.3.6.1.4.1.311.20.2.1 Certificate Request Agent
0541:          |     |        30 0b     ; SEQUENCE (b Bytes)
0543:          |     |        |  06 03      ; OBJECT_ID (3 Bytes)
0545:          |     |        |  |  55 1d 0f
               |     |        |  |     ; 2.5.29.15 Key Usage
0548:          |     |        |  04 04      ; OCTET_STRING (4 Bytes)
054a:          |     |        |     03 02   ; BIT_STRING (2 Bytes)
054c:          |     |        |        07
054d:          |     |        |        80
054e:          |     |        30 1d     ; SEQUENCE (1d Bytes)
0550:          |     |        |  06 03      ; OBJECT_ID (3 Bytes)
0552:          |     |        |  |  55 1d 0e
               |     |        |  |     ; 2.5.29.14 Subject Key Identifier
0555:          |     |        |  04 16      ; OCTET_STRING (16 Bytes)
0557:          |     |        |     04 14   ; OCTET_STRING (14 Bytes)
0559:          |     |        |        9f ad 2e 19 53 07 d5 d3  34 b9 66 75 65 0e 19 85  ; ....S...4.fue...
0569:          |     |        |        00 3a 26 7d                                       ; .:&}
056d:          |     |        30 1f     ; SEQUENCE (1f Bytes)
056f:          |     |        |  06 03      ; OBJECT_ID (3 Bytes)
0571:          |     |        |  |  55 1d 23
               |     |        |  |     ; 2.5.29.35 Authority Key Identifier
0574:          |     |        |  04 18      ; OCTET_STRING (18 Bytes)
0576:          |     |        |     30 16   ; SEQUENCE (16 Bytes)
0578:          |     |        |        80 14    ; CONTEXT_SPECIFIC[0] (14 Bytes)
057a:          |     |        |           16 a1 b0 9e 8f 4f ee 2e  d4 25 07 90 2b 89 37 21  ; .....O...%..+.7!
058a:          |     |        |           70 c7 d6 65                                       ; p..e
058e:          |     |        30 82 01 6f   ; SEQUENCE (16f Bytes)
0592:          |     |        |  06 03      ; OBJECT_ID (3 Bytes)
0594:          |     |        |  |  55 1d 1f
               |     |        |  |     ; 2.5.29.31 CRL Distribution Points
0597:          |     |        |  04 82 01 66    ; OCTET_STRING (166 Bytes)
059b:          |     |        |     30 82 01 62 ; SEQUENCE (162 Bytes)
059f:          |     |        |        30 82 01 5e  ; SEQUENCE (15e Bytes)
05a3:          |     |        |           a0 82 01 5a   ; OPTIONAL[0] (15a Bytes)
05a7:          |     |        |              a0 82 01 56    ; OPTIONAL[0] (156 Bytes)
05ab:          |     |        |                 86 81 ea    ; CONTEXT_SPECIFIC[6] (ea Bytes)
05ae:          |     |        |                 |  6c 64 61 70 3a 2f 2f 2f  43 4e 3d 4a 44 4f 4d 43  ; ldap:///CN=JDOMC
05be:          |     |        |                 |  53 43 25 32 30 4c 6f 6e  67 68 6f 72 6e 25 32 30  ; SC%20Longhorn%20
05ce:          |     |        |                 |  45 6e 74 65 72 70 72 69  73 65 25 32 30 52 6f 6f  ; Enterprise%20Roo
05de:          |     |        |                 |  74 25 32 30 43 41 2c 43  4e 3d 4a 41 59 54 45 53  ; t%20CA,CN=JAYTES
05ee:          |     |        |                 |  54 37 2c 43 4e 3d 43 44  50 2c 43 4e 3d 50 75 62  ; T7,CN=CDP,CN=Pub
05fe:          |     |        |                 |  6c 69 63 25 32 30 4b 65  79 25 32 30 53 65 72 76  ; lic%20Key%20Serv
060e:          |     |        |                 |  69 63 65 73 2c 43 4e 3d  53 65 72 76 69 63 65 73  ; ices,CN=Services
061e:          |     |        |                 |  2c 43 4e 3d 43 6f 6e 66  69 67 75 72 61 74 69 6f  ; ,CN=Configuratio
062e:          |     |        |                 |  6e 2c 44 43 3d 6a 64 6f  6d 63 73 63 2c 44 43 3d  ; n,DC=jdomcsc,DC=
063e:          |     |        |                 |  6e 74 74 65 73 74 2c 44  43 3d 6d 69 63 72 6f 73  ; nttest,DC=micros
064e:          |     |        |                 |  6f 66 74 2c 44 43 3d 63  6f 6d 3f 63 65 72 74 69  ; oft,DC=com?certi
065e:          |     |        |                 |  66 69 63 61 74 65 52 65  76 6f 63 61 74 69 6f 6e  ; ficateRevocation
066e:          |     |        |                 |  4c 69 73 74 3f 62 61 73  65 3f 6f 62 6a 65 63 74  ; List?base?object
067e:          |     |        |                 |  43 6c 61 73 73 3d 63 52  4c 44 69 73 74 72 69 62  ; Class=cRLDistrib
068e:          |     |        |                 |  75 74 69 6f 6e 50 6f 69  6e 74                    ; utionPoint
0698:          |     |        |                 86 67   ; CONTEXT_SPECIFIC[6] (67 Bytes)
069a:          |     |        |                    68 74 74 70 3a 2f 2f 6a  61 79 74 65 73 74 37 2e  ; https://jaytest7.
06aa:          |     |        |                    6a 64 6f 6d 63 73 63 2e  6e 74 74 65 73 74 2e 6d  ; jdomcsc.nttest.m
06ba:          |     |        |                    69 63 72 6f 73 6f 66 74  2e 63 6f 6d 2f 43 65 72  ; icrosoft.com/Cer
06ca:          |     |        |                    74 45 6e 72 6f 6c 6c 2f  4a 44 4f 4d 43 53 43 25  ; tEnroll/JDOMCSC%
06da:          |     |        |                    32 30 4c 6f 6e 67 68 6f  72 6e 25 32 30 45 6e 74  ; 20Longhorn%20Ent
06ea:          |     |        |                    65 72 70 72 69 73 65 25  32 30 52 6f 6f 74 25 32  ; erprise%20Root%2
06fa:          |     |        |                    30 43 41 2e 63 72 6c                              ; 0CA.crl
0701:          |     |        30 82 01 93   ; SEQUENCE (193 Bytes)
0705:          |     |        |  06 08      ; OBJECT_ID (8 Bytes)
0707:          |     |        |  |  2b 06 01 05 05 07 01 01
               |     |        |  |     ; 1.3.6.1.5.5.7.1.1 Authority Information Access
070f:          |     |        |  04 82 01 85    ; OCTET_STRING (185 Bytes)
0713:          |     |        |     30 82 01 81 ; SEQUENCE (181 Bytes)
0717:          |     |        |        30 81 e1 ; SEQUENCE (e1 Bytes)
071a:          |     |        |        |  06 08 ; OBJECT_ID (8 Bytes)
071c:          |     |        |        |  |  2b 06 01 05 05 07 30 02
               |     |        |        |  |     ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
0724:          |     |        |        |  86 81 d4  ; CONTEXT_SPECIFIC[6] (d4 Bytes)
0727:          |     |        |        |     6c 64 61 70 3a 2f 2f 2f  43 4e 3d 4a 44 4f 4d 43  ; ldap:///CN=JDOMC
0737:          |     |        |        |     53 43 25 32 30 4c 6f 6e  67 68 6f 72 6e 25 32 30  ; SC%20Longhorn%20
0747:          |     |        |        |     45 6e 74 65 72 70 72 69  73 65 25 32 30 52 6f 6f  ; Enterprise%20Roo
0757:          |     |        |        |     74 25 32 30 43 41 2c 43  4e 3d 41 49 41 2c 43 4e  ; t%20CA,CN=AIA,CN
0767:          |     |        |        |     3d 50 75 62 6c 69 63 25  32 30 4b 65 79 25 32 30  ; =Public%20Key%20
0777:          |     |        |        |     53 65 72 76 69 63 65 73  2c 43 4e 3d 53 65 72 76  ; Services,CN=Serv
0787:          |     |        |        |     69 63 65 73 2c 43 4e 3d  43 6f 6e 66 69 67 75 72  ; ices,CN=Configur
0797:          |     |        |        |     61 74 69 6f 6e 2c 44 43  3d 6a 64 6f 6d 63 73 63  ; ation,DC=jdomcsc
07a7:          |     |        |        |     2c 44 43 3d 6e 74 74 65  73 74 2c 44 43 3d 6d 69  ; ,DC=nttest,DC=mi
07b7:          |     |        |        |     63 72 6f 73 6f 66 74 2c  44 43 3d 63 6f 6d 3f 63  ; crosoft,DC=com?c
07c7:          |     |        |        |     41 43 65 72 74 69 66 69  63 61 74 65 3f 62 61 73  ; ACertificate?bas
07d7:          |     |        |        |     65 3f 6f 62 6a 65 63 74  43 6c 61 73 73 3d 63 65  ; e?objectClass=ce
07e7:          |     |        |        |     72 74 69 66 69 63 61 74  69 6f 6e 41 75 74 68 6f  ; rtificationAutho
07f7:          |     |        |        |     72 69 74 79                                       ; rity
07fb:          |     |        |        30 81 9a ; SEQUENCE (9a Bytes)
07fe:          |     |        |           06 08 ; OBJECT_ID (8 Bytes)
0800:          |     |        |           |  2b 06 01 05 05 07 30 02
               |     |        |           |     ; 1.3.6.1.5.5.7.48.2 Certification Authority Issuer
0808:          |     |        |           86 81 8d  ; CONTEXT_SPECIFIC[6] (8d Bytes)
080b:          |     |        |              68 74 74 70 3a 2f 2f 6a  61 79 74 65 73 74 37 2e  ; https://jaytest7.
081b:          |     |        |              6a 64 6f 6d 63 73 63 2e  6e 74 74 65 73 74 2e 6d  ; jdomcsc.nttest.m
082b:          |     |        |              69 63 72 6f 73 6f 66 74  2e 63 6f 6d 2f 43 65 72  ; icrosoft.com/Cer
083b:          |     |        |              74 45 6e 72 6f 6c 6c 2f  4a 41 59 54 45 53 54 37  ; tEnroll/JAYTEST7
084b:          |     |        |              2e 6a 64 6f 6d 63 73 63  2e 6e 74 74 65 73 74 2e  ; .jdomcsc.nttest.
085b:          |     |        |              6d 69 63 72 6f 73 6f 66  74 2e 63 6f 6d 5f 4a 44  ; microsoft.com_JD
086b:          |     |        |              4f 4d 43 53 43 25 32 30  4c 6f 6e 67 68 6f 72 6e  ; OMCSC%20Longhorn
087b:          |     |        |              25 32 30 45 6e 74 65 72  70 72 69 73 65 25 32 30  ; %20Enterprise%20
088b:          |     |        |              52 6f 6f 74 25 32 30 43  41 2e 63 72 74           ; Root%20CA.crt
0898:          |     |        30 45     ; SEQUENCE (45 Bytes)
089a:          |     |           06 03      ; OBJECT_ID (3 Bytes)
089c:          |     |           |  55 1d 11
               |     |           |     ; 2.5.29.17 Subject Alternative Name
089f:          |     |           04 3e      ; OCTET_STRING (3e Bytes)
08a1:          |     |              30 3c   ; SEQUENCE (3c Bytes)
08a3:          |     |                 a0 3a    ; OPTIONAL[0] (3a Bytes)
08a5:          |     |                    06 0a ; OBJECT_ID (a Bytes)
08a7:          |     |                    |  2b 06 01 04 01 82 37 14  02 03
               |     |                    |     ; 1.3.6.1.4.1.311.20.2.3 Principal Name
08b1:          |     |                    a0 2c ; OPTIONAL[0] (2c Bytes)
08b3:          |     |                       0c 2a  ; UTF8_STRING (2a Bytes)
08b5:          |     |                          41 64 6d 69 6e 69 73 74  72 61 74 6f 72 40 6a 64  ; Administrator@jd
08c5:          |     |                          6f 6d 63 73 63 2e 6e 74  74 65 73 74 2e 6d 69 63  ; omcsc.nttest.mic
08d5:          |     |                          72 6f 73 6f 66 74 2e 63  6f 6d                    ; rosoft.com
               |     |                             ; "Administrator@jdomcsc.nttest.microsoft.com"
08df:          |     30 0a          ; SEQUENCE (a Bytes)
08e1:          |     |  06 08           ; OBJECT_ID (8 Bytes)
08e3:          |     |     2a 86 48 ce 3d 04 03 03
               |     |        ; 1.2.840.10045.4.3.3 ECDSA SHA-384(certlib) (sha384ECDSA)
08eb:          |     03 67          ; BIT_STRING (67 Bytes)
08ed:          |        00
08ee:          |        30 64           ; SEQUENCE (64 Bytes)
08f0:          |           02 30        ; INTEGER (30 Bytes)
08f2:          |           |  61 2b 4b 0c 6a 44 ea c0  b5 d8 be f2 3e d7 c1 a4
0902:          |           |  cc 9d 5d 58 8b e8 0b 76  f3 93 04 9b 58 26 11 e7
0912:          |           |  28 31 13 02 23 16 26 9b  35 d7 51 b2 d9 67 df 3e
0922:          |           02 30        ; INTEGER (30 Bytes)
0924:          |              4d 16 03 bf 95 5b ab cc  9d a4 18 00 3e cd 71 fe
0934:          |              17 07 ae 1f c8 19 dc d6  c8 1a 81 38 62 f1 0d 57
0944:          |              0b 81 5c 94 9f 35 c5 67  20 a0 d1 c5 b7 4e db df
0954:          31 82 01 8a          ; SET (18a Bytes)
0958:             30 82 01 86           ; SEQUENCE (186 Bytes)
095c:                02 01          ; INTEGER (1 Bytes)
095e:                |  01
095f:                30 50          ; SEQUENCE (50 Bytes)
0961:                |  30 42           ; SEQUENCE (42 Bytes)
0963:                |  |  31 12        ; SET (12 Bytes)
0965:                |  |  |  30 10     ; SEQUENCE (10 Bytes)
0967:                |  |  |     06 03      ; OBJECT_ID (3 Bytes)
0969:                |  |  |     |  55 04 0a
                     |  |  |     |     ; 2.5.4.10 Organization (O)
096c:                |  |  |     13 09      ; PRINTABLE_STRING (9 Bytes)
096e:                |  |  |        4d 69 63 72 6f 73 6f 66  74                       ; Microsoft
                     |  |  |           ; "Microsoft"
0977:                |  |  31 2c        ; SET (2c Bytes)
0979:                |  |     30 2a     ; SEQUENCE (2a Bytes)
097b:                |  |        06 03      ; OBJECT_ID (3 Bytes)
097d:                |  |        |  55 04 03
                     |  |        |     ; 2.5.4.3 Common Name (CN)
0980:                |  |        13 23      ; PRINTABLE_STRING (23 Bytes)
0982:                |  |           4a 44 4f 4d 43 53 43 20  4c 6f 6e 67 68 6f 72 6e  ; JDOMCSC Longhorn
0992:                |  |           20 45 6e 74 65 72 70 72  69 73 65 20 52 6f 6f 74  ;  Enterprise Root
09a2:                |  |           20 43 41                                          ;  CA
                     |  |              ; "JDOMCSC Longhorn Enterprise Root CA"
09a5:                |  02 0a           ; INTEGER (a Bytes)
09a7:                |     58 8c f8 1a 00 00 00 00  0b 57
09b1:                30 09          ; SEQUENCE (9 Bytes)
09b3:                |  06 05           ; OBJECT_ID (5 Bytes)
09b5:                |  |  2b 0e 03 02 1a
                     |  |     ; 1.3.14.3.2.26 sha1 (sha1NoSign)
09ba:                |  05 00           ; NULL (0 Bytes)
09bc:                a0 81 91           ; OPTIONAL[0] (91 Bytes)
09bf:                |  30 18           ; SEQUENCE (18 Bytes)
09c1:                |  |  06 09        ; OBJECT_ID (9 Bytes)
09c3:                |  |  |  2a 86 48 86 f7 0d 01 09  03
                     |  |  |     ; 1.2.840.113549.1.9.3 Content Type
09cc:                |  |  31 0b        ; SET (b Bytes)
09ce:                |  |     06 09     ; OBJECT_ID (9 Bytes)
09d0:                |  |        2a 86 48 86 f7 0d 01 07  01
                     |  |           ; 1.2.840.113549.1.7.1 PKCS 7 Data
09d9:                |  30 23           ; SEQUENCE (23 Bytes)
09db:                |  |  06 09        ; OBJECT_ID (9 Bytes)
09dd:                |  |  |  2a 86 48 86 f7 0d 01 09  04
                     |  |  |     ; 1.2.840.113549.1.9.4 Message Digest
09e6:                |  |  31 16        ; SET (16 Bytes)
09e8:                |  |     04 14     ; OCTET_STRING (14 Bytes)
09ea:                |  |        ea 0b 89 69 ef 4e 5e c3  c2 56 ac 23 1f af 05 57  ; ...i.N^..V.#...W
09fa:                |  |        5e 7c b3 16                                       ; ^|..
09fe:                |  30 50           ; SEQUENCE (50 Bytes)
0a00:                |     06 0a        ; OBJECT_ID (a Bytes)
0a02:                |     |  2b 06 01 04 01 82 37 0d  02 01
                     |     |     ; 1.3.6.1.4.1.311.13.2.1 Enrollment Name Value Pair
0a0c:                |     31 42        ; SET (42 Bytes)
0a0e:                |        30 40     ; SEQUENCE (40 Bytes)
0a10:                |           1e 1a      ; UNICODE_STRING (1a Bytes)
0a12:                |           |  00 52 00 65 00 71 00 75  00 65 00 73 00 74 00 65  ; .R.e.q.u.e.s.t.e
0a22:                |           |  00 72 00 4e 00 61 00 6d  00 65                    ; .r.N.a.m.e
                     |           |     ; "RequesterName"
0a2c:                |           1e 22      ; UNICODE_STRING (22 Bytes)
0a2e:                |              00 44 00 6f 00 6d 00 61  00 69 00 6e 00 5c 00 54  ; .D.o.m.a.i.n.\.T
0a3e:                |              00 61 00 72 00 67 00 65  00 74 00 55 00 73 00 65  ; .a.r.g.e.t.U.s.e
0a4e:                |              00 72                                             ; .r
                     |                 ; "Domain\TargetUser"
0a50:                30 0d          ; SEQUENCE (d Bytes)
0a52:                |  06 09           ; OBJECT_ID (9 Bytes)
0a54:                |  |  2a 86 48 86 f7 0d 01 01  01
                     |  |     ; 1.2.840.113549.1.1.1 RSA (RSA_SIGN)
0a5d:                |  05 00           ; NULL (0 Bytes)
0a5f:                04 81 80           ; OCTET_STRING (80 Bytes)
0a62:                   61 f7 89 b0 eb d1 fa 1f  80 92 d9 66 7b c2 ac 86  ; a..........f{...
0a72:                   bc d6 f9 9d 76 91 1a da  a1 6e 1f 5c 81 fc 36 f6  ; ....v....n.\..6.
0a82:                   a9 3c 6c 9a 2a 4a 5a 2e  0e 77 62 a0 54 1d 98 1d  ; .<l.*JZ..wb.T...
0a92:                   fe 83 bc e2 28 42 c5 e1  4e 6d ad 8d 27 57 30 08  ; ....(B..Nm..'W0.
0aa2:                   54 17 49 d8 6e 13 29 38  83 33 74 12 42 ed e0 0e  ; T.I.n.)8.3t.B...
0ab2:                   f3 28 5a d0 a7 88 8b 40  f3 fb 12 4f a3 8c 6a 3b  ; .(Z....@...O..j;
0ac2:                   c8 cd f4 f1 4b d7 6a 21  1d 03 e0 4c c2 49 da 1e  ; ....K.j!...L.I..
0ad2:                   81 7a 5d a0 de 88 7c ae  10 5d 92 e2 d0 3b 17 97  ; .z]...|..]...;..
CertUtil: -asn command completed successfully.

Solicitações de exemplo