ServerCertificate
をテンプレートにして作成
[
トップ
] [
新規
|
一覧
|
検索
|
最終更新
|
ヘルプ
]
開始行:
#contents();
*** 業者選択 [#qbde4d8d]
|[[べリサイン:http://www.verisign.co.jp/server/]]|年間 85...
|[[セキュアステージ:http://www.securestage.com/jp/index.p...
|[[デジトラスト:https://www.digitrust.jp/]]|年間 15,540円...
|[[ハイパートラスト:http://www.ssl.ph/hypertrust/]]|年間 ...
*** ハイパートラストの証明書申請 [#tfd8c984]
- お申し込み受付日時 = 2006/12/13 (Wed) 16:13:41
- お申し込み受付番号 = 1165994021
- ユーザーID = munakata
//- アクセスコード = 457fa825
- サービス名 = SSLサーバ証明書[新規] HyperTrust
- 単価 = 7,875円
- コモンネーム = wiki.hmuna.com
- 2010年更新時のアカウント確認
------------------------------------------------
■SSLサーバ証明書 サービスマネジャー
http://www.domain-keeper.net/usr/ssl/
アカウント:public_mail@hmuna.com
パスワード:47633ce9
------------------------------------------------
*** 申請書類 (控え) [#ifc14601]
時間: 2006/12/13(WED) 16:25:01
エージェント: Mozilla/4.0 (compatible; MSIE 6.0; Windows...
HOST: [202.221.8.114]
トラッキングNo. = [No.1165994473]
order_type = new
お支払い金額 = SSLサーバ証明書(wiki.hmuna.com) 7875円 x ...
お支払い合計 = 8,075円
お申込み受付番号 = 1165994021
会社名 = 宗像尚郎
姓 = 宗像
名 = 尚郎
住所1 = 神奈川県横浜市中区山下町
住所2 = 87−1 クリオレミントンハウス 1203号
E-Mailアドレス = munakata@kk.iij4u.or.jp
電話番号 = 0452227607
支払い方法 = コンビニ決済
入金年 = 2006
入金月 = 12
入金日 = 13
入金時間 = 17
振込み名義 = 宗像尚郎
カード記載名 =
カード番号 =
カード期限月 = --
カード期限年 = --
備考 =
申し込み時にクレジットカード支払いとしていましたが、セキ...
配慮からコンビニ支払いとします
*** CSR の生成 [#u3b1b6a5]
- サーバー上のワークディレクトリの作成 ( /usr/local/cert...
[root@spirit ~]# cd /usr/local/
[root@spirit local]# mkdir certs_official
[root@spirit local]# cd certs_official/
- 秘密鍵の生成 ・・・・・ &color(red){パスフレーズは muna...
[root@spirit certs_official]# openssl genrsa -des3 -out ...
Generating RSA private key, 1024 bit long modulus
.............++++++
................++++++
e is 65537 (0x10001)
Enter pass phrase for ./sslkey/domainname.key: <----"mu...
Verifying - Enter pass phrase for ./sslkey/domainname.key:
- 秘密鍵のバックアップ ⇒ &ref(domainname.key);
[root@spirit certs_official]# cat sslkey/domainname.key
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,B782061E62B2250D
mtvMZPHb6PaQ7rV3KHHkEgr3EfDY6ULvPDvV7i+d1/ikU8RiXBIMuE9e...
w12BP2QAUFOJyIuDotEXcpKhaZzVdK8P5FXU7lYlabLj5ujvyTouppr0...
+eVe2uoOAx3SpV8v2QFi2f7K+YCZazpDM4BFKvDz8OaWZb8k6S8pWpYz...
1ChhGFMSY6UumhkEIBoD3spQd0t0eOFH9dsVVLtcDsebm44KB8GrYW0G...
jmXgzNENf3ZiYimdH9VspN8sjV0vqR94dPHJijavE653yX4DlPna5R2u...
bBDwNZoTN9zMMkgBBYqboN2OMSbNkZEplEG+fISecQKd+CpwpHpaz2Oc...
4qWDLeJ9wOws9T0e5Lqb/M2o68cUvjRKbyZS5VzxWar2HdpAuAj3G8Gz...
PFoaPwaxUfxB2zFljTkITEJBoQ3kzXO8gukF4kvchx3S+fQe9o+MxI9u...
grk+nMXQVtjM68xkmGQFOW5MQGDj4i0ieG5Ei88ygGchRUCEtcjknoAs...
TSPMz33bPw/2L228OMoyHoY449AheOsTtZrQ7rEvpvyT0NAVD8cb8vNK...
LHaCwiwWnUL05U1pmvhrw7bOwV9jVRz5tINcmOz4x//6mATOHe9NeCM0...
DLS8Gk0ZE2p0VW3bsoljhfs5xwc+JSeXUOfezQOapQxKi+AZSQYs0uyd...
WfkVKre0E7mQbDphs/qKWVQ8/BEGWdoriBMYzwPWtHdzSjPioD1UzA==
-----END RSA PRIVATE KEY-----
- CSRの作成
[root@spirit certs_official]# openssl req -new -key ./ss...
Enter pass phrase for ./sslkey/domainname.key:
You are about to be asked to enter information that will...
into your certificate request.
What you are about to enter is what is called a Distingu...
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:JP
State or Province Name (full name) [Berkshire]:Kanagawa
Locality Name (eg, city) [Newbury]:Yokohama
Organization Name (eg, company) [My Company Ltd]:Private...
Organizational Unit Name (eg, section) []:IT
Common Name (eg, your name or your server's hostname) []...
Email Address []:
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
- CSR の確認
[root@spirit certs_official]# cat sslcsr/domainname.csr
-----BEGIN CERTIFICATE REQUEST-----
MIIBtDCCAR0CAQAwdDELMAkGA1UEBhMCSlAxETAPBgNVBAgTCEthbmFn...
DwYDVQQHEwhZb2tvaGFtYTEZMBcGA1UEChMQUHJpdmF0ZSBJVCBhZG1p...
A1UECxMCSVQxFzAVBgNVBAMTDndpa2kuaG11bmEuY29tMIGfMA0GCSqG...
AQUAA4GNADCBiQKBgQDCPAQjbKSliTsmYpDwBZGftVgpVXDyhZzpnapX...
+hPtlfe/W6D5RE+v4a54LcyLoH87fCk6xeyj0iKm8CS7/qXnQy8IC2hK...
smTQTo1rHlvcsKt+7tGb6j+JYDm6x6pmF/O7aiXNuhfHHrUZ72i296z5...
AQABoAAwDQYJKoZIhvcNAQEEBQADgYEAqHM2xEScqFn7lYyQYcuJ3R6/...
lzVv4O/JBegXzVkNy9hO/9JOZ5NRXl6HO23IMwnfPLV5cRMwGP2Tmg4g...
6b1VxZQ211MOte+AqBpSpRkJwS2Wqp/7L3COJ4zUvjc2wVu9AuuUXp7t...
LF0pCU1rQRE=
-----END CERTIFICATE REQUEST-----
*** サーバー証明書 (発行されたもの) [#t1364983]
- ◆サーバ証明書 wiki_hmuna_com.crt
-- &ref(wiki_hmuna_com.crt);
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIQPZY0g0om9/etTh43tJeIhDANBgkqhkiG9w0B...
MQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVy...
VQQHEwdTYWxmb3JkMRowGAYDVQQKExFDb21vZG8gQ0EgTGltaXRlZDEh...
AxMYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTA2MTIxNDAwMDAw...
MTIxNDIzNTk1OVowgfwxCzAJBgNVBAYTAkpQMREwDwYDVQQREwgyMzEt...
MA8GA1UECBMIS2FuYWdhd2ExETAPBgNVBAcTCFlva29oYW1hMSowKAYD...
YWthLXdhcmQgeWFtYXNoaXRhLWNobyA4Ny0xLTEyMDMxGTAXBgNVBAoT...
dGUgSVQgYWRtaW4xCzAJBgNVBAsTAklUMScwJQYDVQQLEx5Qcm92aWRl...
eXBlciBCb3ggQ28uLEx0ZC4xHjAcBgNVBAsTFUh5cGVyVHJ1c3QgSW5z...
TDEXMBUGA1UEAxMOd2lraS5obXVuYS5jb20wgZ8wDQYJKoZIhvcNAQEB...
MIGJAoGBAMI8BCNspKWJOyZikPAFkZ+1WClVcPKFnOmdqlfSVYAkYbT6...
oPlET6/hrngtzIugfzt8KTrF7KPSIqbwJLv+pedDLwgLaEo0heL+JYSy...
W9ywq37u0ZvqP4lgObrHqmYX87tqJc26F8cetRnvaLb3rPmmaHI9AgMB...
MIIBWTAfBgNVHSMEGDAWgBQwQ9xkzRlcqfMZ0jcJlpGeDOjWPTAdBgNV...
o8cF8TsdrBn4PlUttTnaanVb+oswDgYDVR0PAQH/BAQDAgWgMAwGA1Ud...
MAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG...
AwIGwDBGBgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEDBDArMCkGCCsGAQUF...
dHRwczovL3NlY3VyZS5jb21vZG8ubmV0L0NQUzB/BgNVHR8EeDB2MDqg...
dHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9BQUFDZXJ0aWZpY2F0ZVNlcnZp...
Y3JsMDigNqA0hjJodHRwOi8vY3JsLmNvbW9kby5uZXQvQUFBQ2VydGlm...
ZXJ2aWNlc18yLmNybDANBgkqhkiG9w0BAQUFAAOCAQEArz+qFoFrMb7n...
Zk8vnFfyR0iO0pL/EfRsnHMRKqiDnCTBmTky3+Ey67eKvQ79AM6d/Wgk...
+dtasnPnN60FSlD7n1JnzDjY1jYP4VB5FXOp4YmklHuQnNHArxLMLOkl...
ipooFv61WaSfWXQ9rEr0ptxXnGTKDMetNbce5CoOi7TLML+6uqJs7HHQ...
lkaEjbzIi63iqfRzJKE05Fb30TzitMHqd0XlOmTiaWsdW7HWCFEUbwk/...
iB6YyIE7os34VvuaDdz9gOCtpXJz/YyWlzTgZd7WawzgNpqHxFMDB8xX...
GA==
-----END CERTIFICATE-----
- ◆中間証明書 AAACertificateServices_2.crt
-- &ref(AAACertificateServices_2.crt);
-----BEGIN CERTIFICATE-----
MIIE+TCCBGKgAwIBAgIEQobyPTANBgkqhkiG9w0BAQUFADCBwzELMAkG...
VVMxFDASBgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50...
ZXQvQ1BTIGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMG...
KGMpIDE5OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50...
ZXQgU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAe...
MTkxNDM5NTFaFw0xMjEwMTkxNTA5NTFaMHsxCzAJBgNVBAYTAkdCMRsw...
ExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAY...
EUNvbW9kbyBDQSBMaW1pdGVkMSEwHwYDVQQDExhBQUEgQ2VydGlmaWNh...
dmljZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwTi7R...
dmz44SMCk0QrTIjyUASQxtfK10D+zRfalGtz8D0KmyPdmBgHYqhuEZl4...
/vqP9QOEjvuFpcXk9+3keL7fqsecx5/fId99z2DUcLvUyqZbudcObpRV...
Ji6RZ5NnJ/6UCkhinY+Y4SVjS74rkjZPEUg5ZuGxHCY1Vuk9247/H24k...
SFwwj9AEul7D6dsvHRgGFnH/ivaZwXlfgu3YoC9GBqTrKeaO/VKNvYNX...
C/aO+qsO+qCsaJet/Vn8GRMzewuDapBjVSbneAWKuBzvdcHCJ59OlwQp...
DxPcoli5AgMBAAGjggG7MIIBtzASBgNVHRMBAf8ECDAGAQH/AgEAMB0G...
MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUMEPcZM0ZXKnz...
ngzo1j0wggEYBgNVHR8EggEPMIIBCzAooCagJIYiaHR0cDovL2NybC5l...
Lm5ldC9zZXJ2ZXIxLmNybDCB3qCB26CB2KSB1TCB0jELMAkGA1UEBhMC...
BgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50cnVzdC5u...
IGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMGA1UECxMc...
OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50cnVzdC5u...
dXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTENMAsGA1UE...
MTALBgNVHQ8EBAMCAQYwHwYDVR0jBBgwFoAU8BdiE1U9s/8KAGv7UISX...
GQYJKoZIhvZ9B0EABAwwChsEVjcuMQMCAIEwDQYJKoZIhvcNAQEFBQAD...
t7BnKt3gENkLFmXzlm9BMD7f3rv4WjZRMdcvD/pdI5aYqkWgGAqCmhE2...
wyo+HeFt9n49StOZzv6orwtFwtvCuOlJxaFi7XVm5t6LW3Nw+pxLkFET...
1O6Jx8nPADfns9Nliyzn+D/xC+N6Bvkpfs+5FHY=
-----END CERTIFICATE-----
- EntrustSecureServerCA.crtはルート証明書となり通常利用い...
--&ref(wiki_hmuna_com.zip);
*** サーバー証明書(2007-12 更新) [#dd881b6e]
◆サーバ証明書 wiki_hmuna_com.crt
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
-- &ref(wiki_hmuna_com_2008.crt);
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgIRAJkU313pNHrvHI3tQsdXjw8wDQYJKoZIhvcN...
ezELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3Rl...
A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ29tb2RvIENBIExpbWl0ZWQx...
BAMTGEFBQSBDZXJ0aWZpY2F0ZSBTZXJ2aWNlczAeFw0wNzEyMjEwMDAw...
MDEyMjAyMzU5NTlaMIH8MQswCQYDVQQGEwJKUDERMA8GA1UEERMIMjMx...
ETAPBgNVBAgTCEthbmFnYXdhMREwDwYDVQQHEwhZb2tvaGFtYTEqMCgG...
bmFrYS13YXJkIHlhbWFzaGl0YS1jaG8gODctMS0xMjAzMRkwFwYDVQQK...
YXRlIElUIGFkbWluMQswCQYDVQQLEwJJVDEnMCUGA1UECxMeUHJvdmlk...
SHlwZXIgQm94IENvLixMdGQuMR4wHAYDVQQLExVIeXBlclRydXN0IElu...
U0wxFzAVBgNVBAMTDndpa2kuaG11bmEuY29tMIGfMA0GCSqGSIb3DQEB...
ADCBiQKBgQC+H6yxwxT+vdKI6sfLl9rzN4bQojutc6/mZC0FN9t+E9Iw...
mWofKy8zvh5OH4jXsmZkVNdsFKF4D7axnJ9cA17h4AXy0M3NHnhXE5Vd...
HbxO9PvoVZzqiVWsGdzbWx32dbZJv9YtAxy4FxB6PYmd8q1z4HugWwID...
XTCCAVkwHwYDVR0jBBgwFoAUMEPcZM0ZXKnzGdI3CZaRngzo1j0wHQYD...
FLwjTxLAUU4fxYzdv4arZAuHZrrnMA4GA1UdDwEB/wQEAwIFoDAMBgNV...
AjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjARBglghkgB...
BAMCBsAwRgYDVR0gBD8wPTA7BgwrBgEEAbIxAQIBAwQwKzApBggrBgEF...
aHR0cHM6Ly9zZWN1cmUuY29tb2RvLm5ldC9DUFMwfwYDVR0fBHgwdjA6...
aHR0cDovL2NybC5jb21vZG9jYS5jb20vQUFBQ2VydGlmaWNhdGVTZXJ2...
LmNybDA4oDagNIYyaHR0cDovL2NybC5jb21vZG8ubmV0L0FBQUNlcnRp...
U2VydmljZXNfMi5jcmwwDQYJKoZIhvcNAQEFBQADggEBAIvbjlUM/HtX...
GUJqZOpixoZwfsk/eg7jYO6oGRog19wbRIzQKn2cdHzDXgqiYpX44aA4...
FDaolKR07nil9sStc7vsoNhnD4IAKB2kCyzERZBM7uVRqUvofGedloDz...
gJlzsQBX/Yo90OLsM4gYt2voI23u7xkUupIu6jImKwWByoegbo9eHM9N...
/OK53K/3txMlsPRz5Cw0y7FQLQqY19HGMLlBVJgzWslYCGIIJusEZsSH...
GtkMm2l7Cj9SBhhmzUOunfeAJUPQ01cxM0tLRw9G4HRDLAFiyyIQTurd...
pp8=
-----END CERTIFICATE-----
◆中間証明書 AAACertificateServices_2.crt
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
-- &ref(AAACertificateServices_2_2008.crt);
-----BEGIN CERTIFICATE-----
MIIE+TCCBGKgAwIBAgIEQobyPTANBgkqhkiG9w0BAQUFADCBwzELMAkG...
VVMxFDASBgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50...
ZXQvQ1BTIGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMG...
KGMpIDE5OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50...
ZXQgU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAe...
MTkxNDM5NTFaFw0xMjEwMTkxNTA5NTFaMHsxCzAJBgNVBAYTAkdCMRsw...
ExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAY...
EUNvbW9kbyBDQSBMaW1pdGVkMSEwHwYDVQQDExhBQUEgQ2VydGlmaWNh...
dmljZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwTi7R...
dmz44SMCk0QrTIjyUASQxtfK10D+zRfalGtz8D0KmyPdmBgHYqhuEZl4...
/vqP9QOEjvuFpcXk9+3keL7fqsecx5/fId99z2DUcLvUyqZbudcObpRV...
Ji6RZ5NnJ/6UCkhinY+Y4SVjS74rkjZPEUg5ZuGxHCY1Vuk9247/H24k...
SFwwj9AEul7D6dsvHRgGFnH/ivaZwXlfgu3YoC9GBqTrKeaO/VKNvYNX...
C/aO+qsO+qCsaJet/Vn8GRMzewuDapBjVSbneAWKuBzvdcHCJ59OlwQp...
DxPcoli5AgMBAAGjggG7MIIBtzASBgNVHRMBAf8ECDAGAQH/AgEAMB0G...
MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUMEPcZM0ZXKnz...
ngzo1j0wggEYBgNVHR8EggEPMIIBCzAooCagJIYiaHR0cDovL2NybC5l...
Lm5ldC9zZXJ2ZXIxLmNybDCB3qCB26CB2KSB1TCB0jELMAkGA1UEBhMC...
BgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50cnVzdC5u...
IGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMGA1UECxMc...
OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50cnVzdC5u...
dXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTENMAsGA1UE...
MTALBgNVHQ8EBAMCAQYwHwYDVR0jBBgwFoAU8BdiE1U9s/8KAGv7UISX...
GQYJKoZIhvZ9B0EABAwwChsEVjcuMQMCAIEwDQYJKoZIhvcNAQEFBQAD...
t7BnKt3gENkLFmXzlm9BMD7f3rv4WjZRMdcvD/pdI5aYqkWgGAqCmhE2...
wyo+HeFt9n49StOZzv6orwtFwtvCuOlJxaFi7XVm5t6LW3Nw+pxLkFET...
1O6Jx8nPADfns9Nliyzn+D/xC+N6Bvkpfs+5FHY=
-----END CERTIFICATE-----
- EntrustSecureServerCA.crtはルート証明書となり通常利用い...
--&ref(wiki_hmuna_com_2008.zip);
*** サーバー鍵へのパスフレーズの埋め込み [#gb5eb1c8]
mod_ssl の Private key ファイル(/usr/local/certs_officia...
- Private key にパスフレーズを埋め込む
[root@spirit ~]# cd /usr/local/certs_official/sslkey/
[root@spirit sslkey]# openssl rsa < domainname.key > ser...
Enter pass phrase: <--- "munaofficial"
writing RSA key
[root@spirit sslkey]# mv domainname.key domainname.key_w...
[root@spirit sslkey]# mv server.key.out domainname.key
- パスフレーズを聞かれずに立ち上がるようになった
[root@spirit sslkey]# service httpd restart
httpd を停止中: ...
httpd を起動中: ...
*** 2007.12 に更新時期となったので 3年間のキーを再申請し...
- パスフレーズは (前回と同じ) munaofficial
- CSR 申請用のデータも上記と同じ
- /etc/httpd/conf の下にファイルを生成した
[root@spirit conf]# ls -lR
.:
合計 88
-rw-r--r-- 1 root root 45426 9月 5 17:04 httpd.conf
-rw-r--r-- 1 root root 12958 6月 27 08:34 magic
drwxr-xr-x 2 root root 4096 12月 21 13:11 ssl.csr
drwxr-xr-x 2 root root 4096 12月 21 13:02 ssl.key
./ssl.csr:
合計 8
-rw-r--r-- 1 root root 668 12月 21 13:11 domainname.csr
./ssl.key:
合計 8
-rw-r--r-- 1 root root 963 12月 21 13:06 domainname.key
- 今回生成し直した 秘密鍵(domainname.key)とサーバー証明...
-- domainname.key (2007-12-21)
[root@spirit conf]# cat ./ssl.key/domainname.key
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,948273E63447D5FA
pH8yW01PXCvQkoTa+esTMYnWECODWzJnkbja3T1nc39NY0AFaSEjJ2Ji...
u6i/EyAMkToZKZba6GGLjAwsiNr9RqweTGIQbIyHuZYB+oG+10XiDqFV...
Bb26KjLP+6cxo9px0Ilmm3BYfwWoM7VOJmqytKJB4G8qs1aecqYL+usN...
GsX+iXB7KN6uqkJ3Etp9nSfkvzTIA3Y9IGna/gYc7B3qS850BXQiEYpU...
i67cfi7iVP2bQTbVrf79ndiX0xX8El1llLZSOrZ7lkEZ1uCngaT3Tu51...
N5e1QyxxaWx86bvl8yrS8JzstqJzRdmDg9eKhhgUyxT/7tiYUs0/Gn7s...
03ZyR69qmMlO6YzMjLl3XtpIsY7hGqczrSRwfbb/3OJfg22EwXArGxl3...
Q4MslddleD0B6j86fS0MCQ0dB5FHHm+QdQI+hrHanOaoejHr0+2RWsux...
+r/ps08YmLvAKApXiTacWVdtX6xIxWmJEFjUyXaAYo10Jn3lGM2D+i8k...
g7ReESmbH2S2i+Xk+o2J7r+PlaLHOCCs328PAKahAc8a/7taZ4G6NmcK...
O7HrQ3cG7Hu+IKNZAOYUnxYGtfwbBUv/Au1HgeEAociE+ZpzmgsN3LBp...
kWMyc3D4k2ZCV5lcr33SBfwqM79MeSwNdzea+4q4T44lwzHtYO57Mn+U...
RLeG2iMWX5rau4cu2O71ZuAnUrqeen6toWiXEmdliQ9yfwTZLLWiMw==
-----END RSA PRIVATE KEY-----
-- domainname.csr (2007-12-21)
[root@spirit conf]# cat ./ssl.csr/domainname.csr
-----BEGIN CERTIFICATE REQUEST-----
MIIBtDCCAR0CAQAwdDELMAkGA1UEBhMCSlAxETAPBgNVBAgTCEthbmFn...
DwYDVQQHEwhZb2tvaGFtYTEZMBcGA1UEChMQUHJpdmF0ZSBJVCBhZG1p...
A1UECxMCSVQxFzAVBgNVBAMTDndpa2kuaG11bmEuY29tMIGfMA0GCSqG...
AQUAA4GNADCBiQKBgQC+H6yxwxT+vdKI6sfLl9rzN4bQojutc6/mZC0F...
VuIfIPGrmWofKy8zvh5OH4jXsmZkVNdsFKF4D7axnJ9cA17h4AXy0M3N...
QGGZwy6RHbxO9PvoVZzqiVWsGdzbWx32dbZJv9YtAxy4FxB6PYmd8q1z...
AQABoAAwDQYJKoZIhvcNAQEFBQADgYEAuknehigV42BZI0BxhkHNsXzZ...
ze4tqL1WZaToTVdlceKULVGyCtyIK7n/StfINtWwjZMzKV09scYtJh8f...
fCFxBdePdYhL4K72AMwU2sWHoJTzLKQAYFda1/rNochhtFDuWJfG1nVx...
a/BA40iC/iM=
-----END CERTIFICATE REQUEST-----
終了行:
#contents();
*** 業者選択 [#qbde4d8d]
|[[べリサイン:http://www.verisign.co.jp/server/]]|年間 85...
|[[セキュアステージ:http://www.securestage.com/jp/index.p...
|[[デジトラスト:https://www.digitrust.jp/]]|年間 15,540円...
|[[ハイパートラスト:http://www.ssl.ph/hypertrust/]]|年間 ...
*** ハイパートラストの証明書申請 [#tfd8c984]
- お申し込み受付日時 = 2006/12/13 (Wed) 16:13:41
- お申し込み受付番号 = 1165994021
- ユーザーID = munakata
//- アクセスコード = 457fa825
- サービス名 = SSLサーバ証明書[新規] HyperTrust
- 単価 = 7,875円
- コモンネーム = wiki.hmuna.com
- 2010年更新時のアカウント確認
------------------------------------------------
■SSLサーバ証明書 サービスマネジャー
http://www.domain-keeper.net/usr/ssl/
アカウント:public_mail@hmuna.com
パスワード:47633ce9
------------------------------------------------
*** 申請書類 (控え) [#ifc14601]
時間: 2006/12/13(WED) 16:25:01
エージェント: Mozilla/4.0 (compatible; MSIE 6.0; Windows...
HOST: [202.221.8.114]
トラッキングNo. = [No.1165994473]
order_type = new
お支払い金額 = SSLサーバ証明書(wiki.hmuna.com) 7875円 x ...
お支払い合計 = 8,075円
お申込み受付番号 = 1165994021
会社名 = 宗像尚郎
姓 = 宗像
名 = 尚郎
住所1 = 神奈川県横浜市中区山下町
住所2 = 87−1 クリオレミントンハウス 1203号
E-Mailアドレス = munakata@kk.iij4u.or.jp
電話番号 = 0452227607
支払い方法 = コンビニ決済
入金年 = 2006
入金月 = 12
入金日 = 13
入金時間 = 17
振込み名義 = 宗像尚郎
カード記載名 =
カード番号 =
カード期限月 = --
カード期限年 = --
備考 =
申し込み時にクレジットカード支払いとしていましたが、セキ...
配慮からコンビニ支払いとします
*** CSR の生成 [#u3b1b6a5]
- サーバー上のワークディレクトリの作成 ( /usr/local/cert...
[root@spirit ~]# cd /usr/local/
[root@spirit local]# mkdir certs_official
[root@spirit local]# cd certs_official/
- 秘密鍵の生成 ・・・・・ &color(red){パスフレーズは muna...
[root@spirit certs_official]# openssl genrsa -des3 -out ...
Generating RSA private key, 1024 bit long modulus
.............++++++
................++++++
e is 65537 (0x10001)
Enter pass phrase for ./sslkey/domainname.key: <----"mu...
Verifying - Enter pass phrase for ./sslkey/domainname.key:
- 秘密鍵のバックアップ ⇒ &ref(domainname.key);
[root@spirit certs_official]# cat sslkey/domainname.key
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,B782061E62B2250D
mtvMZPHb6PaQ7rV3KHHkEgr3EfDY6ULvPDvV7i+d1/ikU8RiXBIMuE9e...
w12BP2QAUFOJyIuDotEXcpKhaZzVdK8P5FXU7lYlabLj5ujvyTouppr0...
+eVe2uoOAx3SpV8v2QFi2f7K+YCZazpDM4BFKvDz8OaWZb8k6S8pWpYz...
1ChhGFMSY6UumhkEIBoD3spQd0t0eOFH9dsVVLtcDsebm44KB8GrYW0G...
jmXgzNENf3ZiYimdH9VspN8sjV0vqR94dPHJijavE653yX4DlPna5R2u...
bBDwNZoTN9zMMkgBBYqboN2OMSbNkZEplEG+fISecQKd+CpwpHpaz2Oc...
4qWDLeJ9wOws9T0e5Lqb/M2o68cUvjRKbyZS5VzxWar2HdpAuAj3G8Gz...
PFoaPwaxUfxB2zFljTkITEJBoQ3kzXO8gukF4kvchx3S+fQe9o+MxI9u...
grk+nMXQVtjM68xkmGQFOW5MQGDj4i0ieG5Ei88ygGchRUCEtcjknoAs...
TSPMz33bPw/2L228OMoyHoY449AheOsTtZrQ7rEvpvyT0NAVD8cb8vNK...
LHaCwiwWnUL05U1pmvhrw7bOwV9jVRz5tINcmOz4x//6mATOHe9NeCM0...
DLS8Gk0ZE2p0VW3bsoljhfs5xwc+JSeXUOfezQOapQxKi+AZSQYs0uyd...
WfkVKre0E7mQbDphs/qKWVQ8/BEGWdoriBMYzwPWtHdzSjPioD1UzA==
-----END RSA PRIVATE KEY-----
- CSRの作成
[root@spirit certs_official]# openssl req -new -key ./ss...
Enter pass phrase for ./sslkey/domainname.key:
You are about to be asked to enter information that will...
into your certificate request.
What you are about to enter is what is called a Distingu...
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:JP
State or Province Name (full name) [Berkshire]:Kanagawa
Locality Name (eg, city) [Newbury]:Yokohama
Organization Name (eg, company) [My Company Ltd]:Private...
Organizational Unit Name (eg, section) []:IT
Common Name (eg, your name or your server's hostname) []...
Email Address []:
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
- CSR の確認
[root@spirit certs_official]# cat sslcsr/domainname.csr
-----BEGIN CERTIFICATE REQUEST-----
MIIBtDCCAR0CAQAwdDELMAkGA1UEBhMCSlAxETAPBgNVBAgTCEthbmFn...
DwYDVQQHEwhZb2tvaGFtYTEZMBcGA1UEChMQUHJpdmF0ZSBJVCBhZG1p...
A1UECxMCSVQxFzAVBgNVBAMTDndpa2kuaG11bmEuY29tMIGfMA0GCSqG...
AQUAA4GNADCBiQKBgQDCPAQjbKSliTsmYpDwBZGftVgpVXDyhZzpnapX...
+hPtlfe/W6D5RE+v4a54LcyLoH87fCk6xeyj0iKm8CS7/qXnQy8IC2hK...
smTQTo1rHlvcsKt+7tGb6j+JYDm6x6pmF/O7aiXNuhfHHrUZ72i296z5...
AQABoAAwDQYJKoZIhvcNAQEEBQADgYEAqHM2xEScqFn7lYyQYcuJ3R6/...
lzVv4O/JBegXzVkNy9hO/9JOZ5NRXl6HO23IMwnfPLV5cRMwGP2Tmg4g...
6b1VxZQ211MOte+AqBpSpRkJwS2Wqp/7L3COJ4zUvjc2wVu9AuuUXp7t...
LF0pCU1rQRE=
-----END CERTIFICATE REQUEST-----
*** サーバー証明書 (発行されたもの) [#t1364983]
- ◆サーバ証明書 wiki_hmuna_com.crt
-- &ref(wiki_hmuna_com.crt);
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIQPZY0g0om9/etTh43tJeIhDANBgkqhkiG9w0B...
MQswCQYDVQQGEwJHQjEbMBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVy...
VQQHEwdTYWxmb3JkMRowGAYDVQQKExFDb21vZG8gQ0EgTGltaXRlZDEh...
AxMYQUFBIENlcnRpZmljYXRlIFNlcnZpY2VzMB4XDTA2MTIxNDAwMDAw...
MTIxNDIzNTk1OVowgfwxCzAJBgNVBAYTAkpQMREwDwYDVQQREwgyMzEt...
MA8GA1UECBMIS2FuYWdhd2ExETAPBgNVBAcTCFlva29oYW1hMSowKAYD...
YWthLXdhcmQgeWFtYXNoaXRhLWNobyA4Ny0xLTEyMDMxGTAXBgNVBAoT...
dGUgSVQgYWRtaW4xCzAJBgNVBAsTAklUMScwJQYDVQQLEx5Qcm92aWRl...
eXBlciBCb3ggQ28uLEx0ZC4xHjAcBgNVBAsTFUh5cGVyVHJ1c3QgSW5z...
TDEXMBUGA1UEAxMOd2lraS5obXVuYS5jb20wgZ8wDQYJKoZIhvcNAQEB...
MIGJAoGBAMI8BCNspKWJOyZikPAFkZ+1WClVcPKFnOmdqlfSVYAkYbT6...
oPlET6/hrngtzIugfzt8KTrF7KPSIqbwJLv+pedDLwgLaEo0heL+JYSy...
W9ywq37u0ZvqP4lgObrHqmYX87tqJc26F8cetRnvaLb3rPmmaHI9AgMB...
MIIBWTAfBgNVHSMEGDAWgBQwQ9xkzRlcqfMZ0jcJlpGeDOjWPTAdBgNV...
o8cF8TsdrBn4PlUttTnaanVb+oswDgYDVR0PAQH/BAQDAgWgMAwGA1Ud...
MAAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMBEGCWCGSAGG...
AwIGwDBGBgNVHSAEPzA9MDsGDCsGAQQBsjEBAgEDBDArMCkGCCsGAQUF...
dHRwczovL3NlY3VyZS5jb21vZG8ubmV0L0NQUzB/BgNVHR8EeDB2MDqg...
dHRwOi8vY3JsLmNvbW9kb2NhLmNvbS9BQUFDZXJ0aWZpY2F0ZVNlcnZp...
Y3JsMDigNqA0hjJodHRwOi8vY3JsLmNvbW9kby5uZXQvQUFBQ2VydGlm...
ZXJ2aWNlc18yLmNybDANBgkqhkiG9w0BAQUFAAOCAQEArz+qFoFrMb7n...
Zk8vnFfyR0iO0pL/EfRsnHMRKqiDnCTBmTky3+Ey67eKvQ79AM6d/Wgk...
+dtasnPnN60FSlD7n1JnzDjY1jYP4VB5FXOp4YmklHuQnNHArxLMLOkl...
ipooFv61WaSfWXQ9rEr0ptxXnGTKDMetNbce5CoOi7TLML+6uqJs7HHQ...
lkaEjbzIi63iqfRzJKE05Fb30TzitMHqd0XlOmTiaWsdW7HWCFEUbwk/...
iB6YyIE7os34VvuaDdz9gOCtpXJz/YyWlzTgZd7WawzgNpqHxFMDB8xX...
GA==
-----END CERTIFICATE-----
- ◆中間証明書 AAACertificateServices_2.crt
-- &ref(AAACertificateServices_2.crt);
-----BEGIN CERTIFICATE-----
MIIE+TCCBGKgAwIBAgIEQobyPTANBgkqhkiG9w0BAQUFADCBwzELMAkG...
VVMxFDASBgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50...
ZXQvQ1BTIGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMG...
KGMpIDE5OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50...
ZXQgU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAe...
MTkxNDM5NTFaFw0xMjEwMTkxNTA5NTFaMHsxCzAJBgNVBAYTAkdCMRsw...
ExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAY...
EUNvbW9kbyBDQSBMaW1pdGVkMSEwHwYDVQQDExhBQUEgQ2VydGlmaWNh...
dmljZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwTi7R...
dmz44SMCk0QrTIjyUASQxtfK10D+zRfalGtz8D0KmyPdmBgHYqhuEZl4...
/vqP9QOEjvuFpcXk9+3keL7fqsecx5/fId99z2DUcLvUyqZbudcObpRV...
Ji6RZ5NnJ/6UCkhinY+Y4SVjS74rkjZPEUg5ZuGxHCY1Vuk9247/H24k...
SFwwj9AEul7D6dsvHRgGFnH/ivaZwXlfgu3YoC9GBqTrKeaO/VKNvYNX...
C/aO+qsO+qCsaJet/Vn8GRMzewuDapBjVSbneAWKuBzvdcHCJ59OlwQp...
DxPcoli5AgMBAAGjggG7MIIBtzASBgNVHRMBAf8ECDAGAQH/AgEAMB0G...
MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUMEPcZM0ZXKnz...
ngzo1j0wggEYBgNVHR8EggEPMIIBCzAooCagJIYiaHR0cDovL2NybC5l...
Lm5ldC9zZXJ2ZXIxLmNybDCB3qCB26CB2KSB1TCB0jELMAkGA1UEBhMC...
BgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50cnVzdC5u...
IGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMGA1UECxMc...
OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50cnVzdC5u...
dXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTENMAsGA1UE...
MTALBgNVHQ8EBAMCAQYwHwYDVR0jBBgwFoAU8BdiE1U9s/8KAGv7UISX...
GQYJKoZIhvZ9B0EABAwwChsEVjcuMQMCAIEwDQYJKoZIhvcNAQEFBQAD...
t7BnKt3gENkLFmXzlm9BMD7f3rv4WjZRMdcvD/pdI5aYqkWgGAqCmhE2...
wyo+HeFt9n49StOZzv6orwtFwtvCuOlJxaFi7XVm5t6LW3Nw+pxLkFET...
1O6Jx8nPADfns9Nliyzn+D/xC+N6Bvkpfs+5FHY=
-----END CERTIFICATE-----
- EntrustSecureServerCA.crtはルート証明書となり通常利用い...
--&ref(wiki_hmuna_com.zip);
*** サーバー証明書(2007-12 更新) [#dd881b6e]
◆サーバ証明書 wiki_hmuna_com.crt
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
-- &ref(wiki_hmuna_com_2008.crt);
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgIRAJkU313pNHrvHI3tQsdXjw8wDQYJKoZIhvcN...
ezELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3Rl...
A1UEBxMHU2FsZm9yZDEaMBgGA1UEChMRQ29tb2RvIENBIExpbWl0ZWQx...
BAMTGEFBQSBDZXJ0aWZpY2F0ZSBTZXJ2aWNlczAeFw0wNzEyMjEwMDAw...
MDEyMjAyMzU5NTlaMIH8MQswCQYDVQQGEwJKUDERMA8GA1UEERMIMjMx...
ETAPBgNVBAgTCEthbmFnYXdhMREwDwYDVQQHEwhZb2tvaGFtYTEqMCgG...
bmFrYS13YXJkIHlhbWFzaGl0YS1jaG8gODctMS0xMjAzMRkwFwYDVQQK...
YXRlIElUIGFkbWluMQswCQYDVQQLEwJJVDEnMCUGA1UECxMeUHJvdmlk...
SHlwZXIgQm94IENvLixMdGQuMR4wHAYDVQQLExVIeXBlclRydXN0IElu...
U0wxFzAVBgNVBAMTDndpa2kuaG11bmEuY29tMIGfMA0GCSqGSIb3DQEB...
ADCBiQKBgQC+H6yxwxT+vdKI6sfLl9rzN4bQojutc6/mZC0FN9t+E9Iw...
mWofKy8zvh5OH4jXsmZkVNdsFKF4D7axnJ9cA17h4AXy0M3NHnhXE5Vd...
HbxO9PvoVZzqiVWsGdzbWx32dbZJv9YtAxy4FxB6PYmd8q1z4HugWwID...
XTCCAVkwHwYDVR0jBBgwFoAUMEPcZM0ZXKnzGdI3CZaRngzo1j0wHQYD...
FLwjTxLAUU4fxYzdv4arZAuHZrrnMA4GA1UdDwEB/wQEAwIFoDAMBgNV...
AjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjARBglghkgB...
BAMCBsAwRgYDVR0gBD8wPTA7BgwrBgEEAbIxAQIBAwQwKzApBggrBgEF...
aHR0cHM6Ly9zZWN1cmUuY29tb2RvLm5ldC9DUFMwfwYDVR0fBHgwdjA6...
aHR0cDovL2NybC5jb21vZG9jYS5jb20vQUFBQ2VydGlmaWNhdGVTZXJ2...
LmNybDA4oDagNIYyaHR0cDovL2NybC5jb21vZG8ubmV0L0FBQUNlcnRp...
U2VydmljZXNfMi5jcmwwDQYJKoZIhvcNAQEFBQADggEBAIvbjlUM/HtX...
GUJqZOpixoZwfsk/eg7jYO6oGRog19wbRIzQKn2cdHzDXgqiYpX44aA4...
FDaolKR07nil9sStc7vsoNhnD4IAKB2kCyzERZBM7uVRqUvofGedloDz...
gJlzsQBX/Yo90OLsM4gYt2voI23u7xkUupIu6jImKwWByoegbo9eHM9N...
/OK53K/3txMlsPRz5Cw0y7FQLQqY19HGMLlBVJgzWslYCGIIJusEZsSH...
GtkMm2l7Cj9SBhhmzUOunfeAJUPQ01cxM0tLRw9G4HRDLAFiyyIQTurd...
pp8=
-----END CERTIFICATE-----
◆中間証明書 AAACertificateServices_2.crt
‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾‾
-- &ref(AAACertificateServices_2_2008.crt);
-----BEGIN CERTIFICATE-----
MIIE+TCCBGKgAwIBAgIEQobyPTANBgkqhkiG9w0BAQUFADCBwzELMAkG...
VVMxFDASBgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50...
ZXQvQ1BTIGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMG...
KGMpIDE5OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50...
ZXQgU2VjdXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAe...
MTkxNDM5NTFaFw0xMjEwMTkxNTA5NTFaMHsxCzAJBgNVBAYTAkdCMRsw...
ExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAOBgNVBAcTB1NhbGZvcmQxGjAY...
EUNvbW9kbyBDQSBMaW1pdGVkMSEwHwYDVQQDExhBQUEgQ2VydGlmaWNh...
dmljZXMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwTi7R...
dmz44SMCk0QrTIjyUASQxtfK10D+zRfalGtz8D0KmyPdmBgHYqhuEZl4...
/vqP9QOEjvuFpcXk9+3keL7fqsecx5/fId99z2DUcLvUyqZbudcObpRV...
Ji6RZ5NnJ/6UCkhinY+Y4SVjS74rkjZPEUg5ZuGxHCY1Vuk9247/H24k...
SFwwj9AEul7D6dsvHRgGFnH/ivaZwXlfgu3YoC9GBqTrKeaO/VKNvYNX...
C/aO+qsO+qCsaJet/Vn8GRMzewuDapBjVSbneAWKuBzvdcHCJ59OlwQp...
DxPcoli5AgMBAAGjggG7MIIBtzASBgNVHRMBAf8ECDAGAQH/AgEAMB0G...
MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAdBgNVHQ4EFgQUMEPcZM0ZXKnz...
ngzo1j0wggEYBgNVHR8EggEPMIIBCzAooCagJIYiaHR0cDovL2NybC5l...
Lm5ldC9zZXJ2ZXIxLmNybDCB3qCB26CB2KSB1TCB0jELMAkGA1UEBhMC...
BgNVBAoTC0VudHJ1c3QubmV0MTswOQYDVQQLEzJ3d3cuZW50cnVzdC5u...
IGluY29ycC4gYnkgcmVmLiAobGltaXRzIGxpYWIuKTElMCMGA1UECxMc...
OTkgRW50cnVzdC5uZXQgTGltaXRlZDE6MDgGA1UEAxMxRW50cnVzdC5u...
dXJlIFNlcnZlciBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTENMAsGA1UE...
MTALBgNVHQ8EBAMCAQYwHwYDVR0jBBgwFoAU8BdiE1U9s/8KAGv7UISX...
GQYJKoZIhvZ9B0EABAwwChsEVjcuMQMCAIEwDQYJKoZIhvcNAQEFBQAD...
t7BnKt3gENkLFmXzlm9BMD7f3rv4WjZRMdcvD/pdI5aYqkWgGAqCmhE2...
wyo+HeFt9n49StOZzv6orwtFwtvCuOlJxaFi7XVm5t6LW3Nw+pxLkFET...
1O6Jx8nPADfns9Nliyzn+D/xC+N6Bvkpfs+5FHY=
-----END CERTIFICATE-----
- EntrustSecureServerCA.crtはルート証明書となり通常利用い...
--&ref(wiki_hmuna_com_2008.zip);
*** サーバー鍵へのパスフレーズの埋め込み [#gb5eb1c8]
mod_ssl の Private key ファイル(/usr/local/certs_officia...
- Private key にパスフレーズを埋め込む
[root@spirit ~]# cd /usr/local/certs_official/sslkey/
[root@spirit sslkey]# openssl rsa < domainname.key > ser...
Enter pass phrase: <--- "munaofficial"
writing RSA key
[root@spirit sslkey]# mv domainname.key domainname.key_w...
[root@spirit sslkey]# mv server.key.out domainname.key
- パスフレーズを聞かれずに立ち上がるようになった
[root@spirit sslkey]# service httpd restart
httpd を停止中: ...
httpd を起動中: ...
*** 2007.12 に更新時期となったので 3年間のキーを再申請し...
- パスフレーズは (前回と同じ) munaofficial
- CSR 申請用のデータも上記と同じ
- /etc/httpd/conf の下にファイルを生成した
[root@spirit conf]# ls -lR
.:
合計 88
-rw-r--r-- 1 root root 45426 9月 5 17:04 httpd.conf
-rw-r--r-- 1 root root 12958 6月 27 08:34 magic
drwxr-xr-x 2 root root 4096 12月 21 13:11 ssl.csr
drwxr-xr-x 2 root root 4096 12月 21 13:02 ssl.key
./ssl.csr:
合計 8
-rw-r--r-- 1 root root 668 12月 21 13:11 domainname.csr
./ssl.key:
合計 8
-rw-r--r-- 1 root root 963 12月 21 13:06 domainname.key
- 今回生成し直した 秘密鍵(domainname.key)とサーバー証明...
-- domainname.key (2007-12-21)
[root@spirit conf]# cat ./ssl.key/domainname.key
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,948273E63447D5FA
pH8yW01PXCvQkoTa+esTMYnWECODWzJnkbja3T1nc39NY0AFaSEjJ2Ji...
u6i/EyAMkToZKZba6GGLjAwsiNr9RqweTGIQbIyHuZYB+oG+10XiDqFV...
Bb26KjLP+6cxo9px0Ilmm3BYfwWoM7VOJmqytKJB4G8qs1aecqYL+usN...
GsX+iXB7KN6uqkJ3Etp9nSfkvzTIA3Y9IGna/gYc7B3qS850BXQiEYpU...
i67cfi7iVP2bQTbVrf79ndiX0xX8El1llLZSOrZ7lkEZ1uCngaT3Tu51...
N5e1QyxxaWx86bvl8yrS8JzstqJzRdmDg9eKhhgUyxT/7tiYUs0/Gn7s...
03ZyR69qmMlO6YzMjLl3XtpIsY7hGqczrSRwfbb/3OJfg22EwXArGxl3...
Q4MslddleD0B6j86fS0MCQ0dB5FHHm+QdQI+hrHanOaoejHr0+2RWsux...
+r/ps08YmLvAKApXiTacWVdtX6xIxWmJEFjUyXaAYo10Jn3lGM2D+i8k...
g7ReESmbH2S2i+Xk+o2J7r+PlaLHOCCs328PAKahAc8a/7taZ4G6NmcK...
O7HrQ3cG7Hu+IKNZAOYUnxYGtfwbBUv/Au1HgeEAociE+ZpzmgsN3LBp...
kWMyc3D4k2ZCV5lcr33SBfwqM79MeSwNdzea+4q4T44lwzHtYO57Mn+U...
RLeG2iMWX5rau4cu2O71ZuAnUrqeen6toWiXEmdliQ9yfwTZLLWiMw==
-----END RSA PRIVATE KEY-----
-- domainname.csr (2007-12-21)
[root@spirit conf]# cat ./ssl.csr/domainname.csr
-----BEGIN CERTIFICATE REQUEST-----
MIIBtDCCAR0CAQAwdDELMAkGA1UEBhMCSlAxETAPBgNVBAgTCEthbmFn...
DwYDVQQHEwhZb2tvaGFtYTEZMBcGA1UEChMQUHJpdmF0ZSBJVCBhZG1p...
A1UECxMCSVQxFzAVBgNVBAMTDndpa2kuaG11bmEuY29tMIGfMA0GCSqG...
AQUAA4GNADCBiQKBgQC+H6yxwxT+vdKI6sfLl9rzN4bQojutc6/mZC0F...
VuIfIPGrmWofKy8zvh5OH4jXsmZkVNdsFKF4D7axnJ9cA17h4AXy0M3N...
QGGZwy6RHbxO9PvoVZzqiVWsGdzbWx32dbZJv9YtAxy4FxB6PYmd8q1z...
AQABoAAwDQYJKoZIhvcNAQEFBQADgYEAuknehigV42BZI0BxhkHNsXzZ...
ze4tqL1WZaToTVdlceKULVGyCtyIK7n/StfINtWwjZMzKV09scYtJh8f...
fCFxBdePdYhL4K72AMwU2sWHoJTzLKQAYFda1/rNochhtFDuWJfG1nVx...
a/BA40iC/iM=
-----END CERTIFICATE REQUEST-----
ページ名:
![[PukiWiki]](image/taikyoku.gif "[PukiWiki]")
