问题描述

我需要我的X.509版本3证书的subjectAltName具有hexBinary数据(二进制内容以十六进制编码).

I need my X.509 version 3 certificate's subjectAltName to have hexBinary data (binary contents coded in hexadecimal).

示例(UUID?):25289a27a9ad4510ab20135a96050d09.

Example (UUID?): 25289a27a9ad4510ab20135a96050d09.

使用时

subjectAltName = otherName:2.25;FORMAT:HEX,OCTETSTRING:25289a27a9ad4510ab20135a96050d09

由于某种原因，OpenSSL显示CSR或证书的X509V3使用者备用名称具有其他名称:<不支持>

For some reason, OpenSSL shows CSR's or certificate's X509V3 Subject Alternative Name to have othername: < unsupported>

hxtools显示未知:

hxtools shows that it is unknown:

subjectAltName otherName 2.25 unknown

有什么提示吗?

推荐答案

这可能与您期望的差不多.尝试通过ans1parse输出它，然后使用-strparse重新运行命令，直到您的SubjectAlternative名称.如果一切正常，您应该会看到八进制字符串.

That is probably pretty much as you should expect. Try outputting it through ans1parse and then rerun the command with a -strparse to the point of your SubjectAlternative name. You should see the octed string then if all is well.

这篇关于如何在OpenSSL中将hexBinary数据插入subjectAltName的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持！