Sergey Badaev wrote: > > How?!! > Thanks, > Sergey You can use either the 'ca' utility or 'x509'. If you use 'ca' you should make sure there is no extension section in the config file and it will then keep the version as V1. This is done by commenting out the x509_extensions line. If you use the -x509 option of req you always get V3. Using X509 you use 'req' to make a certificate request as normal and then use the various request signing examples in the manual page *except* that you omit the -config and -extensions arguments. -- Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/ Personal Email: [EMAIL PROTECTED] Senior crypto engineer, Celo Communications: http://www.celocom.com/ Core developer of the OpenSSL project: http://www.openssl.org/ Business Email: [EMAIL PROTECTED] PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
