[EMAIL PROTECTED] writes:
as far as I read the text from the RFC, they are talkin about non-negative
numbers. So the range is from 0 to 2^(159)-1 because the one bit missing
indicates a negative number.
True. That doesn't change my point, though :-).
Cheers,
Richard
-
Please conside
to:[EMAIL PROTECTED] Auftrag von Richard Levitte
> Gesendet: Montag, 18. Juli 2005 15:42
> An: openssl-users@openssl.org
> Cc: Jorey Bump
> Betreff: Re: Max length of serial number
>
>
> Jorey Bump writes:
>
> > And RFC 3280 has this to say:
> >
> > 4.
Jorey Bump writes:
And RFC 3280 has this to say:
4.1.2.2 Serial number
The serial number MUST be a positive integer assigned by the CA to
each certificate. It MUST be unique for each certificate issued by a
given CA (i.e., the issuer name and serial number identify a unique
cer
Jorey Bump wrote:
There is one caveat: the number of characters must be even:
unable to load number from /etc/ssl/CA/serial
error while loading serial number
3068:error:0D066091:asn1 encoding routines:a2i_ASN1_INTEGER:odd number
of chars:f_int.c:162:
Therefore, I needed to modify my command:
Todd Wease wrote:
On Sun, 2005-07-17 at 12:03 -0400, Jorey Bump wrote:
What is the maximum length (if string) or size (if number) of a serial
number?
I am using the current datetime to set the initial serial number for my
CA to provide a reasonable measure of uniqueness:
# example: 200507
On Sun, 2005-07-17 at 12:03 -0400, Jorey Bump wrote:
> What is the maximum length (if string) or size (if number) of a serial
> number?
>
> I am using the current datetime to set the initial serial number for my
> CA to provide a reasonable measure of uniqueness:
>
> # example: 20050717115200
What is the maximum length (if string) or size (if number) of a serial
number?
I am using the current datetime to set the initial serial number for my
CA to provide a reasonable measure of uniqueness:
# example: 200507171152001
SERIALINIT=$(date +%Y%m%d%H%M)001
echo $SERIALINIT > serial
D